1. 米国の次世代創薬基盤技術開発における官民連携パートナーシップの取組事例
2. CSA Health Information Management WG「クラウドにおける医療ビッグデータ」 (2020年7月21日発行)
3. CSA Health Information Management WG「クラウドにおける医療データのプライバシー保護」(2021年8月10日発行)
4. Q&A/ディスカッション
1. 米国の次世代創薬基盤技術開発における官民連携パートナーシップの取組事例
2. CSA Health Information Management WG「クラウドにおける医療ビッグデータ」 (2020年7月21日発行)
3. CSA Health Information Management WG「クラウドにおける医療データのプライバシー保護」(2021年8月10日発行)
4. Q&A/ディスカッション
1. 米国立標準技術研究所(NIST) NIST SP 1800-30 遠隔医療の遠隔患者モニタリングエコシステムのセキュア化」草案第2版(2021年5月6日発行)
2. CSA Health Information Management WG 「クラウド上の遠隔医療データ」(2020年6月16日発行)
3. CSA Health Information Management WG 「遠隔医療のリスク管理」(2021年8月10日発行)
4. Q&A/ディスカッション
3. “Guidance for Industry Internet/Social Media Platforms: Correcting Independent Third-Party Misinformation About Prescription Drugs and Medical Devices”
4. “Guidance for Industry Internet/Social Media Platforms with Character Space Limitations – Presenting Risk and Benefit Information for Prescription Drugs and Medical Devices”
Similar to Cloud Security Alliance Japan Chapter Big Data @ The University of Tokyo on Dec.12, 2013 (20)
1. What Is “Metaverse”?
2. Use Cases of Metaverse in Healthcare: Robot-Assisted Surgery (RAS) Systems
3. What Is “Web3/NFTs”?
4. Use Cases of Web3/NFTs in Healthcare: Secure Health Information Exchange
5. Conclusion/Q&A
1. Use Case: Robot-Assisted Surgery (RAS) System on the Cloud
2. Worldwide IT Industry 2023 Predictions
3. Japan IT Spending Forecast by Region: 2021-2026
4. Japan Public Cloud Spending Forecast: 2021-2026
5. Japan Private Cloud Spending Forecast: 2021-2026
6. Japan Information Security Market Forecast: 2020-2026
7. Green Transformation (GX) in Healthcare
8. Conclusion/Q&A
1. Cybersecurity on Telehealth @NIST
2. Cybersecurity on Telehealth x Smart Home @NIST
3. Cloud-Native Privacy/Data Protection on Telehealth @CSA
4. Cloud-Native Security on Telehealth @CSA
5. Conclusions
1. The document discusses a research conference on APIs and data-driven innovation. The agenda includes presentations on using APIs to power data platforms, API security standards, engaging communities to standardize APIs, and the future of APIs and data-driven innovation with and after COVID-19.
2. One presentation provides an overview of how various organizations including companies, non-profits, and research institutions are using APIs to power data platforms that can benefit the general public, individuals, and society. Examples of API platforms from companies like Apple, Amazon, Google, and Microsoft are given.
3. Another presentation discusses a collaborative COVID-19 prevalence study funded at $13.6 million, involving the Chan Zuckerberg Initiative
グローバル企業の間では、次世代デジタルトランスフォーメーション(DX)基盤として、アプリケーションコンテナやマイクロサービス、サーバーレスを導入する動きが本格化し、境界防御の枠を超えた「ゼロトラスト」に基づくアーキテクチャ構築や、「Docker」による開発フローの自動化、「Kubernetes」による運用管理の標準化、「FaaS(Function as a Service)」による運用負荷の軽減などが進んでいます。本講演では、海外事例を題材に、エンタープライズユーザーが最新のクラウドネイティブ基盤を利用する場合のリスク/セキュリティ管理について概説します。
3. 1.最近の米国ヘルスケア分野の事例①
米国食品医薬品局(FDA)の遺伝子検査キットに対する警告
文書「23andMe, Inc. 11/22/13」
(http://www.fda.gov/ICECI/EnforcementActions/WarningLetters/2013/ucm376296.htm)
The Food and Drug Administration (FDA) is sending you this letter because you are
marketing the 23andMe Saliva Collection Kit and Personal Genome Service (PGS)
without marketing clearance or approval in violation of the Federal Food, Drug and
Cosmetic Act (the FD&C Act).
This product is a device within the meaning of section 201(h) of the FD&C Act, 21
U.S.C. 321(h), because it is intended for use in the diagnosis of disease or other
conditions or in the cure, mitigation, treatment, or prevention of disease, or is intended
to affect the structure or function of the body. For example, your company’s website at
www.23andme.com/health (most recently viewed on November 6, 2013) markets the
PGS for providing “health reports on 254 diseases and conditions,” including
categories such as “carrier status,” “health risks,” and “drug response,” and specifically
as a “first step in prevention” that enables users to “take steps toward mitigating
serious diseases” such as diabetes, coronary heart disease, and breast cancer. Most
of the intended uses for PGS listed on your website, a list that has grown over time,
are medical device uses under section 201(h) of the FD&C Act. Most of these uses
have not been classified and thus require premarket approval or de novo classification,
as FDA has explained to you on numerous occasions.
(c) 2013 Cloud Security Alliance
3
4. 1.最近の米国ヘルスケア分野の事例②
米国University of Washington Medicine
「UW Medicine Notice of Computer Security Breach」
(http://www.uwmedicine.org/Global/News/Announcements/2013/Pages/UWMedicine-Notice-ofComputer-Security-Breach.aspx)
In early October 2013, a UW Medicine employee opened an email attachment that
contained malicious software (malware). The malware took control of the computer,
which had patient data stored on it. UW Medicine staff discovered this incident the
following day and immediately took measures to prevent any further malicious activity.
Based on the results of an internal investigation, it is believed that patient information
was not sought or targeted. However, the malware accessed the data files of roughly
90,000 Harborview Medical Center and University of Washington Medical Center
patients.
The incident was referred to the FBI, and patients may be contacted by the FBI as part
of its investigation. UW Medicine has also implemented a review, training and
outreach effort as a result of this incident.
Data about patients may have included: name, medical record number, other
demographics (which may include address, phone number), dates of service, charge
amounts for services received at UW Medicine, Social Security Number or HIC
(Medicare) number, date of birth.
(c) 2013 Cloud Security Alliance
4