Re: DICOM on SSH?
- From: "Wences" <wgrillo@xxxxxxxxx>
- Date: 10 Jul 2006 09:39:53 -0700
Now.. because its medical data.. There are rules that need to be
followed.. and for whatever
reason ssh is not 'ethical'. It would appear that one needs ssl/tsl.
See http://medical.nema.org/dicom/2006/06_15pu.pdf
Page 24.
implies its not being ethical, least to being not ethical.From what I read there: there are scarce mentions to SSH, and none
It still holds true that the document only recomends TLS, but it
doesn't say anything about SSH being inadmissible.
And then again, they say:
"NEMA has no power, nor does it undertake to police or enforce
compliance with the contents of this document." and a lot more along
that line, so my guess is if you still prefer SSH, to TLS you can go
ahead --at your own risk.
But ssh and sshd do support tls don't they?
Not to my knowledge. TLS and SSH are two different protocols, designed
for different things. TLS is the difference between HTTP and HTTPS.
If you want to use TLS, the Wikipedia says:
--begin quote--
While an increasing number of client and server products can support
SSL natively, many still do not. In these cases, a user may wish to use
standalone SSL products like Stunnel to provide encryption. However,
the Internet Engineering Task Force recommended in 1997 that
application protocols offer a way to upgrade to TLS from a plaintext
connection, rather than use a separate port for encrypted
communications - this prevents use of wrappers such as Stunnel.
SSL can also be used to tunnel an entire network stack to create a VPN,
as is the case with OpenVPN.
--end quote--
But I've never tried any of those products...
SpreadTooThin wrote:
Nico Kadel-Garcia wrote:
SpreadTooThin wrote:
Yep makes sence.. If I had thought about it for more than 30 seconds I
would have
done a man sshd.
Now.. because its medical data.. There are rules that need to be
followed.. and for whatever
reason ssh is not 'ethical'. It would appear that one needs ssl/tsl.
That rule makes *NO* sense. I can see insisting on SSL for consistency
reasons, rather than insisting that vendors support multiple encryption
protocols, and there's a whole fascinating set of laws about exporting
encryption tools in software as a "munition", making it illegal to ship to
Cuba and some other countries from the US. Can you point us to this medical
data policy or regulation? It sounds very odd indeed.
See http://medical.nema.org/dicom/2006/06_15pu.pdf
Page 24.
But ssh and sshd do support tls don't they?
Sorry but this thread seems to have lost its direction. :)
Anyhow for anonymouse data ssh should be ok. What is the method for
setting up sshd
for this application?
TIA from a newbie.
For anonymous data, for an interactive application like medical imaging
software? Why would you bother using an encrypted protocol at all?
Either way, if you want to keep things simple, it should be straghtforward
to set up SSH or SSL to use a tunneled port: that way, a port 104 client on
your local machine can be transmitted to a port 104 service on the server
over an encrypted SSH or SSL link to the server. You lose some logging that
way, but goodness knows I've done this to access expensive, licensed
software remotely.
In fact, roughly 15 years ago, I urged the use of VNC or, if necessary, VNC
over SSH to provide remote access to CT software on a very expensive server,
instead of paying $10,000 for antoerh turnkey SGI system with the very
expensive software. I think only a few researchers used it, without the
formal agreement of the department manager, but I still thought it was a
good idea.
.
- References:
- DICOM on SSH?
- From: SpreadTooThin
- Re: DICOM on SSH?
- From: Wences
- Re: DICOM on SSH?
- From: SpreadTooThin
- Re: DICOM on SSH?
- From: Nico Kadel-Garcia
- Re: DICOM on SSH?
- From: SpreadTooThin
- Re: DICOM on SSH?
- From: Nico Kadel-Garcia
- Re: DICOM on SSH?
- From: SpreadTooThin
- DICOM on SSH?
- Prev by Date: Re: DICOM on SSH?
- Next by Date: Setting up a proxy server
- Previous by thread: Re: DICOM on SSH?
- Next by thread: Which shell / terminaltype for SSH Tectia for Windows?
- Index(es):
Relevant Pages
|
|
