New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Test for PHI exposure in resource ID - All resources, explicit (Test30) #25

Open

2 tasks

nir-r opened this issue Jun 6, 2024 · 0 comments

Open

2 tasks

Test for PHI exposure in resource ID - All resources, explicit (Test30) #25

nir-r opened this issue Jun 6, 2024 · 0 comments

Assignees

Collaborator

nir-r commented Jun 6, 2024

Requirement
Resource IDs may be exposed on GET over HTTP and hence should not include protected health information (PHI)

Implementation

Extract Patient.identifier.value from all sampled patients and write it into "a PHI" file
Patient.id
Patient.identifier.value
Patient.identifier.system
Loop over all resources (including Patient), for each resource, compare (Resource.id) to all identifier values (Patient.identifier.value) in the "PHI" file

nir-r mentioned this issue

Test for PHI exposure in resource ID - Patient, explicit (Test30) #24

Open

nir-r self-assigned this

nir-r added this to Certificator MVP

nir-r moved this to Backlog in Certificator MVP

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment