UK's NHS loses 6,000 smartcards

Powered by SC Magazine
 

The NHS has misplaced as many as 6,000 smartcards used to access patient records..

The organisation claimed that there is no cause for concern since the cards are useless without a Pin. But the case has highlighted poor data practice yet again by a government department.

"The worrying thing about this, and the many other high-profile breaches, is that the best practice processes and procedures needed to avoid these are laid out in government guidelines (for example ISO 27001)," said Mike Small, director of security strategy at CA.

"Perhaps there is a need for a combination of incentives and penalties to be implemented to make sure that these best practices are actually followed."

However, some observers maintain that fears of data loss are being exaggerated, and that the need for data to be accessed by all outweighs any problems with access.

"In the kind of environment where this system is being used, it is vital that the right people are able to access the necessary information as quickly and accurately as possible. It could even be a matter of life and death," said Paul Malcolm, UK general manager at Sentillion, which works with NHS Trusts on some IT projects.

"Having a simple physical device such as a smartcard enables this. Of course it is also important to make sure that all this private information is only available to the correct people, and this is why the second factor of authentication is so critical."

Copyright ©v3.co.uk


 
 
 
Top Stories
First look: Microsoft Outlook for iOS
[Update] Office productivity suite for iOS completed with Outlook.
 
NewSat defaults on $26m in overdue Lockheed payments
Jabiru-1 satellite build hits further hurdles.
 
IBM denies plans to cut 112k jobs
But admits to further restructuring.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  36%
 
Your insurance company
  5%
 
A technology company (Google, Facebook et al)
  9%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  4%
 
A Federal Government agency (ATO, Centrelink etc)
  18%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  7%
TOTAL VOTES: 3116

Vote
Do you support the abolition of the Office of the Information Commissioner?

   |   View results
I support shutting down the OAIC.
  27%
 
I DON'T support shutting the OAIC.
  73%
TOTAL VOTES: 998

Vote