November 29, 2017

AWS Fargate and HIPAA Compliant Containers

Ryan Rich

Chief Product Officer and Chief Security Officer

The third day of AWS re:Invent was kicked off this morning with Andy Jassy, CEO of Amazon Web Services, announcing a slew of new AWS services. One such service that has us excited is Fargate.

As Randall Hunt put it in a company blog post announcing the new service:

AWS Fargate is an easy way to deploy your containers on AWS. To put it simply, Fargate is like EC2 but instead of giving you a virtual machine you get a container. It’s a technology that allows you to use containers as a fundamental compute primitive without having to manage the underlying instances.”

We’ve seen an incredible increase in container adoption over the last couple of years. Datica has been a huge proponent of containerization technology since our founding. We use Docker in production on a daily basis to deliver HIPAA compliant environments to thousands of users. We even built our own orchestration layer in 2014, one year before Kubernetes 1.0 was released. To say we’re bought into the concept of containers would be a massive understatement.

It’s because of our long history of containerization support that we’re excited about AWS Fargate. However, that excitement isn’t without reservation. As is the case with most new technology, compliance and security pose great barriers to adoption. We’re deeply aware of these barriers at Datica. The Datica Platform was designed to address the complexities of compliance and security specific to the healthcare industry. The fact is, understanding compliance is difficult enough. That difficulty is exasperated exponentially when it comes time to not only implement that understanding through policy, but prove compliance beyond a reasonable doubt to auditors.

Our primary reservation with Fargate is that it currently is not eligible for HIPAA compliance. Because we sign a BAA with both AWS and our customers, we cannot guarantee full-stack compliance against a service that is not scoped within the BAA that we sign with AWS. This means our customers in the healthcare industry cannot take advantage of such a service.

Luckily, we’ve been working on a Docker-based deployment feature for the better part of the last quarter. By working directly with our customers on improving our deployment process, we’re approaching a limited release of Datica BYOD (bring your own docker). BYOD will give users the ability to deploy docker containers directly on the platform. No longer will deployments be restricted to the git push model. In the future—once it becomes HIPAA eligible—we plan to take complete advantage of AWS Fargate. Until then, we’re confident BYOD will provide an excellent deployment experience for our customers.

BYOD will be released into limited availability in December, 2017. We’re selectively working with existing customers to test these new features. If you’re interested in participating, please reach out to me at, and if you’re at AWS re:Invent stop by booth #519 to chat with us about Fargate and containerization!

tag AWS Healthcare Cloud Cloud Computing Healthcare News


How a major Health System got onto AWS: Recapping the featured session today at AWS re:Invent

Kris Gösser

Chief Marketing Officer

Adam Leko and David Deas discussed how the Datica Platform helped Methodist Le Bonheur (MLH) health system get onto AWS through removing the burden of DevOps and security in a HITRUST CSF Certified way.

event-note November 27, 2017

The AWS re:Invent Ultimate Guide for Makers of Digital Health Products

Laleh Hassibi

Vice President of Marketing

With 1,000 sessions to choose from, we offer a bit of help to our friends out there in the healthcare industry who might be attending AWS re:Invent next week.

event-note November 21, 2017

re:Invent Day #2 — Looking toward the future

Ryan Rich

Chief Product Officer and Chief Security Officer

It's the second day of AWS re:Invent and sessions are in full swing. I was able to attend several healthcare track sessions yesterday (including Datica's) and the future looks bright. Healthcare is poised to fully embrace the cloud in 2018.

event-note November 28, 2017

HITRUST on AWS is possible! Find out how at HIMSS18

Kris Gösser

Chief Marketing Officer

HIMSS is only a week away! On Tuesday, March 6th, Datica is presenting on the topic of HITRUST in the AWS booth #1625 at 11:00am.

event-note February 26, 2018