Working paper Open Access

Optimus Study Cycle 3 – IT Security Concept

Koehler, Jana; Schnürle, Stefan; Portmann, Roland

The main focus of this IT security concept is to strictly secure the upload of and access to the sensitive data collected for the Optimus Study Cycle 3. The institutions participating in the study will upload their case data. Case data can occur in non-anonymized form, including personal and very sensitive information if an institution can only provide the data in the way they are originally stored. Some case data might be anonymized depending on the software export capabilities of the tools used by an institution. This security concept considers the most challenging scenario of original case data and provides solutions to protect these data effectively:

  • Access limited to only pre-registered users requiring 2-factor-authentication.
  • Immediate removal of case data from the internet infrastructure and storage in a highly secured and encrypted backend system (deletion after end of the study),
  • Automated extraction of anonymized study data, which removes all sensitive and personal information.
  • Access of all users limited to study data based on a need-to-know and role-based access control.

+ Sprache: eng + Reihe: Technical Report, 1/2017
Files (1.0 MB)
Name Size
techreport2.pdf
md5:914fab87617d67999793c64c79bc0aed
1.0 MB Download
0
0
views
downloads
All versions This version
Views 00
Downloads 00
Data volume 0 Bytes0 Bytes
Unique views 00
Unique downloads 00

Share

Cite as