Rules for the Public Administration

(1)

Cloud Computing & Healthcare

Rules for the Public Administration

Cloud Computing for eHealth Cloud Computing for eHealth

Jerusalem, 19 March 2012

Daniele Tatti [email protected]

(2)

In the next 12 minutes

What is DigitPA

E

i

European scenario

Cloud‐related activities

eHealth‐related activities

Future plans

(3)

What is DigitPA

• DigitPA is the IT Agency of the Italian Government

• Its mission: “To create value for citizens and businesses through a digital

f

g

public administration”

• Created in 2010 inheriting from previous AIPA (1993) and CNIPA (2004)

• Placed under the direct control of the Prime Minister or a delegated

Minister (since Nov 2011 the Minister for Education, University, Research

and Innovation)

• Operates through a Government‐approved three‐year plan

–

Consultancy and proposal to central, regional and local Government

–

Setting rules and standards

–

Coordination, evaluation and monitoring of ICT activities performed

b

bli

d i i t ti

by public administrations

–

Planning, designing, managing and evaluating innovation projects

–

Technical evaluation of large contracts for ICT goods and services

(4)

The European scenario

• All of us should bring the EU scenario to the foreground

– It is key to cloud privacy, security and interoperability

• National and European policies are intertwined

– Privacy and Electronic Communications (Directive 2002/58 and upcoming Regulation) – Community framework for electronic signature (Directive 1999/93/EC, under review)y g ( ) – Patients’ rights in cross‐border healthcare (Directive 2011/24/EU) – ISA (Inteoperability Solutions for European Public Administration) is the main EU‐ funded program for “general‐purpose” interoperability

– epSOS (European Patients Smart Open Services) is the main EU‐funded pilot‐projectepSOS (European Patients Smart Open Services) is the main EU funded pilot project for eHealth interoperability – Recent European cloud initiatives (2012)

• Key cloud initiatives

Cl d C i S k E “ l d i ” ( id ) h h – Cloud Computing Strategy, to make Europe “cloud‐active” (= provider) rather than “cloud‐friendly” (= consumer) – European Cloud Partnership, funded with € 10 million, an initiative to promote a common cloud services market for European public administration

(5)

The national scenario

• A composite country within a composite Europe

–

20 Regions

–

110 Provinces

–

8100 Municipalities

• Healthcare basically is regional affairs

–

Innovation in healthcare requires dialog on legal, economical, technical

issues

–

Implementation is mainly under the responsibility of Regions

–

Each region has its own budget, governance, ICT (and constituency…)

–

Both regions and the central administration need to cut costs, so little

room for investment

N

i t

t i d t i l d i i

l t

t

i t

t d

ti

l

–

No consistent, industrial decisional structure, no integrated national

eHealth strategy

–

Many technical and organisational initiatives trying to agree on

consistent standards

(6)

DigitPA cloud initiatives

• Guide‐lines on cloud computing and public administration

–

Goal : promotion, dissemination and awareness of cloud services

–

Based on wide consultation with stakeholders

• ENISA, industry, largest administrations and publicly‐owned IT companies, experts

Five main topics addressed

–

Five main topics addressed

• Governance, Security and privacy, Law and economics, Technological infrastractures, eGovernment services

–

Timely aligned with upcoming EU cloud initiatives

y

g

p

g

• MAE‐cloud

–

Goal: Building a private cloud for the Italian Ministry of Foreign Affairs

• Co‐funded by DigitPA with € 5 millionCo funded by DigitPA with € 5 million

–

Will provide SaaS services to diplomatic offices world‐wide

• Services providers will also include other administrations

• New value‐added services (i.e. apps) to citizens and businesses( pp )

(7)

DigitPA eHealth activities

• TSE (Tavolo Sanità Elettronica)

–

“Permanent Committee on Electronic Healthcare “

–

Task: promoting and co‐ordinating the implementation of

eHealth interoperability framework and infrastructure

–

Chaired by Prime Minister Office ‐ Department for Digital

Innovation

–

Members: Ministry of Health, DigitPA, Regions, Provinces

• Recent activity (12/2011)

Recent activity (12/2011)

–

Re‐use of software for central booking centers

• Made possibile by specific agreements on sharing / re‐using software explicitly permitted by a law (CAD – Digital Administration Code)p y p y g • Open source, federated approach, developed by five among the most advanced regions / provinces, several deployment scenarios are possible • Components: Local system, Orchestrator, Security suite, Resource

management System monitoring Reporting management, System monitoring, Reporting…

(8)

DigitPA eHealth activities

• Recent activity (12/2011)

–

Project IPSE

• (Inter‐regional) Interoperability of Patient Summary and ePrescription • Architecture based on results of InFSE project • Patient summary defined by FSE Committee @ Ministry of Health • WPs: Use cases of national and international interoperability, Legal privacy and security requirements, System architecture and infrastructure, Implementation of pilot sites. • Ends in June 2012Ends in June 2012

–

Projects InFSE ‐ OpenInFSE

• Managed by CNR (Italian Research Council)

• Goals: Design and implement a common technological infrastructure for Goals: esign and implement a common technological infrastructure for federated EHR

• Compatible with existing regional architectures

• Based on rules of National Interoperability Framework (SPC, Sistema

Pubblico di Connettività) Pubblico di Connettività)

(9)

InFSE architecture and layers

Business ePrescription Appointment bookings Admissions

Access interface

Business layer

Hyerarchical event manager

Document manager Federated registry index Access policy manager Component layer

New SPC will provide

SPC

Connectivity

layer

(10)

SPC : the Public Connectivity System

• The Public Connectivity System (Sistema Pubblico di Connettività or SPC)

is the Italian ICT interoperability framework

• Currently modelled as a Service Oriented Architecture (SOA) and

implemented through Web Services technologies

• Administrations may co‐operate with each other by providing and using

y

p

y p

g

application services

• Two elements of SPC are required for supporting such a cooperation

–

Service Agreements (SA)

g

(

)

• Established between two actors (a supplier and a client) • Define the rules for the provision of application services • Currently specified using XML

–

Domain Gateways

• The unique (logic) component belonging to a PA’s IT system through which offering application service

Th SPC

i

b d i

h i d b Di itPA

• The SPC governing body is chaired by DigitPA

(11)

SPC architectural scenario

CAD

Digital Administration Code ‐ CAD

PA’s Users Software reuse & Access services & Portals Security , Identity mangement WEB SITES P R I ies and ov Stakeholders Nationwide databases and Public Electronic documents (Digital Sign, Elect. C ifi d il Payments (contract, invoices, reuse & standards Electronic documents (signature, certified e‐mail Electronic payments Open data y y g I N C I P R I G H responsibilit i C T and e-G o Stakeholders Private, Businesses partnerships

registers Certified mail, Storage)

invoices, accounts) Process integration of multidomain services

SPC _{Base registers} certified e‐mail, archiving) L E S Open format and reusability T S O rganization, _direction of IC