[ Wednesday, May 19, 2004 ]
A week or so ago, the Computer Security Division of the National Institute of Standards and Technology ("NIST") came out with a white paper
on implementing the HIPAA Security Rule. It raised a fair amount of din from the HIPAA techies because it isn't nearly comprehensive enough and doesn't even address all of the required standards in the Security Rule.
I'm not enough of a techie to pass on the merits of the NIST paper, but the back-and-forth on it has so far indicated that this is a first-cut by NIST and isn't really intended to be a blueprint for HIPAA Security Rule compliance. If your tech-oriented or involved in computer security, it'll be an interesting read. I think. Maybe.
Jeff [2:12 PM]
Blogger: HIPAA Blog - Edit your Template