Cloud Computing & Healthcare Rules for the Public Administration Daniele Tatti tatti@digitpa.gov.it @DanieleTatti
In the next 12 minutes What is DigitPA European scenario Cloud related activities ehealth related activities Future plans 2
What is DigitPA DigitPA is the IT Agency of the Italian Government Its mission: To create value for citizens and businesses through a digital public administration Created in 2010 inheriting from previous AIPA (1993) and CNIPA (2004) Placed under the direct control of the Prime Minister or a delegated Minister (since Nov 2011 the Minister for Education, University, Research and Innovation) Operates through a Government approved three year plan Consultancy and proposal to central, regional and local Government Setting rules and standards Coordination, evaluation and monitoring of ICT activities performed by public administrations i ti Planning, designing, managing and evaluating innovation projects Technical evaluation of large contracts for ICT goods and services 3
The European scenario All of us should bring the EU scenario to the foreground It is key to cloud privacy, security and interoperability National and European policies are intertwined Privacy and Electronic Communications (Directive 2002/58 and upcoming Regulation) Community framework for electronic signature (Directive 1999/93/EC, under review) Patients rights in cross border healthcare (Directive 2011/24/EU) ISA (Inteoperability Solutions for European Public Administration) is the main EUfunded program for general purpose interoperability epsos (European Patients Smart Open Services) is the main EU funded pilot projectproject for ehealth interoperability Recent European cloud initiatives (2012) Key cloud initiatives Cloud Computing Strategy,to make Europe cloud active l (= provider) rather than cloud friendly (= consumer) European Cloud Partnership, funded with 10 million, an initiative to promote a common cloud services market for European public administration 4
The national scenario A composite country within a composite Europe 20 Regions 110 Provinces 8100 Municipalities Healthcare basically is regional affairs Innovation in healthcare requires dialog on legal, economical, technical issues Implementation is mainly under the responsibility of Regions Each region has its own budget, governance, ICT (and constituency ) Both regions and the central administration need to cut costs, so little room for investment No consistent, it tindustrial i ldecisional i structure, t no integrated t national ehealth strategy Many technical and organisational initiatives trying to agree on consistent standards 5
DigitPA cloud initiatives Guide lines on cloud computing and public administration Goal : promotion, dissemination and awareness of cloud services Based on wide consultation with stakeholders ENISA, industry, largest administrations and publicly owned IT companies, experts Five main topics addressed Governance, Security and privacy, Law and economics, Technological infrastractures, egovernment services Timely aligned with upcoming EU cloud initiatives MAE cloud Goal: Building a private cloud for the Italian Ministry of Foreign Affairs Co funded by DigitPA with 5 million Will provide SaaS services to diplomatic offices world wide Services providers will also include other administrations New value added services (i.e. apps) to citizens and businesses More for less 6
TSE (Tavolo Sanità Elettronica) DigitPA ehealth activities Permanent Committee on Electronic Healthcare Task: promoting and co ordinating the implementation of ehealth interoperability framework and infrastructure Chaired by Prime Minister Office Department for Digital Innovation Members: Ministry of Health, DigitPA, Regions, Provinces Recent activity (12/2011) Re use of software for central booking centers Made possibile by specific agreements on sharing / re using software explicitly ypermitted by a law (CAD Digital Administration Code) Open source, federated approach, developed by five among the most advanced regions / provinces, several deployment scenarios are possible Components: Local system, Orchestrator, Security suite, Resource management, System monitoring, Reporting 7
DigitPA ehealth activities Recent activity (12/2011) Project IPSE (Inter regional) Interoperability of Patient Summary and eprescription Architecture based on results of InFSE project Patient summary defined by FSE Committee @ Ministry of Health WPs: Use cases of national and international interoperability, Legal privacy and security requirements, System architecture and infrastructure, Implementation of pilot sites. Ends in June 2012 Projects InFSE OpenInFSE Managed by CNR (Italian Research Council) Goals: Design and implement a common technological infrastructure for federated EHR Compatible with existing regional architectures Based on rules of National Interoperability Framework (SPC, Sistema Pubblico di Connettività) 8
InFSE architecture and layers Business layer eprescription Appointment bookings Admissions Component layer Document manager Access interface Federated registry index Access policy manager Hyerarchical event manager Connectivity layer SPC New SPC will provide cloud services 9
SPC : the Public Connectivity System The Public Connectivity System (Sistema Pubblico di Connettività or SPC) is the Italian ICT interoperability framework Currently modelled as a Service Oriented Architecture (SOA) and implemented through Web Services technologies Administrations may co operate with each other by providing and using application services Two elements of SPC are required for supporting such a cooperation Service Agreements (SA) Established between two actors (a supplier and a client) Define the rules for the provision of application services Currently specified using XML Domain Gateways The unique (logic) component belonging to a PA s IT system through which offering application service The SPC governing body is chaired hi dby DigitPA itpa 10
SPC architectural scenario CAD Digital Administration Code CAD PA s Users Stakeholders P R I N C I P L E S Software reuse & standards R I G H T S ies and ov responsibiliti CT and e-go Organization, direction of IC Access services & Portals WEB SITES Security, Identity mangement Electronic Electronic Nationwide Payments Open documents documents Electronic databasesdata (signature, (contract, and Public (Digital Sign, Elect. payments registers Certified certified invoices, mail, e mail, Process integration of multidomain services accounts) Storage) archiving) Open format and SPC reusability SPC Base registers Private, Businesses partnerships PA, companies owned by PAs and utilities 11
Plans for the future Support and contribute to forthcoming EU initiatives Cloud Computing Strategy,to make Europe cloud active (= provider) rather than cloud friendly (= consumer) European Cloud Partnership, a PPP funded with 10 million euros to promote a common market of cloud services for European public administration Leverage on EU cloud initiatives for Faster adoption of cloud services in Italy Evolve egovernment services Administrative simpification, cut costs, better citizen experience Support and contribute to the Digital Agenda for Italy Announced in December, specific legislation expected next June Keep cloud guide lines up to date, promote cloud pilots ehealth? School & University? Back office? Evolve the SPC framework contract in a cloud perspective 12