@prefix fhir: . @prefix owl: . @prefix rdfs: . @prefix xsd: . # - resource ------------------------------------------------------------------- a fhir:Basic ; fhir:nodeRole fhir:treeRoot ; fhir:id [ fhir:v "us-core-req-security"] ; # fhir:text [ fhir:status [ fhir:v "generated" ] ; fhir:div "

These requirements reference http://hl7.org/fhir/us/core/STU4/security.html

These requirements apply to the following actors:

Statements

us-core-req-security-01SHALL

Systems SHALL establish a risk analysis and management regime that conforms with HIPAA security regulatory requirements.

\n
us-core-req-security-01-aSHOULD

In addition US Federal systems SHOULD conform with the risk management and mitigation requirements defined in NIST 800 series documents. This SHOULD include security category assignment in accordance with NIST 800-60 vol. 2 Appendix D.14. The coordination of risk management and the related security and privacy controls – policies, administrative practices, and technical controls – SHOULD be defined in the Business Associate Agreement when available.

\n

Links:

us-core-req-security-02SHALL

Systems SHALL reference a single time source to establish a common time base for security auditing, as well as clinical data records, among computing systems.

\n
us-core-req-security-02-aSHOULD

The selected time service SHOULD be documented in the Business Associate Agreement when available.

\n

Links:

us-core-req-security-03SHALL

Systems SHALL keep audit logs of the various transactions.

\n
us-core-req-security-04SHALL

Systems SHALL use TLS version 1.2 or higher for all transmissions not taking place over a secure network connection. (Using TLS even within a secured network environment is still encouraged to provide defense in depth.)

\n
us-core-req-security-04-aSHOULD

US Federal systems SHOULD conform with FIPS PUB 140-2.

\n

Links:

us-core-req-security-05SHALL

Systems SHALL conform to FHIR Communications Security requirements.

\n
us-core-req-security-06SHALL

For Authentication and Authorization, Systems SHALL support the SMART App Launch Framework for client <-> server interactions. NOTE: The SMART on FHIR specifications include the required OAuth 2.0 scopes for enabling security decisions.

\n
us-core-req-security-07SHALL

Systems SHALL implement consent requirements per their state, local, and institutional policies.

\n
us-core-req-security-07-aSHOULD

The Business Associate Agreements SHOULD document systems mutual consent requirements.

\n

Links:

us-core-req-security-08SHOULD

Systems SHOULD provide Provenance statements using the US Core Provenance Profile resource and associated requirements.

\n
us-core-req-security-09MAY

Systems MAY implement the FHIR Digital Signatures and provide feedback on its appropriateness for US Core transactions.

\n
us-core-req-security-10MAY

Systems MAY protect the confidentiality of data at rest via encryption and associated access controls. The policies and methods used are outside the scope of this specification.

\n
" ] ; # fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.url"^^xsd:anyURI ] ; fhir:value [ fhir:v "http://hl7.org/fhir/us/core-tg/Requirements/us-core-req-security"^^xsd:anyURI ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.version"^^xsd:anyURI ] ; fhir:value [ fhir:v "4.0.0-1" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.name"^^xsd:anyURI ] ; fhir:value [ fhir:v "USCoreReqSecurity" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.title"^^xsd:anyURI ] ; fhir:value [ fhir:v "US Core 4.0.0 Requirements for US Core General Security Considerations" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.status"^^xsd:anyURI ] ; fhir:value [ fhir:v "draft" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.date"^^xsd:anyURI ] ; fhir:value [ fhir:v "2023-08-25"^^xsd:date ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.publisher"^^xsd:anyURI ] ; fhir:value [ fhir:v "HL7 FHIR Infrastructure WG" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.contact"^^xsd:anyURI ] ; fhir:value [ a fhir:ContactDetail ; fhir:name [ fhir:v "HL7 FHIR Infrastructure WG" ] ; fhir:telecom ( [ fhir:system [ fhir:v "url" ] ; fhir:value [ fhir:v "https://hl7.org/Special/committees/fiwg" ] ] ) ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.contact"^^xsd:anyURI ] ; fhir:value [ a fhir:ContactDetail ; fhir:name [ fhir:v "Richard Ettema" ] ; fhir:telecom ( [ fhir:system [ fhir:v "email" ] ; fhir:value [ fhir:v "mailto:richard.ettema@aegis.net" ] ] ) ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.description"^^xsd:anyURI ] ; fhir:value [ fhir:v "**Patient Privacy and Security**

US Core transactions often use patient-specific information, which could be exploited by malicious actors resulting in the exposure of patient data. For this reason, all US Core transactions must be secured appropriately with access to limited authorized individuals, data protected in transit, and appropriate audit measures taken.

Implementers **SHOULD** be aware of these [security considerations](http://hl7.org/fhir/R4/security.html) associated with FHIR transactions, particularly those related to:

* [Communications](http://hl7.org/fhir/R4/security.html#http)
* [Authentication](http://hl7.org/fhir/R4/security.html#authentication)
* [Authorization/Access Control](http://hl7.org/fhir/R4/security.html#authorization/access%20control)
* [Audit Logging](http://hl7.org/fhir/R4/security.html#audit%20logging)
* [Digital Signatures](http://hl7.org/fhir/R4/security.html#digital%20signatures)
* [Security Labels](http://hl7.org/fhir/R4/security-labels.html)
* [Narrative](http://hl7.org/fhir/R4/security.html#narrative)

**Clinical Safety**

When implementing FHIR and US Core, implementers need to be aware of the risks and tradeoffs and are encouraged to review the [clinical safety](http://hl7.org/fhir/R4/safety.html) section in the core specification." ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.jurisdiction"^^xsd:anyURI ] ; fhir:value [ a fhir:CodeableConcept ; fhir:coding ( [ fhir:system [ fhir:v "urn:iso:std:iso:3166"^^xsd:anyURI ] ; fhir:code [ fhir:v "US" ] ] ) ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.reference"^^xsd:anyURI ] ; fhir:value [ fhir:v "http://hl7.org/fhir/us/core/STU4/security.html"^^xsd:anyURI ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.actor"^^xsd:anyURI ] ; fhir:value [ fhir:v "http://hl7.org/fhir/us/core-tg/ActorDefinition/us-core-requestor"^^xsd:anyURI ; fhir:link ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.actor"^^xsd:anyURI ] ; fhir:value [ fhir:v "http://hl7.org/fhir/us/core-tg/ActorDefinition/us-core-responder"^^xsd:anyURI ; fhir:link ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-01" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-01" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** establish a risk analysis and management regime that conforms with HIPAA security regulatory requirements." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-01-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-01-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHOULD" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "In addition US Federal systems **SHOULD** conform with the risk management and mitigation requirements defined in NIST 800 series documents. This **SHOULD** include security category assignment in accordance with NIST 800-60 vol. 2 Appendix D.14. The coordination of risk management and the related security and privacy controls – policies, administrative practices, and technical controls – **SHOULD** be defined in the Business Associate Agreement when available." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-02" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-02" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** reference a single time source to establish a common time base for security auditing, as well as clinical data records, among computing systems." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-02-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-02-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHOULD" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "The selected time service **SHOULD** be documented in the Business Associate Agreement when available." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-03" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-03" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** keep audit logs of the various transactions." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-04" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-04" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** use TLS version 1.2 or higher for all transmissions not taking place over a secure network connection. (Using TLS even within a secured network environment is still encouraged to provide defense in depth.)" ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-04-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-04-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHOULD" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "US Federal systems **SHOULD** conform with FIPS PUB 140-2." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-05" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-05" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** conform to [FHIR](http://hl7.org/fhir/R4/security.html#http) Communications Security requirements." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-06" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-06" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "For Authentication and Authorization, Systems **SHALL** support the [SMART App Launch Framework](http://www.hl7.org/fhir/smart-app-launch/history.cfml) for client <-> server interactions. NOTE: The SMART on FHIR specifications include the required OAuth 2.0 scopes for enabling security decisions." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-07" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-07" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHALL" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHALL** implement consent requirements per their state, local, and institutional policies." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-07-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-07-a" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHOULD" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "The Business Associate Agreements **SHOULD** document systems mutual consent requirements." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-08" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-08" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "SHOULD" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **SHOULD** provide Provenance statements using the [US Core Provenance Profile](http://hl7.org/fhir/us/core/STU4/StructureDefinition-us-core-provenance.html) resource and associated requirements." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-09" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-09" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "MAY" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **MAY** implement the [FHIR Digital Signatures](http://hl7.org/fhir/R4/security.html#digital%20signatures) and provide feedback on its appropriateness for US Core transactions." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] [ fhir:extension ( [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-10" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label"^^xsd:anyURI ] ; fhir:value [ fhir:v "us-core-req-security-10" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.conformance"^^xsd:anyURI ] ; fhir:value [ fhir:v "MAY" ] ] [ fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement"^^xsd:anyURI ] ; fhir:value [ fhir:v "Systems **MAY** protect the confidentiality of data at rest via encryption and associated access controls. The policies and methods used are outside the scope of this specification." ] ] ) ; fhir:url [ fhir:v "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"^^xsd:anyURI ] ] ) ; # fhir:code [ fhir:coding ( [ fhir:system [ fhir:v "http://hl7.org/fhir/fhir-types"^^xsd:anyURI ] ; fhir:code [ fhir:v "Requirements" ] ] ) ] . # # -------------------------------------------------------------------------------------