Multi-Tenant Security for EMR on EKS in Regulated Environments
DOI:
https://doi.org/10.63282/3050-922X.IJERET-V6I4P115Keywords:
Multi-tenancy, EMR, EKS, Data Security, Compliance, Kubernetes, IsolationAbstract
Amazon Elastic MapReduce (EMR) on Amazon Elastic Kubernetes Service (EKS) is a contemporary solution for running scalable, containerized big data workloads in the cloud. With the rise of multi-tenant architectures for the resource optimization, cost saving & agility by organizations, the issue of security & compliance in shared environments has surfaced as the most pressing problem particularly in regulated sectors such as healthcare & finance. It introduces the multi-layer architectural framework that comprises Kubernetes namespaces, Amazon VPC isolation & detailed IAM policies to demarcate workloads and least privilege access control. The plan guarantees encryption to all data whether at rest or in transit using AWS Key Management Service (KMS)-managed keys along with the envelope encryption. The compartmentalization of networks, role-based access control (RBAC) & audit logs are also there to help the organization in meeting its compliance requirements and increasing traceability. The article describes in detail how the use of policy enforcement tools such as AWS Config and Open Policy Agent (OPA) can help tenants maintain their compliance posture at all times. By leveraging this combination of isolation, access control, and encryption mechanisms, the framework provides a way for organizations to carry out the processing of sensitive datasets in shared EMR-on-EKS environments without the risk to privacy or the performance being reduced. In essence, safe and regulatory-compliant multi-tenancy will not only be congruent with the legal requirements, but it will also be the catalyst of data an lytics innovation thus healthcare providers will get the opportunity to extract valuable insights from PHI while financial institutions will be able to engage in sophisticated risk assessment, all within the secure and scalable cloud ecosystem that they trust.
References
[1] Adewusi, Bolanle A., et al. "A Conceptual Framework for Cloud-Native Product Architecture in Regulated and Multi-Stakeholder Environments." (2022).
[2] Chikafa, Gibson. "Project-based multi-tenant managed RStudio on Kubernetes for Hopsworks." (2021).
[3] Weber-Jahnke, Jens H., and Fieran Mason-Blakley. "The safety of electronic medical record (EMR) systems: what does EMR safety mean and how can we engineer safer systems?." ACM SIGHIT Record 1.2 (2011): 13-22.
[4] Akinsanya, Torrance, and Thomas M. Bodenberg. "Regulatory environment." Risk Management in Healthcare Institutions: Limiting Liability and Enhancing Care (2014): 29-59.
[5] Lee, Hung-Chang, and Shih-Hsin Chang. "RBAC-matrix-based EMR right management system to improve HIPAA compliance." Journal of medical systems 36.5 (2012): 2981-2992.
[6] Bartley, Joanne, and Mara L. Daiker. "Technology Environment." The CAHIMS Review Guide. Productivity Press, 2022. 23-42.
[7] Sheth, A., et al. "Active semantic electronic medical record." International Semantic Web Conference. Berlin, Heidelberg: Springer Berlin Heidelberg, 2006.
[8] McDonald, Clement J. "The barriers to electronic medical record systems and how to overcome them." Journal of the American Medical Informatics Association 4.3 (1997): 213-221.
[9] Malhotra, Naveen, and Marlieta Lassiter. "The coming age of electronic medical records: From paper to electronic." International Journal of Management & Information Systems (Online) 18.2 (2014): 117.
[10] Scholz, Jaqueline, et al. "Cost-effectiveness analysis of smoking-cessation treatment using electronic medical records in a cardiovascular hospital." Clinical Trials and Regulatory Science in Cardiology 14 (2016): 1-3.
[11] Li, Li, et al. "Disease risk factors identified through shared genetic architecture and electronic medical records." Science translational medicine 6.234 (2014): 234ra57-234ra57.
[12] Donnelly, Candice, et al. "A systematic review of electronic medical record driven quality measurement and feedback systems." International journal of environmental research and public health 20.1 (2022): 200.
[13] Goh, Alwyn. "Java-based framework for the secure distribution of electronic medical records." Medical Informatics Europe'99. IOS Press, 1999.
[14] Rosenbloom, S. Trent, et al. "Updating HIPAA for the electronic medical record era." Journal of the American Medical Informatics Association 26.10 (2019): 1115-1119.
[15] Smith, Alan D. "Managing the quality of health information using electronic medical records: an exploratory study among clinical physicians." International Journal of Electronic Healthcare 4.3-4 (2008): 267-289.
