GE Vscan Extend User Manual page 238

Privacy and Security
Local Archive - Security capabilities
DICOM connections – Security capabilities
Windows share
NOTE:
Network infrastructure
8-12
The Vscan Extend is provided with an internal archive, for
storing images and patient data locally on the system. The local
archives file repository and patient database do not support file
sharing or remote connection. These can only be accessed
locally.
The patient database is protected with the authentication for
access requirements and no possibility of remote access.
The DICOM connection works as defined by DICOM guidelines.
The application accepts connection only to/from DICOM entities
with IP-address, AE Title and port number matching the
configured parameters in the Vscan Extend Ultrasound system.
The communication sessions are on demand and are always
initiated locally from the system.
The Vscan Extend Ultrasound system's internal firewall has
exemptions for ports used by the defined DICOM dataflows in
the system. Defining a new DICOM dataflow, or changing an
existing dataflow, will cause the internal firewall configuration to
automatically change. This ensures that only ports configured
for a dataflow have an exemption in the internal firewall.
Windows share access can be secured by defining a dedicated
user on the server side. The user credentials for the network
share user must be entered in the configuration UI on the Vscan
Extend Ultrasound system.
There is no network file share on the Vscan Extend Ultrasound
system.
The infrastructure of the network where the Vscan Extend is
connected must be configured to allow traffic as described in
Inbound firewall configuration and Outbound firewall
configuration sections. All other traffic to and from the Vscan
Extend can be blocked in the network infrastructure to prevent
unintended access.
–
Vscan Extend User Manual
5721203-100 Rev. D