• Home

  • Documents

  • Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party...
15

Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Tags:

Embed Size (px)

Citation preview

Page 1: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2
Priscilla Phelps
Remove the mirrored images - hard for people with vision issues
Page 2: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Identify risks with mobile devices:Portable data storageWireless connections3rd party applicationsData integrity Data availability

2

Priscilla Phelps
Make this the first slide
Page 3: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

3

Page 4: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Mobile device: Electronic computing or storage device

›Smart phone

›USB drive

›Tablet

›CD, DVD

PHI: Protected Health Information

4

Page 5: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Mobile devices are necessary in health care

PHI will migrate to mobile devices Mobile technology will evolve Devices will be stolen or lost

5

Page 6: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Types of connections:CellularWIFIBluetoothRadio (RFID)With more to come…

› TransferJet

6

Page 7: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

The risks:› Device is hacked› User sends data to wrong destination

The solutions:› Trusted connections only› Secure connections

♦ SSL for web traffic♦ WPA2 for WIFI

› Data encryption7

Page 8: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

The risks:› Device is lost or stolen

› Device is hacked

8

The solutions:› Encryption, encryption, encryption!› Minimum necessary› Remote wipe capability› Password policy

Page 9: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

9

The risks:› Device is hacked› Device is rendered inoperable/unreliable

The solutions:› Trusted applications only› Minimum necessary› Security application (scans for malware)

Page 10: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

10

The risks:› Device is unavailable› App compromises data

The solutions:› Secure connections, anti-malware, trusted

applications› Update the OS and apps

Page 11: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

The risks:› Device is hacked› App compromises data

The solutions:› Secure connections, anti-malware, trusted

applications, update the OS and apps› Reset the OS (locally or remotely)

11

Page 12: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Minimum Necessary Data Secure Connection Password Policy Malware Protection Data Encryption Trusted Applications OS Management Remote Wipe

12

Can be managed with software

Page 13: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

Identify the benefits of mobility Quantify the risks Weigh the risks and benefits Find a solution that mitigates the risks Write your operator’s manual

› Policies and procedures Keep track of things Keep your staff educated

13

Page 14: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

HIPAA compliance is possible if you have a plan

Achieve the right balance of technology and security

14

Page 15: Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2

QUESTIONS?

Lauri Scharf

[email protected]


Session III: Data Management · Data integrity Data security Data usability and availability Sponsors are ultimately responsible for data management, but processes are often carried

Session III: Data Management · Data integrity Data security Data usability and availability Sponsors are ultimately responsible for data management, but processes are often carried

Documents
Chapter13 -- ensuring integrity and availability

Chapter13 -- ensuring integrity and availability

Technology
High Availability, Data Protection and Data Integrity in ... · High Availability, Data Protection and Data Integrity in the XtremIO Architecture 4 Executive Summary A major goal

High Availability, Data Protection and Data Integrity in ... · High Availability, Data Protection and Data Integrity in the XtremIO Architecture 4 Executive Summary A major goal

Documents
Incident Security & E-Mail Confidentiality Integrity Availability

Incident Security & E-Mail Confidentiality Integrity Availability

Documents
Data integrity guidelines for health services › sites... · Data integrity initiatives of the Department and VAHI Health Data Integrity audit program Health data integrity audits

Data integrity guidelines for health services › sites... · Data integrity initiatives of the Department and VAHI Health Data Integrity audit program Health data integrity audits

Documents
Data: Pure and Simple · Data Governance – Data governance (DG) refers to the overall management of the availability, usability, integrity, and security of the data employed in

Data: Pure and Simple · Data Governance – Data governance (DG) refers to the overall management of the availability, usability, integrity, and security of the data employed in

Documents
Features Scalability Manage Services Deliver Features Faster Create Business Value Availability Latency Lifecycle Data Integrity Portability

Features Scalability Manage Services Deliver Features Faster Create Business Value Availability Latency Lifecycle Data Integrity Portability

Documents
DATA INTEGRITY BPL - SSFA€¦ · DATA INTEGRITY DATA INTEGRITY ––scopo scopo FDA : Ensuring data integrity is an important component of industry’s responsibility to ensure

DATA INTEGRITY BPL - SSFA€¦ · DATA INTEGRITY DATA INTEGRITY ––scopo scopo FDA : Ensuring data integrity is an important component of industry’s responsibility to ensure

Documents
Nosql availability & integrity

Nosql availability & integrity

Technology
Processing Integrity and Availability Controls

Processing Integrity and Availability Controls

Documents
ESULTS ORIENTED ACCOUNTABILITY PROGRAM …...A data strategy and data governance program concerns the overall management of the availability, usability, integrity, and security of

ESULTS ORIENTED ACCOUNTABILITY PROGRAM …...A data strategy and data governance program concerns the overall management of the availability, usability, integrity, and security of

Documents
Microsoft SQL Server High Availability Using VMAX and SRDF/Metro · surviving location and automatically resume I/O operations there without compromising data integrity or availability

Microsoft SQL Server High Availability Using VMAX and SRDF/Metro · surviving location and automatically resume I/O operations there without compromising data integrity or availability

Documents
Chapter Fourteen Ensuring Integrity and Availability

Chapter Fourteen Ensuring Integrity and Availability

Documents
IDC 2013 - How to provide confidentiality, integrity and availability in time of mobility, complexity and big data - RUSSIAN

IDC 2013 - How to provide confidentiality, integrity and availability in time of mobility, complexity and big data - RUSSIAN

Technology
Chapter 14 - ensuring integrity and availability

Chapter 14 - ensuring integrity and availability

Engineering
Data Integrity and Availability in Power System

Data Integrity and Availability in Power System

Documents
PRIVACYRELIABILIT Y SECURITY Secures against attacks Protects confidentiality, integrity, and availability of data and systems Helps manage risk Protects

PRIVACYRELIABILIT Y SECURITY Secures against attacks Protects confidentiality, integrity, and availability of data and systems Helps manage risk Protects

Documents
 · Web viewPayment card industry data security standards K0261 optional Personal health information data security standards K0262 Applying confidentiality, integrity and availability

 · Web viewPayment card industry data security standards K0261 optional Personal health information data security standards K0262 Applying confidentiality, integrity and availability

Documents
Availability and Integrity in hadoop (Strata EU Edition)

Availability and Integrity in hadoop (Strata EU Edition)

Technology
Data Integrity - Video Libraryvideos.med.wisc.edu/files/Data_integrity_MDetry.pdf · Data Integrity • What is Data Integrity? • Learning objective is to “Maintain the integrity

Data Integrity - Video Libraryvideos.med.wisc.edu/files/Data_integrity_MDetry.pdf · Data Integrity • What is Data Integrity? • Learning objective is to “Maintain the integrity

Documents
Availability for state and local government - Providing 24x7 data integrity and business continuity

Availability for state and local government - Providing 24x7 data integrity and business continuity

Technology
Ehsan Foroughi M.Sc., CISSP, CISM. Availability Confidentiality Integrity

Ehsan Foroughi M.Sc., CISSP, CISM. Availability Confidentiality Integrity

Documents
Vol. 7, No. 4, 2016 Data Security, Privacy, Availability ... · Data Security, Privacy, Availability and Integrity in Cloud Computing: Issues and Current Solutions SultanAldossary*

Vol. 7, No. 4, 2016 Data Security, Privacy, Availability ... · Data Security, Privacy, Availability and Integrity in Cloud Computing: Issues and Current Solutions SultanAldossary*

Documents
Chapter One Modern Network Security Threats. Major Concepts Rationale for network security Data confidentiality, integrity, availability Risks, threats,

Chapter One Modern Network Security Threats. Major Concepts Rationale for network security Data confidentiality, integrity, availability Risks, threats,

Documents
© Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Loughran @steveloughran Sanjay Radia @srr

© Hortonworks Inc. 2012 Data Availability and Integrity in Apache Hadoop Steve Loughran @steveloughran Sanjay Radia @srr

Documents
Trusted Digital Repository Design - InterPARES Data Grids Are Trust Relationships • Data-level Trust – Virtualization for integrity, authenticity, access provision, availability,

Trusted Digital Repository Design - InterPARES Data Grids Are Trust Relationships • Data-level Trust – Virtualization for integrity, authenticity, access provision, availability,

Documents
Review and Critique of MHRA Data Integrity Guidance for ...€¦ · Table 1: Data Integrity and Integrity Definitions Source Definition of Data Integrity or Integrity MHRA14 The extent

Review and Critique of MHRA Data Integrity Guidance for ...€¦ · Table 1: Data Integrity and Integrity Definitions Source Definition of Data Integrity or Integrity MHRA14 The extent

Documents
Data Integrity and Availability in Power System Communication

Data Integrity and Availability in Power System Communication

Documents
Relational data integrity 1 Lecture 8 Relational data integrity

Relational data integrity 1 Lecture 8 Relational data integrity

Documents
22-1 Last time Data Mining Integrity and Availability Privacy and Data Mining Privacy-Preserving Data Mining

22-1 Last time Data Mining Integrity and Availability Privacy and Data Mining Privacy-Preserving Data Mining

Documents