Comments on: Try Amazon Simple Queue Service (Amazon SQS) for cross-org messaging, RHIO, NHIN data http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/ Shahid's healthcare IT, EMR, EHR, PHR, medical content, and document managment advisory service. Enjoy. Thu, 11 Mar 2010 17:50:46 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Trusted.MD Network http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/comment-page-1/#comment-343 Trusted.MD Network Mon, 27 Aug 2007 02:18:54 +0000 http://www.healthcareguy.com/?p=280#comment-343 <strong>links for 2007-08-27...</strong> Stiff-Arming Children’s Health - New York Times in the eye of Congress. The Senate has passed a bill that would raise eligibility to 300 percent of the poverty level, and the House has gone to Buzzword, The First Real...... links for 2007-08-27…

Stiff-Arming Children’s Health – New York Times in the eye of Congress. The Senate has passed a bill that would raise eligibility to 300 percent of the poverty level, and the House has gone to Buzzword, The First Real……

]]> By: Shahid N. Shah http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/comment-page-1/#comment-342 Shahid N. Shah Tue, 06 Feb 2007 11:10:41 +0000 http://www.healthcareguy.com/?p=280#comment-342 Good points, Randy. Hosted services these days do manage pretty secure data and we could build custom security on top if that's not good enough. Good points, Randy. Hosted services these days do manage pretty secure data and we could build custom security on top if that’s not good enough.

]]> By: Randy Bias http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/comment-page-1/#comment-341 Randy Bias Tue, 06 Feb 2007 05:29:05 +0000 http://www.healthcareguy.com/?p=280#comment-341 I don't really understand what the security issue is with SQS. This kind of problem has been well solved with encryption techniques. It's hardly different to send an encrypted message via SQS from sending one over the public Internet inside a VPN. There is some kind of argument about decrypting the data if a copy is siphoned off, but really, that's pretty significant resources. Not to mention that you would have to have access to the Amazon network or queuing system(s). It's not just about whether your data can be attacked, it's also about how practical the attack is. I don’t really understand what the security issue is with SQS. This kind of problem has been well solved with encryption techniques. It’s hardly different to send an encrypted message via SQS from sending one over the public Internet inside a VPN.

There is some kind of argument about decrypting the data if a copy is siphoned off, but really, that’s pretty significant resources. Not to mention that you would have to have access to the Amazon network or queuing system(s).

It’s not just about whether your data can be attacked, it’s also about how practical the attack is.

]]> By: Shahid N. Shah http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/comment-page-1/#comment-340 Shahid N. Shah Thu, 17 Aug 2006 18:39:59 +0000 http://www.healthcareguy.com/?p=280#comment-340 Lars -- I'm as security concious as the next guy but I've seen many small to medium sized implementations that would not be as secure as what Amazon has in place already. If you're a big shop and you know exactly what you're doing then doing all this on your own is great. If you're a small or medium shop you're better off going to someone else because getting right yourself is always a challenge. My experience has been that many of the guys that are protecting financial data (like Amazon) do a better job of security than some of us do in healthcare anyway. Of course, nobody should enter any deal without a good amount of due diligence and proper SLAs but I wouldn't dismiss it outright :-) Lars — I’m as security concious as the next guy but I’ve seen many small to medium sized implementations that would not be as secure as what Amazon has in place already. If you’re a big shop and you know exactly what you’re doing then doing all this on your own is great. If you’re a small or medium shop you’re better off going to someone else because getting right yourself is always a challenge.

My experience has been that many of the guys that are protecting financial data (like Amazon) do a better job of security than some of us do in healthcare anyway.

Of course, nobody should enter any deal without a good amount of due diligence and proper SLAs but I wouldn’t dismiss it outright :-)

]]> By: Lars Wilhelmsen http://www.healthcareguy.com/2006/08/07/try-amazon-simple-queue-service-amazon-sqs-for-cross-org-messaging-rhio-nhin-data/comment-page-1/#comment-339 Lars Wilhelmsen Thu, 17 Aug 2006 14:47:14 +0000 http://www.healthcareguy.com/?p=280#comment-339 You must be kidding!? I wouldn't recommend anyone to send highly confidential data through a third-party like Amazon, especially not healthcare institutions etc. Regards, Lars Wilhelmsen Senior Software Engineer Teleplan Globe AS You must be kidding!?

I wouldn’t recommend anyone to send highly confidential data through a third-party like Amazon, especially not healthcare institutions etc.

Regards,

Lars Wilhelmsen
Senior Software Engineer
Teleplan Globe AS

]]>