We explained the concepts of encryption in Episode 2: Let’s Talk Encryption but people continue to ask more about what they really need to do with encryption.
Episode 2: Let’s Talk Encryption
The government and privacy advocates can’t agree on what ‘strong’ encryption even means
First, what can encryption do for you and what it can't do for you.
If you encrypt data on a device but you are hacked when you are logged into the device, encryption isn't too helpful. Encryption is helpful when someone tries to access the data on the device without your key (or password).
Strong Encryption is also subjective - there is no solid authority on what is really strong encryption because law enforcement wants a back door.
What does HIPAA say about encryption? Encryption (Addressable). Implement a mechanism to encrypt electronic protected health information whenever deemed appropriate.
Not very helpful.......
What does OCR say about it? At NIST / OCR HIPAA 2015 conference: If it moves it should be encrypted.
Now that's a line that can be drawn.
Create an encryption plan:
Podchaser is the ultimate destination for podcast data, search, and discovery. Learn More