Search Criteria : 30 assertions found for this search Review filtered assertions

Assertion

Applies to

Applied to
Not applied to

Coverage

Covered by
Not covered by
Id scheme
Assertion id
Status
Testable?
#Coverage
#Applies to
Comment
Predicate
Page
Tags
Last changed
Actions
ITI20ITI20-1reviewedTestable 0 0 The Audit Record Repository shall accept the Audit Record message.146Section 3.20.52/5/16 12:27:23 PM by aboufahj
ITI20ITI20-10reviewedTestable 0 0 The syslog message shall be created and transmitted as described in RFC 5424.150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-11reviewedTestable 0 0 Audit repositories must accept audit messages encoded with UTF-8 and store them without damage.150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-12reviewedTestable 0 0 To perform the calculation of the PRI field in the syslog message, the Facility value of 10 (security/authorization messages) shall be use. (see RFC 5424)150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-13reviewedTestable 0 0 To perform the calculation of the PRI field in the syslog message, the severity values of 5 (normal but significant) or 4 (warning condition) should be used. (see RFC 5424)150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-14reviewedTestable 0 0 Audit repositories shall be prepared to deal appropriately with any incoming PRI value.150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-15reviewedTestable 0 0 The MSGID field in the HEADER of the SYSLOG-MSG shall be set to “IHE+RFC-3881” (minus the quotes).150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-16reviewedTestable 0 0 The MSG field of the SYSLOG-MSG shall be present and shall be an XML structure following the RFC 3881 format.150Section 3.20.6.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-17reviewedTestable 0 0 Applications using Reliable Syslog should switch to transmission of syslog messages over TLS.151Section 3.20.6.3.12/5/16 12:27:23 PM by aboufahj
ITI20ITI20-18reviewedTestable 0 0 When transmission of Syslog Messages over UDP (RFC 5426) with the Syslog Protocol (RFC 5424) occurs, long messages may be truncated. If so, the Audit Repository must correct the message by closing the trucated XML elements.151Section 3.20.6.3.22/5/16 12:27:23 PM by aboufahj
ITI20ITI20-19reviewedTestable 0 0 Because of the potential for truncated messages and other security concerns with Syslog Messages over UDP, the transmission of syslog messages over TLS may be preferred.151Section 3.20.6.3.22/5/16 12:27:23 PM by aboufahj
ITI20ITI20-2reviewedTestable 0 0 The events Actor-start-stop, Audit-Log-Used, Begin-storing-instances, Health-service-event, Instances-deleted, Instances-Stored, Medication, Mobile-machine-event, Node-Authentication-failure, Order-record-event, Patient-care-assignment, Patient-care-episode, Patient-care-protocol, Patient-record-event, PHI-export, PHI-import, Procedure-record-event, Query Information, Security Alert, User Authentication, Study-Object-Event and Study-used shall be reportable by means of the IHE Audit Trail.146Section 3.20.62/5/16 12:27:23 PM by aboufahj
ITI20ITI20-20reviewedTestable 0 0 About Transmission of Syslog Messages over TLS (RFC5425) with The Syslog Protocol (RFC5424), it is recommended to use TLS version 1.2.152Section 3.20.6.3.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-21reviewedTestable 0 0 For audit records generated by all IHE actors, the IHE IT Infrastructure technical framework prefers use of the DICOM schema defined in the DICOM Standard, Part 15 Annex A.5.152Section 3.20.72/5/16 12:27:23 PM by aboufahj
ITI20ITI20-22reviewedTestable 0 0 For the ParticipantObjectIDTypeCode element, and when using the values specified in RFC-3881, IHE actors SHALL specify the corresponding description from RFC-3881 in the originalText attribute and "RFC-3881" in the codeSystemName attribute.154Section 3.20.7.1.22/5/16 12:27:23 PM by aboufahj
ITI20ITI20-23reviewedTestable 0 0 A Secure Node Actor shall be able to detect events that are defined by the DICOM standard in PS 3.16 - 2011, CID 400, and generate Record Audit Event transactions that conform to the DICOM standard when these events take place.154Section 3.20.7.22/5/16 12:27:23 PM by aboufahj
ITI20ITI20-24reviewedTestable 0 0 The additional IHE defined events Health Services Provision Event, Medication Event, Patient Care Resource Assignment, Patient Care Episode and Patient Care Protocol (enumerated in ITI TF-2a: 3.20.7.5) shall be used for their defined purpose.155Section 3.20.7.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-25reviewedTestable 0 0 Even for IHE Audit Trail, the messages shall be encoded as instances based on the DICOMschema.155Section 3.20.7.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-26reviewedTestable 0 0 In cases where there is an event that applies to more than one patient, there shall be a separate audit message for each patient.155Section 3.20.7.32/5/16 12:27:23 PM by aboufahj
ITI20ITI20-27reviewedTestable 0 0 Events that do not correspond to DICOM events or IHE Extension events can be reported.155Section 3.20.7.42/5/16 12:27:23 PM by aboufahj