[ Wednesday, June 08, 2005 ]


Required encryption for data at rest? If you read me at all, you know that I'm not nearly as concerned about the need for encryption of data flying at light speed over the internet as I am about the possible risk of data prior to being sent or after it is received. Recent thefts of computers, particularly laptops, show the vulnerability of data "at rest." According to this story, a California legislator is going to introduce legislation requiring that any data stored on a laptop be encrypted if the data contains personal information.

Could be the next wave of state laws washing over the top of HIPAA, similarly to the new laws in many states requiring businesses to report any losses of confidential personal information or breaches of security that could lead to identity theft.

Hat tip: Mark Eggleston.

Jeff [4:43 PM]

Comments: Post a Comment
http://www.blogger.com/template-edit.g?blogID=3380636 Blogger: HIPAA Blog - Edit your Template