MedWorm provides a medical RSS filtering service. Over 6000 RSS medical sources are combined and output via different filters. This feed contains the latest medical blog items that have been tagged with 'encryption'. Sat, 03 Sep 2011 02:21:31 +0100 http://www.medworm.com/index.php?rid=5181974&cid=t_135684_113_f&fid=38236&url=http%3A%2F%2Fwww.healthcareitnews.com%2Fblog%2Fhow-evaluate-hipaa-security-compliant-data-center If you host your healthcare data with a data center, certain administrative, physical and technical safeguards should be in place, as defined by the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. Although all service providers tout their data centers as secure, how do you confirm it truly is HIPAA Security Rule compliant?  read more (Source: Healthcare IT News Blog) Healthcare IT News Blog blogs http://www.medworm.com/rss/comments.php?id=5181974 Thu, 01 Sep 2011 12:57:30 +0100 5181974 http://www.medworm.com/index.php?rid=5029309&cid=t_135684_180_f&fid=38610&url=http%3A%2F%2Fwww.productivity501.com%2Fdigital-signatures-encryption%2F4710%2F Conclusion And there you have it.  You now understand encryption  and digital signatures better than 99% of the population.  If you are interested in starting to use email encryption, I recommend getting  a free set of certificates from Thawte or Comodo. (Thawte may be canceling their free program, so Comodo may be the better choice.) The setup process is fairly simple and they have instructions on how to get various email clients configured. As I said before, this article is me trying to do my part to help society move from paper to digital.  If you want to help, please take a few minutes to share this with someone else. Want to go paperless? Checkout the Paperless Office website. This article was useful when looking for:digital certificate (514)email encryption (304)digital signatur... Productivity501 blogs http://www.medworm.com/rss/comments.php?id=5029309 Wed, 13 Jul 2011 13:09:05 +0100 5029309 http://www.medworm.com/index.php?rid=4921554&cid=t_135684_113_f&fid=34634&url=http%3A%2F%2Fwww.emrandhipaa.com%2Femr-and-hipaa%2F2011%2F06%2F08%2Fhipaa-requirements-phi-in-natural-disasters%2F Brian Van Zandt, a long time reader of EMR and HIPAA and an account executive at a managed IT services company in New York, NST, sent me the following fascinating question. I’ve had a conversation with a few people recently about something that been on the news a lot recently. A tornado in the mid west destroyed a hospital and patient records, I heard about x-rays specifically, were found miles from the hospital. In extreme cases like that, are hospitals still liable for penalties from HIPAA for losing patient information? First, I have to start with my regular disclaimer that I’m not a lawyer, I don’t play one on TV and much prefer being a blogger. Consult a lawyer for legal advice. With that disclaimer, it’s a fascinating situation to consider. I remember from my busi... EMR and HIPAA blogs http://www.medworm.com/rss/comments.php?id=4921554 Wed, 08 Jun 2011 17:16:08 +0100 4921554 http://www.medworm.com/index.php?rid=4424274&cid=t_135684_107_f&fid=36672&url=http%3A%2F%2Fwww.sciencebase.com%2Fscience-blog%2Fthe-trouble-with-encryption.html Lots of us encrypt files using the likes of AxCrypt and TrueCrypt. If there’s a risk of losing a device carrying sensitive information such as contacts, email, bank statements, invoices etc, then it is worth using such a tool. The ease with which a file, folder or even complete hard drive or USB device can be encrypted always beggars the question as to why more people, and particularly government and other official departments do not use it as a matter of course. Encryption is the only sure way to keep prying eyes from reading your private data. Unfortunately, encryption comes at a price: an encrypted file is so obviously hiding something that law enforcement, thieves or anyone else for that matter can deduce almost immediately that a file that has been encrypted must be important in... Sciencebase Science Blog blogs http://www.medworm.com/rss/comments.php?id=4424274 Tue, 01 Feb 2011 19:00:15 +0100 4424274 http://www.medworm.com/index.php?rid=4294779&cid=t_135684_113_f&fid=34634&url=http%3A%2F%2Fwww.emrandhipaa.com%2Femr-and-hipaa%2F2010%2F12%2F23%2Femail-is-not-hipaa-secure%2F An interesting discussion happened in the comments about HIPAA secure fax services in regards to the security of email. Being a tech person who formerly managed a few different corporate email systems, sometimes I forget that many people don’t understand some of the details about the security (or lack of security) that’s provided by email. The short story is: Email is NOT HIPAA Secure (at least in 99% of cases) There is a way to encrypt email sent between 2 email systems, but so far a standard and mechanism for encryption between all the vast number of email providers has not been established. I won’t go into the details of why this is the case (cost of encryption, standards for encryption, etc), but suffice it to say that almost none of the email systems send encrypted e... EMR and HIPAA blogs http://www.medworm.com/rss/comments.php?id=4294779 Thu, 23 Dec 2010 17:54:14 +0100 4294779 http://www.medworm.com/index.php?rid=4151943&cid=t_135684_113_f&fid=34634&url=http%3A%2F%2Fwww.emrandhipaa.com%2Femr-and-hipaa%2F2010%2F11%2F05%2Ffull-disk-encryption-for-hipaa-protected-computers%2F In all of the various HIPAA violations I’ve read about, they almost always blame some lack of encryption on the violation. In most of those cases it’s a laptop or other mobile device that should have had disk encryption that didn’t. The problem I have with disk encryption is that I’m not familiar with any really easy to implement, but effective solutions for doing full disk encryption on a device. I’m not talking about enterprise encryption. I’m talking about encryption that can work in the small or even solo medical practice. Not to mention at the small clinic price point too. If you know of a solution, I’d love to hear about it. Related posts:Obama Wants Full EHR by 2014 Obama has held very strong on his commitment of $10... Full CCHIT Certifi... EMR and HIPAA blogs http://www.medworm.com/rss/comments.php?id=4151943 Fri, 05 Nov 2010 13:58:27 +0100 4151943 http://www.medworm.com/index.php?rid=4040547&cid=t_135684_87_f&fid=36438&url=http%3A%2F%2Ffeedproxy.google.com%2F%7Er%2FCato-at-liberty%2F%7E3%2FAbyw2kRBRUg%2F By Jim HarperThe Washington Post has a poorly thought through editorial today on the Justice Department’s “CALEA for the Cloud” initiative. That’s the formative proposal to require all Internet services to open back doors to their systems for court-ordered government surveillance. “Some privacy advocates and technology experts have sounded alarms,” says the Post, “arguing that such changes would make programs more vulnerable to hackers.” Those advocates—of privacy and security both—are right. Julian Sanchez recently described here how unknown hackers exploited surveillance software to eavesdrop on high government officials in Greece. “Some argue that because the vast majority of users are law-abiding citizens, the government... Cato-at-liberty blogs http://www.medworm.com/rss/comments.php?id=4040547 Thu, 07 Oct 2010 18:46:38 +0100 4040547 http://www.medworm.com/index.php?rid=4003242&cid=t_135684_87_f&fid=36438&url=http%3A%2F%2Ffeedproxy.google.com%2F%7Er%2FCato-at-liberty%2F%7E3%2FEKvvjeIVyVo%2F By Julian SanchezIf there were any doubt that the 90s are back in style, witness the Obama administration’s attempt to reignite the Crypto Wars by seeking legislation that would force Internet services to redesign their networks and products to provide a centralized mechanism for decrypting user communications. It cannot be stressed enough what a radical—and terrible—idea this is.  I’ll be writing on this at greater length this week, but a few quick points. First, while the Communications Assistance for Law Enforcement Act (CALEA) already requires phone and broadband providers to build in interception capacity at their network hubs, this proposed requirement—at least going on the basis of the press description, since there’s no legislative text yet—is both broade... Cato-at-liberty blogs http://www.medworm.com/rss/comments.php?id=4003242 Mon, 27 Sep 2010 15:43:01 +0100 4003242 http://www.medworm.com/index.php?rid=3740588&cid=t_135684_87_f&fid=36438&url=http%3A%2F%2Ffeedproxy.google.com%2F%7Er%2FCato-at-liberty%2F%7E3%2F0qu4dzOffo4%2F By Jim HarperWhen I know I’m going to write something more technical and detailed, I generally switch over to writing on the TechLiberationFront blog, which has a lovable propeller-head audience (and authors).  If you don’t mind wading through semi-technical talk of radio waves and encryption, you might enjoy the TLF post, “Consumer Watchdog Gets Creepy With Congress Trying to Make its ‘WiSpying’ Case.” In its misleading and over-the-top effort to highlight corporate wrongdoing, Consumer Watchdog—a California corporation that reported over $3 million in 2008 revenue—arguably did more to invade privacy than the object of its attack. (Source: Cato-at-liberty) Cato-at-liberty blogs http://www.medworm.com/rss/comments.php?id=3740588 Fri, 09 Jul 2010 18:33:34 +0100 3740588 http://www.medworm.com/index.php?rid=3690934&cid=t_135684_113_f&fid=38236&url=http%3A%2F%2Fwww.healthcareitnews.com%2Fblog%2Fare-you-ready-data-breach The handling of data breach incidents has become a way of life for healthcare providers and with other HIPAA covered entities. With the passage of the HITECH Act last year, there are now substantial penalties that can be levied, up to $1.5 million. This fact, combined with a requirement to notify the Department of Health and Human Services as well as the media for data breach incidents that affect over 500 individuals has, for the first time, resulted in public records being kept for such incidents. (Source: Healthcare IT News Blog) Healthcare IT News Blog blogs http://www.medworm.com/rss/comments.php?id=3690934 Wed, 23 Jun 2010 18:49:33 +0100 3690934 http://www.medworm.com/index.php?rid=3529770&cid=t_135684_87_f&fid=36438&url=http%3A%2F%2Ffeedproxy.google.com%2F%7Er%2FCato-at-liberty%2F%7E3%2FwuvmdiXeoc4%2F By Jim HarperSenate Democrats have solidified and given more definition to their plan to create a biometric national ID, the centerpiece of their immigration reform proposal. (For reasons unrelated to the national ID plan, Senator Lindsey Graham (R-SC) has dropped out of the picture for now.) The “Conceptual Proposal for Immigration Reform” they released last week gives much more detail to the sketchy plans I previously reviewed. In my Cato Policy Analysis, “Electronic Employment Eligibility Verification: Franz Kafka’s Solution for Illegal Immigration,” I wrote about the possibility of a work authorization document limited to that purpose—and my doubts that the government would adopt one. A credential such as eligibility for employment under [the immigr... Cato-at-liberty blogs http://www.medworm.com/rss/comments.php?id=3529770 Mon, 03 May 2010 19:30:19 +0100 3529770 http://www.medworm.com/index.php?rid=3182410&cid=t_135684_180_f&fid=38610&url=http%3A%2F%2Fwww.productivity501.com%2Fdigital-signatures%2F6563%2F Over the past few days, the most popular post on this site has been our explanation of how Digital Signatures & Encryption works. Understanding this is key for our society to get past the point of using dead dinosaurs (gasoline) to ship around dead trees (paper). Please take a few minutes to read it and pass it on. The more people that understand it, the easier it will be to move to more paperless and more efficient work processes. Follow Productivity501 on Twitter.. If you liked this, please consider sharing it with others: --- at Productivity501:Using a Digital Signature?Dealing with Signatures in a Paperless OfficeDealing with Signatures and EmailUsing Acrobat to Sign DocumentsHow to Create a Scanned Digital Signature (Source: Productivity501) Productivity501 blogs http://www.medworm.com/rss/comments.php?id=3182410 Mon, 18 Jan 2010 04:51:08 +0100 3182410 http://www.medworm.com/index.php?rid=2865970&cid=t_135684_180_f&fid=38610&url=http%3A%2F%2Fwww.productivity501.com%2Fdigital-signatures-encryption%2F4710%2F Conclusion And there you have it.  You now understand encryption better than 99% of the population.  If you are interested in starting to use encryption for email, I recommend getting  a free set of certificates from Thawte.  The setup process is fairly simple and they have instructions on how to get various email clients configured. As I said before, this article is me trying to do my part to help society move from paper to digital.  If you want to help, please take a few minutes to share this with someone else. Follow Productivity501 on Twitter.. --- at Productivity501:Dealing with Signatures in a Paperless OfficeUsing a Digital Signature?Encrypted Email LinksUsing Acrobat to Sign DocumentsPaperless Infrastructure (Source: Productivity501) Productivity501 blogs http://www.medworm.com/rss/comments.php?id=2865970 Tue, 06 Oct 2009 16:03:05 +0100 2865970 http://www.medworm.com/index.php?rid=2662539&cid=t_135684_109_f&fid=34795&url=http%3A%2F%2Fsoloshrink.blogspot.com%2F2009%2F08%2Frfid-in-credit-cards.html I believe that we are hearing and seeing enough about hacking and information theft from so many sources that I cannot succeed in conveying anything useful unless I limit my posts to small bits of the whole that are most likely to have an effect on the average person. Today that topic will be the addition of the "convenience" of having a RFID microchip embedded in their credit card. When one of my credit card companies sent me a shiny new card out of sequence (that is, my old one was two years away from expiring) I did what I usually do in such situations. I became suspicious. Why did they do this? I doubted that it was for my benefit or totally in my best interest. OK, what was different? There was a new word printed on the back and the note that I could now just wave my card near a stor... Solo Shrink blogs http://www.medworm.com/rss/comments.php?id=2662539 Sat, 01 Aug 2009 17:30:00 +0100 2662539 http://www.medworm.com/index.php?rid=2657733&cid=t_135684_113_f&fid=38236&url=http%3A%2F%2Fwww.healthcareitnews.com%2Fblog%2Fnext-steps-hit-standards-committee At the July 21 meeting of the HIT Standards, we approved an initial set of standards for quality, clinical operations and security/privacy. We were told to refine these initial efforts by the next meeting of the Committee, August 20, so that ONC and CMS can incorporate the work into the interim final rule. Here's an update on the deliberations of the workgroups. Privacy and Security (Source: Healthcare IT News Blog) Healthcare IT News Blog blogs http://www.medworm.com/rss/comments.php?id=2657733 Fri, 31 Jul 2009 12:26:15 +0100 2657733 http://www.medworm.com/index.php?rid=2511374&cid=t_135684_113_f&fid=38236&url=http%3A%2F%2Fwww.healthcareitnews.com%2Fblog%2Fmeaningful-use-has-arrived After months of anticipation, the definition of Meaningful Use has arrived. Today at the meeting of the HIT Policy Committee, the Workgroup on Meaningful Use presented its work, as a preamble and a matrix. (Source: Healthcare IT News Blog) Healthcare IT News Blog blogs http://www.medworm.com/rss/comments.php?id=2511374 Wed, 17 Jun 2009 15:28:59 +0100 2511374 http://www.medworm.com/index.php?rid=1113312&cid=t_135684_109_f&fid=34795&url=http%3A%2F%2Fsoloshrink.blogspot.com%2F2007%2F12%2Fstorage-and-backup-of-clinical-records.html Clinicians should all be aware of the necessity of keeping secure and private clinical records. A major problem is where to store them. I have been engaged in a seemingly endless quest to find places to put my "stuff" following the sale of a large house in a rural-suburban area and the subsequent move into a much smaller apartment. This compacting process has included such trivial efforts as discarding standard sized Jewel Cases and using either the slim-line type or paper or vinyl sleeves to store CDs and DVDs. I have purchased a very large capacity but small sized Maxtor outboard hard drive. Along with efforts in the computer area, I have given away, donated, discarded, or sold items such as a breadmaker, fine, unused cooking equipment, antique furniture, and half my "wardrobe." The latt... Solo Shrink blogs http://www.medworm.com/rss/comments.php?id=1113312 Sat, 22 Dec 2007 18:52:00 +0100 1113312 http://www.medworm.com/index.php?rid=551382&cid=t_135684_133_f&fid=35452&url=http%3A%2F%2Fwww.graphictruth.com%2F2007%2F04%2Fwhats-really-behind-stop-aclu-pizza.html ACLU - Real ID Pizza NightmareThe government and corporations are aggressively collecting information about your personal life and your habits. They want to track your purchases, your medical records, and even your relationships. The Bush Administration's policies, coupled with invasive new technologies, could eliminate your right to privacy completely. Please help us protect our privacy rights and prevent the Total Surveillance Society.Strangely - or perhaps not so strangely - Domino's Pizza is a major contributor to conservative campaigns, though I'm not sure if they specifically oppose the ACLU. Nonetheless, the choice of a pizza parlor being able to access your private info in order to see if they can or should sell you pizza is an all-too-possible future.With this ad, the ACLU points ... Graphictruth blogs http://www.medworm.com/rss/comments.php?id=551382 Fri, 06 Apr 2007 04:00:00 +0100 551382