Encrypting patients' data across hospital networks | Cossack Labs

🇺🇦 We stand with Ukraine, and we stand for Ukraine. We offer free assessment and mitigation services to improve Ukrainian companies security resilience.

Case FEB - MAY 2019

Encrypting patients' data across hospital networks


  • Healthcare

  • EHR exchange

Technology stack

  • Google Cloud Platform (KMS, GKE, Redis, VerneMQ)

  • iOS

  • server-side Swift


  • GDPR

  • ISO 27001, ISO 27002

  • Dutch Act on the Medical Treatment Agreement (WGBO)

Technology requirements

Compliance to healthcare regulations

End-to-end encryption of medical data

Strong cryptography


Extensive technology stack

Legacy hospital networks

Customer's data isolation and insider risks


Products and services involved

Themis, <span class="font-normal">a cross-platform crypto library</span>

Themis, a cross-platform crypto library

We used cryptographic library Themis as a building block for transport layer encryption on application level, relying on its interoperability among required platforms and OSs.

Read more
Security architecture assessment

Security architecture assessment

We've built risk, threat and trust models, analysed and prioritised attack vectors, assessed the fitness of selected security controls and their correspondence to ISMS.

Read more
Security advisory

Security advisory

We work closely on establishing the ISMS: objectives, processes and procedures related to risk management and internal security standards.

Read more
Cryptographic audit

Cryptographic audit

We've assessed the cryptographic protocol design, reviewed and tested the code implementation, found design caveats and advised on fixing them.

Read more

Results and outcomes

Results and outcomes

Improve your system security using our solutions

We help you focus on serving your customers better, while relieving your team from security engineering pains and making your users confident that their data is safe with you.

Contact us

Get whitepaper

Thank you!
We’ve received your request and will respond soon.