MediCat

CyberSecurity and Data Protection for Healthcare Mobile Applications

Strong protection of sensitive data

Strong protection of sensitive data that prevents data leakages. Show users that you care about data privacy.

Seamless
user experience

MediCat requires no pesky configurations by the user during on-boarding process, and provides frictionless authentication experience in day-to-day use.

In compliance with GDPR, HIPAA

Technology for your mobile applications that ensures compliance with healthcare regulations such as GDPR and HIPAA.

SeaCat
-
The story of secure mobile application

Battle tested

MediCat is used by healthcare providers and hospitals to build secure mobile applications and protect sensitive data.
MediCat has been thoroughly reviewed and approved by healthcare cyber-security auditors and data privacy officers.

IKEM
AXA
Cisco
Principal logo
GDPR
Petr Raska
Head of IT, IKEM
We use TeskaLabs’ SeaCat to secure four mobile applications in our hospital. The main benefits are smooth integration, strong security and compliance with health care regulations.
Jan Caboun
Senior Project Manager, Principal engineering
We develop software for healthcare industry, both for hospitals and private companies. We have chosen MediCat as a security technology for our mobile applications because it ensures strong protection of sensitive data.
Tomas Budnik
CEO & Chairman of the Board, O2 Czech Republic
We use TeskaLabs’ technology
in O2 Czech Republic in several key areas.

Contact us

Leave your contact information and our specialist will contact you shortly.

Or, call us directly at +44 (0) 7548 674986 (United Kingdom)

We guarantee that your email and other personal information are confidential and will not be sold or rented.

Product information

Features
How is MediCat used in healthcare
Technical specifications

Features

Security

Secure data transfer
Certified and approved cryptography (RSA-4096, mutual SSL/TLS authorization, AES-256, ...)
Secure storage on a mobile device
Strong level of security even on old version of operating system (Android, iOS)
Private key saved in HSM (Hardware Security Module) if it is supported by the device
Automated recognition that detects whether mobile device contains HSM (Hardware Security Module)
Audit trail

Authentication & on-boarding of new users

Customizable user authentication
Seamless links with existing user accounts
Compatible with LDAP, Active Directory
Biometric authentication
Two-factor authentication (2FA)
Simple onboarding process, fully automated for users

Application management

Works on unmanaged mobile devices, no Mobile Device Management (MDM) is needed
TPM compatibility
Remote application management (e.g. denial of access to sensitive information in case of lost device)

User experience

Seamless user experience
Designed for use by staff, doctors and/or patients
  • No disruption by security technology
  • No impact on productivity
  • No impact on speed
Screen share and remote access technology CatVision.io for technical/customer support

Regulations compliance

GDPR compliant
HIPAA compliant

Performance

High scalability
Load balancing, high availability option
Low network communication overhead

Deployment

Works on public and private clouds, and on premises
Apps deployable via public app stores
All major mobile Operating Systems (iOS, Android, Windows Phone) and platforms (Xamarin, PhoneGap and more)
Compatible with all enterprise mobility policies, (e.g., BYOD, COPE)

Technical specifications

MediCat technology consists of an mobile SDK that is to be added into a mobile application and a gateway that is to be installed into demilitarized zone (DMZ) in front of the application backend. It is designed to be transparent to a mobile application developers, easy operable by sysadmins and to provide maximum visibility for cybersecurity teams.

MediCat is compatible with major mobile operating systems and platforms.

Android
iOS
Windows Mobile
Phone Gap
Xamarin

Architecture

MediCat is built on top of proven TeskaLabs technology SeaCat.

SeaCat components and interactions for SeaCat are described in the following high-level diagram:

Read more

Software and Hardware requirements

SeaCat Gateway Requirements

SeaCat Gateway is prepared to be used on both virtual or physical appliances on-premise or via the cloud. TeskaLabs also provides ready-to-use cloud-based instances, containers or deployment scripts.

The sizing of a SeaCat Gateway appliance is based on the number of expected Concurrent Client Connections.

Hardware requirements

One CPU core handles ~2500 Concurrent Client Connections. Every Concurrent Client Connection consumes ~1MB of RAM.

Recommended hardware configuration:

  • 64-bit Intel/AMD CPU
  • 2GB RAM per CPU core
  • 50GB of HDD space for logging purpose (SSD is not required)
    • 1GB of additional free space for ~55.000 Client Certificates
    • 5 inodes per Client Certificate

SeaCat Gateway allows use of RSA hardware acceleration cards such as AHA604 or AHA605. It significantly increases total number of Concurrent Client Connections per CPU core.

Read more
Learn about the technology

MediCat is a technology for healthcare mobile applications. It is typically used by software vendors in healthcare, hospitals and hospitals' supply chain, and, other healthcare organizations.

Use case: iPads for doctors in hospital

Electronic medical records applications allows doctors and nurses full portable access to the hospital’s medical records system. While these mobile applications can save time for doctors, they represent a problem for IT security departments. The main problem is that the doctors need to have access to medical information even when they leave the internal hospital network. For instance, it's typical that after surgery, the doctor wants to check up on the patient's status even while away from the hospital. This formerly was solved by either the doctor calling a hospital operator or, by sending an email. Calling to the hospital is time-consuming and sending an email is not secure.

MediCat enables doctors to securely connect to the Hospital Information System (HIS) via a public network (such as the Internet) using doctor's biometric data as a second factor for authentication. This way, doctors have access to relevant medical records at all times.

Use case: Electronic distribution of waiting lists for transplantation

The transplantation process in the hospital is composed of various steps. Firstly, all the patients are added to the waiting list. Then when an organ donor appears, the doctor must choose the most relevant patient for the transplantation. The whole process is time sensitive, and the doctors need up-to-date patient waiting list at all times.

Before this mobile application was available, the hospital used emails to share the waiting lists with the doctors. This was problematic from the security point of view, and also because it was difficult to keep the doctor's waiting lists up to date. Each time a new version was published, the doctor was required to receive another email.

Using new mobile application for distribution of waiting lists was a significant step in the improvement of security and efficiency of Hospital operations. Each doctor has access to up-to-date information, the waiting list is automatically updated, and doctors are notified with each update. Moreover, there is a possibility to connect with transplantation coordinators via the mobile app directly.

MediCat provides secure storage on mobile devices to store waiting lists, biometric authentication for the doctors, secures communication with Hospital Information System and enables remote management of the application which enables to deny access to sensitive information in case the mobile device is lost.

Use case: Photo documentation mobile app for doctors

Resident doctors are equipped with a mobile application to take photographs of patients. This application first authenticates the doctor using biometrics, which enables the doctor to take photos of the patient. Photographs are taken to document injury and other physical findings from the examination. After the picture is taken, it is transferred via a secure channel to the Hospital Information System (HIS). The HIS makes the picture available to other doctors.

MediCat provides secure storage on mobile devices to store the photographs and biometric authentication to secure communication with Hospital Information System.

Also, MediCat provides remote management of the application which enables denial of access to sensitive information in case the mobile device is lost.