DocumentCode
3647722
Title
Database security management for healthcare SaaS in the Amazon AWS Cloud
Author
Fabio Bracci;Antonio Corradi;Luca Foschini
Author_Institution
Dipartimento di Elettronica, Informatica e Sistemistica (DEIS), University of Bologna, Italy
fYear
2012
fDate
7/1/2012 12:00:00 AM
Firstpage
812
Lastpage
819
Abstract
Software as a Service (SaaS) applications fully-exploiting the potential of elastic Cloud computing infrastructures naturally are enabling new ubiquitous access scenarios for nomadic users, such as market salesmen and home healthcare medical assistants. SaaS applications typically require to transfer data and resources to the Cloud infrastructure site; that raises several challenging issues spanning from access control to resources to privacy protection, ownership, and security of the data of the final SaaS users. However, although encryption of personal and enterprise data is strongly recommended by existing Cloud infrastructures, such as Amazon Web Services (AWS), typically they do not provide yet adequate encryption and key management support. This paper presents a real use case of Vitaever, a home healthcare SaaS application deployed on Amazon AWS, and discusses the challenges and changes needed to add cryptography and key management capabilities to the standard AWS Web/database offer so to enable SaaS data protection. We also show experimental results that benchmark the new security functions over Amazon, demonstrating their applicability to SaaS production deployments.
Keywords
"Encryption","Medical services","Databases","Cloud computing","Standards"
Publisher
ieee
Conference_Titel
Computers and Communications (ISCC), 2012 IEEE Symposium on
ISSN
1530-1346
Print_ISBN
978-1-4673-2712-1
Type
conf
DOI
10.1109/ISCC.2012.6249401
Filename
6249401
Link To Document