The Access Control Service provides "gate-keeping" to protected resources and information, in accordance with a set of Access Control policies.
Basic Functional Requirements
- Control access to clinical records based on user role
- Control access to clinical records based on content type
- Provide "Break the Glass" functionality
- Increased auditing in the event of "Break the Glass"
- Emergency access
- Specification of roles, content types and policy rules
Use Cases
Candidate Standards
HSSP-PASS Access Control
Implementations
- None known
HL7 Healthcare Access Control Catalogue, version 3
Implementations (Claimed by HL7 - check on these?)
- Department of Veterans Affairs (VA)
- Department of Defense (DoD)
- SAMHSA