tclouds t paa_s_developer_final
TRANSCRIPT
![Page 1: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/1.jpg)
TClouds No. 257243Trustworthy Clouds - Privacy and Resilience for Internet-scale Critical Infrastructure
The Trustworthy Healthcare Information Management
Platform
![Page 2: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/2.jpg)
Outline The Trustworthy Healthcare Information
Management Platform– Description of the Healthcare platform– Built on top of TClouds
Background– State of the art in clouds solutions– TClouds solution
• Brief description of cloud issues addressed
![Page 3: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/3.jpg)
The Trustworthy Healthcare Information Management Platform– Description of the Healthcare platform– Built on top of TClouds
Background– State of the art in clouds solutions– TClouds solution
• Brief description of cloud issues addressed
Outline
![Page 4: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/4.jpg)
Trustworthy Healthcare Platform
It is a system that runs 24/7 over the InternetWhat is it – health platform
![Page 5: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/5.jpg)
Trustworthy Healthcare Platform
It is a system that runs 24/7 over the Internet PCs, smartphones and devices can connect to it and exchange
health information
What is it – health platform
![Page 6: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/6.jpg)
Trustworthy Healthcare Platform
Usages– Users and patients can use it for
• Manage a condition
What is it – health platform
![Page 7: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/7.jpg)
Trustworthy Healthcare Platform
Usages– Users and patients can use it for
• Manage a condition• Take charge of your fitness and general health
What is it – health platform
![Page 8: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/8.jpg)
Trustworthy Healthcare Platform
Usages– Users and patients can use it for
• Manage a condition• Take charge of your fitness and general health• Take care of family members or dear friends
What is it – health platform
![Page 9: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/9.jpg)
Trustworthy Healthcare Platform
What is it – health platform Storing data
– By using the health platform users have acess all their health records in one single place.
![Page 10: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/10.jpg)
Trustworthy Healthcare Platform
Storing data– By using the health platform users have acess all their health records
in one single place.
That is,data can be generated either
by hospitals or directly by users.
Everything goes in the sameplace under users’ control
What is it – health platform
![Page 11: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/11.jpg)
Trustworthy Healthcare Platform
Applications and devices– Data can be easily uploaded into the platform in various ways through
the use of specific applications and devices.
What is it – health platform
![Page 12: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/12.jpg)
Trustworthy Healthcare Platform
Applications and devices– There are application for any needs
• Some give the ability to analyze user data• Some allow to make cross check among different sources• Some allow doctor to save/get important clinical records related to other users• …
– Threre are devices for any needs• To monitor blood pressure• To records running time• To track weight• …
What is it – health platform
![Page 13: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/13.jpg)
Sharing data– Users are in total control of their data.– Users can decide to share their health information to anyone they choose,
whenever they like• Their doctor• A family member• A dear friend• The personal trainer
What is it – health platform
Trustworthy Healthcare Platform
![Page 14: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/14.jpg)
Sharing data & security– Sharing can be done throught specific privacy policies– Allows users a fine grinded control of their health information
What is it – health platform
Trustworthy Healthcare Platform
![Page 15: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/15.jpg)
Sharing data & security– Users can also Audit their dataset– Users have the ability to know who has accessed to their health information,
when and why– Providing to users all the tools they need to promptly take the right counter-
reaction in case of abuse of their data usage.
What is it – health platform
Trustworthy Healthcare Platform
![Page 16: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/16.jpg)
The Trustworthy Healthcare Information Management Platform– Description of the Healthcare platform– Built on top of TClouds
Background– State of the art in clouds solutions– TClouds solution
• Brief description of cloud issues addressed
Outline
![Page 17: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/17.jpg)
PHR
EHRUsers & policies
Sharing Privacy Policy layer
Social Layer
AccountManagement
InterfaceHealth devices
Mobile/web/Desktop health
apps
Secure connection
API - App connector
What is it – health platform Developers API and tools
– Developers can access to user data through an easy-to-use REST interface
– All data in transit is encrypted– Applications needs to be properly registered into the platform in order
to work– Users needs to provide access privacy policy to the apps they want to
use
![Page 18: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/18.jpg)
Trustworthy Healthcare Platform
Security– It is built on top of TClouds technology that makes it extremely
difficult to an attacker to sabotage the Healthcare Platform
What is it – health platform
![Page 19: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/19.jpg)
Trustworthy Healthcare Platform
Security– It is built on top of TClouds technology that makes it extremely
difficult to an attacker to sabotage the Healthcare Platform• And even if in an unfortunate event, the attacker reaches the data. It is
unrecognizable since decryption keys are not stored within the platform itself
è@#ù+*+]=ed34rcw4353*???
What is it – health platform
![Page 20: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/20.jpg)
Trustworthy Healthcare Platform
Security– It is built on top of TClouds technology that makes it extremely
difficult to an attacker to sabotage the Healthcare Platform• And even if in an unfortunate event, the attacker reaches the data. It is
unrecognizable since decryption keys are not stored within the platform itself
è@#ù+*+]=ed34rcw4353*???
Security is brought to an extra level and givesall the safety you need to store all your healthinformation.
What is it – health platform
![Page 21: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/21.jpg)
The Trustworthy Healthcare Information Management Platform– Description of the Healthcare platform– Built on top of TClouds
Background– State of the art in clouds solutions– TClouds solution
• Brief description of cloud issues addressed
Outline
![Page 22: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/22.jpg)
You are probably familiar with many commodity clouds such as
![Page 23: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/23.jpg)
Many companies are attracted to move to the cloud because– appealing business model (Pay Per Use)– Reduced set-up and maintenance costs– Reduced in-house IT resources– Increase flexibility– …
BUT….
![Page 24: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/24.jpg)
How about trust?– This is the main friction that slow down cloud adoption– People is scared to move to the cloud
• Fear to lose access their data– Introduce isolation failure– Potential increase of insider fraud (because you are not responsible to
recruit the IT people– Perceived less resiliancy of systems
• Fear to lose control of data– Permanent deletion policies– Potential reduction of governance– Potential lack of compliances (eg. HIPAA)– Lack of accountability– Lack of transparency– Lack of data protection (eg: encryption, key mgt, data value concentration,
data isolation in a shared environment)
• Fear of vendor lock-in
![Page 25: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/25.jpg)
The Trustworthy Healthcare Information Management Platform– Description of the Healthcare platform– Built on top of TClouds
Background– State of the art in clouds solutions– TClouds solution
• Brief description of cloud issues addressed
Outline
![Page 26: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/26.jpg)
The TClouds solution Uses techniques that allows reduction of
data loss– In terms of
• Reduction of isolation failures: Virtual Machines that share the same HW cannot access each other’s data.
– Data is encryted and keys are not in the same host– VMs are logically divided at hipervisor level throught Trusted
Virtual Domains techniques– VMs are deployed with a user requirements file that allows to
choose whether share the HW with certain companies or not (eg. Philips’ VMs can run on HW different from the one used by IBM and vice-versa)
• Reduction of insider fraud: an internal attacker experiences bad days discovering that everything is encrpted (even running VMs)
• Increase of resiliency of the system– Aims to guarantee 100% uptime at Terms of Service level
![Page 27: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/27.jpg)
Uses techniques that allows to increase data control– In terms of
• Data governance: – Data is always encrypted and keys are stored in different locations– Data is stored in such a way that even in case of steal it is not possible
to get all the entire data but only a scrumbled portion of it.– Malicious insider can’t outage the system at hipervisor level
• Easier control and assessment of compliances by Cloud owner
– Easier for VM owner to impose high-level requirement such as standard compliances (eg: HIPAA/ISO)
• More transparency– Logging is built in into the hipervisor and log events are tightly coupled
among them to invalidate any attempt to remove the attacker footsteps.
• High standard of data protection– Encryption is done either to stored data and to running Virtual
Machines. – Encryption keys are stored in separate locations– Reduction of data value concentration per Hardware resource– High data isolation at hipervisor level in a shared hardware
The TClouds solution
![Page 28: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/28.jpg)
Uses techniques that decreases vendor lock-in– TClouds is based on Open Source technologies– Cloud owner can provide cancellation data and
return service
The TClouds solution
![Page 29: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/29.jpg)
THANKS FOR YOUR ATTENTION
For more information please contact:[email protected]
TClouds No. 257243Trustworthy Clouds - Privacy and Resilience for Internet-scale Critical Infrastructure 02/05/2023 29
![Page 30: Tclouds t paa_s_developer_final](https://reader035.vdocuments.mx/reader035/viewer/2022070520/58f1e8931a28abf7268b4633/html5/thumbnails/30.jpg)
TClouds No. 257243Trustworthy Clouds - Privacy and Resilience for Internet-scale Critical Infrastructure 02/05/2023 30
TClouds EC CONTRACT N0: 257243
"The TClouds project has received funding from the European Union's Seventh Framework Programme ([FP7/2007-2013])
under grant agreement number ICT-257243.”
If you need further information, please contact the coordinator:
Technikon Forschungs- und Planungsgesellschaft mbHBurgplatz 3a, 9500 Villach, AUSTRIA
Tel: +43 4242 233 55 Fax: +43 4242 233 55 77E-Mail: [email protected]
The information in this document is provided “as is”, and no guarantee or warranty is given that the information is fit for any particular purpose. The user thereof uses the information at its sole risk and
liability.