With all the recent buzz about the Heartbleed bug, Securityour clients have asked whether their portals were affected, and rightfully so. Heartbleed did not impact our sites or our clients’ sites. However, we thought we’d go a step further and explain some of the security built into the HPS portal and how it protects our clients’ portals from viruses like Heartbleed. (And don’t worry – we won’t get too technical).

Encryption – Imagine someone giving you an important message in the form of scrambled words, numbers, and symbols. Unless you have a legend to use for unscrambling the words, you’ll never know what the message is. That’s essentially what HPS does with data through encryption. Before clients send us data (or vice versa), the data is encrypted or “scrambled” so that only the recipient with the decryption software can unscramble and use the data. This keeps clients’ data secure when it’s in transit to or from your portal.

Commercial SSL – If you were doing research for a very important project, you’d want to avoid something like Wikipedia and instead use a credible, published encyclopedia for information. When it comes to protecting data, that’s how HPS feels about SSL. SSL is a standard for encrypting data, and there are two main standards that are used. “Open” SSL is the most common one, but its encryption software is made by volunteer developers. As a result, websites using it are more vulnerable to viruses such as Heartbleed, and that’s what makes Open SSL like the Wikipedia of encryption. On the other hand, Commercial SSL is more credible, reliable, and keeps client data better protected from viruses like Heartbleed. This is what makes Commercial SSL the encryption of choice for HPS.

Firewall Protection – Just as a castle has a big, thick wall around it for protection, HPS puts walls of protection around your portals to ensure the data inside stays secure. Known as “Firewalls”, these types of security programs will protect your portals from unwanted viruses that are trying to get in. In some cases, we have multiple firewalls and layers of security around your data, making it that much more difficult for the enemy to get into your portal and access data that’s not theirs.

24/7 Monitoring – Security cameras constantly watch for suspicious behavior around the premises of a building. In the same way, HPS uses 24/7 monitoring to keep an eye out for viruses and other threats that may be trying to gain unauthorized access to client portals or create mischief. If we detect something that may be suspicious, the security programs in place will prevent that suspicious virus from gaining access and causing trouble.

These are just some of the ways HPS keeps client data secure on an ongoing basis, and this is only scratching the surface. HPS will continue to keep data security, government compliance, and industry best practices as a major priority for our clients as healthcare technology continues to evolve and security needs increase. For more information about our security procedures, you’re welcome to contact us.