Search

Data Loss Protection and Cloud storage

The concept and Application of Data Loss Protection (DPL) in an organization's database is a set of tools and processes used to ensure that sensitive data is not lost, misused, or accessed by unauthorized users. It also provides reporting to meet compliance and auditing requirements and identifying areas of weakness and anomalies for forensics and incident response. In the healthcare sector, the types of data protected are access by unauthorized individuals. HIPAA helps protect patients' privacy by prohibiting specific uses of disclosing health information such as; diagnoses, treatment information, medical test results, prescription information, and many more. We should always remember that anything that can be hacked will be hacked. There is a lot of information uploaded online, and it's not going to slow down. There is information that shouldn't be online, such information that is protected by HIPAA. It should be kept offline or just local, and when clients or customers need the information, it should be requested online and provided offline.


The increase in cloud base services has introduced new areas of the security vulnerability, but at the same time, it has created a lot of benefits. Companies no longer have to have in-house Database (DB) warehouses or even Infractures to support their services. Compared to in-house services, cloud bases services are cheaper, faster, and elastic. On-Premises services will give you control over everything from Application, data, runtime, middleware, O/S, Virtualization, Services, storage, and networking. But IaaS will limit the organization to Application Data, runtime Middleware, and OS. It is the least expensive among the other two. The PaaS gives you control over just the Application and the Data. SaaS will provide you with the least control. A more straightforward example for SaaS is using google Workspace or Cisco WebEx. PaaS is more AWS Elastic Beanstalk, and Iaas is using Rackspace, Amazon Web services, or Microsoft Azure. There are vulnerabilities, such as in 2017, the entire US-EAST-1 for AWS was down. Many companies depended on it because they were using s3 to store their data or using the IaaS or SaaS from AWS. It would not have been a problem if they were held in local DB. Cloud bases services are tailored to their target audiences and business needs


Reference:

https://www.hipaajournal.com/what-is-considered-protected-health-information-under-hipaa/#:~:text=Health%20information%20such%20as%20diagnoses,and%20contact%20and%20emergency%20contact

https://aws.amazon.com/message/41926/

https://www.bmc.com/blogs/saas-vs-paas-vs-iaas-whats-the-difference-and-how-to-choose/


2 views0 comments

Recent Posts

See All