iCure. eHealth Solutions
  • Developer Documentation
  • iCure Software Modules
  • Get Started
    • Create your own Database
      • Receive an invitation
      • Create new User
      • Create a new Healthcare Party
    • Structure your Database
    • Access your database
    • Use the Console
  • Data Stack Module
    • The Data Stack
      • Install iCure
      • Get Started with a Database
    • iCure Data Model
      • Overview
      • User
        • Permission
      • Healthcare Party
      • Patient
        • Insurability
        • Relationship
        • Patient Hcp care period
          • Referral period
      • Contact
        • Service
          • Content
            • Medication
              • Regimen item
            • Measure
        • SubContact
      • Healthcare Element
        • Care team member
        • Healthcare approach
      • Form
      • Additional Classes
        • AccessLog
        • Address
          • Telecom
        • Message
        • Document
        • FilterChain
          • Filter
          • Predicate
        • Group
        • Insurance
        • Invoice
          • Invoicing code
        • Tarification
          • Valorisation
    • Hybrid Cloud Storage
    • Mobile/Web SDKs
      • JavaScript/Typescript
        • Setting up your environment
        • Logging in
        • Managing patients
        • iCure for MedTech: Getting Started
          • Exchange data using FHIR model
          • Exchange data using iCure SDK
      • Java/Kotlin
      • Swift/Objective C
    • REST API calls
      • User
      • Patient
      • HealthcareParty
      • Contact
      • HealthcareElement
      • Form
      • Document
      • Message
      • Invoice
      • Additional endpoints
        • AccessLog
        • Authentication
        • Codification
        • Document template
        • Entity reference
        • Entity template
        • Insurance
        • Receipt
        • Tarification
    • Access Rights management
    • End-to-End-Encryption
    • ATNA Audit Records
  • Interoperability Module
    • IHE XDS calls
      • The XDS Concept
      • ITI-18 get associations api call
      • ITI-41 provide and register document set api call
      • Iti-42 register document set api call
    • IHE IPS call
      • The IPS Concept
    • FHIR API Data Exchange
      • The FHIR Concept
    • Freehealth Connector 🇧🇪
    • Encrypted Data Exchange
      • Internal
      • External
  • Customizable Features Module
    • Input Forms
    • Medical Records
    • Data Dashboards
    • Custom Connectors
    • Secure Log-in App
  • Support
    • Download
    • Contact Us
  • Advanced topics
    • Healthcare Data
      • Business intelligence
      • Anonymized Data
    • Encryption Key Creation and Storage
    • Multi-Master database replication
    • Cross Databases Sharing
    • Complex queries
Powered by GitBook
On this page
  • Web Search
  • SSID Export

Was this helpful?

  1. Data Stack Module

ATNA Audit Records

PreviousEnd-to-End-EncryptionNextIHE XDS calls

Last updated 3 years ago

Was this helpful?

iCure Database creates an auditable granular archive, through the implementation of the IHE ATNA (Audit Trail and Node Authentication) Profile. A repository of interactions with the database is maintained for auditing purposes, ensuring compliance with privacy regulations.

Auditable records are an integral part of all Regulations on Data Governance and Clinical practice, thus iCure Platform can be by design compliant with complex requirements of applicable laws and custom policies. ATNA records can be parsed externally, to ensure availability to third party auditors.

The IHE ATNA is the basis of the Audit Trail Profiles designated by the eHealth DSI (Digital Service Infrastructure) of the EU. This results in retroactive compliance to future compliance requirements with the Patient Summary and ePrescription in the EU and applications following these specifications.

Web Search

The information contained in the ATNA records refers to encrypted data. That is the reason that it can be externally accessible through a web platform, without the necessity for user authorization with encryption keys. That means that the data shown here are actual client data, that cannot be read by anyone else other than the owner of the data.

SSID Export

A unique action with SSID can be exported in both JSON and XML

{
 "eventIdentification": {
  "eventID": {
   "code": "110107",
   "originalText": "Import",
   "codeSystemName": "DCM",
   "displayName": null
  },
  "eventDateTime": "2021-06-25T14:53:14.527932Z",
  "eventOutcomeIndicator": "SeriousFailure",
  "eventOutcomeDescription": "Association specifies an original document entry, but it was not provided",
  "eventActionCode": "Update",
  "purposesOfUse": [],
  "eventTypeCode": [
   {
    "code": "ITI-57",
    "originalText": "Update Document Set",
    "codeSystemName": "IHE Transactions",
    "displayName": null
   }
  ]
 },
 "activeParticipants": [
  {
   "userIsRequestor": true,
   "userID": "http://www.w3.org/2005/08/addressing/anonymous",
   "alternativeUserID": "UNKNOWN",
   "userName": null,
   "networkAccessPointID": "127.0.0.1",
   "networkAccessPointTypeCode": "IPAddress",
   "roleIDCodes": [
    {
     "code": "110153",
     "originalText": "Source Role ID",
     "codeSystemName": "DCM",
     "displayName": null
    }
   ],
   "mediaIdentifier": null,
   "mediaType": null
  },
  {
   "userIsRequestor": false,
   "userID": "http://host.docker.internal:8080/services/iti57Service",
   "alternativeUserID": "31052",
   "userName": null,
   "networkAccessPointID": "host.docker.internal",
   "networkAccessPointTypeCode": "MachineName",
   "roleIDCodes": [
    {
     "code": "110152",
     "originalText": "Destination Role ID",
     "codeSystemName": "DCM",
     "displayName": null
    }
   ],
   "mediaIdentifier": null,
   "mediaType": null
  }
 ],
 "auditSourceIdentification": {
  "auditSourceID": "iCureIHExds",
  "auditEnterpriseSiteID": "Taktik",
  "auditSourceType": [
   "Other"
  ]
 },
 "participantObjectIdentifications": [
  {
   "participantObjectID": "P0625084359.15^^^&1.3.6.1.4.1.21367.13.20.1000&ISO",
   "participantObjectIDTypeCode": {
    "code": "2",
    "originalText": "Patient Number",
    "codeSystemName": "RFC-3881",
    "displayName": null
   },
   "participantObjectName": null,
   "participantObjectQuery": null,
   "participantObjectTypeCode": "Person",
   "participantObjectTypeCodeRole": "Patient",
   "participantObjectDataLifeCycle": null,
   "participantObjectSensitivity": null,
   "participantObjectDetails": [],
   "participantObjectDescriptions": []
  },
  {
   "participantObjectID": "1.2.42.20210625084417.348",
   "participantObjectIDTypeCode": {
    "code": "urn:uuid:a54d6aa5-d40d-43f9-88c5-b4633d873bdd",
    "originalText": "submission set classificationNode",
    "codeSystemName": "IHE XDS Metadata",
    "displayName": null
   },
   "participantObjectName": null,
   "participantObjectQuery": null,
   "participantObjectTypeCode": "System",
   "participantObjectTypeCodeRole": "Job",
   "participantObjectDataLifeCycle": null,
   "participantObjectSensitivity": null,
   "participantObjectDetails": [],
   "participantObjectDescriptions": []
  }
 ]
}
<?xml version="1.0" encoding="UTF-8"?>
<AuditMessage>
	<EventIdentification EventActionCode="U" EventDateTime="2021-06-25T14:53:14.527932Z" EventOutcomeIndicator="8">
		<EventID csd-code="110107" codeSystemName="DCM" originalText="Import" />
		<EventTypeCode csd-code="ITI-57" codeSystemName="IHE Transactions" originalText="Update Document Set" />
		<EventOutcomeDescription>Association specifies an original document entry, but it was not provided</EventOutcomeDescription>
	</EventIdentification>
	<ActiveParticipant UserID="http://www.w3.org/2005/08/addressing/anonymous" AlternativeUserID="UNKNOWN" UserIsRequestor="true" NetworkAccessPointID="127.0.0.1" NetworkAccessPointTypeCode="2">
		<RoleIDCode csd-code="110153" codeSystemName="DCM" originalText="Source Role ID" />
	</ActiveParticipant>
	<ActiveParticipant UserID="http://host.docker.internal:8080/services/iti57Service" AlternativeUserID="31052" UserIsRequestor="false" NetworkAccessPointID="host.docker.internal" NetworkAccessPointTypeCode="1">
		<RoleIDCode csd-code="110152" codeSystemName="DCM" originalText="Destination Role ID" />
	</ActiveParticipant>
	<AuditSourceIdentification AuditEnterpriseSiteID="Taktik" AuditSourceID="iCureIHExds">
		<AuditSourceTypeCode csd-code="9" codeSystemName="DCM" originalText="Other" />
	</AuditSourceIdentification>
	<ParticipantObjectIdentification ParticipantObjectID="P0625084359.15^^^&amp;1.3.6.1.4.1.21367.13.20.1000&amp;ISO" ParticipantObjectTypeCode="1" ParticipantObjectTypeCodeRole="1">
		<ParticipantObjectIDTypeCode csd-code="2" codeSystemName="RFC-3881" originalText="Patient Number" />
	</ParticipantObjectIdentification>
	<ParticipantObjectIdentification ParticipantObjectID="1.2.42.20210625084417.348" ParticipantObjectTypeCode="2" ParticipantObjectTypeCodeRole="20">
		<ParticipantObjectIDTypeCode csd-code="urn:uuid:a54d6aa5-d40d-43f9-88c5-b4633d873bdd" codeSystemName="IHE XDS Metadata" originalText="submission set classificationNode" />
	</ParticipantObjectIdentification>
</AuditMessage>

1MB
eHDSI_Audit_Trail_Profiles_v2.2.0.pdf
pdf
eHDSI Audit Trail Profiles v2.2
ATNA Web Search
Search for specific patient with encrypted data