7signal Sapphire is a Wi-Fi service assurance and performance optimization solution. This document describes the essential 7signal Sapphire operation principles from HIPAA requirements perspective.

Elements of the Solution

Carat

  • Software operating on standard Linux server
  • Engine operating Eyes and collecting data form them
  • Database for measurement data
  • User interfaces for configuration and analysis
  • Outbound machine interfaces

Eye

  • A hardware device with Linux based measurement software
  • Includes LAN and Wi-Fi interfaces
  • Performs active and passive measurements to network through wireless and wired connections

Sonar

  • Software operating on standard Linux server
  • Test end point where Eyes connect to while making active measurements over the network

Operation

7signal Eyes automatically monitor and measure network operation. Measurements include passive and active methods. Measurement results are sent back to the Carat for storage in a database.

Passive Methods

  • Eye sensors capture 802.11 (layer 2 only) packets from air interface with a Wi-Fi card
  • Eye measures radio signal energy with spectrum analysis chip
  • Based on the captures Eyes calculate metrics’ for radio environment, operation and behavior

Active Methods

  • Eye behave like an end user, but in automated way
  • Eye authenticates and associates to access points and connect also directly through LAN interface
  • Eye connects thought the network towards Sonar which is usually located in data center
  • Eye exercises the network connections with synthetic transactions and calculates metrics for network operation
  • 7signal Sapphire itself does not offer other clients connectivity to network
  • 7signal Eyes do not access any Protected Health Information (PHI) systems at any time
  • Active test use random test content without any meaningful information content
  • 7signal Eyes use the same wireless authentication and encryption as other wireless clients and as defined by the network
  • 7signal solution internal management traffic is encrypted with TLS
  • 7signal Eyes capture only layer 2 802.11 radio packets where user data in encrypted as defined by WLAN network. 7signal does not decrypt or store any PHI data
  • 7signal tests do not alter transmitted PHI data. Eyes follow standardized 802.11 channel access rules
  • Access to 7signal measurement data is limited through user accounts and access rights
  • 7signal Sapphire service assurance and performance optimization platform may help organizations achieving and maintaining their HIPAA compliance

Sapphire Operation from a HIPAA Point of View

  • Sapphire itself does not offer other clients connectivity to network.
  • Eyes do not access any Protected Health Information (PHI) systems at any time.
  • Active tests use random test content without any meaningful information content.
  • Eyes use the same wireless authentication and encryption as other wireless clients and as defined by the network.
  • Internal management traffic is encrypted with TLS.
  • Eyes capture only layer 2 802.11 radio packets where user data in encrypted as defined by WLAN network. 7signal does not decrypt or store any PHI data.
  • Tests do not alter transmitted PHI data. Eyes follow standardized 802.11 channel access rules.
  • Access to 7signal measurement data is limited through user accounts and access rights.
  • The Sapphire service assurance and performance optimization platform may help organizations achieving and maintaining their HIPAA compliance.