Authors:
Fabrizio Baiardi
;
Dario Maggiari
and
Daniele Sgandurra
Affiliation:
Università di Pisa, Italy
Keyword(s):
Security, Security policy, Healthcare infrastructure, Virtual machine, Overlay.
Related
Ontology
Subjects/Areas/Topics:
Biomedical Engineering
;
Confidentiality and Data Security
;
Data Engineering
;
Design and Development Methodologies for Healthcare IT
;
Enterprise Information Systems
;
Evaluation and Use of Healthcare IT
;
Health Information Systems
;
Healthcare Management Systems
;
Information Systems Analysis and Specification
;
Knowledge Management
;
Ontologies and the Semantic Web
;
Society, e-Business and e-Government
;
Web Information Systems and Technologies
Abstract:
Confidentiality and integrity of information are among the critical problems to face when managing health information through ICT systems. Virtual Interacting Network CommunIty (Vinci) is a software architecture that exploits virtualization to share a healthcare ICT infrastructure among users with different security levels and reliability requirements. Vinci introduces several communities , each consisting of users, some applications, a set of services and of shared resources. Users and applications with distinct privileges and trust levels belong to distinct communities. Each community is supported by a virtual network built by interconnecting virtual machines (VMs). The adoption of VMs increases the overall security level because we can use VMs not only to run user applications, but also to protect shared resources, control traffic among communities or discover malware. Further VMs manage the overall infrastructure and configure the VMs at start-up. Vinci supports the definition of
security policies to protect information within and across communities. As an example, discretionary access control policies may protect files shared within a community, whereas mandatory, multilevel security policies may rule access to files shared among communities. After describing Vinci architecture, we present the VM templates and preliminary performance results.
(More)