Loading...

XML

Word

Printable

JSON

Type: Change Request
Resolution: Not Persuasive with Modification
Priority: Medium

Specification:

FHIR Core (FHIR)
Raised in Version:

DSTU1 [deprecated]
Work Group:

Security
Related URL:
http://hl7.org/fhir/2015May/http.html#delete
Related Page(s):

REST (http)
Resolution Description:

Hide

Reject as policy should not be embedded in the specification. However, extend the security section (2.1.0.3) to note that all operations are subject to RBAC /ABAC, consent etc

Show
Reject as policy should not be embedded in the specification. However, extend the security section (2.1.0.3) to note that all operations are subject to RBAC /ABAC, consent etc
Resolution Vote:
James Agnew / Grahame Grieve: 4-0-0
Change Category:
Enhancement
Change Impact:
Non-substantive
Applied for Version:

DSTU1 [deprecated]

Proposed Wording: Add something like: "In case a resource is deleted., a record of Provenance will attest to that change. Only authorized systems/user (i.e. the system/user responsible for its "authorship" according the related "Provenance" record) will be allowed to "delete".

Comment:

This operation needs additional explicit caveats to protect unauthorized "delete" especially if the resource is expected to be remove. The only record of its existence should be "Provenance.

We need to explain precisely how the security guidance should be applied to this *specific" operation including the use of Consent and Provenance to make access control decisions. (/security.html) including consent to make sure only authorized systems an users are viewing, changing, updating, or reviewing the update history of a resource.

is voted on by

BALLOT-1499 Negative - Ioana Singureanu : 2015-May-FHIR R1

Balloted

Assignee:: Unassigned
Reporter:: Ioana Singureanu
Watchers:: 2 Start watching this issue

Created:: 2015-05-10 04:31
Updated:: 2019-11-28 01:22
Resolved:: 2018-03-03 05:51
Vote Date:: 2015-07-29

Details

Description

Attachments

Issue Links

Activity

People

Dates