Project Description: Securing Telehealth Remote Patient Monitoring Ecosystem 9
data storage, and processing. The device may provide real-time audio, video, and text
communications as well as support email, web browsing, and other internet-enabled
methods to interact with locally and remotely stored information and systems.
• modem–a device that provides a demarcation point for broadband communications
access (e.g., cable, digital subscriber line [DSL], wireless, long-term-evolution [LTE], 5G)
and presents an Ethernet interface to allow internet access via the broadband
infrastructure
• wireless router–a device that provides wireless connectivity to the home network and
provides access to the internet via a connection to the cable modem
• telehealth application–an application residing on a managed or unmanaged mobile
device or on a specialized stand-alone device and that facilitates transmission of
telemetry data and video connectivity between the patient and HDO
• patient monitoring device–a peripheral device used by the patient to perform
diagnostic tasks (e.g., measure blood pressure, glucose levels, or BMI/weight) and to
send the telemetry data via Bluetooth or wireless connectivity to the telehealth
application
Components for HDO Environment
• network access control–discovers and accurately identifies devices connected to wired
networks, wireless networks, and VPNs and provides network access controls to ensure
that only authorized individuals with authorized devices can access the systems and
data that access policy permits
• network firewall–a network security device that monitors and controls incoming and
outgoing network traffic, based on defined security rules
• intrusion detection system (IDS) (host/network)–a device or software application that
monitors a network or systems for malicious activity or policy violations
• intrusion prevention system (IPS)–a device that monitors network traffic and can take
immediate action, such as shutting down a port, based on a set of rules established by
the network administrator
• VPN–a secure endpoint access solution that delivers secure remote access through
virtual private networking
• governance, risk, and compliance (GRC) tool–automated management for an
organization’s overall governance, enterprise risk management, and compliance with
regulations
• network management tool–provides server, application-management, and monitoring
services, as well as asset life-cycle management
• endpoint protection and security–provides server hardening, protection, monitoring,
and workload micro-segmentation for private cloud and physical on-premises
data-center environments, along with support for containers, and provides full-disk and
removable media encryption
• anti-ransomware–helps enterprises defend against ransomware attacks by exposing,
detecting, and quarantining advanced and evasive ransomware
• application security scanning/testing–provides a means for custom application code
testing (static/dynamic)