HIPAA Compliant Server in Amazon EC2

5 pts.
Tags:
AWS
HIPAA
HIPAA Compliance
Hi, I have an instance in Amazon EC2 and need to be HIPAA compliant. I have two doubts, 1. Should I need to do a block level encryption of the database storage. 2. Should I need to encrypt sensitive data before storing in the database. 3. Best database software to handle with the encryption Any help will be highly appreciable, Thank You.

Answer Wiki

Thanks. We'll let you know when a new response is added.

The Amazon cloud won’t make your application “HIPAA compliant”, nor will any encryption controls you put in place. You have to perform a risk analysis and determine what’s vulnerable and then implement the controls needed to keep things in check.

Here’s a link to the HIPAA Security Rule (the info you need). And here’s a link to my newly-updated book on HIPAA compliance that you may be interested in. Always remember that HIPAA compliance doesn’t come in a box.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • AKLong
    Being compliant is not as simple as you are making it sound. I recommend contacting encryption companies and discussing with them how to encrypt your data and asking said companies if they are FIPS and AES validated. Try Winmagic Data Security.
    10 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following