| CIDD | CH-CPI-001 | deprecated | Testable |
0
|
2
| | Each CH:CPI Actor shall be grouped with the following actors: Secure Node or Secure Application (IHE ATNA) and with Time Client (IHE CT) including the corresponding Swiss National Extensions (see Section 2.2.4 Dependencies among Integration Profiles) | 7 | Section 2.2.4 | 6/17/23 10:51:29 AM by vhofman |
|
| CIDD | CH-CPI-004 | deprecated | Not testable |
0
|
1
| | The CH:CPI Provider MUST validate the authenticity of the CH:CPI Consumer by checking the TLS certificate, as it is under no circumstances allowed to respond to arequest from a source that is not part of the CH:CPI itself.This MUST be done using the IHE ATNA Authenticate Node [ITI-19] transaction (see Section 3.1.4.3 Expected Actions) | 10 | Section 3.1.4.3 | 6/17/23 10:51:37 AM by vhofman |
|
| CIDD | CH-CPI-008 | deprecated | Not testable |
0
|
1
| | The CH:CIQ Response contains a SOAP based DSMLv2 batchResponse message of errorResponse element type to send a response for an invalid searchRequest (see Section 3.1.5.2.2 DSML ErrorResponse) | 11 | Section 3.1.5.2.2 | 6/17/23 10:51:44 AM by vhofman |
|
| CIDD | CH-CPI-011 | deprecated | Not testable |
0
|
1
| | The attribute shcStatus of a community MUST be respected. It contains either activeor inactive (see Section 3.1.5.2.3 DSML SearchResponse) | 12 | Section 3.1.5.2.3 | 6/17/23 10:51:52 AM by vhofman |
|
| CIDD | CH-CPI-012 | deprecated | Testable |
0
|
2
| | The CH:CPI Consumer MUST validate the authenticity of the CH:CPI Provider by checking the TLS certificate, as it is under no circumstances allowed to process responses from a source that is not the CH:CPI Provider itself.This MUST be done using the IHE ATNA Authenticate Node [ITI-19] transaction (see Section 3.1.5.3 Expected Actions) | 13 | Section 3.1.5.3 | 6/17/23 10:51:54 AM by vhofman |
|
| CIDD | CH-CPI-013 | deprecated | Testable |
0
|
2
| | Each node authentication failure(e.g. invalid certificate) MUST trigger an IHE ATNA Security AlertAudit Event (see Section 3.1.5.3 Expected Actions) | 13 | Section 3.1.5.3 | 6/17/23 10:51:55 AM by vhofman |
|
| CIDD | CH-CPI-018 | deprecated | Not testable |
0
|
2
| | The CH:CPI Provider MUST validate the authenticity of the CH:CPI Consumer by checking the TLS certificate, as it is under no circumstances allowed to respond to a request from a source that is not part of the CH:CPI itself.This MUST be done using the IHE ATNA Authenticate Node [ITI-19] transaction (see Section 3.1.6.3 Expected Actions) | 14 | Section 3.1.6.3 | 6/17/23 10:52:04 AM by vhofman |
|
| CIDD | CH-CPI-019 | deprecated | Testable |
0
|
2
| | Each node authentication failure(e.g. invalid certificate) MUST trigger an IHE ATNA Security AlertAudit Event (see Section 3.1.6.3 Expected Actions) | 14 | Section 3.1.6.3 | 6/17/23 10:52:07 AM by vhofman |
|
| CIDD | CH-CPI-026 | deprecated | Testable |
0
|
2
| | The Actors involved MUST record audit events according to the following audit messages (see Section 3.1.9 Audit Record Considerations) | 18 | Section 3.1.9 | 6/17/23 10:52:23 AM by vhofman |
|
| CIDD | CIDD-003 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CPI Provider MUST validate the authenticity of the CH:CPI Consumer by checking the TLS certificate, | 12 | Section 3.1.6.3 | 11/8/23 3:39:08 PM by vhofman |
|
| CIDD | CIDD-004 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | Validate the authenticity of the CH:CPI Consumer by check-ing the TLS certificate MUST be done using the IHE ATNA Authenticate Node [ITI-19] transaction. | 12 | Section 3.1.6.3 | 11/8/23 3:39:04 PM by vhofman |
|
| CIDD | CIDD-005 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | Each node authentication failure (e.g. invalid certificate) MUST trigger an IHE ATNA Security Alert Audit Event. | 12 | Section 3.1.6.3 | 11/8/23 3:43:28 PM by vhofman |
|
| CIDD | CIDD-006 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | For non legitimate requests, the transaction MUST fail. | 13 | Section 3.1.6.3 | 11/8/23 3:44:28 PM by vhofman |
|
| CIDD | CIDD-007 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CIDD Response contains a SOAP fault in case of an invalid SOAP or download request. | 13 | Section 3.1.7.2.1 | 11/8/23 3:44:40 PM by vhofman |
|
| CIDD | CIDD-008 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CIDD Response contains a SOAP fault in any case of an invalid SOAP body. | 13 | Section 3.1.7.2.1 | 11/8/23 3:45:14 PM by vhofman |
|
| CIDD | CIDD-009 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CIDD Response MUST NOT use SOAP based DSMLv2 batchResponse message contain-ing the errorResponse element. SOAP faults MUST be used, instead. | 13 | Section 3.1.7.2.2 | 11/8/23 3:45:23 PM by vhofman |
|
| CIDD | CIDD-010 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CIDD Response contains a SOAP based downloadResponse message of DSMLv2 batchRequest element type to send a response for a valid downloadRequest. | 14 | Section 3.1.7.3 | 11/8/23 3:45:32 PM by vhofman |
|
| CIDD | CIDD-011 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CIDD Response MUST contain the requestID to associate it to the corresponding CH:CIDD Request. | 14 | Section 3.1.7.2.3 | 11/8/23 3:45:41 PM by vhofman |
|
| CIDD | CIDD-012 | reviewed | Testable |
0
|
0
| We don't test the CPI Provider as a SUT | The CH:CPI Provider MUST ensure that the following main elements are mutually exclusive within the CH:CIDD Response. | 14 | Section 3.1.7.2.3 | 11/8/23 3:45:48 PM by vhofman |
|