|
Healthcare Cyber Security Can Implement “Seven Levels of Assurance”
Access Smart® Secures PHR and EMR Data through Authentication, Identification and Authorization without PKI
Ladera Ranch, CA – Oct. 10, 2009 –Access Smart announced today that it will be offering “Seven Levels of Assurance” to safeguard personal health records (PHR) and electronic medical records (EMR) from a data breach. Power LogOn makes secure password management possible using affordable smartcard technology. By providing users with the convenience of never having to remember or type another password IT departments are free from the cost and hassle of continually resetting passwords.
As healthcare records go digital, total security in protecting patient’s personal information is even more paramount in these days of ever increasing identity theft and government privacy protection legislation. HIPAA, HITECH, Red Flags, FACTA and state laws are putting burdensome responsibilities and financial risks on the medical industry. According to different industry research firms, healthcare data breaches account for over 20% of all these breaches and it’s growing. While IT security does a great job of securing the data within the network from malware, viruses and worms, the Achilles Heel is still the front end. That is where Power LogOn completes the security architecture.
Every PHR and EMR application requires a user name and password to access data. The security threat is not the password but how we, as users, pick and manage the password. Do you know employees who use the same password everywhere, have a simple password or write their passwords on notes by their desks? Are you one of those employees? Don’t be ashamed. You are in the majority.
When IT security implements policies to have complex passwords and frequent password changes that only compounds the problem because it forces the employees to implement poor password management practices. Do you know that IT cannot block or prevent access to data when a legitimate user name and password is entered, no matter who types it, and these unauthorized accesses are not detected or counted as a data breach?
Access Smart’s Power LogOn uses powerful smartcard technology to secure the “front door” of the virtual world.
Power LogOn will authenticate, identify and authorize the person requesting data at the front end before the person ever gets into the network by taking advantage of our “Seven Levels of Assurance”.
1. Something you have – the smartcard
2. Something you know – a PIN
3. Something you are – fingerprint
4. Something the card has – card data encryption keys
5. Something the card knows – account URLs, passwords, user names, etc.
6. Something the card is - Chip Specific Serial Number (CHUID)
7. Something the card knows about you – user’s Classification code
“Securing medical information through authentication, identification and authorization is a direct response to our customers’ needs,” said Dovell Bonnett, founder and CEO of Access Smart. “We provide hospitals, clinics and offices with a low cost of ownership solution that safeguards them from an expensive data breach.”
Since Power LogOn runs on a secure network, network administrators maintain real-time control over a cardholder's ability to logon to the network. Administrators can "manage" logon entries for cardholders, loading changes and updates to cards, and even “kill” a card that is already in the field. So, if the card is ever lost or stolen it will no longer be accepted within the system.
Power LogOn leverages both the smartcard and network security by using the card as an authentication token, and using a secure network server as the secure storage device. To add even more value, we can combine RFID physical access into the card. “Because the data itself is secured by multiple layers of assurances,” said Mr. Bonnett, “then, even if someone steals the card, they cannot access the data.”
Easy to Evaluate
Access Smart offers Power LogOn Administrator Starter Kit for only $279. The kit contains software, cards, readers, manuals and limited free technical support; everything to fully test Power LogOn. If Power LogOn doesn’t meet your needs you have 90-days to return it for a 100% refund.
About Access Smart, LLC:
Headquartered in Ladera Ranch, California, Access Smart, LLC removes the burden and cost of internet security on employees, IT administrators and business owners. Dedicated to empowering businesses and consumers to securely regain control over their digital information, Access Smart offers unique, high-quality, integrated hardware and software packages that securely manage important data over wired and wireless networks, computers, Point-of-Sale devices, kiosks, and any other device that can accept and communicate via smartcard technology. For more information about Access Smart, please visit www.Access-Smart.com.
Access Smart and Power LogOn are registered trademarks exclusively licensed to Access Smart, LLC. Other product names are either trademarks or trade names of their respective holders.
###
click here for the PDF version
|