|
|
HEALTHCARE SERVICESSecure Healthcare Network Infrastructure ServicesEncrypted Security Requirements for electronic Protected Health Information (ePHI)HIPAA and HITECH ACT security standards compel healthcare organizations to implement adequate means of encrypting ePHI. They include: Web-browser sessions: All links across the Internet carrying PHI must be encrypted. Under the right circumstances, knowledgeable "hackers" can intercept information flowing across the Internet. Email containing ePHI: E-mail communication containing PHI must be encrypted. Implementing Internet e-mail communication with patients and physicians can be problematic because healthcare organizations have little or no control of the recipients' computing environment, so it’s advisable to deploy a gateway security device that screens all popular email protocols. Transmitting ePHI over VPNs:VPNs transparently encrypt all communications. However, some products and technologies that advertise VPN services do not encrypt by default. True VPN software and hardware use public key and secret key cryptography to build encrypted links across the Internet for the duration of the communication session. Traditional VPNs are also quite susceptible to fast-moving, highly complex content-based attacks in real time. Wireless LAN traffic: WLANs require encryption for compliance with HIPAA & HITECH security standards because anyone with the technical know-how and right equipment can monitor open airwave communication. Wired Equivalent Privacy (WEP), which is notoriously porous, should not be relied upon as the sole basis for complying with the HIPAA and HITECH ACT security standards requirement to encrypt WLAN connections supporting PHI. Cost Effective Real Time Security for Protected Health Information (ePHI)Bridge Consulting provides comprehensive and cost effective real-time security solutions to healthcare organizations of all sizes. Bridge utilizes Fortinet Networking devices to provide our clients ePHI a defense against unauthorized access. Fortinet devices provide real-time network speed protection against intrusion and content based threats like viruses, worms and Trojan horses. Fortinet devices eliminate the need for multiple “threat specific” devices like stand alone Firewalls, Intrusion Detection Systems, and Virus Protection Systems. Fortinet systems consolidate point solutions using Unified Threat Management (UTM) technology and are the market leader in this approach. Powered by a unique, ASIC-accelerated architecture capable of deep content scanning and analysis, Fortinet devices are an ideal solution to defend against today’s blended threats – and deliver higher performance than competing systems at a fraction of the cost for any collection of systems with equivalent capabilities. They address the need to deploy real-time virus and worm scanning, Web content filtering, and integrated firewall and VPN services. The functions offered by Fortinet devices deal with both network layer and application-layer threats, and deliver fast, closed-loop protection in the case of an attack. The protection and integrated monitoring capabilities of the systems deliver the security and visibility that enable secure ehealthcare. Healthcare Network Infrastructure ServicesAfter assessment, problem identification, and agreement that Fortinet UTM solutions are the right resolution to client ePHI risk, Bridge consultants will provide the following Healthcare Network Infrastructure Services:
 |
