One of the early themes that has emerged from the initial discussions of the Office of the National Coordinator’s privacy and security tiger team is the need for stronger protection of the confidentiality and privacy of…
Trust in a security context normally means reliability or, in the identification and authentication context, authenticity. When the term trusted is applied to a system or capability, the same connotation conveys — that is, a trusted…
The emphasis on security and privacy in electronic health record (EHR) systems as a prerequisite for building consumer trust in these systems both overstates the extent to which security controls can in fact provide trust, and…
In the wake of the release of its updated Special Publication 800-37, Guide for Applying the Risk Management Framework to Federal Information Systems, which among other things calls for federal agencies to continuously monitor the security…
The last-minute apprehension of the would-be Times Square bomber, who had already boarded an international flight despite being placed on the government’s no-fly list, provides one of the rare instances where real-time integration or data propagation…
Representatives from the HHS Office for Civil Rights (OCR) said last week that OCR plans to begin conducting HIPAA compliance audits for security and privacy later this year, implementing a proactive audit program required under the…
The Social Security Administration (SSA), citing an increased volume of claims and requests for its services, is evaluating ways to conduct more of its transactions online. Before making such a move SSA needs first to establish…
CSO Online Headlines Dark Reading
SecurityArchitecture.com