Upload File

meditrust: secure client systems for healthcare it to protect sensitive data of patients

  • Home
  • Technology
  • MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients
17
Med-e-Tel 2011, The International eHealth, Telemedicine and Health ICT Forum Luxembourg, 6 - 8 April 2011 Biljana Cubaleska, Hans Löhr, Ahmad-Reza Sadeghi, Marcel Winandy Ruhr-University Bochum MediTrust Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients Ammar Alkassar, Christian Stüble Sirrix AG security technologies

Upload: marcel-winandy

Post on 12-Jun-2015

205 views

Category:

Technology


3 download

Report

Tags:

TRANSCRIPT

Page 1: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Med-e-Tel 2011, The International eHealth, Telemedicine and Health ICT Forum Luxembourg, 6 - 8 April 2011

Biljana Cubaleska, Hans Löhr, Ahmad-Reza Sadeghi, Marcel Winandy

Ruhr-University Bochum

MediTrust Secure Client Systems for Healthcare IT

to Protect Sensitive Data of Patients

Ammar Alkassar, Christian Stüble Sirrix AG security technologies

Page 2: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Simple E-Health Cloud

Page 3: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Advanced E-Health Cloud

Page 4: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Security Problem Areas

•  Data Storage and Processing -  Data centers: unauthorized information leakage

-  Platform security: vulnerable to malware

-  Mobile storage (USB memory sticks)

•  Infrastructure Management -  Cryptographic keys, certificates

-  Hardware / software components

•  Usability and User Experience -  Smartcard PIN (when unconscious?)

-  Time consuming

Page 5: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Platform Security (Server)

unauthorized access (read/modify)

Page 6: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Platform Security (Client)

unauthorized access (read/modify)

authorized download

Page 7: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

MediTrust: Project Goals •  Secure end-user platform

-  Protect medical data from unauthorized access/manipulation -  Secure separation of data of different workflows

•  Security infrastructure management -  Secure domains should span over several hardware nodes

-  Central and easy management entity

•  Usable security solution -  Transparent security protection

-  No overhead in the normal workflow

Page 8: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Building Privacy Domains

Page 9: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Technology

•  Security infrastructure: Trusted Virtual Domains -  TVD: coalition of trusted execution environments -  Transparent policy enforcement -  Secure communication

•  Client platform security: TURAYA.TrustedDesktop -  Security Kernel -  Implements TVD security model on local platforms -  Isolated compartments (virtualization) -  Uses Trusted Computing functionality (TPM)

Page 10: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

TVD Architecture

Hardware  

Turaya  Security  Kernel  

Security  Module  

VM  TVD  

Proxy  B  

TVD  B  

VM  

TVD  Proxy  A  

TVD  A  

TVD  Master  A  

Hardware  

Cred

Policy

Page 11: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

TURAYA.TrustedDesktop

Main Security Features: •  Full hard-disk encryption •  Secure networking •  Transparent file encryption •  Secure graphical user interface

Page 12: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Secure Networking

Page 13: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Transparent File Encryption

Page 14: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Transparent File Encryption

Page 15: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Transparent File Encryption

Page 16: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Transparent File Encryption

!  

Page 17: MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Conclusion & Outlook

•  Security infrastructure to protect sensitive data

•  Based on TVDs and TURAYA.TrustedDesktop

•  Field study (late 2011) -  20 users (health professionals) -  Analysis of effectiveness and usability

•  More information online:

MediTrust http://www.rubtrust-meditrust.de

Marcel Winandy [email protected]


Protect Yourself with Secure Business Faxing from eFax

secure information deter document leakage protect valuable information … · 2012-03-13 · imageWARE Secure Audit Manager Express protect your valuable information Capture data

Protect Sensitive Crops: Being a Good Neighbor

Easily Send Secure Email and Protect Your Data

Always-on security for always-on businesses. · 2018-10-29 · Protect sensitive data and privacy • Secure sensitive data and protect your business from data breaches, fines and

Secure Deduplication on Hybrid Cloud Storage with Key ...hybrid cloud approach for secure authorized deduplication[2], to protect the confidentiality of sensitive data with deduplication,

PROTECT PERSONAL AND SENSITIVE DATA THROUGH … · 2019. 12. 19. · PROTECT PERSONAL AND SENSITIVE DATA THROUGH AUTOMATED REMEDIATION PRIVACY AND SECURITY ARE NOT JUST IMPORTANT

Networks are sensitive. We help you to protect them.acm-bg.com/upl_doc/cablefaultlocation.pdf · Networks are sensitive. We help you to protect them. BAUR cable fault location. 2

) to protect sensitive personal data. Bona Fide family

Protect Your Sensitive Data - EM360 · Protect Your Sensitive Data - Guide Book 5 Files, Folders, and Shares If you have sensitive information located in files, folders, or shares

Configuring WebApp Secure to Protect Against Credential Attacks · 2014-09-22 · APPLICATION NOTE - Configuring WebApp Secure to Protect Against Credential Attacks Introduction Given

USING ENCRYPTION TO PROTECT SENSITIVE INFORMATION Cyber Security/Entrust.pdf• A cryptographic system is said to be ‘computationally secure’ if • The cost of breaking the encryption

Sage 100 ERP - NewGen Business SolutionsSage 100 ERP BENEFITS • Secure access to protect sensitive data • Track vacation, sick leave, and more • Enter memos to be printed on

Taking Action to Protect Sensitive Data

SECURE YOUR GROWTH - GTUG - PP... · 2018-11-07 · protect your data with tokenization According to Gartner Research, tokenization has emerged as a best practice for protecting sensitive

DISCOVER, MONITOR AND PROTECT YOUR SENSITIVE ...media.zones.com/images/pdf/Symantec Data Loss Prevention...DISCOVER, MONITOR AND PROTECT YOUR SENSITIVE INFORMATION Symantec Data Loss

Protect Sensitive Data from Prying Eyes…Protect Sensitive Data from Prying Eyes Data-centric best practices for safeguarding high-value data in the government LICENSED BY Throughout

Samsung Mobile / Citrix / SET YOUR WORKFORCE …...• Empower people to use their own device with secure, self-service apps and follow-me data. • Protect sensitive information from

Microsoft Security Virtual Training Day: Protect Sensitive

Healthcare Organizations Secure Sensitive Data and … · Healthcare Organizations Secure Sensitive Data and Expand Regulatory Compliance with Salesforce Event ... Originally bought

Building Secure Mobile Applications · 2020-01-17 · Top 10 Mobile Defenses 1 Identify and protect/erase sensitive data on the mobile device 2 Handle password credentials securely

Unshare and Secure Sensitive Data - Encrypt Everything eBook · Follow these steps to unshare and protect your sensitive data Start by identifying where your most sensitive data assets

Cloud Terminal: Secure Access to Sensitive Applications from

Control and secure sensitive data while empowering ... · PDF fileSolutions Brief Control and secure sensitive data while empowering business mobility with ShareFile Solve top financial

-Series Protect Moisture-Sensitive Equipment by Gas …€¦ · Protect Moisture-Sensitive Equipment by Selectively Drying Sample or Carrier Gas ... ModelNumber MD-050 MD-070 MD-110

How to secure your emails for sensitive docs

Malayan creates Card Protect to secure ATM users

Backflow contamination Protect your sensitive vacuum … · Backflow contamination Protect your sensitive vacuum process ... by oil liquid and vapour from ... oil will be either odour‐free

Research Article A Secure Storage System for Sensitive ...downloads.hindawi.com/journals/ijdsn/2015/929380.pdfResearch Article A Secure Storage System for Sensitive Data Protection

Protect Your Investment Secure Ride Appendices 04.26.11

A Secure Context-Sensitive File System determined within a

-Series Protect Moisture-Sensitive Equipment by Gas Dryers

Secure Sensitive Data With Mule Credentials Vault

Protect Your Sensitive Data with Gemalto Guidebook

Ultra-strong authentication to protect network ... - ESET · ESET Secure Authentication provides powerful authentication to make remote access to the company network and sensitive