Presentation is loading. Please wait.

Presentation is loading. Please wait.

When data is encrypted: 1. It must be reasonably encrypted to ensure confidentiality and integrity 2. It must be available even in the event the encryption.

Published byCoral Taylor Modified over 8 years ago

Similar presentations

Presentation on theme: "When data is encrypted: 1. It must be reasonably encrypted to ensure confidentiality and integrity 2. It must be available even in the event the encryption."— Presentation transcript:

1 When data is encrypted: 1. It must be reasonably encrypted to ensure confidentiality and integrity 2. It must be available even in the event the encryption key is lost, stolen or otherwise unavailable

2 “Standards” for encryption  Defining due diligence for UCLA  No rot-13!

3  Types of data of concern  Things to consider  How to approach

4 Availability: Of what data? Records subject to a California Public Records Act request, including email not falling under incidental personal use Administrative book of record data required by applicable law and policy Transient book of record data, e.g., original data created on a laptop that is book of record until it is transferred to a main database Data with under a legal obligation, such as: Non-book of record data (i.e., copies) that the University is under legal obligation to segregate, such as copies of data under a duty to preserve (e-discovery)e-discovery Research data subject to a contracts and grants requirement Data whose unavailability will cause some other institutional impact (e.g., information relevant to a patent dispute)

5 Availability: Things to consider 1 Availability is not a new requirement! It is driven by many legal obligations, including the California Public Records Act that speaks to transparency and accountability of public institutions.

6 Availability: Things to consider 2 Privacy and cultural concerns Intertwining with non-consensual access protocol Native encryption in applications / databases Native encryption of laptops Trend toward ubiquitous native hard disk encryption

7 Availability: How to approach Encryption key management

Download ppt "When data is encrypted: 1. It must be reasonably encrypted to ensure confidentiality and integrity 2. It must be available even in the event the encryption."

Similar presentations

Litigation Holds: Don’t Live in Fear of Spoliation Jason CISO – University of Connecticut October 30, 2014 Information Security Office.

Litigation Holds: Don’t Live in Fear of Spoliation Jason CISO – University of Connecticut October 30, 2014 Information Security Office.
Today’s Schools face:  Numerous State and Federal Regulations  Reduced Technology Funding  More Stringent Guidelines for Technology Use.

Today’s Schools face:  Numerous State and Federal Regulations  Reduced Technology Funding  More Stringent Guidelines for Technology Use.
Amber LaFountain Project Archivist - Private Practices, Public Health Center for the History of Medicine Francis A. Countway Library of Medicine Harvard.

Amber LaFountain Project Archivist - Private Practices, Public Health Center for the History of Medicine Francis A. Countway Library of Medicine Harvard.
Information & Compliance UL University of Limerick & UL employees obliged to comply with certain legislation, including: Freedom of Information.

Information & Compliance UL University of Limerick & UL employees obliged to comply with certain legislation, including: Freedom of Information.
Service Point 5 ReportWriter How to create and run reports in ReportWriter.

Service Point 5 ReportWriter How to create and run reports in ReportWriter.
Property Management Overview

Property Management Overview
Data Security for Healthcare Facilities Debbie Abbott Health Information Consultant Resolutions (Int) Pty Ltd.

Data Security for Healthcare Facilities Debbie Abbott Health Information Consultant Resolutions (Int) Pty Ltd.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
ECONOMY OF GHANA NETWORK IMPLICATION OF RTI LAW ON GOOD GOVERNANCE AND TRANSPARENCY & ACCOUNTABILITY BY FLORENCE DENNIS GHANA ANTI-CORRUPTION COALITION.

ECONOMY OF GHANA NETWORK IMPLICATION OF RTI LAW ON GOOD GOVERNANCE AND TRANSPARENCY & ACCOUNTABILITY BY FLORENCE DENNIS GHANA ANTI-CORRUPTION COALITION.
Developing a Records & Information Retention & Disposition Program:

Developing a Records & Information Retention & Disposition Program:
Version 6.0 Approved by HIPAA Implementation Team April 14, 2003 1 HIPAA Learning Module The following is an educational Powerpoint presentation on the.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.
NDSU RECORDS MANAGEMENT INITIATIVE December 2007 PowerPoint.

NDSU RECORDS MANAGEMENT INITIATIVE December 2007 PowerPoint.
Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.

Duncan Woodhouse – Assistant Registrar for Information Security, Risk Management and Business Continuity Helen Wollerton – Administrative Officer (Legal.
Dino Tsibouris (614) 360-1160 Technology Contracting 101 What to watch out for in your contracts.

Dino Tsibouris (614) Technology Contracting 101 What to watch out for in your contracts.
Information Resources and Communications University of California, Office of the President System-Wide Strategies for Achieving IT Security at the University.

Information Resources and Communications University of California, Office of the President System-Wide Strategies for Achieving IT Security at the University.
STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)

STRATEGIC PLANNING FOR Post-Clearance Audit (PCA)
DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales  2074 6677  2074 5626 

DATA PROTECTION AND PATIENT CONFIDENTIALITY IN RESEARCH Nic Drew Data Protection Manager University Hospital of Wales   
Records Management Fundamentals

Records Management Fundamentals
1 25 October 2012 - EPFL Conference Data Protection in Intergovernmental Organizations Workshop 7 February 2013 K. Ernst S. Lüders C. Viala.

1 25 October EPFL Conference Data Protection in Intergovernmental Organizations Workshop 7 February 2013 K. Ernst S. Lüders C. Viala.
Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.

Chapter 19 Security Transparencies. 2 Chapter 19 - Objectives Scope of database security. Why database security is a serious concern for an organization.

Similar presentations

Ads by Google