Deploying a Secure Wireless VoIP Solution in Healthcare



Similar documents
Deploying the ShoreTel IP Telephony Solution with a Meru Networks Wireless LAN

Design Guide for Pervasive Wireless Networks

How To Protect A Wireless Lan From A Rogue Access Point

Solutions for Health Insurance Portability and Accountability Act (HIPAA) Compliance

Best Practices for Outdoor Wireless Security

Meru MobileFLEX Architecture

Best Practices in Deploying a Secure Wireless Network

Supporting Municipal Business Models with Cisco Outdoor Wireless Solutions

Wireless Services. The Top Questions to Help You Choose the Right Wireless Solution for Your Business.

SonicWALL Clean VPN. Protect applications with granular access control based on user identity and device identity/integrity

Meru MobileFLEX Architecture

Design and Implementation Guide. Apple iphone Compatibility

Cisco Wireless Control System (WCS)

Wireless Security and Healthcare Going Beyond IEEE i to Truly Ensure HIPAA Compliance

Lucent VPN Firewall Security in x Wireless Networks

IREBOX X. Firebox X Family of Security Products. Comprehensive Unified Threat Management Solutions That Scale With Your Business

Solution Brief. Secure and Assured Networking for Financial Services

CISCO WIRELESS CONTROL SYSTEM (WCS)

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

Cisco IOS Advanced Firewall

OmniAccess Wireless LAN Switching Systems. The Next Generation of Wireless LAN Connectivity Secure mobility for the enterprise

Why Migrate to the Cisco Unified Wireless Network?

IPSec or SSL VPN? Copyright 2004 Juniper Networks, Inc. 1

Deploying secure wireless network services The Avaya Identity Engines portfolio offers flexible, auditable management for secure wireless networks.

Ensuring HIPAA Compliance in Healthcare

Intelligent WLAN Controller with Advanced Functions

White Paper. Healthcare WLAN Applications: North American Hospital Survey Results. Aruba Wireless Networks

Deploy and Manage a Highly Scalable, Worry-Free WLAN

The All-in-One, Intelligent WLAN Controller

The Ultimate WLAN Management and Security Solution for Large and Distributed Deployments

Aruba Delivers the Optimal Wireless LAN Infrastructure for High-Quality Enterprise Voice Services

Link Layer and Network Layer Security for Wireless Networks

Boosting Business Mobility and Responsiveness with the Cisco Unified Wireless Network

WHITE PAPER. The Need for Wireless Intrusion Prevention in Retail Networks

The Fortinet Secure Health Architecture

Results of Testing: Juniper Branch SRX Firewalls

MOBILITY & INTERCONNECTIVITY. Features SECURITY OF INFORMATION TECHNOLOGIES

DATA SECURITY 1/12. Copyright Nokia Corporation All rights reserved. Ver. 1.0

Ensuring HIPAA Compliance in Healthcare

WAN Traffic Management with PowerLink Pro100

CISCO SMB CLASS MOBILITY AND WIRELESS SOLUTIONS: THE RESPONSIVE WORKFORCE

Tech Brief. Enterprise Secure and Scalable Enforcement of Microsoft s Network Access Protection in Mobile Networks

Rethink Your Branch Network Strategy

POWERING UNIFIED COMMUNICATIONS WITH BRANCH SRX SERIES SERVICES GATEWAYS

Analysis of the Optimal Branch Network Architecture for Successful Unified Communications in the Enterprise

The Fortinet Secure Health Architecture

Huawei One Net Campus Network Solution

Zone Labs Integrity Smarter Enterprise Security

NEWT Managed PBX A Secure VoIP Architecture Providing Carrier Grade Service

Link Layer and Network Layer Security for Wireless Networks

NXC5200/ NWA5000-N Series Wireless LAN Controller/ a/b/g/n Managed Access Point

Network Security. Protective and Dependable. 52 Network Security. UTM Content Security Gateway CS-2000

Trends in Wireless Networking for Healthcare Organizations

Analysis of QoS parameters of VOIP calls over Wireless Local Area Networks

Securing an IP SAN. Application Brief

Cisco Virtual Office Express

JUNIPER NETWORKS WIRELESS LAN SOLUTION

ADDENDUM 12 TO APPENDIX 8 TO SCHEDULE 3.3

Network Design Best Practices for Deploying WLAN Switches

Cisco Advanced Services for Network Security

Are You Ready for the All-Wireless Enterprise?

The following chart provides the breakdown of exam as to the weight of each section of the exam.

Designing & Deploying Wireless LAN Systems

Deploying Firewalls Throughout Your Organization

IP Telephony Basics. Part of The Technology Overview Series for Small and Medium Businesses

SEVEN MYTHS OF CONTROLLER- LESS WIRELESS LANS

Wireless e-business by IBM Wireless Local Area Networks

WHITEPAPER. Wireless LAN Security for Healthcare and HIPAA Compliance

Configuring Security Solutions

The All-in-One, Intelligent WLAN Controller

Relay2 Enterprise Cloud Controller Datasheet

Aruba Aruba Certification ACMP-6.4 test questions and answers :

Wireless Networking for Small Businesses, Branches and Home Offices

Firewall and UTM Solutions Guide

Enterprise Network Solution

Enterprise A Closer Look at Wireless Intrusion Detection:

Wi-Fi, Health Care, and HIPAA

Cisco CCNP Optimizing Converged Cisco Networks (ONT)

The evolution of data connectivity

Remote-Access VPNs: Business Productivity, Deployment, and Security Considerations

Cisco Outdoor Wireless Mesh Enables Alternative Broadband Access

Providing Secure IT Management & Partnering Solution for Bendigo South East College

HIPAA Compliance and Wireless Networks Cranite Systems, Inc. All Rights Reserved.

Wi-Fi calling for business: ROGERS WHITE PAPER. An Executive Overview

Transcription:

Deploying a Secure Wireless VoIP Solution in Healthcare Situation Healthcare is a natural environment for wireless LAN solutions. With a large mobile population of doctors, nurses, physician s assistants and other caregivers, wireless LANs bring the ability to access the latest patient charts, medical records and clinical decision support data at all times, anywhere in the healthcare organization. And as caregivers travel among different facilities, wireless allows for easy connectivity at each site. Real Patient and Economic Benefits through Wireless LAN Deployment This trend was given further momentum with the release of a 1999 report on Adverse Drug Effects (ADEs) which recognized that upwards of 100,000 deaths per year were related to preventable medical errors. Following in 2000, a Presidential mandate was issued requiring healthcare providers to reduce data errors by 50% in 5 years. The proven ability of wireless to allow for immediate availability of treatment records at the point of care along with clinical decision support through instant access of medical reference databases has saved many healthcare facilities millions of dollars. A Trend towards Wireless VoIP Historically, healthcare institutions used wireless LANs for data applications, but increasingly want to support wireless VoIP as well. Healthcare organizations have a constant need for timely communication among caregivers; nurses contacting physicians, physicians contacting pharmacists or other specialists, unit staff contacting support staff such as transportation, housekeeping or dietary. All of this has traditionally been accomplished through wired phones and pages. However, significant inefficiencies result as nurses and other staff wait for calls or pages to be returned, causing delays and interruption of patient care. As IT administrators gain confidence and experience with Wi-Fi deployments for data, they are now looking at wireless VoIP as an increasingly desirable technology for clinicians. With wireless VoIP phones that can be worn by all caregiving staff, the incidence of missed calls is significantly lowered, resulting in better patient care. Security Needs Distinct to Healthcare Security is a front and center concern for healthcare IT administrators, especially due to the Healthcare Information Portability and Accountability Act (HIPAA). While security vulnerabilities endanger the integrity of any corporate network, the risks are magnified in healthcare due to HIPAA legislative requirements. HIPPA is a law passed in 1996 by the US government that covers many AP11-0106 1 Copyright 2006 Meru Networks

areas, but impacts IT administrators specifically as it mandates that patient data that is stored, transmitted or accessed across networks must be protected. Because of the security risk an open wireless LAN network presents, leaving a wireless VoIP implementation unsecured is not an option. However, most wireless LAN systems will not ensure high quality calls while simultaneously supporting industry-standard security measures. Ensuring secure, reliable wireless VoIP communications demands that businesses choose a wireless LAN infrastructure that is purpose-built to meet the demands of voice applications as well as put appropriate policies in place to mitigate those risks. Secure Remote Access Required In addition, healthcare organizations face the challenge of providing remote access to patient data and clinical applications to hundreds potentially thousands - of doctors, physician s assistants and other care givers. These users may be in regional offices, remote sites or their home. Balancing the security necessary for the sensitive nature of healthcare data, as well as providing the flexibility and ease of administration necessary for managing a diverse network is a key challenge. Solution Meru Networks and Juniper Networks, Inc. have developed a secure wireless VoIP solution for healthcare organizations. Many healthcare organizations have deployed the Meru Networks and Juniper solution resulting In a complete, end-to-end wireless VoIP system that meets HIPAA security requirements without sacrificing call density and voice quality. The First WLAN System Designed for Converged Voice and Data Applications Meru and Juniper overcome the critical challenges involved in implementing and managing a converged, scalable wireless local area network (WLAN) infrastructure for voice and data applications at healthcare institutions of all sizes. Specifically, the Meru Wireless LAN System automatically recognizes voice flows including H.323, SIP, Vocera and Spectralink ensuring high priority for these protocols. Prioritization is passed down from the wireline side or up to the wireline network through support of 802.1e via 802.1p and Diffserv. Meru s Air Traffic Control TM Juniper Networks Firewall / IPSec VPNs (NS 5GT, NS 208) IPSec VPNs provide complete LAN access and are an excellent solution for remote or branch offices, fixed telecommuters and partner sites when the user has a managed corporate device and is coming from a trusted network. Juniper Networks SSL VPNs SSL VPNs operate at the application layer and provide selected access to specific resources. They are an excellent solution for mobile employees, consultants as well as business partners where the user is accessing the network via a noncorporate device from an untrusted network Juniper Networks Intrusion Detection and Prevention Products (ISG/IDP) Juniper Networks IDP provides comprehensive and easy to use protection against current and emerging threats at both the application and network layer. Using industry recognized stateful detection and prevention techniques, Juniper Networks IDP provides zero day protection against worms, Trojans, spyware, keyloggers, and other malware. Meru Access Points Meru Access Points provide leading Wi- Fi performance for 802.11b, 802.11g and 802.11a clients. Deployed wherever Wi-Fi coverage is required, they work in conjunction with Meru Controllers to deliver the highest toll quality voice over Wi-Fi service, excellent data client performance, self-healing and rogue AP detection. AP11-0106 2 Copyright 2006 Meru Networks AP11-0106 <2> Copyright 2006 Meru Networks

(ATC) technology manages client access to the wireless medium to reserve bandwidth over the air, ensuring the same high performance for voice calls over the wireless LAN as over the wireline network. ATC also enables inter-cell coordination, a cellular coordination algorithm between APs analogous to the cellular telephone network s operation, to mitigate interference from clients in neighboring cells and co-channel interference. Proven Security Solutions Extended to the WLAN Juniper's "security zones" are seamlessly extended to the wireless domain over Meru WLAN infrastructure, enabling endto-end media-independent security. Juniper Application Layer Gateways (ALGs) work with voice protocols to dynamically open and close firewall ports as needed, providing robust security for wireless VoIP. For enterprises, this joint solution provides significant benefits, including: Meru Wireless LAN Controllers (MC500, MC1000, MC3000) Meru Controllers provide centralized management and control of Meru APs. Meru Controllers intelligently manage the RF air space to deliver a WLAN that is as reliable as the wired network. Intelligent management of client access ensures the highest performance for dense voice and data applications, delivering a true converged voice and data WLAN. Significant cost savings A single network infrastructure, both wired and wireless, can be utilized for both voice and data communications; Moves, Adds and Change costs are dramatically lowered. Increased productivity Users can securely connect to voice and data applications no matter where they are within the hospital. HIPAA compliance A multi-layered security approach including protection at layer 2 and layer 3, as well as proactive wireless threat prevention help ensure patient record confidentiality. Deployment simplicity Complex channel planning is eliminated for the WLAN; a single set of network security products are purchased for both the wired and wireless networks. Better user experience Users have the same access and policies that apply regardless of how they connect. Improved control over remote access Secure connectivity solutions are rapidly deployed for remote users by using SSL VPNS, decreasing frustration for both administrators and end users. AP11-0106 3 Copyright 2006 Meru Networks AP11-0106 <3> Copyright 2006 Meru Networks

Benefits of the Combined Meru/Juniper Solution A multi-layered security approach enabling HIPAA compliance Meru and Juniper offer a multi-layered security approach that helps ensure compliance with HIPAA. At Layer 2, Meru wireless LANs feature the industry s most robust security capabilities, including IEEE 802.1X and WPA. Unlike other wireless LANs, voice clients may use WPA and roam among access points without dropping the connection due to long latencies. Meru s Virtual Cell feature enables this by allowing all APs to be on the same channel thus guaranteeing zero handoff. With guaranteed zero handoff, voice clients will maintain toll quality while roaming among access points, including those that are on different IP subnets. Zero handoff is independent of security context, so even phones that use IEEE 802.1X or WPA will roam seamlessly without any call interruption. Layer 3 and above security is provided via Juniper Networks firewalls. The Juniper Networks security operating system, ScreenOS, includes Application Layer Gateways (ALGs) that work with voice protocols. The ALG dynamically opens and closes firewall ports to allow both incoming and outgoing calls to enter and leave the network. The firewall ports dynamically open and establish call connection and then automatically close upon completion of the call. Other solutions do not have the capability to dynamically open and close firewall ports, requiring a range of firewall ports to be opened and remain open indefinitely even when there are no calls being received. These open ports are commonly used by malicious hackers to gain entry or perform attacks on the network. The Meru/Juniper solution delivers HIPAA compliance for wireless access while providing a single user experience and security policies for both wired and wireless access. AP11-0106 4 Copyright 2006 Meru Networks AP11-0106 <4> Copyright 2006 Meru Networks

High availability features to ensure reliable wireless VoIP communications In a hospital, it can be critical to reach the right person immediately in a life-threatening situation demanding the highest reliability in the communication system. Voice applications are expected to be available 24 x 7. The joint Meru/Juniper solution ensures the highest availability of the wireless VoIP network. The Meru Wireless LAN System supports Call Admission Control. This means that if the network resources upper limit has been reached, new calls are rejected with a busy tone instead of allowing the call to enter and reduce quality for all the voice users. This is a unique Meru Wireless LAN feature, and provides a similar user experience to wired telephony networks. The Juniper Networks security solution also incorporates high availability mechanisms. These mechanisms ensure voice communications are available, even when unexpected network events occur, including: Dynamic VPN tunnel failover increases network reliability by allowing a backup VPN tunnel to automatically take over when the primary VPN tunnel fails. The VPN failover occurs without dropping any calls. Dynamic route-based VPNs that auto-discover the network and reroute traffic around congested or failed links. Dual firewall configuration with sub-second, stateful failover in case the primary firewall fails. Multi-homing or support for dual network providers so voice communications are available even if connection to the primary network provider fails. Identity-driven access extended to the wireless LAN Juniper s Netscreen VPN Appliances provide advanced identity-driven access allowing administrators to easily deploy a network that securely supports the varied employees within a healthcare institution. As an example, a physician may be able to access a set of clinical applications, while employees in accounting are only able to access billing systems. Meru extends this identity-based access to the WLAN using VLANs to support up to 16 separate networks on a single Meru AP. User traffic can be directed to separate VLAN or Ethernet ports on the Netscreen appliance based on the network name (SSID) or authentication method, including: 802.1x WLAN, VPN login or captive web portal. AP11-0106 5 Copyright 2006 Meru Networks AP11-0106 <5> Copyright 2006 Meru Networks

Identity zones are extended from the wireline network to the wireless network using separate SSIDs and VLAN segmentation on the wireless network. Easy WLAN deployment in challenging hospital building environments A hospital s high density of clients, unique building topology and construction create a challenging environment for wireless LAN deployment. The multi-floor configuration and need for highly directional antennas to efficiently cover the long narrow corridors create an environment where cochannel interference is impossible to avoid. Other wireless LAN solutions require complex channel planning to try and mitigate co-channel interference, which can add significantly to installation time and cost. Meru greatly simplifies this process with Virtual Cell technology which eliminates coand cross-channel interference. With the worry of co-channel interference removed, Meru access points are simply placed in the best positions to ensure complete coverage. Complex 3-dimensional site plans to ensure that access points on the floor above or below are on different channels are a thing of the past and the network is up and operating cleaner and smoother in less time. About Meru Networks Meru Networks is a global leader in Wireless Voice over IP (VoIP) infrastructure solutions. With its innovative, award-winning Air Traffic Control technology that brings the benefits of the cellular world to the wireless LAN environment, Meru's WLAN System is the only solution on the market that offers the reliability, scalability, and security necessary to deliver converged voice and data services over a single WLAN infrastructure. AP11-0106 6 Copyright 2006 Meru Networks AP11-0106 <6> Copyright 2006 Meru Networks

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information