Home : News : Blog
Anakam Blog
Insights into Authentication, Identity Management and Trusted Access
Tuesday, February 16, 2010

Patient Identity and Health IT
by Dr. Bill Braithwaite, Anakam CMO
Having a way to represent the identity of a patient in electronic transactions when the patient is not present is critical. According to the HIPAA Privacy Rule, there are at least 17 data elements that can be used to identify a patient that must be removed before a medical record can be considered ‘de-identified’. It is essential that the data that represents the patient be accurately matched to the person who is the subject of this data across all records about that person.

Read More



Friday, February 12, 2010

Telework and Corporate Security
by Jose Jimenez, Anakam Sr. Director, Health Information Technology
In February 2010, Federal Government offices in Washington, D.C. closed for four days because of an historic snowfall in the Washington-Baltimore region. Last fall, President Obama declared the H1N1 flu pandemic a national emergency. These extreme examples and many other more ordinary ones highlight the importance of teleworking in today’s connected environment.

Read More



Wednesday, February 10, 2010

Secrets and Authentication
by Anna Slomovic, Anakam CPO
Five to ten years ago, little known facts about our lives were widely used for authentication before we were permitted access to sensitive information. Quite often the question was, “What was your mother’s maiden name?” This was a “shared secret” model of authentication. Over time, as more organizations use the same facts in various contexts, “shared secrets” become much less secret.

Read More



Tuesday, February 9, 2010

Understanding the Identity Lifecycle—Part 1
by Brent Williams, Anakam CTO
Terminology used in the marketplace for identity management solutions is can be confusing. In some cases, the same word is used to refer to more than one element of the identity lifecycle; in other cases, a certain concept or process may be referred to by varying terms depending on the person speaking or the situation.

Read More



Friday, January 29, 2010

Multiple First Factor Questions Do Not Equal Multi-factor Authentication
by Robert Daugherty, Anakam Sr. Systems Engineer
The FBI recently reported that the surge of Automated Clearing House (ACH) fraud committed by criminals stealing the online banking credentials of small and midsize businesses has resulted in approximately $100 million in attempted losses. As these losses have been discovered and the online security practices at the banks or credit unions in question are examined, it has become apparent that there is cause for concern in the way multi-factor authentication schemes are implemented.

Read More



Monday, January 25, 2010

Authentication and Electronic Signatures
by Anna Slomovic, Anakam CPO
An interesting court case was recently sent for trial in New York federal court. The case revolves around an appropriate level of authentication for an individual who electronically signed an insurance application.

Read More



Tuesday, January 19, 2010

Authentication and "Defense-in-Depth"
by Jose Jimenez, Anakam Sr. Director, Systems Engineering
In all successful data security systems, the goal of the organization should be to combine multiple authentication strategies with the right combination of enterprise security solutions to better assure the organization that the user on the opposite end of the online transaction is the person the company expects to be executing that specific transaction.

Read More



Thursday, January 14, 2010

Authenticating Password Re-sets
by Anna Slomovic, Anakam CPO
In the past few days Google has announced that its Gmail system suffered an attack in which the Chinese authorities apparently tried to gain information about activities of human rights activists. In its corporate blog, Google posted information about the attack and about how it is responding. Interestingly, some of the accounts were accessed not through a security breach at Google but through a misuse of Gmail credentials.

Read More



Wednesday, January 13, 2010

PKI Is Not User Authentication
by Brent Williams, Anakam CTO
We need to take a fresh look at user identity and how electronic systems establish, validate, exchange, and trust identities as more and more transactions move to the Web, and the sensitivity of those transactions grows significantly. There are choices that need to be made about how a user is authenticated in a transaction that are separate from how the transaction itself is authenticated.

Read More



Wednesday, January 6, 2010

Proposed Rule on the Electronic Health Record Incentive Program
by Anna Slomovic, Anakam CPO
On December 30, 2009, the Centers for Medicare & Medicaid Services issued the Proposed Rule on the Electronic Health Record Incentive Program. Together with the Interim Final Rule on Health Information Technology, they provide an initial view into the approach that the Department of Health and Human Services is taking toward ensuring that health information technology will provide privacy and security protections to individuals’ sensitive health information.

Read More



123
Anakam News
News
Blog
Policy
Technical
Product Demo
Want to learn more about our products in the Anakam Identity Suite®? Request an online demo or contact us directly at (888) 826-2526.
Product Demo
RSSSubscribe to this blog
Enter your email address:



Delivered by FeedBurner
Blogroll
Burton Group Blogs: Identity and Privacy
FTC Privacy
Gartner Blog Network
Kim Cameron's Identity Weblog
Life as a Healthcare CIO
NIST Computer Security Division
Opus Research
Privacy Rights Clearinghouse