Cybersecurity in 2022: password-less authentication, zero trust, blockchain and more
Nearly a third of hospitals and health systems are planning to implement biometrics (29%), digital forensics (28%) or penetration testing (28%) within the next 24 months, according to new HIMSS research. (HIMSS is the parent company of Healthcare IT News.)
However, 43% say funding is keeping their organizations from executing on security challenges they have, the research shows. This is not good as healthcare remains a primary target of cyber criminals.
So Healthcare IT News has interviewed a cybersecurity expert to get his views on where healthcare cybersecurity will be headed in 2022. Manoj Srivastava is general manager of security, ID Agent and Graphus at Kaseya, a vendor of IT management software.
Q. What do you see on the horizon in 2022 when it comes to technological advances in healthcare cybersecurity?
A. There are at least three technological advances that will apply to healthcare cybersecurity and across other industries as well. They are password-less authentication, secure access service edge (SASE) and zero trust.
Will passwords finally become a thing of the past? Possibly. The use of password-less authentication is growing, as it can help healthcare organizations reduce security risks associated with passwords.
Eliminating passwords can reduce the risk for a data breach since compromised credentials account for a large percentage of breaches. There are various ways to verify identity other than passwords, including biometrics, such as fingerprints and one-time passwords, which require users to input a code that is either emailed or sent via SMS or used with an authenticator app.
An SASE combines SD-WAN and security into cloud computing, and is quickly becoming a VPN replacement for remote work and distributed offices. Security consists of digital identity, which may be connected to a person, device, cloud service, software or even an IoT system. SASE makes it more secure without the complexity and latency of the traditional WAN/VPN approach.
Finally, zero trust is a shift of network defenses toward a more comprehensive IT security model. It is about not trusting any user or any device even if it is already connected to the corporate network.
Your Comment :