DICOM PS3.15 2020c - Security and System Management Profiles

A.5.3.4 Data Export

This message describes the event of exporting data from a system, meaning that the data is leaving control of the system's security domain. Examples of exporting include printing to paper, recording on film, conversion to another format for storage in an EHR, writing to removable media, or sending via e-mail. Multiple patients may be described in one event message.

Table A.5.3.4-1. Audit Message for Data Export

Real World Entities

Field Name

Opt.

Value Constraints

Event

EventID

M

EV (110106, DCM, "Export")

EventActionCode

M

Shall be: R = Read

EventDateTime

M

not specialized

EventOutcomeIndicator

M

not specialized

EventTypeCode

U

not specialized

Active Participant:

Remote Users and Processes (0..n)

UserID

M

The identity of the remote user or process receiving the data

AlternativeUserID

U

not specialized

UserName

U

not specialized

UserIsRequestor

M

See Section A.5.3.4.1

RoleIDCode

M

EV (110152, DCM, "Destination Role ID")

NetworkAccessPointTypeCode

U

not specialized

NetworkAccessPointID

U

not specialized

Active Participant:

User or Process Exporting the data(1..2)

UserID

M

The identity of the local user or process exporting the data. If both are known, then two active participants shall be included (both the person and the process).

AlternativeUserID

U

not specialized

UserName

U

not specialized

UserIsRequestor

M

See Section A.5.3.4.1

RoleIDCode

M

EV (110153, DCM, "Source Role ID")

NetworkAccessPointTypeCode

U

not specialized

NetworkAccessPointID

U

not specialized

Active Participant:

Media (1)

UserID

M

See Section A.5.2.3

AlternativeUserID

U

See Section A.5.2.4

UserName

U

not specialized

UserIsRequestor

M

Shall be FALSE

RoleIDCode

M

EV (110154, DCM, "Destination Media")

NetworkAccessPointTypeCode

MC

Required if being exported to other than physical media, e.g., to a network destination rather than to film, paper or CD. May be present otherwise.

NetworkAccessPointID

MC

Required if Net Access Point Type Code is present. May be present otherwise.

MediaIdentifier

MC

Volume ID, URI, or other identifier for media.

Required if digital media. May be present otherwise.

MediaType

M

Values selected from DCID 405 “Media Type Code”

Participating Object:

Studies (0..N)

ParticipantObjectTypeCode

M

Shall be: 2 = system

ParticipantObjectTypeCodeRole

M

Shall be: 3 = report

ParticipantObjectDataLifeCycle

U

not specialized

ParticipantObjectIDTypeCode

M

EV (110180, DCM, "Study Instance UID")

ParticipantObjectSensitivity

U

not specialized

ParticipantObjectID

M

The Study Instance UID

ParticipantObjectName

U

not specialized

ParticipantObjectQuery

U

not specialized

ParticipantObjectDetail

U

not specialized

ParticipantObjectDescription

U

not specialized

SOPClass

MC

See Table A.5.2-1

Accession

U

not specialized

NumberOfInstances

U

not specialized

Instances

U

not specialized

Encrypted

U

not specialized

Anonymized

U

not specialized

Participating Object:

Patients (1..N)

ParticipantObjectTypeCode

M

Shall be: 1 = person

ParticipantObjectTypeCodeRole

M

Shall be: 1 = patient

ParticipantObjectDataLifeCycle

U

not specialized

ParticipantObjectIDTypeCode

M

Shall be: EV (2, RFC-3881, "Patient Number")

ParticipantObjectSensitivity

U

not specialized

ParticipantObjectID

M

The patient ID

ParticipantObjectName

U

The patient name

ParticipantObjectQuery

U

not specialized

ParticipantObjectQuery

U

not specialized

ParticipantObjectDetail

U

not specialized

ParticipantObjectDescription

U

not specialized


A.5.3.4.1 UserIsRequestor

A single user (either local or remote) shall be identified as the requestor, i.e., UserIsRequestor with a value of TRUE. This accommodates both push and pull transfer models for media.

DICOM PS3.15 2020c - Security and System Management Profiles