WHO SMART Trust
1.1.6 - CI Build
WHO SMART Trust
1.1.6 - CI Build
WHO SMART Trust, published by WHO. This guide is not an authorized publication; it is the continuous build for version 1.1.6 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/WorldHealthOrganization/smart-trust/tree/main and changes regularly. See the Directory of published versions
Contents:
This page provides a list of the FHIR artifacts defined as part of this implementation guide.
The following artifacts define the types of individuals and/or systems that will interact as part of the use cases covered by this implementation guide.
| Holder |
A Holder is an individual that has Verifiable Digtial Health Certificate in their possesion, received from an Issuer. The Holder may choose to share the Verifiable Digital Health Certificate with a Receiver. |
| Issuer |
An Issuer a system authorized by a Trust Network Participant to generate Verifiable Digital Health Certificates which are provided to a Holder. An Issuer is responsible for generating the content that is digitally signed within the Verifiable Digital Health Certificate. In order to sign this content, an Issuer should either itself be a Document Signer or utilize a Document Signer service, as authorized by the jurisdicitonal policy. |
| Receiver |
A Reciever is a system authorized by a Trust Network Participant to receive from a Holder a Veritifable, verify and utilize the content within. |
| Trust Network Anchor |
Trust Anchor which receives and distributes PKI-material within a Trust Network |
| Trust Network Participant |
Trust Network Participant which publishes and or receives PKI-material within a Trust Network |
The following artifacts describe the specific requirements to be met by systems compliant with the implementation guide.
| Distribute CertLogic business rules |
Make received CertLoigc business rules available through a distrubution point to a Receiver |
| Distribute FHIR business rules |
Make received business rules available through a distrubution point to a Receiver through HL7 FHIR standards |
| Distribute PKI material |
Make received trust material available through a distrubution point to a Trust Network Participant |
| Distribute PKI material as DID |
Make received trust material available through a distrubution point to a Trust Network Participant as DID |
| Distribute PKI material via API |
Make received trust material available through a distrubution point to a Trust Network Participant via API |
| Distribute business rules |
Make received business rules available through a distrubution point to a Receiver |
| Issue Verifiable Digital Health Certificate |
Issue a Verifiable Digital Health Certificate to a Holder |
| Provide Verifiable Digital Health Certificate |
Provide a Verifiable Digital Health Certificate to a Receiver |
| Publish Cert Logic business rules |
Publish Cert Logic business rules to a Trust Anchor |
| Publish HL7 FHIR business rules |
Publish business rules to a Trust Anchor using HL7 FHIR |
| Publish PKI material |
Publish trust material to a Trust Anchor |
| Publish PKI material as DID |
Publish trust material to a Trust Anchor as DID |
| Publish PKI material via API |
Publish trust material to a Trust Anchor via API |
| Publish business rules |
Publish business rules to a Trust Anchor |
| Receive CertLogic business rules |
Receive CertLogic business rules from a Trust Network Participant, for distribution within the Trust Network |
| Receive HL7 FHIR business rules |
Receive business rules from a Trust Network Participant, for distribution within the Trust Network using HL7 FHIR standard |
| Receive PKI material |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network |
| Receive PKI material as DID |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network as DID |
| Receive PKI material via API |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network via API |
| Receive Verifiable Digital Health Certificate |
Receive a Verifiable Digital Health Certificate from an Issuer |
| Receive business rules |
Receive business rules from a Trust Network Participant, for distribution within the Trust Network |
| Request Verifiable Digital Health Certificate |
Request a Verifiable Digital Health Certificate from an Issuer |
| Retrieve Cert Logic compatible business rules |
Retrieve Cert Logic business rules from a distribution point |
| Retrieve HL7 FHIR compatible business rules |
Retrieve business rules from a distribution point using HL7 FHIR standards |
| Retrieve PKI material |
Retrieve PKI material from a distribution point |
| Retrieve PKI material as DID |
Retrieve PKI material from a distribution point as DID |
| Retrieve PKI material via API |
Retrieve PKI material from a distribution point via API |
| Retrieve business rules |
Retrieve business rules from a distribution point using |
| Utilize a Verifiable Digital Health Certificate |
Utilize a Verifiable Digital Health Certificate that was provided by a Holder |
These define data models that represent the domain covered by this implementation guide in more business-friendly terms than the underlying FHIR resources.
| CBOR Web Token (CWT) Claim |
Logical Model for Data elements in CBOR Web Token (CWT) https://www.iana.org/assignments/cwt/cwt.xhtml |
| CBOR Web Token (CWT) Payload (Common) |
Logical Model for CBOR Web Token (CWT) Payload Logical Modelin CWT Payload https://www.iana.org/assignments/cwt/cwt.xhtml |
| COSE Headers (DRAFT) |
Data elements for COSE Headers https://www.iana.org/assignments/cose/cose.xhtml#header-parameters |
| Health Certificate |
Logical Model for the HCERT |
| Scheme Information |
Logical Model for Information on the trusted list and its issuing scheme |
These define sets of codes used by systems conforming to this implementation guide.
| WHO GDHCN Key Usage ValueSet |
ValueSet of codes for key usage codes |
| WHO GDHCN Actor ValueSet of actor codes |
ValueSet of codes for actor codes |
| WHO GDHCN Connection Types |
ValueSet of GDHCN Trust Network Connection Types |
| WHO GDHCN Payload Types |
ValueSet of GDHCN Trust Network Payload Types |
| WHO GDHCN Transaction Codes |
ValueSet of WHO GDHCN Transaction Codes |
| WHO GDHCN Trust Domains |
ValueSet of WHO GDHCN Trust Domains |
| WHO GDHCN Trust Network Participant |
ValueSet of GDHCN Trust Network Participants |
These define new code systems used by systems conforming to this implementation guide.
| WHO GDHCN Connection Types |
CodeSystem for GDHCN connection types |
| WHO GDHCN Key Usage CodeSystem |
CodeSystem for GDHCN Key Usage that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Payload Types |
CodeSystem for GDHCN Payload types |
| WHO GDHCN Transactions CodeSystem |
CodeSystem for GDHCN transactions that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Trust Actors CodeSystem |
CodeSystem for SMART Trust actors that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Trust Domains |
CodeSystem for define WHO GDHCN Trust Domains. |
| WHO GDHCN Trust Network Participants CodeSystem |
CodeSystem for GDHCN Trust Network Participants which are not already included in the ISO-3166 three letter code system |
| WHO RefMart Jurisidiction List |
CodeSystem for WHO Refmart Country and Jurisidiction List available at https://xmart-api-public.who.int/REFMART/REF_COUNTRY |
These are resources that are used within this implementation guide that do not fit into one of the other categories.