Protecting Confidentiality of PHI Using a Multi-Layered Approach
Disk encryption using Intel SSD with AES, or AES-NI
Policy: Confidentiality of sensitive data shall be protected at rest and in transit. Data minimization. Good key management. Keys shall not be stored with locked devices.
Security awareness training, and auditing
Secure storage, use and transportation of devices Robust security depends on a multi-layered approach with administrative, physical and technical controls