
Subscribe to
Computerworld July 15, 2002 (Computerworld) -- Spectrum Health Grand Rapids, Mich.
Who They Are: A large, regional integrated health care system serving 13 western Michigan counties and 1.38 million people.
Goal: To meet the new security requirements called for by the Health Insurance Portability and Accountability Act and to manage 5,000 independent (nonemployee) users.
Challenges: Spectrum has more than 60 locations in 13 counties, including seven hospitals. The network has to serve 12,000 employees and more than 1,000 independent physician's offices. Thus, minimizing risk was one of the primary concerns, says Jim Toth, director of technology services.
"While we could cobble together some [homegrown] solutions, we were constantly running into challenges in encryption, tunneling and protection of our protected network zone," says Toth. Without a VPN, Toth would have had to open up 50 ports into his network's protected zone, which would have been a very insecure approach.
Strategy: Toth chose technology from AppGate Inc. in Durham, N.C., that established a link between terminal emulation software and the client PCs. The AppGate product, based on the Secure Shell protocol rather than IPsec or Secure Sockets Layer, provides a tunnel at the application layer, not just the network layer, and includes 128-bit encryption.
"Automatically, we have a secure tunnel at the application layer where I wanted to have it," says Toth. "We really limit our points of access."
Issues: Even with assistance from vendors and service providers, Toth acknowledges that VPNs can be "fairly complex" systems to set up.
Payoff: "This was really a functional issue," says Toth. "It's not so much about saving money. I don't think I could have offered a solution without a VPN."
|
|
Print this Story |
|
Send Us Feedback |
|
E-mail this Story |
|
Digg this Story |
|
Slashdot this Story |
|
|
|
|
|
|
|
|
|
|
All Zones Application Performance Zone Business Continuity Zone Data Center Management Zone Enterprise-Class Security Zone The File Data Management Zone Grid Computing on Windows Zone Security Management Zone ITIL Best Practices Zone The SAS Zone Storage Virtualization Zone Business Intelligence and Analytics Zone |
|
|
| ||||||||
| ||||||||
| ||||||||
|


Security Management ZoneSecurity management is the process of developing a comprehensive data protection plan. It takes into account all potential threats, the existing network environment, the future needs of the organization, and lays out a multi-tiered blueprint to integrate the security technology needed to combat these threats. CDW can help keep your network and data secure. Visit the CDW Security Management Zone now See All Zones
|
Fired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT the good, the bad, and the rest of the weird stuff you deal with every day.New baits |

"Security Directions" virtual trade show2008's Code-Red Security Issues for Protecting the EnterpriseWebcasts, white papers, demos, and more. Presented in a unique 3-d environment. Enter our show right now! Click here to enter
|

In SecuritySecurity's important, and risk must be addressed, right? Sure, but watch for four signs your policies go a bit overboard. Click here to read the latest column by Jon Espenschied |
| About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map |
|
CIO The Industry Standard |