Home » News » Mobile/Wireless | Privacy and Security
Receive News By Email

  • del.icio.us
  • Digg
  • StumbleUpon
  • Reddit
  • Facebook
  • Google
  • RSS Icon
  

Cloud computing myths vs. risks

February 08, 2011 | Molly Merrill, Associate Editor

Related Resources

NAPLES, FL – Cloud computing has become a hot topic among healthcare CIOs, who are divided about its benefits.

Andrew Sroka, president and CEO of Fischer International, says the debate over cloud computing is well-justified given the proliferation of soft data, new patient privacy standards and ever-changing regulation. Sroka shares with Healthcare IT News the most common myths and potential risks associated with deploying IT processes via cloud computing.

[See also: Survey: IT confidence surging, fueled by healthcare.]

Three of the most common myths:

Myth #1: Identity management in the cloud is less secure. Quite the opposite, says Sroka. The cloud is often more secure and, in most cases, offers a more reliable and more scalable facility for healthcare organizations. Most information is encrypted in the cloud, whereas when solutions are deployed on-premise it is not uncommon for sensitive information to remain unencrypted, such as administrative credentials coded into scripts or configuration files, and personally-identifiable information.

Myth #2: One has to dramatically change infrastructure to accommodate identity management (IdM) in the cloud. No infrastructure changes are necessary for an organization to take advantage of cloud-based IdM services. Integration with existing IT systems can be accomplished seamlessly, as if the IdM solution were running on-premise.

Myth #3: Cloud-based identity management solutions are less capable than on-premise solutions
Cloud-based IdM solutions don't have to be different from on-premise solutions and can deliver the same functionality. However, cloud-based IdM solutions have a business driver making them different. The hosting provider will want to drive down the cost of hosting to take advantage of hardware/software/technical resource consolidation. In order to do so, IdM solutions running in the cloud must have a better design and they must be easier to maintain.     

Sroka says that when looking at actual risks, it is important to keep in mind that transitioning to the cloud does not present any unique risks to sensitive patient and personnel data that don't already exist in an on-premise environment.

[See also:  Survey: Majority of organizations don't protect patient data during software development.]

See the next page to read the three most common risks of cloud computing.

Related Topics:

Reader Comments (6)Login to Post a Comment

FLPoggio says: Will ONCHIT chase the Clouds Away?
October 03, 2011 | 2:40PM GMT

ONCHIT is making it tough on cloud vendors. see;
http://www.kelzongroup.com/ONCHIT_Clouds.html

CoreyJ says: Concerned about chart data
August 31, 2011 | 1:44PM GMT

How does a provided obtain all of his chart history if the cloud company ceases to exist?

Tech4Pharm says: compelling cloud computing
March 04, 2011 | 5:08PM GMT

It is good to find out that these well-socialized myths are being debunked. As we have more confidence in the security, ROI, flexibility, and ease of deployment, our organization is becoming more and more open to taking things to the cloud. Even though "cloud" is broad (from traditional outsourced ASPs to full-on "multi-tenancy, rent-a-slice") taking a step into this area is sure to break down barriers to doing more in the cloud.

cracosm86 says: IdM sounds like a good new EHMR service in the cloud...
February 14, 2011 | 2:36PM GMT

it wasn't long after the cloud started becoming a big thing one to two years ago, that the Health Information Technology world became flourished with a grandiose of new forms of research. Data retrieval methods and its means for records and storage databases has towed its mark as far as cloud services in Hospitalized environments go, to say the least. This NEW service-enabled technology is a good form of encryption technology, so it puts the LZMA, MDS-H5 and the hl7-mda record databases. IdM sort of is going to take public access for patient statistics and private records for their actual diagnoses into account. To bring all of this Id-modeling into play, I am sure that companies like, NuGen, Kaiser Health, Honeywell Medical, Marlon Mass. HCFS, and AHCPIA as well as many others.

This type of Id Management technology sounds like a more secure way in the both the process-of-elimination and the variability of patient outcomes - but the key is to remember that this cloud style service allows for complete confidentiality and privacy at all times. The encryption technologies available these days are still growing by he numbers. But I know that as far as medical is concerned, they just came out with a new form of encryption technology for H7 records called H7-plus and secured-H7 along with a few other bystanders such as; LMNA and MDS-LDMA & MDL-LDMA ... This I read in an HIT article last week, and it seems that these new encryption methods will change the face of EHMR and HIMMS because the records will stand and it will allow for a clean, new drawing board.

Considering two of the handful of companies listed are financially centered and oriented around medical services, cost and expenses; why not apply the new form of IdM in the cloud to either of the purchasing and billing sides of the health-care business...?

Telemed911 says: Clouds have disadvantages for storage of genomic data
February 09, 2011 | 2:07PM GMT

In contrast to what Andrew Sroka has suggested about the ease of use of cloud storage, many others in the published scientific literature have raised concerns about public clouds, especially for storage of genomic data. One example from Schadt, E.E., Linderman, M.D., Sorenson, J., Lawrence, L. & Nolan, G.P. Computational solutions to large-scale data management and analysis. Nature Rev. Genet. 11, 647-657 (2010):

-Privacy concerns in the ‘public’ clouds
-Less control over processes
-Bandwidth is limited as large data sets need to be moved to the cloud before processing

whitney701 says: Security
February 09, 2011 | 12:50PM GMT

Good point - with regard to security, it's not always about a technology's limitations, but the human factor that can cause problems.

In our business (managing hospital policies and procedures), people seem to be less concerned about security and more concerned about the system "going down" in the event of an internet failure. However, in our solution and I suspect many other cloud-based ones, the data is backed in multiple locations (including locally) so again it's not a problem.

http://policystat.com/blog/2011/2/2/asp-vs-software-as-a-service-there-i...