ARC and SMTP MTA-STS: The State of Domain-based Email Authentication – Part 3
We’ll close (for now) our three part series on the state of domain-based authentication for emails by completing the story on technologies being deployed or defined to improve the security of the email ecosystem. In Part 1, we wrote about using Sender Policy Framework (SPF) and DomainKeys Identified Mail (DKIM) to authenticate the sending mail […]
The HIPAA Breach Notification Rule: What it Really Means to Providers and Insurers
What exactly is ePHI? Who has to worry about it? Where can it be safely located?
There is often a great deal of confusion and misinformation about what constitutes ePHI (electronic protected health information) and how to protect it under HIPAA requirements. Even once you understand ePHI and how it applies to you, the next question becomes, where is ePHI permitted? What is secure and what is not? We will answer […]
Is FAXing really HIPAA Compliant?
Many organizations, especially in the healthcare industry, have an urgent need to send important and sensitive information, like protected health information (what constitutes PHI?), to organizations via FAX (facsimile). Why? Because this is how it has always been done, and everyone is “set up” to be able to handle FAXes quickly and efficiently. Go back […]
HIPAA FAX Breach: Why health care should finally stop faxing
For more information, see: Hospital faxed a patient’s HIV-positive status to his workplace — he’s now suing for $2.5 million Is a FAXing really HIPAA-compliant? HIPAA Faxing: How To Send and Receive FAXes in a Secure and Compliant Way