HealthSuite Edge

Overview

HealthSuite Edge (HS Edge) is Philips' next-generation Virtual Private Network (VPN) solution for healthcare facilities (HCF). Both the hardware platform and the base functionality are delivered together as an unified, fully-managed service. Philips is fully responsible for the life cycle of the hardware as well as the software that constitute the HS Edge service.

HS Edge provides access to core infrastructure services provided by HealthSuite Cloud (HS Cloud). Internal services available across the VPN include a Domain Name System (DNS), access to applications running on HS Cloud, and logging (for managed devices only).

HS Edge serves as a replacement for traditional Philips Remote Service Network (RSN) use cases. Together with other HealthSuite Platform offerings, HS Edge can deliver the demanding and diverse needs of healthcare and life sciences organizations.

The HS Edge service also includes a small form-factor sealed, fan-less, solid-state hardware appliance that is physically installed at the healthcare facility premises. It is designed to operate in a variety of deployments, such as a controlled data center, a healthcare facility (HCF), or as part of a mobile solution. It is an easy-to-install device that requires almost no intervention once it is provisioned.

Edge device
Figure 1. HS Edge hardware

Features

HS Edge is essentially a Device-as-a-Service (DaaS) offering that provides the following capabilities:

  • A VPN Edge router that provides secure VPN tunnel access between devices in the healthcare facility and HS Cloud for remote services.

  • A more secure approach to transport layer security for all the following:

    • HS Cloud (globally distributed, regionally isolated)

    • Legacy Philips service networks

    • Legacy data centers for Philips services (EU, US, Asia)

  • An innovative replacement for existing Secure and Manageable Virtual Private Network (SMVPN) and Dynamic Multipoint Virtual Private Network (DMVPN) routers.

  • An upgraded network infrastructure with increased reliability and efficiency compared to the existing infrastructure.

  • Automated provisioning of VPN connections and firewall rules.

  • DNS Anycast services.

  • Automated and rapid deployment of software upgrades and patches for bugs and vulnerabilities.

  • Ability to host lightweight applications (containers) on the HS Edge device.

  • Comprehensive 365x24x7 network monitoring and management.

  • Automated ticketing for devices that are not reachable.

  • A global control plane for serviceability that applies to all HS Edge devices.

  • Automated deployment, configuration, management, monitoring, and integration of the network components.

Global Availability

Regional hubs provide localized VPN endpoints for peering. This increases performance and network resilience by reducing the number of sites impacted by regional events.

Global deployment dashboard
Figure 2. Global deployment dashboard