X hits on this document

PDF document

Safeguarding Health Information: Building Assurance through HIPAA Security - page 14 / 29

93 views

0 shares

0 downloads

0 comments

14 / 29

Protecting Confidentiality of PHI Using a Multi-Layered Approach

Technical Controls

  • Disk encryption using Intel SSD with AES, or AES-NI

Administrative Controls

  • Policy: Confidentiality of sensitive data shall be protected at rest and in transit. Data minimization. Good key management. Keys shall not be stored with locked devices.

  • Security awareness training, and auditing

Physical Controls

  • Secure storage, use and transportation of devices Robust security depends on a multi-layered approach with administrative, physical and technical controls

14

Document info
Document views93
Page views94
Page last viewedThu Jan 19 00:24:52 UTC 2017
Pages29
Paragraphs513
Words2482

Comments