Within the world of healthcare compliance and information security, there’s been increasing confusion around some terms and organizations. We’ve heard a bit about some of this confusion, specifically around HITRUST and HIPAA. 

Both are connected to the preservation of health information, yet they fulfill separate functions and are founded on differing principles. This article clarifies the differences between these two. Whether a healthcare practitioner or a business associate, this guide will describe where HITRUST fits into overall compliance (if at all). 

Read More

The Federal Risk and Authorization Management Program (FedRAMP) plays a pivotal role in safeguarding the security of cloud services within the U.S. federal government. An essential element of this program is the Joint Authorization Board (JAB), which is responsible for prioritizing and authorizing cloud offerings offered by cloud providers. 

The JAB prioritization process is a methodical approach to selecting the most impactful CSOs for a JAB Provisional Authorization to Operate (P-ATO). This process holds significance for upholding the integrity of federal cloud services and shaping the future of cloud technology within the government sector.

Read More

In traditional document management, we have several ways to authenticate the legitimacy of information–a signature, a watermark, etc. In digital spaces, we don’t readily have these tools to use. That fact, along with the reality that any piece of information can be copied ad infinitum, made authentication a challenge that security experts needed to solve. 

Enter digital signatures or use cryptography to create an artifact to verify the authenticity and integrity of any piece of digital data. Digital signatures provide a way to ensure that the information has not been altered or tampered with during transmission or storage.

Read More