Post on 19-Feb-2017
Analysis. Answers. Action.
www.aphl.org
APHL Informatics Messaging Services (AIMS)Overview | December 2015
Analysis. Answers. Action. www.aphl.org
Background
Analysis. Answers. Action. www.aphl.org
APHL Informatics Messaging Services (AIMS)
A secure, cloud based environment that accelerates the implementation of health
messaging by providing shared services to aid in the transport, validation, translation
and routing of electronic data.
Analysis. Answers. Action. www.aphl.org
FoundationSince 2008, APHL has maintained a message transport hub service that has the ability to receive, hold, and transmit electronic messages sent from one organization to another. The RnR Hub service routes electronic messages between the CDC, partner laboratories, and public health agencies.
Analysis. Answers. Action. www.aphl.org
The AIMS Evolution
Analysis. Answers. Action. www.aphl.org
Big PictureTo better serve and provide affordable, secure message transport and translation for healthcare organizations.
Analysis. Answers. Action. www.aphl.org
What do we want / need?• Speed and Agility• Elasticity• Low cost of experimentation• Easily deployable solutions
• Security• Compliance• Continuity
Emphasis
S C C
Analysis. Answers. Action. www.aphl.org
Today
Analysis. Answers. Action. www.aphl.org
Cloud Computing Reference Architecture
Analysis. Answers. Action. www.aphl.org
Cloud Service Management
Analysis. Answers. Action. www.aphl.org
2015 Gartner Cloud Computing Magic Quadrant“AWS is the overwhelming market share leader, with more than five times the compute capacity in use than the aggregate total of the other fourteen providers.”
Analysis. Answers. Action. www.aphl.org
Amazon Web Services (AWS)• Migrated technology stack to AWS on March 1, 2014
• AIMS is located in the AWS East and West Region
• Robust Continuity of Operations and Disaster Recovery
• Approved for GovCloud
Analysis. Answers. Action. www.aphl.org
AIMS Functional Architecture
Analysis. Answers. Action. www.aphl.org
AIMS Functional Architecture
Analysis. Answers. Action. www.aphl.org
AIMS Technical Architecture
Analysis. Answers. Action. www.aphl.org
Secure Hosting, Integration and Support
• CDC Platform
• Mirth and Rhapsody Integration Broker
• Reportable Condition Mapping Table ( RCMT )
• Data Innovation Drivers
• ONC Public Health Immunization Data Exchange
• Whole Genome Sequencing with CDC and CLC bio
Analysis. Answers. Action. www.aphl.org
Transport Protocol Interoperability• PHINMS• Direct• Web Services• SFTP• VPN• S3 SDK API or Clients
Analysis. Answers. Action. www.aphl.org
AWS Compliance HIPAA-compliant, HITRUST-certified environment on the AWS Cloud. FedRAMP and NIST 800-53 Business Associate Agreement Shared Responsibility Model
Analysis. Answers. Action. www.aphl.org
Cybersecurity and Compliance• Approved for AWS GovCloud
• System Security Plan (SSP) in place
• Security Assessment (ST&E) and Audit conducted in 2013 by RTI International
• FISMA Moderate Compliance ATO granted in 2013
• FedRAMP certified environment
• Business Associate Agreement in place with AWS
• Version 2 of the SSP is drafted. Testing to commence in Q3 2015
• Next Disaster Recovery Test to occur in Q4 2015
• 3 Successful Penetration Tests
Analysis. Answers. Action. www.aphl.org
Shared Responsibility Model
Analysis. Answers. Action. www.aphl.org
Cybersecurity Automated continuous
configuration and monitoring providing
cybersecurity and information assurance
capabilities to information technology environments
on AIMS.
Analysis. Answers. Action. www.aphl.org
Cybersecurity
Analysis. Answers. Action. www.aphl.org
Cybersecurity
System Management ToolsCybersecurity
Configuration Management
Monitoring
Analysis. Answers. Action. www.aphl.org
Cybersecurity: Access• Access via applications and services
• AWS Identity Access Management (IAM)
• AWS Directory Service
• Access via VPN
• Dashboard – Audit Portal
System Access Authorization Request
FIPS 140-2
Analysis. Answers. Action. www.aphl.org
Cybersecurity: Access – Virtual Desktops
Analysis. Answers. Action. www.aphl.org
Storage, Backup, Archiving
Analysis. Answers. Action. www.aphl.org
Big Data
AIMS#2
#3
#4
Analysis. Answers. Action. www.aphl.org
APHL/CDC Pilot Trumps WGS File Size for Fast Exchange of Flu Data -
Analysis. Answers. Action. www.aphl.org
Pain Free On-boarding
Analysis. Answers. Action. www.aphl.org
Our Team
Programs Using AIMSPHLIP
Pandemic Influenza
Meaningful Use
SPHLs involved in the Public Health Laboratory Interoperability Project (PHLIP) use the AIMS Hub to transport Electronic Laboratory Surveillance Messages (ELSM) for Influenza and Vaccine Preventable Diseases to CDC.
The AIMS Hub is used by states to maintain Pandemic Influenza surge capacity to securely exchange electronic test orders and results (ETOR).
The AIMS Hub supports Meaningful Use secure message transport for Syndromic Surveillance, Immunizations, and Electronic Laboratory Results (ELR).
LRNThe Laboratory Response Network (LRN) uses the AIMS Hub to securely transport messages of possible bioterrorism threats.
Programs Using AIMSVPD
NMI
WGS / AMD
The Vaccine Preventable Disease (VPD) program uses four Reference Centers to provide specimen testing for labs that either do not currently provide testing for VPD diseases or want the surge capacity provided by Reference Centers. VPD diseases currently consist of: Measles (Rubeola), mumps, rubella, Varicella Zoster Virus (VZV), pertussis, S. pneumoniae, and H. influenzae.
The Nationally Notifiable Disease Surveillance System (NNDSS) Modernization Initiative (NMI) is an effort to improve the systems and processes used to receive nationally notifiable disease data to provide more comprehensive, timely, and higher quality data than ever before.
Proof of Concept between CDC, Wisconsin, CLC bio, Clarity LIMS to test the secure transport and analysis of WGS data on AIMS.
ELR via AIMS1. California2. Connecticut3. Florida4. Iowa5. Nebraska6. Minnesota7. Mississippi8. Texas9. Kansas10. Maine11. North Carolina12. Utah13. Ohio14. Idaho15. Michigan16. Indiana17. Wisconsin
Cross-jurisdictional Data Exchange
Analysis. Answers. Action. www.aphl.org
Future
Analysis. Answers. Action. www.aphl.org
AIMS Technology Roadmap
Analysis. Answers. Action. www.aphl.org
AIMS Gateway Portalwww.AIMSPlatform.com
Analysis. Answers. Action. www.aphl.org
AIMS Coverage
Analysis. Answers. Action. www.aphl.org
Project Highlight: ASTHO RCMT POC• Business Rules
• Triggers• RCMT• Mirth Integration Broker• Alerts via Direct secure messaging
Analysis. Answers. Action. www.aphl.org
Project Highlight: ONC Immunization Exchange
• Infrastructure Support and Guidance• Hosting• Security• Information Assurance
Analysis. Answers. Action. www.aphl.org
AIMS Advantages: Simplicity & Reliability
• Shareable Open Source architecture• Centralized processing and message
routing• Monitoring and audit systems• Reduced message transport
complexity• Reduced data translation and
transformation complexity• Reduced development and support
costs
• Flexible capacity infrastructure via AWS
• 5 year authentication certificates• Vocabulary and HL7 Message
Support• Experienced and dedicated tech
support• FISMA Moderate compliant
applications• FedRAMP compliant environment