Security

Follow this guide to secure the gateway.

Encryption in-flight

All information transmitted to the cloud platform is encrypted using transport layer security (TLS) with a minimum of 128-bit Advanced Encryption Standard (AES) public key encryption utilizing a SHA-2 hash algorithm.

Physical Access Controls and Disk Encryption

The Nuclivision license agreement requires physical access restrictions limiting physical access to the gateway computer to authorized personnel with a legitimate need to access the equipment and/or the use of whole hard disk encryption (e.g. BitLocker).

Anti-Virus

It is recommended that an anti-virus with a current subscription be in place on the Gateway PC. To ensure proper operation of the Gateway exclude the following directories from the anti-virus scans:

C:\Program Files (x86)\Nuclivision Gateway

Segregation of Data

The Nuclivision Gateway should not be configured to support storage of DICOM images from multiple unrelated organizations.

Secure Local Network

By default, the Nuclivision Gateway is configured to receive DICOM images from a local PACS or local imaging modalities on a secure local area network (LAN). It is not recommended to store images to the gateway on an untrusted network unless TLS is enabled on the DICOM listener. All outbound DICOM image transmissions to the Nuclivision Cloud uses mandatory TLS encryption by default.

Encryption in-flight​

Physical Access Controls and Disk Encryption​

Anti-Virus​

Segregation of Data​

Secure Local Network​

Encryption in-flight

Physical Access Controls and Disk Encryption

Anti-Virus

Segregation of Data

Secure Local Network