HIPAA Blog

[ Wednesday, February 16, 2011 ]

Cloud Computing and Security: I attended a presentation yesterday on cloud computing for businesses, and came away feeling a little less panicked about the issue of security with cloud computing, mainly because the cloud computing folks know it's an issue even though cloud infrastructure itself doesn't address it. Rather, participants using cloud computing retain responsibility for "compliance" (which would include HIPAA for covered entities, Sarbanes-Oxley for publicly traded companies, PATRIOT Act issues for companies trading overseas, etc.), and address it the same way they would with any vulnerable data -- mainly encryption. Here's a pretty good 2-part analysis of cloud computing and security, looking at the 3 main cloud configurations (IaaS, PaaS, and SaaS). Dont forget to click on part 2, though.

Jeff [2:19 PM]

Comments: Post a Comment

http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template