Secure Data Warehousing

My newest project with FreeMED has been to implement a way to securely warehouse medical data offsite. This relates to Dr Gnu’s article about disaster recovery. I have been using SSL WebDAV with a slim C client built on neon to push gnupg-encrypted SQL dumps (both incremental and full) to the archive server, which is perhaps temporarily residing at https://archive.freemedsoftare.net/. In this way, whoever is hosting the archive cannot read the medical data without the gnupg keys held only by the provider who “owns” the medical records. HIPAA compliance, here we are …