 Mark and him. Yeah, yeah, I guess it refers to browser. All right Let's let's get started Welcome everyone My name is Mark Khmelovic And I have with me Balava lanky part of our prog management team. We are going to talk today about The use of blockchain technology in COVID-19 fight Specifically the US HHS project that we were involved with using distributed ledger For testing results reporting. I will cover some of the initial Requirements and how the project developments and Bala will talk through some of the technical implementation details as well So just to begin a little broader though There has been a lot of work done over the last two years in leveraging enterprise blockchain in Health care space and you see some examples here of user blockchain across different use cases within and across the health care community Certainly provide the license and data management credentials, etc. Has been probably one of the more popular use cases We've done some work in that area as well as electronic health records sharing in Europe in particular self-soran health records sharing across health system hospital system Traceability of pharmaceuticals and also medical devices and particularly the under counterfeit tracking has been a very persistent theme and Then more recently of course particularly with one set of the pandemic. We've seen a lot of things around public health surveillance population health management and so on and The HHS project I think falls within that category as well as there's been work around claims and fraud prevention in that area as well Now in terms of COVID-19 fight specifically there's actually a blog that I Wrote recently you can see it on blogs that Oracle at com slash blog change it goes in details to some of this But I'll just summarize quickly one of the earliest efforts that we've done was working with a partner vows Hasera to provide the blockchain capability For me pasta dot org. So this was Aside that was built to collect all of the authoritative data from the World Health Organization and a number of other International and national health authorities to provide it for research as an analyst to have a verifiable source of data blockchain nodes where Provided by Oracle IBM and Microsoft Basically different hyperledge of fabric nodes integrated to work together by Hasera So this was a heterogeneous Multi-cloud network Leveraging hyperledge of fabric implementations from multiple vendors to underpin or basically anchor the data Has the data and ensures that when the researchers report particular data sets in the work that the data is authoritative and in a fully Credentials in terms of organizations is coming from there's also been worked on On Oracle blockchain with some of our partners around vaccination certifications and test results sharing to particularly examples Wotun and elope more recently what on in US and Spain elope in Switzerland and France I believe created applications to be able to track test results status and vaccination status We've also worked with Deloitte on a vaccine distribution ledger This was a project that initially was launched in the UK and then Propagated broader from there Obviously as you understand the complexity of the vaccine Manufacturing and distribution processes and all of the different participants that are involved in that entire supply chain That are value in having in a shared ledger environment and Deloitte and Oracle are working on that But there's a project that I wanted to Move in the wrong direction here. I apologize Here we go. The product that we're going to highlight today is the ones that we've worked with HHS on This was a project that Received a number of awards including the first place at the HHS at anywhere diagnostics designathon and more recently from act IAC which is sort of as a US council for technology and industry advisory We got an innovation award winner for this deployment of blockchain Which looks to be one of the largest in public sector at the rate At least the data is coming in and the testing comes up and I'll talk more about this in detail This was a project that was Focused on helping HHS collect the data testing results Covenant and testing results specifically from non lab environments. So they have Existing labs that report the data normally and they have various mechanisms to do that What's the concern was that as testing expands outside the lab, you know You go to workplaces or airports at home testing with FDA approving the devices a lot of new challenges, right? From places that are not used to any reporting requirements Even manufacturing companies that are relatively new to this and don't know how to report the data To HHS as a ad hoc processes typically file transfer weren't very reliable There was no tracking. There was issues with human arrows And concerns about you know data tampering and such Inconsistent treatment of PHI data and so on so HHS has asked us to come in and help Provide a solution based on some of the previous work we've done with them And they had a set of requirements around security and privacy confidentiality of the data Immutability being able to show that the data is not tampered with integrity of data and identity is maintained throughout They wanted a kind of lightweight API interface to make it test and device agnostic support for standard formats like CSV and natural sevens and Ability to report data in real time. So as tests is being performed The result is being done some of those tests like five minutes 15 minutes, etc. As well as batch reporting as well And perhaps the most important requirement was to provide the single source of truth across multiple agencies So HHS is sharing data with CDC CDC is sharing it with states and local agencies and so on and so As a single source of truth was one of the critical requirements for shared and transparent access and they were able to meet pretty much all of those requirements by Deploying this in a highly secured Oracle FedRAM certified government cloud, of course blockchain ledger itself provides immutability and This was based on Oracle blockchain platform using Hyperledger Fabric as its core framework Integrity of data comes from permissioned blockchain with shorting the authenticity of the members who are reporting the data All those organizations like test manufacturers and venues and so on and then field level validations as well That was implemented in the front end to ensure that all of their Health's data that's being reported, you know maps to valid designations and codes for test results and status and in all other kind of things and demographic data We created a restful API in front of this And ensured that this was very lightweight and easy for anybody to integrate Security for the TPI was provided through us to token basalization The format was at the format definition was a couple levels HHS defines actual payload structure And then it was delivered in CSV and HL7 format HL7 being kind of the health care standards for health industry And most recently we started working on fire formats as well Which is a new standard for health care data sharing and it provided both an API for single test results submission as well as a file upload for batch reporting Resinces Oracle cloud infrastructure So you might ask yourself, you know Why was this based on blockchain technology? What was the drivers for using blockchain technology? So we've started by first of all confidentiality being very important of course Integrity of identity and data and imitabilities. Those were the three basic drivers from confidentiality perspective Of course, we start with a fendrob data center and all the security that comes with that Then we have TLS date encryption and then block volume encryption at rest ensuring we're using only TLS 1.2 and support all those kind of standards around that of course there is permission block change that Authorizes members and then all of the messages coming in even though they're encrypted over TLS Of course, then we check the signatures on the messages There is ability to isolate different ledges in different channels with PHI data and non-PHI data And additional options to do find an access control as well that we provided as the integrity of the data again is supported by Private key-based signatures on all of the messages as well as the fact that there is Separation of duties right in hypoallergia fabric between the peer nodes that stores the legend run smart contracts and ordering services Which creates the blocks and so you could split The ownership and administrative controls in order to ensure that you know No single entity can support the data and endorsement policies on top of that that can be implemented for multi-signature Controls if you need to be able to ensure that the transaction update goes in only after it's been endorsed by multiple organizations and Finally immutability and tamper proofing comes from of course the nature of the ledger itself as cryptographic hatches linking the blocks and Any tampering can be easily detected. However, it can be detected But it's not detected automatically out of the box in the open source version of fabric So we have implemented and verification and auditing tool that sits as part of the platform and Is able on demand to provide verification works with the blocks and ensures that all of the hatches still compute properly? Over the data that's in the ledger and this was Provided as an add-on capability within that environment. It was actually a session earlier I believe yesterday, but it's recorded and available from Bahua young one of our architects talking about that particular auditing capability And of course, you know because of the distributed ledger We're replicating the data automatically across all of the nodes that belong to different organizations and we've worked with HHS and CDC To ensure that they have separate nodes Separate administrative domains and then there are other things as well that can be done to extend this to other organizations So we started by deploying Oracle blockchain platform, which is hyperledge of fabric based in the gaff cloud using basically all of the FedRAMP principles and Requirements as the cloud supports and then this was extended with identity management We have a lot of work we've done around high availability resilience API gateways security enhancement scalability and so on Initially, we deployed this with three nodes for Abbott HHS and for CDC Abbott was collecting the data from the by next now tests HHS approach does an October time frame by November we were in a testing environment and They have the infrastructure running a natural cloud. So through rest API is connecting to the blockchain node in the Oracle cloud and This infrastructure with the force three nodes was live actually By January when they started sending production data and I think we have today over one and a half million test records then we have of course shared nodes that are available and for What's called waters, which is essentially a group of companies sponsored by National Institute of Health rapid-advance diagnostic program radix program They're reporting through a front-end here. That is a shared multi-tenant node And you know, as I mentioned, both of them connecting to CDC and HHS We're on HHS side was unconnecting through a data pump to put it into Oracle database where it just protect and access it And for CDC we're pushing the data into the report stream Infrastructure which is and distributing to the states So this is a node that was built as part of the designer's own effort. We have live reporting coming in from Abbott a loom Q Bd and the number was us and we've gone through the HHS conditional ATO authorization So when you deploy something in a government setting, there is this authority to operate a requirement and HHS man through this process with us to get this authority to operate There is more organizations being on board it There is a number of new test manufacturers coming and then we're of course exploring the fire APIs as well We've recently implemented extension to CDC for pushing the data into report stream and then exploring also extensions for self-sovereign test status verification and Later on for non-covid disease detection, right? Public health needs is that, you know, going to be with us, you know, beyond the pandemic environment so let's talk a little bit about the technical architecture overview and ask Bala to Briefly give us an overview of this from a technical architecture perspective Thanks, Mark. Hi The technical architecture mainly consists of With multiple clouds and multiple components here Let's start with the top the first one on the screen which shows by next now I think by next now is a test kit that has been supplied by Abbott and Abbott uses Azure cloud to rest rest calls to submit the data result data That is good that is gone that they get from patients and it is submitted to our API gateway, which is running on our OCI or Oracle cloud infrastructure, which is Fed ranks a federal I'm certified so as soon as we receive the results from their results from Binax now Abbott what we do is we just go and use our Oracle access manager to go and get it validated with the user user privileges that are assigned to The Abbott users and then we we bestowed it on the blockchain and nodes and there's Once the results are submitted They are sent to Multiple parties that are there in this and one is HHS the other one is CDC Gov node which you see on the right-hand side top boxes where one is fed into the Palantir system using Using our rich history feature where we captured all the data that is sent to blockchain and we build analytics on top of it And also provide the data to the CDC stream, which is a node on the blockchain So there are three as you look at this a circle in the center talks about how many nodes are there for now We have four of them one is Abbott lab that's up. That's up that gives the patient results to Supplies the patient to those to the government node HHS government node and CDC right now We also have waters going through waters is one of the product that the government Results are supplied for you from each of the states You can see a few of the customers who are already submitting it and the data is received by the states here The key purpose of this functional architecture is it can be extended to any any size and it is on the government cloud Which is where I'm certified and we use all the Enterprise blockchain great facilities that are there provided by Oracle blockchain using multiple channels And all the access control which you're seeing and inside the authorizer For using authorizer and what to are done done through Oracle access control manager in this case They are flexible API more the formats that we support like CSV HL 7 and FH AR and You can scale it to the needs of the customer whenever it needs There was a question in the chat saying that how much transactions support to be support we tested and we went through with that but for millions of transactions and I can be extended based on the need though based on the nodes that are there on the block market and look at the next one now I'll give you one one representation of blockchain platform what we support and what we differentiate from others The key thing is Oracle blockchain platform. What what we? Show as a key features the integration with all the hyper ledger Third-party big clouds that are there if you have hyper ledger or an ether party cloud We support integration with that and we also have one more word other on-prem version that can be deployed on your infrastructure Using the Oracle Enterprise Edition those things are very tough for any of the Very easy for all the partners who are there on the network to communicate they they can be on our cloud They can be another hyper ledger fabric and they can have that the hyper ledger fabric notes on other clouds too now The key parts are plug-and-play integrations. We support integrations with all the ERPs and SAP ERP or Orca fusion ERP and other databases that we have we have all the built-in adapters That are that are available on the Oracle integration cloud that can be integrated to blockchain So not only that we have lots of third-party apps that can connect using our full integration cloud and the SAS applications that we also deploy on Oracle blockchain platform In in any case of all the integration capabilities provided by the platform are Built-in and that's the key Key that's a key advantage of having the Oracle blockchain platform and it can be scaled to the level of the customers need Mark you can go to the next slide So here we can see the major value that we add on top of hyper ledger fabric that we have this is May mainly starting the provisioning and integration We provide an easy console and create some new version of how to provision and we provide blueprints to do that And we can integrate with any of the clouds or any of the vendors that you have on your New enterprise and we offer a managed service and also an enterprise edition Which is an on-prem service to in this case on-prem edition to in this case We offer on and we also do IDM integration internally which is all which is all plugged in played with our Oracle integrations or Oracle IDM integration and Control and auditing they basically a lot of Customers are looking for fine-grain access control basically looking from this from the smart contracts perspective Just go and do auditing Giving access to the data that has been sent to the blockchain using the fine-grain access control We provided a good feature for that way you can control those There's a lot of even the the even subscription one is one of the key API API is that we provide for Subscribing to the event that have been published on the blockchain when a transaction happens So there's a rich feature set of like around Good set of API's that you can use to capture the events track the events or anything now Going on to the final consideration key considerations we have Conditional authority to operate we did multiple changes on our one on in this implementation one is outside the normal blockchain mechanisms, which is We we did a lot of cloud of cloud security measures to get it into the OCI FedRAM certified OCI We using the common core security measures and also we did we are going to do We are having the data encrypted that In a data encrypted on the internal side of it using the TLS you and using the block volume encryption with AES-50 say There are a lot of protective measures we took insert internally even using the normal blockchain mechanisms like permission network membership and policy-based act All spaced API's which are tied to the IDM center active services and the API's that are managed via TLS encrypted messages and the fine-grain access control which I talked to So I think these are the key advantages that of using this and we implemented all those so and Finally Going on that's fine mark. You can we can go to the next one. So there are lots of Material and blogs that are written if you this presentation will be shared to you guys in case you you're having any questions You can just look at these They can look at the links that are provided in here for any of the Blockchain platform questions and also there's a developer site e-book that was written in There's a YouTube channel too, which you want to watch and come back to us if you have any questions You can reach out me or Mara any time By just clicking on just clicking on the developer site. Thank you All right. Thanks everybody. Thanks. Well, I appreciate it As well said there's a lot of information you can follow up on There here's a link to the blog post specifically that talks about the use of blockchain and COVID-19 fight There is a great range of different solutions. We just highlighted one of them for HHS But the blog post actually goes into details and a number was a COVID-19 related blockchain implementations And with that we can take a few more questions So feel free go to the Q&A panel Q&A tab on the right and there have been a few questions asked That we've answered there, but I'll read them out as well There was a question about the transaction volumes So we've done initial benchmarking that have a few transactions per second on this infrastructure Of course, it can be easily scaled in the cloud environment The expectation is that some of the test vendors will be doing millions of tests a day Concentrated often in morning hours. Let's say, you know, 9 a.m. or 8 a.m. Whether it's you know kids coming up to coming into school or employers or you know other kind of time-based test environments, right and then of course, you know brought the testing across Sports venues and what else might be coming up the expectation is that that will continue And so we'll continue to see more testing going on and will scale as necessary We have at this point over one and a half million test results that's been collected and then obviously, you know shared With HHS protect the CDC Report stream for the states when necessary and so on So the system is in production since January And is expanding Feel free to ask any other questions again using the q&a panel q&a tab And as Val mentions the presentation is shared if you go to the schedule and you click on the presentation There is a pdf there that you can download as well if you want to go Any particular challenges Oh, yeah, sure. I mean government cloud is Is an interesting place to operate. I mean, it's much more restrictive than what we typically see in commercial cloud environment so, uh, you know in terms of access security multifactile syndication there is a A lot of scannings that goes on beyond what you typically would see in a commercial cloud And in order to get the authority to operate for a government agency They have to go through quite a bit of work that requires documentation Penetration testing that was one of those things we had to do actually specifically for this full-on penetration testing And You know the past that as well so There is a lot of steps involved in getting this authority to operate But the good thing is that once you get it then within that particular government agency There is many other You know potential deployment opportunities that can only refer to the same authority to operate and even in a different agency Uh, you know say that you know this has been done with hhs, but there's conversations with some other agencies now Um, they can refer to that authority to operate When they are requesting their own so they still have to go through their process But that process is much simpler and faster If they can rely on You know another agency having undergun that process because a lot of the requirements are very similar In terms of you know penetration testing and security standards and all of that Mark one more question is more related to blockchain or so central database Why blockchain was a central database since everything is so controlled government environment and Security active security Sure. Well, you know You would think it's controlled but but government is not a single organization, right? Uh, at least in u.s. It's not Uh, you have All of the government agencies and even within sort of cdc is under hhs, but really operates independently So hhs and cdc and then you have some other smaller agencies They all want independent control of the data and then you have States right which all have their own health departments and health agencies and then you have some non-state actors like some of the You know, um, territories and indian governments and so on that are sort of separate jurisdictions within the u.s Um, and then you have the companies that reporting the data as well And so, uh, the desire to use blockchain for mutability Uh for data integrity and transparency across all of those organizations, right single source of truth Nobody wanted to say yeah, we're going to rely on that one database and there's this one agency responsible for the database. Unfortunately You know, it's a much more complex in the government environment when you have so many different agencies across federal level and non-federal And the share part of sharing actually and giving control the access is the p1 Which is which is powerful with the blockchain technology itself. So Yeah All right, any other final questions before we wrap up here. We are At the bottom of the 10 10 10. I think that's our close to our time Uh, feel free to follow up. Uh, you can easily find me and bala on linkedin Or just send an email is basically first name that last name at oracle.com And uh, you know, happy to answer any other questions you might have after if you have a chance to download the presentation. Thank you