Solutions for Federal Healthcare Agencies
Skip Navigation
  • Overview

    The rapid implementation of electronic health records (EHR) has enabled federal healthcare agencies to quickly and easily exchange information among healthcare stakeholders. Protected health information (PHI) is now shared and managed by a variety of parties and from a number of endpoints, each with their own level of security for protecting that data. Reliance on piecemeal protection schemes is ineffective-they are difficult to manage and do not provide optimal, comprehensive security. One seemingly minor release of confidential PHI data can not only violate HIPAA, HITECH, and EPCS controls, but it can put lives at risk.

    How should healthcare agencies protect their PHI data? 

    Encrypt Everything.

    Encryption inherently applies protection to the data itself so even if PHI data is compromised, it is still protected. When it comes to protecting EHRs, there are three main components to effective “Encrypt Everything” strategy:

    • Control User Access – Enforce granular, consistent access control policies to EHRs by implementing a strong multi-factor authentication solution.
    • Protect Sensitive Data – Encrypt EHRs and other sensitive data to keep it safe.
      • Encrypt data-in-motion – Secure data as it travels across the network with high speed encryption.
      • Encrypt data-at-rest  – Apply granular encryption and role-based access control for data residing in databases, applications, files and storage both on-premises and in the cloud.
    • Manage the Protection – In addition to employing strong encryption, it’s critical that your cryptographic keys are treated with the same level of care. For maximum security, dedicated hardware key management protects sensitive cryptographic keys from attack.

    SafeNet Assured Technologies’ encryption and cryptographic key management solutions offer unmatched protection—securing data in motion across the network and at rest in databases, applications, file servers, and storage in on-premises, cloud, and virtual environments. They seamlessly integrate with KeySecure for Government centralized key manager for centralized key and policy management. 

    This holistic approach means you can meet your immediate data protection needs now, while investing in a solution that provides robust security, a growing ecosystem, and the scalability you need to build a trusted framework for the future.

  • Solutions

    Data-in-Motion Encryption Solutions

    SafeNet Ethernet Encryptors: High Speed Encryption
    SafeNet Ethernet Encryptors from Gemalto provide the assurance of FIPS certified security. Designed to support the growing movement towards these Ethernet services, the Ethernet Encryptors secure sensitive data more efficiently than higher layer protocols, thereby lowering the cost of network security and compliance.  SafeNet’s wide range of Ethernet Encryptors address the security and performance demands of both the largest and smallest environment.

    More Information

    Data-at-Rest Encryption Solutions

    SafeNet ProtectApp: Application-level Encryption
    SafeNet ProtectApp from Gemalto provides an interface for key management operations, as well as encryption of sensitive data. Once deployed, application-level data is encrypted as soon as it is generated or first processed and kept secure across its entire lifecycle, no matter where it is transferred, backed up, or copied. The solution enables the implementation of granular access controls that decouple administrative duties from data and encryption key access.

    ProtectApp Product Brief

    SafeNet Tokenization : Application-level Tokenization Service
    SafeNet Tokenization from Gemalto protects sensitive data (primary account numbers, social security numbers, phone numbers, passwords, email addresses, etc.) by replacing it with a unique token that is stored, processed or transmitted in place of the clear data.

    SafeNet ProtectDB : Column-level Database Encryption
    SafeNet ProtectDB provides transparent column-level encryption of structured data residing in databases. It enables large amounts of sensitive data to be moved in and out of the data stores rapidly by efficiently encrypting and decrypting specific fields in databases that may contain millions of records. The solution is extremely scalable and works across on- premises, virtual, and cloud environments.

    ProtectDB Product Brief

    SafeNet ProtectFile: File Encryption
    SafeNet ProtectFile from Gemalto provides transparent and automated file-system level encryption of server data at rest in the distributed enterprise, including DAS, SAN, and NAS servers using CIFS/NFS file sharing protocols. The solution encrypts unstructured, sensitive data on servers including word processing documents,  spreadsheets,  images,  database files, exports, archives, and backups, and big data implementations.

    ProtectFile Product Brief

    SafeNet ProtectV: Full Disk Encryption of Virtual Machines
    SafeNet ProtectV from Gemalto encrypts sensitive data within instances, virtual machines, as well as attached storage volumes in virtual and cloud environments. The solution enables agencies to maintain complete ownership and control of data and encryption keys. With SafeNet ProtectV, data is safeguarded and completely isolated from the cloud service provider, tenants in shared environments, or any other unauthorized party. Through SafeNet ProtectV’s centralized management console, agencies can audit and obtain compliance reporting on users accessing secured data.

    ProtectV Product Brief

    ProtectSED: Self-encrypting Drive Protection
    ProtectSED manages and distributes cryptographic keys for self-encrypting drives located at disparate sites. The solution unifies and centralizes policy management, logging and auditing to make information more readily accessible and demonstrate compliance with data governance requirements.  ProtectSED also gives agencies the ability to remotely wipe self-encrypting drives rendering them unusable and effectively protecting data from being compromised.

    ProtectSED Information

    Cryptographic Key Management

    KeySecure for Government: Centralized Key Management Platform
    KeySecure for Government supports a broad encryption ecosystem for the protection of sensitive data in databases, file servers and storage, virtual workloads, and applications across traditional and virtualized data centers and public cloud environments. It is available in either a hardware or virtual appliance.

    KeySecure for Government supports a hardware root of trust utilizing a FIPS 140-2 Level 2 or 3 Luna for Government hardware security module (embedded in hardware appliance or network-attached for virtual appliance) or the Amazon CloudHSM service (virtual appliance only).

    KeySecure for Government Information

    Hardware Security Modules for Government
    Hardware Security Modules for Government (HSMs) protect transactions, identities, and applications by securing cryptographic keys and provisioning encryption, decryption, authentication, and digital signing services for a wide range of applications. Dedicated crypto processors specifically designed for the protection of the encryption key lifecycle, HSMs act as trust anchors that protect an agency’s cryptographic infrastructure by securely managing, processing, and storing cryptographic keys inside a hardened, tamper-resistant device.

    HSMs for Government Information

  • Encrypt Everything Ecosystem
  • Resources

    Best Practices for Protecting PHI Data

    This on-demand webinar discusses how to apply the Encrypt Everything philosophy to protect PHI data. It breaks down the mandates such as HIPAA and HITECH and teaches participants how to implement best practices to address key regulations. 

    Download Now

    HIPAA Compliance Checklist

    Hospitals, clinics, and any other health care providers that manage private health information today must adhere to strict policies for ensuring that data is secure at all times. These organizations can face steep penalties if this data is stolen or compromised. SafeNet Assured Technologies can help address many of the critical security challenges of keeping private health information private and secure.

    Download Now

    High Assurance Encryption for Healthcare Network Data White Paper

    Big data requires big data networks, so there has been a corresponding increase in the adoption of cloud and data center services; all leveraging high-speed Ethernet and Fiber Optic networks to exchange huge volumes of potentially sensitive information. However, the benefits of connectivity are overshadowed by the increased risk to patient and stakeholder privacy and data security.

    Download Now

    Securing Electronic Health Records in Storage

    While HITECH provides ample incentives for healthcare organizations to employ EHR systems, it also builds on HIPAAto provide more stringent security and privacy rules. Therefore, healthcare organizations that leverage EHR systems must also ensure regulated information is consistently and effectively safeguarded—and do so for as long as that data must be retained, which can be decades in many cases. This paper reveals a key vulnerability that is prevalent in many organizations that have adopted EHR: regulated data held in digital storage systems. The paper also reveals how solutions offered by SafeNet Assured Technologies can help secure this critical area in the healthcare organization’s infrastructure.

    Download Now

    Identity and Data Protection for Federal Healthcare Organizations

    From medical records to insurance forms to prescription services, the healthcare industry has become a networked environment—allowing patient information to be shared and managed by a variety of parties and from a number of endpoints, each with their own level of security for protecting that information. Not only are healthcare organizations oftentimes mandated to protect this information from data breaches and fraud, but it is also imperative for the health of their practice that patients have confidence that their personal information remains private and secure.
    Download Now


Connect with us

Learn more about our products, solutions and services Contact SafeNet AT