We’ve come a long way in this series, but we have some additional work to do mainly to ensure end-to-end encryption after the application load balancer receives requests. This is necessary to get tighter adherence for HIPAA data transfer security on the AWS VPC network. This ensures even on the VPC, PHI is encrypted in transit. There is a lot of good information on AWS docs about this here, however it is very terse and jumps around a lot.
A Note About HIPAA There are many services in the AWS cloud platform that are deemed compliant with the Health Insurance Portability and Accountability Act (HIPAA). They are documented here. For the uninitiated, HIPAA provides regulations for securing Protected Health Information (PHI) including a patient’s name, address, date of birth, social security number and much more. Organizations not adhering to the act are subject to fines and imprisonment, making it a key priority for stewards of this sensitive data.
Welcome back to my lift and shift series. This is part two of a series started here documenting my personal journey lifting an ASP.Net application to the AWS cloud via Elastic Beanstalk. This post will focus on preparing the legacy application for deployment in an AWS based environment. Preparation Let’s set the stage, we are looking to prove viability of lifting this solution to the cloud. We are not looking to correct sins of the past or refactor major portions of the application.
We live in a world where people like to think things like software and hardware are elegant, well-architected, regimented disciplines necessary to everyday life. As society puts more and more trust in technology how could we not think this? However, real world developers and technicians know better. A high quality facade obscures the inherent ugliness behind these systems that drive many critical processes that impact our day-to-day lives. The UI is only a curtain hiding the complexity and in some cases fragility of processes that have been engineered and potentially patched by countless developers over the years.
This is my first post as I am sure you have gathered. Welcome and thank you for stopping by. I plan to use this space largely to document my thoughts and learnings about topics such as Amazon Web Services (AWS), Azure, Docker, Kubernetes (k8s) and I am sure much much more. I was largely inspired by one Scott Hanselman of Microsoft and his blog to document my thoughts. It will help me to organize my learnings and hopefully help out some fellow students of our development craft.