Deployment of a highly secure clinical data repository in an insecure international environment.

Citation:

Feldman H, Reti S, Kaldany E, Safran C. Deployment of a highly secure clinical data repository in an insecure international environment. Stud Health Technol Inform 2010;160(Pt 2):869-73.

Date Published:

2010

Abstract:

We have designed and deployed a novel approach to protecting Personal Healthcare Information in environments where a data center is remote and its physical security cannot be assured. Our "KeyServer" methodology uses a server-client-server architecture to dynamically serve keys from a distant server in a separate secure data center in the US. The approach combines pre-existing and novel techniques into a layered protective barrier around compromise of patient data. We describe how this technology provides scalable security that makes security breaches highly unlikely. With some careful planning a Clinical Data Repositories fed by Electronic Health Records can be placed in relatively insecure settings, with a high-level of security surrounding data theft, even in the event of hardware theft. Such security architecture is ideal for not only developing nations, but for the evolution of health information to cloud computing platforms.