X hits on this document

PDF document

Safeguarding Health Information: Building Assurance through HIPAA Security - page 14 / 29

77 views

0 shares

0 downloads

0 comments

14 / 29

Protecting Confidentiality of PHI Using a Multi-Layered Approach

Technical Controls

  • Disk encryption using Intel SSD with AES, or AES-NI

Administrative Controls

  • Policy: Confidentiality of sensitive data shall be protected at rest and in transit. Data minimization. Good key management. Keys shall not be stored with locked devices.

  • Security awareness training, and auditing

Physical Controls

  • Secure storage, use and transportation of devices Robust security depends on a multi-layered approach with administrative, physical and technical controls

14

Document info
Document views77
Page views78
Page last viewedThu Dec 08 20:07:47 UTC 2016
Pages29
Paragraphs513
Words2482

Comments