Information Sharing Platform Technologies

H-PF-1

H-PF-2

H-PF-3

H-PF-4

Home ICT Platform, Empowering Home ICT Services

Public Health and Medical Care System to Share Health and Medical Information

Cloud Computing Technologies: CBoC

VPN Authentication System for NGN: “AAA”

Information Sharing Platform Technologies

Contents

What’s Hot in R&D

Technologies for achieving common functions essential to content sharing business and electronic commerce such as copyright management, electronic settlement, and information delivery.

Copyright © 2010 NTT

NTT Research and Development 2010 Review of Activities

What’sHot in R&D Information Sharing Platform Technologies

H-PF-1

The Home ICT platform provides essential functions for Information and CommunicationTechnology (ICT) services in the home that are adapted to service development and servicemanagement. It lets service providers develop Home ICT services rapidly and cost effectively.For this platform architecture, alliances with service providers and device makers areessential inorder toextend the platform’svalue, sowe arealso promoting such alliances.

■ Unified control and management for devices in the home from a home gateway■ Essential functions for development and management of Home ICT services (Communication

libraries/interfacetodevicesin the home, device detection/management, etc.)■ Flexible and dynamic software management using internationally standardized OSGi

technology for Home ICT services

Overview

Features

Application scenarios

■ Services that use devices in the home (TV, intercom, Web camera, printer, body weightscale, etc.)

■ Servicesthat use devicesin the office (personal computer, printer, securitydevice, etc.)

Home ICT Platform, Empowering Home ICT ServicesNTT Cyber Solution Laboratories

Home ICT, OSGi, Alliances

Service provider’s servers

Home ICT platform

Software management function(Flexible and dynamic software management on a home gateway)

Communication management function(Communication function for in-home and out-of-home devices)

Device management function(Device detection and management)

Access page function(Window that lets users access devices at home)

User devices(Access window)

Services that are easy to operate

Devices in the home(Connected to home gateway)

Reducing developmentcosts

Creating cost-effective Home ICT services

Home gateway




H-PF-2

To curb rapidly expanding medical costs, institutions have to not only raise businessefficiency and implement preventive care; they have to provide appropriate high-qualitymedical services.Our network-based platform enables personal health and medical care data to be sharedamong healthcare providers. The platform also enables healthcare guidance to be providedtopatients at a remote location.

■ Integrates systems with different interfaces■ Uses Single Sign On (SSO) for easy access to information■ Access control in accordance with a privacy policy■ Data structure conforming to HL7 (a medical information standard protocol) and

Continua (a healthcare data standard protocol)■ Safe remote healthcare guidance using video phones

Overview

Features


■ Home healthcare, remotehealthcare guidance, and remotemedicalcare■ Electronic Health Record (EHR)/Personal Health Record (PHR) services

- Integrated management and networking of personal medicaland healthcareinformation- Sharedaccesstopersonal medicaland healthcareinformation with medicalstaff- Detailed medical and healthcareservicesbased onvarious data- Community healthcare services in which a medical organization cooperates with otherorganizations

Public Health and Medical Care System to Share Health and Medical InformationNTT Service Integration Laboratories

HER, PHR, Remote healthcare

Primary medical clinic

Consultation data

General hospital

Check-up dataPrescriptiondata

Municipality (national health insurance)/ enterprise health insurance union)

Health Center

Portal site

Fitness club

Exercise data

NTT group healthcare website

KARADA LOG

Creative Health

Various healthcare data

Healthcare guidance information

HomeHospitalsRemote healthcare guidance

・Regional medical cooperation

・Evidence-based medicine

Self care

End users

Service Federation

Register data from various vital sensors

Easy Access

Pharmacy

NursesDoctors




H-PF-3

NTT is undertaking research and development of cloud computing technologies known asCBoC (Common IT Bases over Cloud computing) to achieve safe, secure and eco-friendlyclouds required by e-government and core business systems. One of the advantages ofCBoC is the operation and management of virtual resources, which reinforces the benefit ofvirtualization, such as scale-out and efficient hardware utilization. CBoC can be applied tothe development environments of system integrators, infrastructures of SaaS (Software as aService) providers, and server consolidations in enterprises to reduce operating and facilitycosts.

■ Reduces operational workload by en-bloc control of multiple virtual resourcescomposing the system

■ Uses hardware efficiently by on-demand allocation of computing resources■ Reduces the time needed to build a system by using ready-made shared resources

such as shared load balancers■ Reduces the time needed to build a system by using templates of frequently used

system configurations■ Reduces the workload of, and prevents failure in, the application of software patches,

by using templates

Overview

Features


■ Development environments of enterprises that develop information and communicationstechnology (ICT) systems or services: efficient use of hardware and avoidance ofexcessiveinvestment byon-demand allocation of computing resources

■ SaaS providers’ infrastructures: cost-effective service provision based on low facility andoperating costs byefficient and automatic accommodation of manycustomers

■ Server consolidations in enterprises: reduction in the number of servers, leading toreductions in facilitycosts, facilityspace, and powerconsumption

Cloud Computing Technologies: CBoCNTT Information Sharing Platform Laboratories

Cloud computing, Virtualization, Operations and management

Example of development environment used byenterprises that develop ICT systems or services

Distributed tables

Shared database

Shared loadbalancer

Storage units

ICT administrator

Cloud data center

Operations and management function

Manage resources

Monitor

Project Cdevelopment environment

Project Bdevelopment environment

Project Adevelopment environment

System configuration templates

System construction time is reduced by using ready-made shared resources

Hardware is used efficiently by on-demand allocation of computing resources

One-touch activation

Operational workload is reduced by en-bloc control of multiple virtual resources

Virtual systems sharing computing resourcesReduction in workload and avoidance of failure in patch application by using pre-patched templates for Linux or Windows servers

Project Ddevelopment environment

Project Edevelopment environment

Lead-time in system construction is reduced by using templates of frequently used system configurations

Servers

- Linux is a registered trademark of Linus Torvalds in the U.S. and other countries.- Windows is a registered trademark of Microsoft Corporation in the U.S. and other countries.




H-PF-4

A VPN*1 authentication system for next-generation networks (NGNs), called “AAA*2,” ―forproviding RADIUS*3 user authentication (i.e., terminal authentication) in response to multipleVPNs on an NGN― was developed. By providing (1) high-level conformity needed for NGN-VPN services, i.e., interoperability (assumed to be with various corresponding legacy-network termination equipment) and handling of line-identification information of legacynetworks/NGNs, (2) high extensibility for flexibly handling future service expansion and (3)service continuity during hardware faults and occurrence of disasters, redundancy ofequipment and facilities between distant regions canbe created at low cost.

■ Highly secure VPN authentication based on line-identification information of NGNsand legacy networks is achieved

■ Method for synchronization of data between remote regions by using low-costdatabase middleware

■ RADIUS authentication architecture that can flexibly handle additional functions■ VPN session information can be provided for host Applications■ Systems can still be provided when architecture is degenerative

Overview

Features


*1 VPN: Virtual Private Network*2 AAA: Authentication, Authorization, Accounting system*3 RADIUS: Remote Authentication Dial In User Service

■ Application as VPN-service authentication system possessing high security and highavailability

■ VPN session information is utilized for authentication and accounting regardingapplication servicesprovided onVPNs

■ Provision of multi-factor authentication systems flexiblycombining arbitraryattributes■ User-authentication capability for newly initiated small-scale services is made possible at

low cost

VPN Authentication System for NGN: “AAA”NTT Information Sharing Platform Laboratories

RADIUS, Authentication, VPN

HGW*2 HGW Terminal,etc.

Legacynetwork

NGN

NGN-OpS

Enterprisenetwork

Outline of NGN-VPN system*1 OpS: Operation System *2 HGW: Home GateWay

User networkUser networkUser network

NGN-VPNauthentication

system（AAA）

Authen-ticationJudgmentReceive

Accounting

Send

Acct

Userattributes

registrationAttributes

transformationAuthentication

based onaccess line ID

Author-ization

Session information

User authentication for application service NGN-OpS*1

Input

Auth

RADIUS authentication architecture of AAA

AdditionalDB

BasicDB

Networkterminationequipment

Networkterminationequipment

Basicfunctions

Additionalfunctions

Documents

Information Sharing Platform Technologies