Technical PreProduction Review

1

SAMPLE Modified to Remove Confidential Data

• Technical Pre-Production Review
• August 7, 2002
• Laura Klepper, Jeff Byrd, Ellen Yan
• Johniene Doran, Mark Gardner, David Brewer, Roger
  Adamson

2
Agenda

• Project Overview
• Team Leadership
• Operational Deployment Diagram Phase I
• Operational Deployment Diagram Future
• Development Server Deployment
• Production Server Deployment
• Portal Administration
• Security

Page 2
3
Project Overview

• E-3 Initiative
• Electronic data collection (medical histories,
  etc.)
• Reduced phone calls to Patient Representatives
• Internet-based communication with patients
• Phase I View Only Access to Accounts and
  Appointments
• Phase II Online Bill Pay
• Phase III Online Access to Clinical Information
• Security
• Online Banking Model
• Onsite Account Signup
• Password Mailed to Patients Home

Page 3
4
Team Leadership

• Technical
• Jeff Byrd, Senior Web Developer
• Ellen Yan, Web Developer
• Johniene Doran/CL McKinney/Joan Fleming, Data
  Access
• Mark Gardner, Password Distribution (ExpressBill)
• David Brewer, Oracle Database Administration
• Roger Adamson, Weblogic Server Administration
• Jason Coles, Graphic Design
• Project Support
• Jeanine Garner/Jennifer Ridings, QA Leads
• Laura Klepper, Project Lead
• Project Team
• Racy Peters, VMG Administration
• Lisa Huff/Jerry Batte, Billing Information
• Brenda Yutzy, Appointments
• Nancy Doyle, Account Setup

Page 4
5
Operational Deployment DiagramPhase I
Page 5
6
Operational Deployment DiagramPhase II
Page 6
7
MyHealthAtVanderbilt System Architecture
(Development Server)
HOST XXX.XXX.XXX.XXX HTTP port XXXX HTTPS
XXXX
Development Server
Validates RACF ID

• Patientportal enterprise application is deployed
  in the development server in exploded directory.
  It has
• \useradmin MyHealthAtVanderbilt Account
  Administration web application (localhostxxxx/use
  radmin
• \patientportal MyHealthAtVanderbilt web
  application. (localhostxxxx/patientportal)
• XXXXXXXXX_XXXXXXX.XXX patient Info EJB
• \Datasync Master Data Repository for webflow
  information(http//localhostxxxx/xxxxxxxx/xxxxxht
  ml)
• \tools Portal Administration web application
  (localhostxxxx/xxxxxx/xxxxxxjsp)
• Xxxxxxx.war Server status testing for Help Desk
• Other Out-of-box Portal Tools and EJBs

RACF server
IBM DB2Driver
Weblogic JDriver
Dev01
DB2
Oracle 8.1.7 (w/ advanced security
options) Portal security realm Medical Record
Number Patient Password
Business Data Patient account info Appointment
Info
Page 7
8
MyHealthAtVanderbilt System Deployment (Production
Server)
HOST http//www.MyHealthAtVanderbilt.com HTTP
port xx HTTPS xxx
Production Server
Validates RACF ID

• Patientportal enterprise application is deployed
  in the production server in patientportal.ear
  file. It includes
• xxxxxxxx.war MyHealth Account Administration
  web app
• xxxxxxxxxxx.war MyHealth web application
• XXXXXXX_xxxxx.jar patient Info EJB
• xxxxxxxxx.war Master Data Repository for webflow
  information
• xxxxxx.war Portal Administration Tool
• xxxxxxxxxxxxxx.war Server status testing for
  Help Desk.
• Other Out-of-box Portal Tools and EJBs

RACF server
IBM DB2Driver
Weblogic JDriver
System-X (ADM04P)
DB2
Oracle 8.1.7 (w/ advanced security
options) Portal security realm Medical Record
Number Patient Password
Business Data Patient account info Appointment
Info
Page 8
9
MyHealthAtVanderbilt Administration (http//xxxxxx
xxxxxxxxx.jsp)
assigns
assigns
Portal System Administrator
Delegated Administrator
PatientAccount Administrators
login
Useradmin
manage patient accounts
FullAccess User Group
LimitedAccess User Group
Guest
Full access patient login
Limited access patient login
Guest or patient who forgot password
MyHealthAtVanderbilt
Page 9
10
Password DistributionTechnical View
Page 10
11
SecurityTechnical Requirements

• HTTPS Between Client and Server (Bidirectional)
• Password One-Way Ecryption
• Account Administration
• Four Levels of Access
• Web Administration
• Account Administration
• Patient Full Access
• Patient Limited Access
• Authentication of Portal Users Managed by Web
  Portal
• Patient Data Access by Medical Record Number
• Transaction Audit - Usage Logs written by
  application
• Add periodic job to archive logs

Page 11
12
SecurityProcess Requirements Password
Distribution
Activities During Clinic
Visit
Post Visit Activities
Page 12
13
SecurityProcess Requirements Password
Distribution
PROPOSED VUMC EMPLOYEE ACCOUNT SETUP OPTION MR
and RACF Security Administrator Approval Required
Page 13
14
Worth Mentioning

• DB2 Tables
• Test Environment
• Production Issue with Appointments
• Production Support
• Patient Representatives
• Help Desk
• Development Backup
• Metrics Report
• Code Audit

Page 14
15
Next Steps

• Completion of Database Test Environment
• Move to New Production Server
• Upgrade to BEA Web Portal 7.0
• Proposed Scope for Phase II
• Online Bill Pay
• Appointment Request
• Medical History/Surgical Intake Forms
• Prescription Request
• Electronic Medical Chart Access
• Personal Behavior Tracking
• Enhancements to Phase I

Page 15