Automating Google Workspace (GWS) & more with Apps Script
MediTrust: Secure Client Systems for Healthcare IT to Protect Sensitive Data of Patients
1. MediTrust
Secure Client Systems for Healthcare IT
to Protect Sensitive Data of Patients
Biljana Cubaleska, Hans Löhr, Ahmad-Reza Sadeghi,
Marcel Winandy
Ruhr-University Bochum
Ammar Alkassar, Christian Stüble
Sirrix AG security technologies
Med-e-Tel 2011, The International eHealth, Telemedicine and Health ICT Forum
Luxembourg, 6 - 8 April 2011
4. Security Problem Areas
• Data Storage and Processing
- Data centers: unauthorized information leakage
- Platform security: vulnerable to malware
- Mobile storage (USB memory sticks)
• Infrastructure Management
- Cryptographic keys, certificates
- Hardware / software components
• Usability and User Experience
- Smartcard PIN (when unconscious?)
- Time consuming
7. MediTrust: Project Goals
• Secure end-user platform
- Protect medical data from unauthorized access/manipulation
- Secure separation of data of different workflows
• Security infrastructure management
- Secure domains should span over several hardware nodes
- Central and easy management entity
• Usable security solution
- Transparent security protection
- No overhead in the normal workflow
17. Conclusion & Outlook
• Security infrastructure to protect sensitive data
• Based on TVDs and TURAYA.TrustedDesktop
• Field study (late 2011)
- 20 users (health professionals)
- Analysis of effectiveness and usability
• More information online:
MediTrust http://www.rubtrust-meditrust.de
Marcel Winandy
marcel.winandy@trust.rub.de