Use your computer fearlessly.

Mission Services Articles Research

technical: ethics

Penetration Testing Outlawed

by Brent Kirkpatrick

(Date Published: .)

HIPAA Outlaws Penetration Testing

Healthcare privacy laws prohibit the computer security industry from penetration testing. The whole industry is rightly stifled by its favorite method of assessing the ineffectiveness of security measures.

Why? Because security people cannot be given permission to access confidential files on patients. Since penetration (pen) testing is the tool of choice by most security experts, the healthcare sector's security is neglected.

cartoon: hospital computers
Healthcare, governed by Health Insurance Portability and Accountability Act (HIPAA) privacy laws, must use other methods to assess computer security flaws. For example, Intrepid Net Computing's ButtressIT audit method that uses artificial intelligence and public network data.

Most experts in computer security for healthcare use checklists of security measures. This is insufficient and leaves holes such as cracked encryption keys. Intrepid Net Computing uses a statistical audit method that assess specific types of attacks. These attacks include:

  • encryption cracking,
  • DNS poisoning,
  • DoS attacks,
  • watering hole attacks,
  • worms,
  • Trojans,
  • etc.

What Is New? | Contact | Tips

© 2015-2021 Intrepid Net Computing. All rights reserved.