Bear Systems is building on its next generation cybersecurity platform to provide a range of SIMPLE (Secure Integrated ML Platform Leveraging Expertise) solutions for the world’s most pressing needs. This blog entry is one of a series of introductions showing how Bear can provide a SIMPLE solution for specific vertical challenges.
Hospital systems are a fascinating mix of cutting-edge machines and systems combined with equipment from the 1960’s. In many hospitals, shared command and control centers are used to glue together disparate systems. Networks are typically being used to handle all types of communication with little regard to the type of data being transmitted. In past decades, placing equipment in specific rooms with specific network cables was the only way to ensure any level of compliance. Now that modern equipment is highly portable, leverages other communication options that do not need a cable, and can even transmit different levels of data from the same patient, all of these options have failed.
Hospitals are supposed to be compliant to HIPAA but, really, as of right now those regulations are not much more than paperwork exercises to ensure contracts are in place. Supposed audits rarely do more than check that the right updates have been made on some antiquated Windows laptop. Good thing for these hospitals that HIPAA is so behind the times…
Unfortunately, that reality is about to change and transform from a laughable series of contractual efforts into a true auditing and compliance paradigm. Efforts in the HIPAA taskforce will very soon be released, and with it, active compliance measures will not only ensure configuration but will further lockdown requirements for the real time transmission and storage of information. For hospitals that have been architected under the old paradigm, or that are sharing resources to cut costs, these new efforts will be a nightmare.
SIMPLE Hospital is being built to directly address this challenge and to overcome these issues before those issues translate into fines and service disruptions. Hospital systems clearly understand what data flowing from which equipment is HIPAA Level 1 and what is level 3. Domain Experts know who should see which types of data and how to best aggregate that data within compliance rules. SIMPLE Hospital empowers these experts by creating a Patient Profile that can contain all levels of data, flow over any type of communications, and be brought up by anybody with the lowest level of access.
Within a Patient Profile, data is protected at different levels using a lightweight blockchain deployment that works across all environments. Every line of communication in a SIMPLE Hospital is secured using quantum resilient security that far exceeds anything compliance will ever attempt to define. At the same time, the SIMPLE Hospital security is many times more lightweight than anything available on the market today.
Within a given device, SIMPLE Hospital leverages biometric scanning to authenticate a person and present the Domain Expert-provided data to that person. The Patient Profile is completely locked down, the applications provided the data protected, and advanced, dynamic machine learning (ML) powered protection used to keep both apps and data safe over time.
Importantly, everything is logged according to the rules defined by HIPAA compliance experts. With SIMPLE Hospital, remote compliance officers can instantly retrieve all logs from a given hospital in a format that readily feeds into their compliance tools. Instead of spending weeks performing an audit that is bound to miss something, auditors are able to automate this process and even make allowable policy changes to a hospital is real time.
There is obviously more, much more, to our SIMPLE Hospital Systems and, if you are interested, please contact us to learn more!