In a continuing effort to build a Standards and Interoperability Framework to help ease health information exchange, the Office of the National Coordinator for Health IT has launched two projects involving authentication issues.
"The threat environment is significant, and it's not possible for anyone to stay completely secure," Philip Reitinger says in one of his final interviews as deputy undersecretary of DHS's National Protection and Programs Directorate.
From Epsilon to Sony, recent data breaches and legislative trends tell a dramatic story about the turbulent state of privacy worldwide, according to J. Trevor Hughes, head of the International Association of Privacy Professionals.
An inside breach at BofA that led to more than 300 compromised accounts signifies growing concerns about internal threats. But experts say organizations can implement strategies to detect - and in some cases even predict - internal fraud.
"The administration has concerns about this provision and wants to work with Congress to ensure that any such legislation adds clarity and value to our efforts in cyberspace," a statement on policy administration says.
A July trial date has been set for a pay-at-the-pump skimming scheme that allegedly led to the theft of more than $150,000 from six Hawaii financial institutions, highlighting the growing fraud vulnerability of self-service card payments.
Organizations participating in the Nationwide Health Information Network initiative should use digital certificates that meet standards already required for federal agencies, the Privacy and Security Tiger Team is recommending.
Sen. Susan Collins faults part of the administration plan she says could give those who would do harm a roadmap to attack the nation's critical IT infrastructure. DHS's Phil Reitinger says he doubts that would happen.
The recent data breaches at Epsilon and Sony should send a chilling message to privacy officers everywhere. "You can't prepare enough," says Kirk Herath, chief privacy officer of Nationwide Insurance Companies.