Help stop SOPA/PIPA

Posted on January 17, 2012 by Ann Isaacson

TMI seldom speaks out publicly about political issues, but the House Judiciary Committee’s possible passage of these two bills tomorrow will affect companies like us and end users like all of our customers greatly. Wikipedia and other online services have scheduled a planned blackout this Wednesday to protect the Stop Online Piracy Act (SOPA) and the Protect IP Act (PIPA). These companies, and other giants like Google and Twitter who have been vocal in their objections but plan no outages, object to language in both bills that would grant the US government the right to block entire websites with copyright-unfringing content on them from the Internet. TMI is reaching out to our customers because we feel strongly that passage of either or both of these bills will critically impact you, our customers, and companies like us across the US.

Here’s a link to a reprint of a recent article from WebDesigner.com that explains what SOPA and PIPA are, how they can affect you, and how best to voice your opinion with our lawmakers:

http://www.1stwebdesigner.com/design/how-sopa-pipa-can-affect-you/

The House Judiciary Committee will be voting on SOPA tomorrow, so here’s what you can do in a few minutes today:

• Call your State Senators, either directly or by using the tool found in www.Americancensorship.org .

• Sign an online Petition, such as the one which can be found at http://www.avaaz.org/en/save_the_internet

• Share this email with others who might be interested in joining you, and TMI, in supporting this effort.

Thanks for your help.

Posted in Uncategorized | Tagged | Leave a comment

Four Destructive Myths Most Companies Still Live By

Posted on November 9, 2011 by Ann Isaacson

This is a reprint of a blog written by Tony Schwartz, President/CEO of The Energy Project. It’s what we all know to be true, and yet here I am, reprinting this blog post, reading my email and listening to a webcast…I knew I was doomed when I went from one monitor to two and consider getting a third daily.
Here it is:

Myth #1: Multitasking is critical in a world of infinite demand.

This myth is based on the assumption that human beings are capable of doing two cognitive tasks at the same time. We’re not. Instead, we learn to move rapidly between tasks. When we’re doing one, we’re actually not even aware of the other.

If you’re on a conference call, for example, and you turn your attention to an incoming email, you’re missing what’s happening on the call as long as you’re checking your email. Equally important, you’re incurring something called “switching time.” That’s the time it takes to shift from one cognitive activity to another.

On average, according to researcher David Meyer, switching time increases the amount of time it takes to finish the primary task you were working on by an average of 25 percent. In short, juggling activities is incredibly inefficient.

Difficult as it is to focus in the face of the endless distractions we all now face, it’s far and away the most effective way to get work done. The worst thing you can do as a boss is to insist that your people constantly check their email.

Myth #2: A little bit of anxiety helps us perform better.

Think for a moment about how you feel when you’re performing at your best. What adjectives come to mind? Almost invariably they’re positive ones. Anxiety may be a source of energy, and even motivation, but it comes with significant costs.

The more anxious we feel, the less clearly and imaginatively we think, and the more reactive and impulsive we become. That’s not good for you, and it also has huge implications if you’re in a supervisory role.

As a boss, your energy has a disproportionate impact on those you lead, by virtue of your authority. Put bluntly, any time your behavior increases someone’s anxiety — or prompts any negative emotions, for that matter — they’re less likely to perform effectively.

The more positive your energy is, the more positive their energy is likely to be, and the better the likely outcome.

Myth #3: Creativity is genetically inherited, and it’s impossible to teach.

In a global economy characterized by unprecedented competitiveness and constant change, nearly every CEO hungers for ways to drive more innovation. Unfortunately, most CEOs don’t think of themselves as creative, and they share with the rest of us a deeply ingrained belief that creativity is mostly inborn and magical.

Ironically, researchers have developed a surprising degree of consensus about the stages of creativity and how to approach them. Our educational system and most company cultures favor reward the rational, analytic, deductive left hemisphere thinking. We pay scant attention to intentionally cultivating the more visual, intuitive, big picture capacities of the right hemisphere.

As it turns out, the creative process moves back and forth between left and right hemisphere dominance. Creativity is actually about using the whole brain more flexibly. This process unfolds in a far more systematic — and teachable — way than we ordinarily imagine. People can quickly learn to access the hemisphere of the brain that serves them best at each stage of the creative process — and to generate truly original ideas.

Myth #4: The best way to get more work done is to work longer hours.

No single myth is more destructive to employers and employees than this one. The reason is that we’re not designed to operate like computers — at high speeds, continuously, for long periods of time.

Instead, human beings are designed to pulse intermittently between spending and renewing energy. Great performers — and enlightened leaders — recognize that it’s not the number of hours people work that determines the value they create, but rather the energy they bring to whatever hours they work.

Rather than systematically burning down our reservoir of energy as the day wears on, as most of us do, intermittent renewal makes it possible to keep our energy steady all day long. Strategically alternating periods of intense focus with intermittent renewal, at least every 90 minutes, makes it possible to get more done, in less time, more sustainably.

Want to test the assumption? Choose the most challenging task on your agenda before you go to sleep each night over the next week. Set aside 60 to 90 minutes at the start of the following day to focus on the activity you’ve chosen.

Choose a designated start and stop time, and do your best to allow no interruptions. (It helps to turn off your email.) Succeed and it will almost surely be your most productive period of the day. When you’re done, reward yourself by taking a true renewal break.

Posted in Efficiency, Management, Thoughts, Uncategorized | Tagged , , , , | Leave a comment

iPhone 4S – It’s Awesome…well, except for the Battery

Posted on November 4, 2011 by Ann Isaacson

Let me just say up front that I was possibly the LAST convert to Apple’s iPhone. The first model was impossible to text on — okay, my long fingernails were more important to me than giving up my Blackberry for a better camera and more fun apps.

But I’m a diehard iPhone user now. One of our employees had a friend who put two aside for us the day the iPhone 4S was released, and we were happy to spend the hours it took to back up the old phones, and customize the new ones. We are both in love with SURI and have told her so. Her clipped “That’s impossible” made us roar with laughter, and she ‘performs’ for all our friends who have not yet met her, telling them where the nearest Chipotle is or how to get wine out of the rug.

But we’re talkers on our iPhones. And texters. And game players while waiting for appointments. And it’s my only camera now.  And the battery dies. So yesterday in USA Today, I read that there’s a bug affecting battery life on the iPhone 4S. Get out. According to the article, “Apple touted great battery life for the iPhone 4S — up to eight hours of 3G talk time — when it introduced the phone last month.”

Uh huh. Call me crazy, but even though I love Apple and my phone, wouldn’t you think you’d be very careful about battery life when you’re putting out a phone designed to do everything except iron your clothes (it will, however, tell you where the closest drycleaner is, and call you a cab to get there after waking you up fifteen minutes earlier than your usual time to give you time to drop your laundry off). Again, according to the USA Today, Creative Strategies President Tim Bajarin opined, “Apple tends to wait until they’re certain of a problem and then works very fast to try and correct it” and that sales won’t be affected.

No, they probably won’t. I still love my phone. But maybe I’ve been around long enough to remember when products came out after they were perfected, a time when stuff just worked the way it was supposed to, particularly phones. (I still have a fondness for that pink Princess phone beside my bed growing up.)

On the other hand, my Princess phone never talked to me if nobody were calling…and the software update should be ready in a few weeks.   Life is good.

Posted in Uncategorized | Leave a comment

Eating Out, Eating In – What’s Next? Printing Your Food!

Posted on November 1, 2011 by Ann Isaacson

The newest weapon in your kitchen arsenal in five years might just be a printer – a 3D printer like the one currently running at the French Culinary Institute in Manhattan. Originally part of a Cornell University project, this new printer takes technology into the kitchen well beyond the printed frosting pictures your local baker adds to your kids’ birthday cakes.

Not a traditional printer; it’s more like an industrial fabrication machine. Users load up the printer’s syringes with raw food — anything with a liquid consistency, like soft chocolate, will work. The ingredient-filled syringes will then “print” icing on a cupcake. Or, according to the inventors, eventually whatever the user can imagine. “You hand [the computer] three bits of info: a shape that you want, a description of how that shape can be made, and a description of how that material that you want to print with works,” says Jeff Lipton, a Cornell grad student working on the project. Lipton is pursuing a Ph.D. in mechanical engineering.

Lipton thinks food printing will be “the killer app” of 3D printing. Just like video games fueled demand for personal computers 30 years ago, he thinks the lure of feeding Grandma’s cookie recipe into a printer will help personal fabricators expand beyond the geek crowd.

“It’s really going to be the next phase of the digital revolution,” he says. And if the proof is in the pudding, there’s already one retailer — www.nextfabstore.com — who offers a version of the 3D printer for sale. It retails for only $3,300.

From cookies at the holidays to school lunches to that romantic wine and cheese date, this might just be the start of the next wave of household staples consumed by the digital revolution. Despite the puns, that’s three if you’re counting, if our primary food sourcing has gone from the farm a hundred years ago to the can and the freezer, and then to the microwave and finally to the fast food drive-through or the carry out line in our local bistro, it seems logical that the next place too-busy twenty-first centurions might get what they are hungry for might be right in the home office!

Posted in New Technology, Retail Technology, Uncategorized | Leave a comment

iTunes Forensic Analysis – A Practitioner’s Guide

Posted on September 23, 2011 by David Isaacson

A guide to iTunes forensic investigations.The following article, which can be read in its entirety here, discusses how forensic examiners can pull apart iTunes to locate the “fruits of a crime”.  This should tell you that what you keep on your devices can and will be exploited if your business is ever part of an investigation or lawsuit.

A Practitioner’s Guide to locating fruits of a crime when explicit files are shared on a local network.

By now most examiners in the digital forensic community have become familiar with Gnutella-based (peer-to-peer) software programs where users can download from and share all types of files with the world. For approximately ten years the capability of sharing all types of multimedia files has extended to local networks by use of the iTunes application and Gnutella-based software programs. Two types of sharing features are incorporated in the iTunes application since version 9; one which allows iTunes users to access (stream) files from a shared library, and the other allows users to import shared files.

Introduction
The first version of iTunes (v1.0) was released by Apple, Inc. in January, 2001.2 Since the release of this paper, 10.4.0.8 was the latest available version and can be downloaded for free from the Apple iTunes Web site (http://www.apple.com/itunes/). The primary purpose of the iTunes program was to provide users with a “one-stop-shop” to organize music, movies, audio books, TV Shows, and more.

Since version 9.x, iTunes has the ability to share files between other iTunes users on a local network by use of a service discovery called Bonjour. Bonjour is also known as zero-configuration networking that enables the automatic discovery of any node, (computers, printers, services, etc.) which uses the industry standard Internet protocol.3 The implementation of Bonjour into iTunes has become a key component on most other applications by Apple that are used on peer-to-peer and client-server networks. When the computer’s registry or file system is examined and the Bonjour service is identified, a forensic examiner will know one or more Apple applications are installed.

Starting with v4, the Digital Audio Access Protocol (DAAP) was introduced into iTunes’ audio player where the music sharing server listens on TCP port 3689. The DAAP is used to not only share music across a local network, but to list a user’s playlist as the host.6

Case Scenario
What prompted the writing of this paper? In a recent child pornography case, two software programs of interest were installed on a suspect’s laptop computer: LimeWire 5.2.13 and iTunes 9.0.1.8. The user did not modify any default settings in LimeWire and therefore downloaded files from the peer network were shared with the world. However, the prosecution took the distribution charge off the table and focused primarily on possession of child pornography. The user downloaded numerous videos from the peer-to-peer (P2P) network using LimeWire with filenames indicative of child pornography. The video files were found in the default LimeWire folders (Incomplete and Saved), which were located under the user’s profile. The Saved folder contained the fully downloaded files found in the Public Shared List of LimeWire. But the main focus from the prosecution’s standpoint was mainly the iTunes program and how it shares files on a local network. Although the distribution charge was no longer a consideration, discovery in the capability of iTunes and the interaction with P2P programs might indicate the user’s possible intent, or at least their knowledge, of sharing video files from the iTunes Library on a local network.

The child pornography case initially stirred up when the suspect and his colleague (witness) were temporarily assigned to a foreign country. Both stayed in separate rooms where each room in the hotel provided a desktop computer with Internet access. However, the available computers were not in English. Therefore the two employees had disconnected the Ethernet cable from the hotel room computer and attached the cable to their personal laptops to gain access to the Internet. With iTunes also installed on the witness’ laptop, the witness opened the program one evening and discovered on the left side-bar of the iTunes interface a shared folder that contained a nickname that he recognized as his colleague (suspect). Out of curiosity, the witness clicked on the shared folder and noticed a list of video files with filenames indicative of child pornography. The witness took a screen shot (print screen) of his iTunes program interface and reported the discovery to his immediate supervisor. Shortly thereafter an investigation was opened, but unfortunately and for unknown reasons, the law enforcement agency did not seize the suspect’s laptop computer until a month after the incident. The suspect’s laptop and the paper copy of the iTunes screen shot were submitted to the computer forensic lab for examination and analysis.

Since 2010, the forensic lab has received many more criminal cases that involved the iTunes application along with P2P software programs.

Read the rest here: http://www.dfinews.com/article/itunes-forensic-analysis

 


Posted in Apple, Apps, Cloud, Computer Forensics, Security, Smartphone, Tablet | Tagged , , , , | Leave a comment

AIIM Content Management Boot Camp – 4 steps to victory over content chaos

Posted on September 23, 2011 by David Isaacson

Here’s a terrific opportunity to learn about content management from the pros at AIIM, the industry content management association.

“Give us 4 hours and we’ll give you 4 steps to winning the battle of information overload. Join AIIM and your peers from organizations like Booz Allen Hamilton, World Bank, and University of Maryland at our FREE, one-day seminar in Washington, DC on September 28.

You’ll get the very latest AIIM research findings to help you benchmark your organization, hear real case studies from users like you, and find out about the most relevant tools and technologies to resolve your information management challenges.”

Schedule and Location
Date:  September 28, 2011
Place:  Capital Hilton
Address:  1001 16th Street, NW, Washington, DC 20036

Register for this free Boot Camp here:  http://www.aiim.org/Events/Seminars/Schedule/Washington-DC-2011

Content Management Boot Camp Agenda – Sep 28, 2011 – Washington, DC
8:00 AM Registration, Continental Breakfast and Solutions Showcase
Grab a cup of coffee and take a seat as you check out our program partners and meet your peers.
Opening Session
8:30 AM Content Management Today: an IT inflection point
Using results from the latest end user research, Atle Skjekkeland, VP of AIIM will lay the groundwork for the day’s program by describing the disruptive forces that are changing the Information Management landscape — and the impact they are having your business. What’s motivating organizations to get serious about their information assets? What’s stopping them from moving forward? Benchmark your organization against these key findings and weigh in on where you are in te journey with our live polling exercise.
9:00 AM An Invitation to Education
Hear about AIIM’s own comprehensive training program, and your special invitation to join the more than 20,000 students who’ve undergone the courses. Receive a free test-drive voucher from our Education partner, Fujitsu, who provides us with a business case for Capture.
9:10 AM The Solution Landscape: Who’s Who in Document, Records, Content, and Collaboration Management
At lightning speed, we’ll put our solution providers in the spotlight and challenge them to articulate the value that their offerings can bring to your organization. Then, we invite you to find out more about them as we open the Solutions Showcase.
10:15 AM Your Content Is the Life Blood of Your Business – Presented By Kodak
Every business is facing a similar challenge. The content is growing faster than the internal systems can handle. When this information is business critical it may require new tools to manage it properly. In this session, Kodak will discuss how companies are working to meet the ever-growing demands of content management within their organization.		 Improve User Engagement and Drive a Social Business – Presented by Oracle
As trends such as mobile, social, and self-service begin to permeate our systems, organizations are looking for a user engagement platform. See how customers such as Land O’ Lakes are bringing together content management and social business with one user engagement platform that drives business processes, resulting in lower costs, higher productivity, and more innovation.
10:45 AM Snack and Coffee Break
Take a breather, digest what you’ve heard, and visit the Solutions Showcase.
11:30 AM Take Control of Discovery – Presented by Iron Mountain
During this content management discovery boot camp presentation, you will gain insight on how you can contain discovery costs and improve compliance, while reducing risk and streamlining your information across the organization. Our team will illustrate how you can quickly and cost-effectively find, organize, prepare, digitize, and code responsive documents to meet litigation, audit, and compliance requirements.		 Printing Less and Saving More
– How the Federal Aviation Administration achieved significant cost and “green” savings by optimizing its output infrastructure – Presented by Lexmark
With the ongoing U.S. federal budget challenge comes the reality that IT and finance leaders alike will have to find unique ways to reduce costs. But, many will undertake vast and complex initiatives that take years to return an investment. At this session, learn how the Federal Aviation Administration changed its philosophy about print, overhauled its output infrastructure, increased services to its employees and reaped significant cost savings – and in short order. Richard Boe of FAA’s Air Traffic Organization will detail the FAA’s approach – including device consolidation and optimization, deploying devices and services, gaining the support of federal employees and lessons learned.
12:00 PM SharePoint and KnowledgeLake – Two Allies Fighting Chaos Together – Presented by KnowledgeLake
Our discussion begins with an acknowledgement of SharePoint’s entry and dominance in the ECM arena and continues with information about where partner alliances compliment and extend the solution. SharePoint capabilities, challenges and case studies will be discussed. In addition hands-on demonstrations of document capture, scanning, search, and viewing scenarios will be presented.		 Fully Automating Approvals and Workflows with Standard Digital Signatures – Presented by ARX
John Marchioni of ARX will discuss how standard digital signatures streamline processes across multiple business functions and applications.  He will also review how they ease compliance with government standards and audit requirements.
12:30 PM Luncheon Roundtables, Solutions Showcase & Prize Drawings
Relax and enjoy a delicious lunch while we “assign” you a table project to identify one challenge and one solution to be discussed in the final general session. Have some fun and share your challenges with your table mates.
Closing Session
1:30 PM 4 Steps to Victory Over Content Chaos
Our final session aggregates the program content to present a framework for resolving your information management issues. A final AIIM prize will be awarded at the end of the session.

 

 

Posted in Efficiency, Enterprise 2.0, Events, Internet, Microsoft Office | Tagged , , , , , | Leave a comment

10 Most Hated Jobs – You guessed it, IT Director is most hated of all.

Posted on September 19, 2011 by David Isaacson

blissOver at CareerBliss, an online jobs site, the most hated job is the IT Director.  There are a lot of reasons stated by CareerBliss, but we suspect it is because the job is critical, your internal clients want results yesterday, and the skills required are difficult to keep on staff.  TMI exists to make the job of IT Director a great job! Instead of complaining about lack of resources or skills on the team, contact us to see how easy and cost effective it is to use our experts just like members of your own IT team.

From Yahoo Finance:  At one time or another, we have all known at least one person who has hated his or her job. That person may have suffered silently or vented constantly, but at the end of the day there was no question this person was truly unhappy with where they spent at least 40 of his or her waking hours every week, for 51 weeks a year.

The reasons for job dissatisfaction vary. Low pay, irregular hours, and lack of a window seat are all assumed to be culprits, and to be sure they can all contribute to a bad attitude on the job. These are actually not the primary factors driving a worker to regard tomorrow morning at 9 o’clock sharp with dread and ill will, however, according to one resource.

CareerBliss is an online resource that bases job satisfaction on multiple factors, including workplace culture, coworkers, and the boss.

According a survey of hundreds of thousands of employees conducted in 2011, CareerBliss determined the 10 most hated jobs, rated on a scale of 1 to 10. In almost all cases, respondents reported that the factors causing the most job dissatisfaction were not lousy pay or a desk near the bathroom. CareerBliss found that limited growth opportunities and lack of reward drove the misery index up more than anything else.

Read about the 10 jobs with the highest levels of employee unhappiness. The results may surprise you.

1. Director of Information Technology
For all the press that teachers and nurses get for their long hours, low pay and thankless tasks, it may be surprising to see the most hated job was that of information technology director, according to CareerBliss. After all, the salary’s pretty good and with information technology such a prevalent part of everyday business, an IT director can hold almost as much sway over the fate of some companies as a chief executive.

Still, IT directors reported the highest level of dissatisfaction with their jobs, far surpassing that of any waitress, janitor, or bellhop. Of those who responded to the survey, one simple, five-word response summed up the antipathy very well: “Nepotism, cronyism, disrespect for workers.”

http://finance.yahoo.com/career-work/article/113308/10-most-hated-jobs-cnbc

Posted in Uncategorized | Leave a comment

HHS plan for health IT strategic plan through 2015

Posted on September 19, 2011 by David Isaacson

The US Department of Health and Human Services has outlined it strategic objectives for health IT through 2015.

Health IT”The technologies collectively known as health information technology (health IT) share a common attribute: they enable the secure collection and exchange of vast amounts of health data about individuals. The collection and movement of this data will power the health care of the future. Health IT has the potential to  empower individuals and increase transparency; enhance the ability to study care delivery and payment systems; and ultimately achieve  improvements in  care, efficiency, and population health.

However,  these technologies  –  including electronic health records (EHRs), personal health records (PHRs), telehealth devices, remote monitoring technologies, and  mobile health applications –  areremarkably  underutilized today.  In 2010, only 25 percent of physician offices and 15 percent of acute care hospitals took advantage of EHRs.iEven fewer used remote monitoring and telehealth technologies. While  many  consumers access their banking information online  daily,  only 7 percent have used the web to access their personal health information.”

If you are a medical professional, read the report here: http://web.mediacdt.com/onc-emerg/FINAL-Federal-Health-IT-Strategic-Plan-0911.pdf

 

Posted in Federal, Healthcare IT | Tagged , , , , , | Leave a comment

App Review – PDF Expert by Readdle

Posted on September 7, 2011 by David Isaacson

Today I was faced with finding a robust PDF viewer with the ability to complete PDF Forms and Capture a Signature.  As it turns out, there is only one app that does the job, and fortunately, it is an outstanding piece of software!

iPad Screenshot 1With the app, you can:

  • Fill out forms. Work with static PDF forms created in Adobe Acrobat.
  • Open huge PDF documents in seconds and scroll through them fast and smooth.
  • Sign PDF documents. Sign contracts, agreements or statements with your own handwritten signature.
  • Sync any folder on Dropbox, iDisk, Readdle Storage or WebDAV storage with a local folder on the iPad
  • Annotate PDF documents. Highlight text, create notes, draw with your finger, underline and strike-through words.
  • Save bookmarks in PDF. This lets you make table of contents for your document right on the iPad.

TMI gives this app 2 thumbs up, 5 gold stars, etc.  Get the app here:  http://itunes.apple.com/us/app/pdf-expert-fill-forms-annotate/id393316844?mt=8

 

Posted in Apple, Apps, Smartphone, Tablet, Telework | Tagged , , , , , | Leave a comment

5 tips for securing your hospital’s tablets

Posted on September 6, 2011 by David Isaacson

From the pages of Fierce Mobile Healthcare

Iris Recognition

Biometric Mobile Device Security with Iris Recognition

Experts tell FierceMobileHealthcare that biometrics certainly are the gold standard in security for mobile devices in healthcare, removing the need for complicated logins and passwords that physicians often forget. But for now, the capability seems a bit far off for tablets.

That’s a problem for CIOs trying desperately to secure the rising tide of tablets, which may be the fastest-growing segment of the mHealth market, but also the least secure. I recently talked with security expert Kerry Shackelford, managing director of security audit and compliance firm Coalfire Systems Inc., about how to harden such devices to ensure HIPAA compliance.

Some of Shackelford’s suggestions include:

“Fingerprint” the tablets themselves. Device fingerprinting is a function that runs through a hospital network and identifies each specific device that logs on. According to the users’ job or role, the fingerprinting system can put boundaries around what that user is allowed to access on the network, according to a report in InformationWeek.

“The technology can fingerprint a physician-owned device, a hospital-owned device, a patient-owned device or even wireless medical equipment, and segment them on your network,” Clay Bozard, security firm Advance2000 Inc.’s medical division president, told Jennifer Dennard, a blogger with health IT research company Porter Research. “The physician devices may only have access to virtual desktops that are managed by the hospital. This design would address both the network security concern and the device management concern.”

Resist allowing resident data on tablets. Web-access is simply far less risky than downloading apps and/or data to the devices, Shackelford says. “If it’s coming through the browser on that device…if patient data is only in there while you’re browsing, there’s much less risk,” he says.

Just be sure you’ve turned off web cacheing on your hospital-owned devices, or that you require clinicians to turn it off on their personal devices, he recommends. You don’t want the tablets capturing or storing cached images of what the browser displays as the clinician is using the device.

If you do allow data downloads to your tablets, login and password procedures can help, but it’s crucial to do a whole-disk encryption, Shackelford says.

“[Tablets are] just so much more likely to be lost than a PC or even a laptop,” Shackelford adds. “Forty percent or more of [recent security] breaches were lost laptops. The risk is high, so trying to justify not encrypting the data shouldn’t pass a risk assessment,” he says.

The good news: Under HIPAA, if the entire device is encrypted, even if the device is lost, it’s not considered a breach, he adds.

Set up a standard configuration and prohibit certain functions. Malware and hackers both often use the software associated with games, cameras, voice-activated dialing, and other non-job-related functions to get onto a mobile device, Shackelford explains. The best solution is to turn those functions off, or remove them from the device.

“If it’s irrelevant to the [physician's job], then just get rid of it. If someone were trying to find a way to get in, they could hack the voice dialing software and replace it with a program of their own that does something completely different,” he warns.

It may not be popular with physicians who want to use their own devices–and keep those functions for personal use–but from a security standpoint it’s a must. CIOs should feel well within their rights to require a standard level of security for any device that connects to the hospital network, he says.

Set requirements for anti-virus software. On hospital-owned devices, this is relatively simple, with the CIO controlling enterprise-wide updates or upgrades to anti-virus software. If clinicians’ are using personal devices, Shackelford recommends that CIOs 1) require users to install a standard anti-virus program and keep it updated, and 2) perform regular audits of the tablets’ anti-virus status. There are a number of products that allow IT managers to determine which devices used on your network haven’t been updated.

“We do audits and look at whether anti-virus is installed on all devices. They can show what date the last upgrade was done, and when the last scan was done,” he says.

Check the “remote wipe” capability. There is a Department of Defense standard for secure wiping, to ensure the data is completely removed from the device. It’s likely your vendor meets the standard, but it’s a question worth asking, to ensure the data isn’t still hanging around after it’s wiped.

Also check that the wiping function can provide a confirmation when the data is successfully removed, recommend experts with security firm Sensei, in an intriguing white paper earlier this year. - Sara Jackson, Editor

Read more: 5 tips for securing your hospital’s tablets – FierceMobileHealthcare http://www.fiercemobilehealthcare.com/story/5-tips-securing-your-hospitals-tablets/2011-09-02#ixzz1XDXpw7DT

 

Posted in Cloud, Healthcare IT, Security, Smartphone, Tablet | Tagged , , , , , | Leave a comment