MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients

Post on 12-Jun-2015

205 views 3 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

transcript

Med-e-Tel 2011, The International eHealth, Telemedicine and Health ICT Forum Luxembourg, 6 - 8 April 2011

Biljana Cubaleska, Hans Löhr, Ahmad-Reza Sadeghi, Marcel Winandy

Ruhr-University Bochum

MediTrust Secure Client Systems for Healthcare IT

to Protect Sensitive Data of Patients

Ammar Alkassar, Christian Stüble Sirrix AG security technologies

Simple E-Health Cloud

Advanced E-Health Cloud

Security Problem Areas

•  Data Storage and Processing -  Data centers: unauthorized information leakage

-  Platform security: vulnerable to malware

-  Mobile storage (USB memory sticks)

•  Infrastructure Management -  Cryptographic keys, certificates

-  Hardware / software components

•  Usability and User Experience -  Smartcard PIN (when unconscious?)

-  Time consuming

Platform Security (Server)

unauthorized access (read/modify)

Platform Security (Client)

unauthorized access (read/modify)

authorized download

MediTrust: Project Goals •  Secure end-user platform

-  Protect medical data from unauthorized access/manipulation -  Secure separation of data of different workflows

•  Security infrastructure management -  Secure domains should span over several hardware nodes

-  Central and easy management entity

•  Usable security solution -  Transparent security protection

-  No overhead in the normal workflow

Building Privacy Domains

Technology

•  Security infrastructure: Trusted Virtual Domains -  TVD: coalition of trusted execution environments -  Transparent policy enforcement -  Secure communication

•  Client platform security: TURAYA.TrustedDesktop -  Security Kernel -  Implements TVD security model on local platforms -  Isolated compartments (virtualization) -  Uses Trusted Computing functionality (TPM)

TVD Architecture

Hardware  

Turaya  Security  Kernel  

Security  Module  

VM  TVD  

Proxy  B  

TVD  B  

VM  

TVD  Proxy  A  

TVD  A  

TVD  Master  A  

Hardware  

Cred

Policy

TURAYA.TrustedDesktop

Main Security Features: •  Full hard-disk encryption •  Secure networking •  Transparent file encryption •  Secure graphical user interface

Secure Networking

Transparent File Encryption

Transparent File Encryption

Transparent File Encryption

Transparent File Encryption

!  

Conclusion & Outlook

•  Security infrastructure to protect sensitive data

•  Based on TVDs and TURAYA.TrustedDesktop

•  Field study (late 2011) -  20 users (health professionals) -  Analysis of effectiveness and usability

•  More information online:

MediTrust http://www.rubtrust-meditrust.de

Marcel Winandy marcel.winandy@trust.rub.de

Top related

Protect Your Investment Secure Ride Appendices 04.26.11.
Documents
Research Article A Secure Storage System for Sensitive ...downloads.hindawi.com/journals/ijdsn/2015/929380.pdfResearch Article A Secure Storage System for Sensitive Data Protection
Documents
Control and secure sensitive data while empowering ... · PDF fileSolutions Brief Control and secure sensitive data while empowering business mobility with ShareFile Solve top financial
Documents
Cloud Terminal: Secure Access to Sensitive Applications from
Documents
Brochure Title written Protect your in Stag Medium sensitive data … · Protect your sensitive data from external and internal threats Next Generation Data Protection • Intellectual
Documents
Protect Your Sensitive Data - EM360 · Protect Your Sensitive Data - Guide Book 5 Files, Folders, and Shares If you have sensitive information located in files, folders, or shares
Documents
-Series Protect Moisture-Sensitive Equipment by Gas …€¦ · Protect Moisture-Sensitive Equipment by Selectively Drying Sample or Carrier Gas ... ModelNumber MD-050 MD-070 MD-110
Documents
Building Secure Mobile Applications · 2020-01-17 · Top 10 Mobile Defenses 1 Identify and protect/erase sensitive data on the mobile device 2 Handle password credentials securely
Documents
Cloud Terminal: Secure Access to Sensitive Applications - Usenix
Documents
Protect Your Investment Secure Ride 04.07.14. Protect Your Investment Secure Ride 04.07.14 2.
Documents
Attestation of Compliance · protect sensitive data including but not limited to cardholder data. It also demonstrates our commitment to our customers who rely on Akamai’s Secure
Documents
Cloud Terminal: Secure Access to Sensitive Applications from ...
Documents
Healthcare Organizations Secure Sensitive Data and … · Healthcare Organizations Secure Sensitive Data and Expand Regulatory Compliance with Salesforce Event ... Originally bought
Documents
Secure Sensitive Data With Mule Credentials Vault
Software
Unshare and Secure Sensitive Data - Encrypt Everything eBook · Follow these steps to unshare and protect your sensitive data Start by identifying where your most sensitive data assets
Documents
Microsoft Security Virtual Training Day: Protect Sensitive ...
Documents
Protect Your Investment Secure Ride 07.19.11. Protect Your Investment Secure Ride 07.19.11 2.
Documents
Ultra-strong authentication to protect network access and ... · ESET Secure Authentication provides powerful authentication to make remote access to the company network and sensitive
Documents
Protect Sensitive Data from Prying Eyes…Protect Sensitive Data from Prying Eyes Data-centric best practices for safeguarding high-value data in the government LICENSED BY Throughout
Documents
GAO-16-194T, Information Security: Federal Agencies Need to Better Protect Sensitive … · 2015. 11. 17. · Better Protect Sensitive Data Statement of Joel C. Willemssen, Managing
Documents

Copyright © 2018 DOCUMENTS