Open AccessAssessing source code vulnerabilities in a cloud‐based system for health systems: OpenNCP
Author(s) -
Larrucea Xabier,
Santamaria Izaskun,
Colomo-Palacios Ricardo
Publication year - 2019
Publication title -
iet software
Language(s) - English
Resource type - Journals
ISSN - 1751-8814
DOI - 10.1049/iet-sen.2018.5294
Subject(s) - cloud computing , computer security , computer science , healthcare system , source code , key (lock) , european commission , code (set theory) , health care , order (exchange) , commission , european union , business , political science , set (abstract data type) , programming language , operating system , finance , law , economic policy
Healthcare systems have been improved in order to provide support to cross‐border situations where one citizen from one country travels to another country and requires the use of their health records. Several initiatives have been carried out to tackle this problem. This is the case for the OpenNCP which is supported by the European Commission by providing a common network and an infrastructure to connect different national healthcare systems which most of the times are cloud‐based systems. The OpenNCP plays a key role in communicating health records among European Union's member states, and therefore it manages sensitive information. Therefore, this study provides a security analysis of this platform and a prototype is developed for identifying secure patterns in source code.