In addition to using [NIST validated FIPS 140-2 encryption, CEs and BAs] must be able to supply documented proof that PHI data storing devices are indeed encrypted, and that the risk of a breach is low, such as proving that a strong password was used.
(PRWEB) November 28, 2013
BYOD is a Pandora's Box for many companies but especially so for business sectors that are highly regulated when it comes to data security. One of the most overseen is the US medical sector, where HIPAA and HITECH rules govern the protection and integrity of electronic protected health information (ePHI). Although any number of digital tools exist for protecting ePHI, HIPAA rules have made it clear that ePHI encryption is an important one that cannot be ignored.
However, merely using disk encryption to secure laptops and installing MDM on smartphones and tablets is not enough. In addition to using FIPS 140-2 encryption solutions validated by the NIST, covered entities (CE) and their business associates (BA)must be able to supply documented proof that PHI data storing devices are indeed encrypted, and that the risk of a breach is low, such as proving that a strong password was used.
AlertBoot, a leading provider of mobile device management and full disk encryption managed services that are used across the USA and Europe, by global companies and SMBs alike, can help HIPAA CEs and BAs reach their data security goals:
- FIPS 140-2 validated AES-256 full disk encryption.
- Third party HIPAA reports for audits, monitoring, and documented proof in the event a device is missing.
- Managed and automatically backed up encryption keys for ePHI recovery and data integrity.
- Password management policy tool.
- Device agnostic / Multi-OS environment protection from one console.
The encryption password policy tool, the latest addition to the AlertBoot family of security solutions, further reduces the risk of a HIPAA data breach violation by giving administrators a guaranteed way to control end user passwords. No longer do weak, common passwords pose a danger, hamstringing the powerful security afforded by encryption.
Combined with NIST validated strong encryption, automatic key management, and documented proof, AlertBoot's security solutions for protecting portable endpoint devices provide a way not only to comply with HIPAA, but to assure HIPAA Safe Harbor attainment.
For more information on how your organization can comply with HIPAA requirements on endpoint security, please visit us at http://www.alertboot.com or email us at firstname.lastname@example.org.
AlertBoot Data Security offers a cloud-based data and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a secure web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe and lock, device auditing, USB drive and hard disk encryption managed services.
Headquartered in Las Vegas, AlertBoot is trusted by thousands of companies worldwide as part of their bring your own device (BYOD) and mobile information management (MIM) strategy.
For more information on AlertBoot Mobile Security solutions, please visit http://www.alertboot.com/.
+1 702-659-8890 x3734