Posts Tagged ‘MobiSecure’

With smart phones exploding and data usage growing exponentially, there is an assumption in the marketplace that a mobile browser https (SSL on the mobile) session and the user’s name and password will be good enough to protect a patient’s identity and their access to their personal healthcare information.  Here are a few things to think about…

1. Let’s look at the mobile. This little guy is 15 x times more likely to be lost than a laptop.
2.  A very small percentage of people actually lock their phones.  The mobile browser / History and phone application icons are all open for inspection. All your bookmarks are available to review which gives unwanted eyes additional personal information.  All your downloaded documents, like copies of claims or lab tests are in the open. In many cases, all recent browser activity including your user name and all your personal health records and transactions are open for every one to see as these items have been cached. In addition, most bookmarks remember your user name/password and auto-sign you (or the intruder) in directly, to your personal health information.
3. From a communications security standpoint, the standard mobile SSL connection sets up a tunnel between the mobile and the web server. It does not authenticate you or your personal mobile device, it does not make sure you at the right intended site, nor does it provide end-to-end security to the application level.

Considering it takes an average of 130 hours to fix a financial identity when a person is a victim of identity theft imagine what it will take to restore health identity when your identity is compromised using the mobile internet.

There is a better way, the MobiSecure® Health solution downloads personal security credentials and an app to your mobile device that is locked to your specific healthcare organization. It demands a PIN to open the service, executes bi-lateral authentication between the server and the phone, and then performs dual encryption on all information and messages exchanged. No user names, bookmarks, downloads, cached screens, personal information or URL’s are available to prying eyes.

How do you want to access, store and interact with your personal health information?

In an interesting recent post on the Whitehouse BLOG, entitled: The National Strategy for Trusted Identities in Cyberspace

Howard A. Schmidt – A former Diversinet Advisory Board Member and current Cybersecurity Coordinator and Special Assistant to President Obama, makes the following comment:

“…no longer should individuals have to remember an ever-expanding and potentially insecure list of usernames and passwords to login into various online services”

When we were designing the the first version of the MobiSecure ® platform for secure mobile healthcare access our clients encouraged us to create a technology that was both extremely secure AND easy to use.  Our goal was to deliver the next generation of secure mobile tools that required NO URL’s, Usernames, Passwords,  Challenge Querstions, and without the need to navigate across multiple back end systems. We did this by creating a technology that installs “over the air” advanced cryptology that does both authentication and encryption in realtime from both the mobile device and secure servers… Let us show you a demo!

Read the Whitehouse BLOG entry here…

Last week (8/26/10) Paul H. Keckley (Executive Director, Deloitte Center for Health Solutions) issued an excellent and thought provoking brief entitled, The Mobile Personal Health Record: Technology-enabled self-care (Get the PDF Here)

In the brief Keckley makes the following point:

“The personal health record embedded in mobile communication devices – mPHR – is the “killer app” that may change the game for providers, consumers and payers.”

As the mHealth industry grows exponentially we are all interested in what will truly be the killer App(s), this brief could truly be prophetic. There is much to like about this brief, but in discussing barriers to adoption one statement in particular is worth noting:

“The barrier for providers lies in making the legal medical record distinct from the patient-entered data, both technically and operationally.”

This is truly exciting for us at Diversinet! We are now shouting this as loudly as we can… WE HAVE THE ANSWER! Our MobiSecure® platform as the mobile front end to a providers PHR of choice not only secures the sharing of the “legal medical record”, but patient-entered data as well…

Read this great brief… And Stay Tuned!

You may or may not have seen this Wall Street Journal article that was picked up by news outlets all over the country last month. There was a security flaw in Citibank’s iPhone App that exposed its customers vital information including account numbers and PIN’s.  Citibank found the flaw and updated the App, but the entire process took a few days to rectify.

This is new territory for a lot of us that have been living under the assumption that  all of our smart phones are inherently secure. With the mHealth market and healthcare applications on the rise, whether you are a developer, integrator, or consumer make sure your healthcare Apps are truly secure… “MobiSecure” Call Diversinet to find out how we can help you or your organization.

I do all of my reading on the road on my iPad.  Just ask and I’ll be glad to give you a demo.  From the WSJ (Daily – a great App) to books for both business and pleasure.  Plane rides and downtime on the road is a lot easier with a good book., and I have just read one.

I am just about finished with Malcom Gladwell’s Outliers – The Story of Success.  I first heard about this book in early 2009 after reading a NY Times Review.  I’m glad I waited to read it until now.  As we are putting our team together at Diversinet to aggressively enter the mHealth market with a unique set of products and services, we want to write our own, “story of success”.

Although aimed primarily at  individual “outliers”, the traits of success that Gladwell points out in his book have a lot in common with where we are as a company. The NY Times review summarizes them as “Chance & Circumstance”.  We fully admit there is a little bit of “Chance” or “Luck” in the following facts: (A) Diversinet has the most robust mobile security platform in the industry PERIOD. (B) The mobile healthcare market is primed to explode over the next few years and (C) That Federal guidelines (HIPAA) mandate that all personal health data must be secured…So yes… We are in the right place at the right time.

However, the real story is the “Circumstance” or the 10+ years and close to 80M that we spent as a company developing, patenting, and designing our technology for the mobile market that was yet to fully mature.  Remember, when our MobiSecure® platform was in the original design phase, there was no such thing as an iPhone, and “Apps” were not part of the American dialog and pop culture.

Take the time to read Malcom Gladwell’s Outliers, its a great read and just might give you a new way of looking at success…what we are all trying to achieve.