HIPAA and HITECH do not mandate the use of encryption. However, the final Omnibus Rule makes it almost impossible not to use [it].
Las Vegas, Nevada (PRWEB) June 27, 2013
AlertBoot Mobile Security has introduced an encryption and device management solution for HIPAA covered entities and their business associates. In addition to deploying and installing full disk encryption on laptop and desktop computers, the cloud-based encryption service leverages the web to manage BYOD devices, like smartphones and tablets, without increasing the risk of ePHI data breaches.
"HIPAA and HITECH do not mandate the use of encryption. However, the final Omnibus Rule makes it almost impossible not to use encryption on electronic data devices. These diametrically opposite instructions generate confusion when it comes to data security implementation," noted Tim Maliyil, founder and CEO of AlertBoot. "For example, it's not stated what type of encryption should be used to gain safe harbor from the Breach Notification Rule. Should it be a particular encryption algorithm? A particular encryption key length? HIPAA isn't specific on the details."
The Department of Health and Human Services, the enforcer of HIPAA, defers to the National Institute of Standards and Technology (NIST) when it comes to the subject of encryption and other data security issues. Deciphering NIST's guidelines can be a laborious and complex assignment.
However, certain aspects, when it comes to encryption, are easy to infer: For data-at-rest, FIPS 140-2 validation and the AES-128 encryption algorithm (or similar in strength or stronger) are the required. In fact, the HHS itself uses such standards for protecting their own desktop and laptop computers.
AlertBoot Full Disk Encryption for computer disks uses the AES-256 encryption algorithms in its FIPS 140-2 validated solution for greater security. AlertBoot Mobile Security for smartphones and tablets manages and enhances mobile devices' native security tools, ensuring accidental loss and theft do not explode into a data breach.
In addition to satisfying the basic principles required out of proper HIPAA-compliant encryption, AlertBoot's services are engaged in offering clients the most cost-effective and time-saving, easy-to-use solution for securing electronic protected health information.
- On-Demand Dynamic Licensing: Add or cut licenses as necessary, when necessary, in the numbers you need – from a single license to hundreds of licenses.
- Free 24/7 Support: Get help (or direct your users to us) for resetting passwords and other problems at any time.
- Maintenance-free: The cloud-based service means there are no servers to maintain or patches to apply.
- HIPAA Compliance Report: Run audit and compliance reports to ensure that you're actually protected.
- Third Party Verifiability: Our cloud-based service disallows potential tampering of data and reports by insiders, ensuring that supervising agencies and other bodies take the proof seriously.
- Device Agnostic: Secure iOS, Android, Windows Mobile, and BlackBerry devices and computers.
These are just a few of the advantages that one can expect by using AlertBoot. To learn more, HIPAA covered-entities and their associates can visit us at http://www.alertboot.com.
AlertBoot Data Security offers a cloud-based data and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a secure web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe and lock, device auditing, USB drive and hard disk encryption managed services.
Headquartered in Las Vegas, AlertBoot is trusted by thousands of companies worldwide as part of their bring your own device (BYOD) and mobile information management (MIM) strategy.
For more information on AlertBoot Mobile Security solutions, please visit http://www.alertboot.com/.
+1 702-659-8890 x3734