Presentation is loading. Please wait.

Presentation is loading. Please wait.

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.

Published byLanden Worstell Modified over 10 years ago

Similar presentations

Presentation on theme: "Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University."— Presentation transcript:

1 Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University

2 What is a HIPAA requirement? Health Insurance Portability and Accountability Act is a set of established federal standards, implemented through a combination of administrative, physical and technical safeguards, intended to ensure the security and privacy of PHI. HIPAA covers protected health information (PHI) which is any information regarding an individuals physical or mental health, the provision of healthcare to them, or payment of related services.

3 HIPPAs Privacy & Security Rules HIPAAs Privacy Rule requires that individuals health information is properly protected by covered entities. the privacy rule prohibits entities from transmitting PHI over open networks or downloading it to public or remote computers without encryption. The Security Rule requires covered entities to put in place detailed administrative, physical and technical safeguards to protect electronic PHI. To do this, covered entities are required to implement access controls, encrypt data, and set up back-up and audit controls for electronic PHI in a manner commensurate with the associated risk.

4 AWSs Goal Healthcare businesses subject to HIPAA can utilize the secure, scalable, low-cost, IT infrastructure provided by Amazon Web Services (AWS) as part of building HIPAA compliant applications. Amazon Elastic Compute Cloud (Amazon EC2) provides resizable compute capacity in the cloud. Amazon Simple Storage Service (Amazon S3) provides a virtually unlimited cloud-based data object store.

5 Methodology - Privacy Controls: Encrypting Data in the Cloud Encrypting data in the cloud - encryption of all PHI in transmission (in-flight) and in storage (at-rest). During electronic transmission, files containing PHI should be encrypted using technologies such as 256 bit AES algorithms. Amazon EC2 provides the customer with full root access and administrative control over virtual servers. Using AWS, customers system administrators can utilize token or key-based authentication, command-line shell interface, Secure Shell (SSH) keys to access their virtual servers. when sending data to Amazon S3 for short term or long term storage, we should encrypt data before transmission. Amazon S3 can be accessed via Secure Socket Layer (SSL)- encrypted endpoints over the Internet and from within Amazon EC2. This ensures that PHI and other sensitive data remain highly secure.

6 Security Controls: High-Level Data Protection For Amazon EC2, AWS employees do not look at customer data, do not have access to customer EC2 instances, and cannot log into the guest operating system. AWS internal security controls limit data access. in few cases of customer-requested maintenance, select AWS employees use their individual, cryptographically- strong SSH keys to gain access to the host (as opposed to the guest) operating system and it requires two-factor authentication.

7 Access Control Processes Using Amazon EC2, SSH network protocols can be used to authenticate remote users or computers through public-key cryptography. The administrator can also allow or block access at the account or instance level and can set security groups, which restrict network access from instances not residing in that same group. In Amazon S3, The system administrator maintains full control over who has access to the data at all times and the default setting only permits authenticated access to the creator. Read, write and delete permissions are controlled by an Access Control List (ACL) associated with each object.

8 Auditing, Back-Ups, & Disaster Recovery Using Amazon EC2, customers can run activity log files and audits down to the packet layer on their virtual servers. Customers administrators can back up the log files into Amazon S3 for long-term, reliable storage. To implement a data back-up plan on AWS, Amazon Elastic Block Store (EBS) offers persistent storage for Amazon EC2 virtual server instances. By loading a file or image into Amazon S3, multiple redundant copies are automatically created and stored in separate data centers that is a solution for data storage and automated back-ups.

9 Conclusion Amazon Web Services (AWS) provides a reliable, scalable, and inexpensive computing platform in the cloud that can be used to facilitate healthcare customers HIPAA- compliant applications. Amazon EC2 offers a flexible computing environment with root access to virtual machines and the ability to scale computing resources up or down depending on demand. Amazon S3 offers a simple, reliable storage infrastructure for data, images, and back-ups. These services change the way organizations deploy, manage, and access computing resources by utilizing simple API calls and pay-as-you-use pricing.

Download ppt "Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University."

Similar presentations

Pros and Cons of Cloud Computing Professor Kam-Fai Wong Faculty of Engineering The Chinese University of Hong Kong.

Pros and Cons of Cloud Computing Professor Kam-Fai Wong Faculty of Engineering The Chinese University of Hong Kong.
Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
Ivan Pleština Amazon Simple Storage Service (S3) Amazon Elastic Block Storage (EBS) Amazon Elastic Compute Cloud (EC2)

Ivan Pleština Amazon Simple Storage Service (S3) Amazon Elastic Block Storage (EBS) Amazon Elastic Compute Cloud (EC2)
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.

© 2011 The McGraw-Hill Companies, Inc. All rights reserved. 2.5 HIPAA Legislation and its Impact on Physician Practices 2-15 The Health Insurance Portability.
Are you ready for HIPPO??? Welcome to HIPAA

Are you ready for HIPPO??? Welcome to HIPAA
 Group: GTR ver M  Grace Chen  Taru Singhal  Robert Szymanek  Michael Parker.

 Group: GTR ver M  Grace Chen  Taru Singhal  Robert Szymanek  Michael Parker.
1 NETE4631 Cloud deployment models and migration Lecture Notes #4.

1 NETE4631 Cloud deployment models and migration Lecture Notes #4.
Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.

Cloud Computing Brandon Hixon Jonathan Moore. Cloud Computing Brandon Hixon What is Cloud Computing? How does it work? Jonathan Moore What are the key.
Infrastructure as a Service (IaaS) Amazon EC2

Infrastructure as a Service (IaaS) Amazon EC2
An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.

An Approach to Secure Cloud Computing Architectures By Y. Serge Joseph FAU security Group February 24th, 2011.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Matt Bertrand Building GIS Apps in the Cloud. Infrastructure - Provides computer infrastructure, typically a platform virtualization environment, as a.

Matt Bertrand Building GIS Apps in the Cloud. Infrastructure - Provides computer infrastructure, typically a platform virtualization environment, as a.
Nikolay Tomitov Technical Trainer SoftAcad.bg.  What are Amazon Web services (AWS) ?  What’s cool when developing with AWS ?  Architecture of AWS 

Nikolay Tomitov Technical Trainer SoftAcad.bg.  What are Amazon Web services (AWS) ?  What’s cool when developing with AWS ?  Architecture of AWS 
Cloud Computing 1100101 (101).

Cloud Computing (101).
Presented by Sujit Tilak. Evolution of Client/Server Architecture Clients & Server on different computer systems Local Area Network for Server and Client.

Presented by Sujit Tilak. Evolution of Client/Server Architecture Clients & Server on different computer systems Local Area Network for Server and Client.
Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.

Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.
ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.

ELECTRONIC MEDICAL RECORDS By Group 5 members: Kinal Patel David A. Ronca Tolulope Oke.
Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.

Network Security. Trust Relationships (Trust Zones) High trust (internal) = f c (once you gain access); g p Low trust ( ) = more controls; fewer privileges.
Addition to Networking.  There is no unique and standard definition out there  Cloud Computing is a general term used to describe a new class of network.

Addition to Networking.  There is no unique and standard definition out there  Cloud Computing is a general term used to describe a new class of network.

Similar presentations

Ads by Google