Hitachi Medical Systems, Inc.

Oasis & Echelon Sentinel Operations

TECHNICAL NOTES :

Hitachi Medical Systems uses 3 dedicated servers for optimal The Hitachi Oasis and Echelon
operational efficiency and maximum system uptime : MRI Workstations communicate with
Hitachi Sentinel servers using the TLSv1
I.P. Address 133.145.173.152 with subdomain name cryptographic protocol for the safe
rd.sentinel-service.com is used for Remote Desktop features such transportation of data.
as Technical and Applications Support. A Remote Desktop session It uses mutual authentication (2SSL)
can only be started when the operator approves the request when providing extra security between the client
this appears on the MR workstation’s monitor. and server authentication processes.
The scheduled patients worklist functionality will be disabled and
the patient demographic information is hidden during the Remote The Sentinel servers do not respond to
Desktop session for patient’s privacy. ICMP ping commands from the internet
and will only allow connections when
there is an agreement on the correct
I.P. Address 133.145.173.151 with subdomain name
cipher suite TLS_RSA_with_RC4_128_MD5
ws.sentinel-service.com is used for system status information such
(using 128 bit depth encryption w/o
as fluid and pressure levels, temperatures, storage and computerload
compression) in combination with a valid
etc. The MRI systems use background processes for this purpose that
certificate exchange.
require no operator interactions.
System status information is exchanged on
I.P. Address 133.145.173.150 is the only server with a Graphic User a regular basis with a 2–3 minutes interval.
Interface (GUI) for monitoring purposes. Updates and service patches The average amount of 30 data packets
can be uploaded to the MRI systems via this interface. per session generate a total average of
It can be accessed via the URL https://www.sentinel-service.com/qss 5kB network load per session.
and requires a valid login (for HMSA employees only). With an average of 25 sessions per hour,
From this webinterface, a Remote Desktop session can be started and the total amount of network load is 125kB.
will automatically switch communications to I.P. 133.145.173.152 On a daily basis, the MRI systems use a
server for that purpose. total sum of only 3MB of data traffic !
This information exchange is a background
process the user will not notice.

The MRI systems use port 80 for accessing

the Hitachimed.com website.
Port 443 is used for all secured
communications with the Sentinel servers.

The secure Remote Desktop sessions are

The Sentinel Server Graphic User Interface
Hitachi Medical Systems America, Inc.
1959 Summit Commerce Park, Twinsburg Ohio 44087
Tel.: 330-425-1313
© Copyright 2010. All rights reserved HMSA
controlled by the embedded VNC
program. Before a connection is
established, all patient demographic
information from the DICOM headers wil
be replaced by asterisks, according to
HIPAA regulations, for the patient’s
privacy.