Project objective :
KONFIDO advances the state of the art of eHealth technology with respect to four key dimensions of digital security, namely: data preservation, data access and modification, data exchange, and interoperability and compliance. To address the challenges of secure storage and exchange of eHealth data, protection and control over personal data, and security of health related data gathered by mobile devices, KONFIDO takes a holistic approach – i.e. one targeting all the architectural layers of an IT infrastructure, and specifically: storage, dissemination, processing, and presentation. KONFIDO builds on and extends the results of a best of breed selection of successful projects, notably: epSOS, STORK, DECIPHER, EXPAND, and ANTILOPE. The approach will be implemented in a technological framework that relies on six technology pillars:
- security extensions provided by main CPU vendors;
- security solutions based on photonic technologies;
- homomorphic encryption mechanisms;
- customised STORK-compliant eID support;
- customized extensions of selected SIEM solutions; and
- disruptive logging and auditing mechanisms.
The usability of the proposed solutions will be tested in a realistic setup, deployed on top of a federated cloud infrastructure, where data will be exchanged and services interoperate cross-border. Experimental evidence will be collected, proving that KONFIDO solutions provide effective protection even against attacks by privileged software (e.g. the Operating System or the Hypervisor) or privileged users (e.g. the System Administrator or the Cloud Provider). Since i) it builds on results that were already widely accepted, and ii) it relies on a handful of complementary technologies (some of which are already at a high level of maturity), KONFIDO has a dramatic potential in terms of innovation in the field of coordinated care towards improved quality of healthcare solutions.