Published on March 7, 2014
How to ensure cloud data security? © CureMD Healthcare
Affordable Care Act • The benefits of the Affordable Care Act (ACA) are still being debated • The roll-out of the ACA website, Healthcare.gov, and its subsequent problems provide sufficient evidence for enterprises to consider moving to the cloud in order to ensure data security • The Healthcare.gov debacle proves that enterprises cannot move their sensitive data to the cloud while relying blindly on cloud service provider security and assuming that the data is safe
Cloud data concerns • Ask for high security levels – Cloud service providers can provide and maintain high levels of security than many individual enterprises – But as more data moves to cloud, it becomes that much more vulnerable for potential attackers – Data breaches could result in compliance penalties so enterprises need to make sure they have Business Associate Agreements in place as well – the latest HIPAA Omnibus Rule aims to change that by imposing equal responsibility on health IT vendors and providers
Cloud data concerns • Demand secure coding – The Healthcare.gov website reportedly had a complex set of 500 million lines of code that was not properly checked before the portal was rolled out – This also compromised the security of the website – Cloud service providers rigorously test their services before rolling them out to their customers and display a commitment to secure coding practices
Cloud data concerns • Demand visibility – More and more end users are shifting to cloud services and must look to demand visibility from their vendors as part of their contractual agreements – Lack of transparency can be a big problem where users are unaware as to how their information is being used and shared by the health information technology providers
Cloud data concerns • Don’t just rely on provider assurances – In November 2013, when experts identified numerous security risks with Healthcare.gov, they were of the opinion that personal information of millions of Americans was at risk – These experts suggested the site to be taken down, but it hasn’t been done so far – Enterprises that use sensitive data – especially data covered by HIPAA can no longer rely on service provider assurances – If they are taking a risk-based approach, they must independently secure their cloud data through encryption, and practice sound key management –
Read more on blog.curemd.com • To read more on this topic, visit: • http://blog.curemd.com/how-to-ensure-cloud-datasecurity/
Thank you! CureMD Healthcare 55 Broad Street, New York, NY 10004 Ph: 212.509.6200 www.curemd.com
Cloud computing security ... produces about customer activity in the cloud. Data security ... must ensure that their cloud providers adequately ...
Data Security in the Cloud ... as well as how to ensure that no residual data remnants remain upon moving to another cloud service provider.
Yet, it’s true—there are still some people that hesitate to use cloud-based software and one of their primary concerns about the cloud focuses on data ...
As cloud security becomes a priority, businesses must analyze and address their own data security ... and working with the cloud provider to ensure your ...
Cloud Security. Security of the data however is a major issue with the advent ... These methods ensure the security of the knowledge base from both ...
Ensuring Data Security in the Cloud ... is to encrypt any data stored in the cloud. This will ensure you data can't be maliciously modified, ...
CDNetworks cloud data security technologies ... our system and services ensure that the data you share ... Data Security Resources Cloud Security ...
... data security in the cloud, protecting workloads in the cloud and complying with data privacy regulations in a cloud ... to ensure its public cloud ...
... a cloud service provider and don’t take steps to ensure applications and data are just as safe ... to Ensure Cloud Security. ...
Cloud Security Issues Span the Globe. ... can gain legal permission to access data stored on the cloud. ... Follow everything from CIO.com on Twitter ...