1 / 16

National Inter-state Data Exchange Application System (N-IDEAS)

N-IDEAS is a secure application system that facilitates the exchange of complete and timely data between CDC-NPCR and state cancer registries. This system ensures secure data transfer through encrypted files and a tracking website.

kingscott
Download Presentation

National Inter-state Data Exchange Application System (N-IDEAS)

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. National Inter-state Data Exchange Application System(N-IDEAS) Reda J. Wilson, MPH, RHIT, CTR Kevin Zhang, PhD Jagruti Rana, MS David Radune, BS Shailendra Bharvsa Melanie Huston Centers for Disease Control and Prevention NCCDPHP, DCPC, Cancer Surveillance Branch

  2. Introduction • Data exchange required CDC-NPCR activity • Usually allowed by law • Essential for complete and timely data • Conventional data transfer • Time-consuming • Insecure

  3. Introduction • National Interstate Data Exchange Application System (N-IDEAS) • Serve as technical assistance • Ensure secure data transfer • Client application • Tracking website

  4. System Architecture • Client side application • .net technology • Data encrypted • Tracking website • .net technology • SQL database • Web services • Secure server using https • SQL server database • File server • Secure • Not accessible from outside

  5. System Design File server Encrypted files to /from CCR A N- IDEAS Client Application CCR B Tracking information in XML Web service CCR C Authentication information in XML Upload/ download encrypted files Tracking information Authentication web service SQL database Monitoring reports Tracking website Tracking information

  6. System Design • File maintenance on the server • Regular maintenance procedures • Downloaded encrypted files deleted • Download reminders • Expired encrypted files deleted

  7. Security Design • Encryption key required • Server host encrypted files only • Done by user with public key • User will need private key to decrypt • Sender cannot decrypt • Decryption • User will need private key to decrypt • Sender cannot decrypt • Private key stored on users machine • Requires client application • HTTPS protocol communication • National Institute of Standards and Technology Advanced Encryption Standard • FIPS 140-2 compliant .net cryptography API

  8. User Interface(Client Application) • Inbox tab

  9. User Interface(Client Application) • Outbox tab • Outbox edit processing – Step 1: Add

  10. User Interface(Client Application) • Outbox tab • Outbox Edit Processing—Step 2: Process (1) Waiting for edits

  11. User Interface(Client Application) • Outbox tab • Outbox Edit Processing—Step 2: Process (2) Edits are returned

  12. User Interface(Client Application) • Outbox tab • Outbox Edit Processing—Step 3: Send

  13. User Interface(Client Application) • History tab

  14. Security • Partitioned on existing NPCR-CSS secure Document server • Custom authentication • Checks suspicious or invalid login activity, • Registry responsible for private key

  15. Roadmap • Project initiation • Requirements analysis and documentation • Development planning • Execution/implementation • Tracking application development • Full system pilot testing • Full system deployment • System and security documentation

  16. Reda J. Wilson, MPH, RHIT, CTRNPCR-CSS Lead770-488-3245dfo8@cdc.gov ICF Macro Development Team: Kevin Zhang, PhD, Project Director Jagruti Rana, MS, Lead Developer David Radune, BS, Sr. Developer Shailendra Bharvsa, Programmer/Analyst Melanie Huston, Interface Designer The findings and conclusions in this report are those of the authors and do not necessarily represent the official position of the Centers for Disease Control and Prevention. Centers for Disease Control and Prevention NCCDPHP, DCPC, Cancer Surveillance Branch

More Related