Free EHR Newsletter Want to receive the latest updates on EHR, EMR and Healthcare IT news sent straight to your email? Get all the latest EHR News for FREE!

Electronic Health Data Breaches Remain Primary Concern Despite Increased Use of Security Technologies and Analytics #HIMSS14

Hospitals and physician practices show progress in securing patient information, but security breaches and medical identity theft still raise concerns

CHICAGO (February 19, 2014) – Results of the 2013 HIMSS Security Survey show that, despite progress toward hardened security and use of analytics, more work must be done to mitigate insider threat, such as the inappropriate access of data by employees. Although federal initiatives such as OCR audits, Meaningful Use and the HIPAA Omnibus Rule continue to encourage healthcare organizations to increase the budgets and resources dedicated to securing patient health data, in the previous twelve months, 19 percent of respondents reported a security breach and 12 percent of organizations have had at least one known case of medical identity theft reported by a patient.

The 2013 HIMSS Security Survey, supported by the Medical Group Management Association and underwritten by Experian® Data Breach Resolution, profiles the data security experiences of 283 information technology (IT) and security professionals employed by U.S. hospitals and physician practices. The data from respondents suggests that the greatest perceived “threat motivator” is that of healthcare workers potentially snooping into the electronic health information of friends, neighbors, spouses or co-workers (i.e., inappropriate data access).

Recognizing inappropriate data access by insiders as an area for which organizations are at risk of a security breach, there has been increased use of several key technologies related to employee access to patient data, including user access control and audit logs of each access to patient health records. On a related note, although more than half of the survey’s respondents (51 percent) have increased their security budgets in the past year, 49 percent of these organizations are still spending 3 percent or less of their overall IT budget on security initiatives that will secure patient data.

“Our collaboration with HIMSS for the sixth annual security survey has provided insight into the current state of security within provider organizations,” said Michael Bruemmer, Vice President for Experian® Data Breach Resolution. “Though progress is noticeable, it is critical that healthcare organizations put in place a comprehensive plan that addresses potential security threats – whether internal or external – to prevent electronic health data breaches and minimize the impact of a breach should one occur.”

Other key findings from the survey include the following:

  • 92 percent of organizations conduct a formal risk analysis.
  • 54 percent of organizations report having a tested data breach response plan; 63 percent of these organizations test their plan annually.
  • 93 percent of organizations indicate their organization is collecting and analyzing data from audit logs.
  • Healthcare organizations are using multiple means of controlling employee access to patient information; 67 percent of survey respondents use at least two mechanisms, such as user-based and role-based controls, for controlling access to data.

The survey also pinpoints shortcomings within the healthcare industry. Barriers to improving an organization’s security posture included budget, dedicated leadership and the following:

  • Organizations reported an average score of 4.35 regarding the maturity of the security environment (where 1 is not at all mature and 7 is highly mature).
  • Nearly half (49 percent) of the survey’s responding organizations are still spending 3 percent or less of their overall IT budget on security initiatives that will secure patient data.
  • 52 percent of the hospital-based respondents reported that they had a CSO, CISO or other full-time leader in charge of security of patient data.

“Healthcare organizations are increasingly deploying technologies to increase data security, but continued analysis is crucial in ensuring the proactive prevention of data breaches within hospitals and physician practices. Without these anticipatory measures, security of patient data will remain a core challenge within our nation’s healthcare organizations,” said Lisa A. Gallagher, BSEE, CISM, CPHIMS, FHIMSS Vice President, Technology Solutions, HIMSS.

For more information on the survey results and on innovation:

About HIMSS

HIMSS is a global, cause-based, not-for-profit organization focused on better health through information technology (IT). HIMSS leads efforts to optimize health engagements and care outcomes using information technology.

HIMSS is a cause-based, global enterprise producing health IT thought leadership, education, events, market research and media services around the world. Founded in 1961, HIMSS encompasses more than 52,000 individuals, of which more than two-thirds work in healthcare provider, governmental and not-for-profit organizations across the globe, plus over 600 corporations and 250 not-for-profit partner organizations, that share this cause.  HIMSS, headquartered in Chicago, serves the global health IT community with additional offices in the United States, Europe, and Asia.

About Experian® Data Breach Resolution

Experian® Data Breach Resolution, powered by the nation’s largest credit bureau, is a leader in helping businesses plan for and mitigate consumer risk following data breach incidents. With more than a decade of experience, Experian® Data Breach Resolution has successfully serviced some of the largest and highest-profile breaches in history. The group offers swift and effective incident management, notification, call center support and reporting services while serving millions of affected consumers with proven credit and identity protection products. In 2013, Experian® Data Breach Resolution received the Customer Service Team of the Year award from the American Business Awards. Experian® Data Breach Resolution is active with the International Association of Privacy Professionals, the Health Care Compliance Association, the American Health Lawyers Association, the Ponemon Institute RIM Council and InfraGard and is a founding member of the Medical Identity Fraud Alliance. For more information, visit www.experian.com/databreach and follow us on Twitter @Experian_DBR.

February 19, 2014 I Written By

John Lynn is the Founder of the HealthcareScene.com blog network which currently consists of 15 blogs containing almost 5000 articles with John having written over 2000 of the articles himself. These EMR and Healthcare IT related articles have been viewed over 9.3 million times. John also recently launched two new companies: InfluentialNetworks.com and Physia.com, and is an advisor to docBeat. John is highly involved in social media, and in addition to his blogs can also be found on Twitter: @techguy and @ehrandhit and Google Plus.

Authasas Adds the Lumidigm Advantage to Its Advanced Authentication Platform

Solution delivers reliable, convenient, secure, and compliant authentication at all points of access across the enterprise

ALBUQUERQUE, NM — October 30, 2012 — Lumidigm today announced that enterprises can now authenticate users with Lumidigm multispectral imaging biometrics as part of an integrated authentication platform from Authasas. With the addition of Lumidigm’s unique capabilities, the Authasas Advanced Authentication® solution is more secure, more convenient, and strongly spoof-resistant. This combined solution delivers the high levels of security, accountability and compliance that organizations are demanding with the single-touch convenience they expect.

“Because of Lumidigm’s success in bringing higher levels of performance to border crossings, thousands upon thousands of ATMs and even the gates of major amusement parks, we felt it was important to bring the power of their technology to our customers,” emphasizes Reiner van der Drift, Authasas CEO. “Together we provide a very powerful combination of authentication methods, seamlessly delivered at all points of access, to replace the fragmented array of point solutions that is regrettably the common, makeshift response to today’s complex requirements.”

“With our large-scale successes in the banking and healthcare industries, we know our fingerprint sensors offer convenience and security wherever they are deployed,” says Phil Scarfo, Lumidigm Senior Vice President of Worldwide Sales and Marketing. “Today, in partnership with Authasas, we are expanding our no-compromises approach into comprehensive authentication solutions where multispectral imaging will play an important role in streamlining compliant access for large enterprises requiring seamless transactional authentication.”

The Authasas Advanced Authentication platform lets an enterprise optimize authentication for every transaction by balancing the right level of certainty based on “who” is requesting access with the right level of convenience for the actual user, resulting in a secure, compliant transaction. This flexible, scalable approach meets the size and complexity requirements of any enterprise with authentication methods such as multispectral imaging biometrics, smart cards, NFC, cell phone OTP tokens, USB authenticators and user ID/passwords integrated with a wide variety of SSO and identity management vendors such as NetIQ/Novell, HID ActivIdentity, Oracle, Computer Associates and HealthCast.

About Authasas

With our HQ, Research & Development in The Netherlands and offices in London and Austin, TX, Authasas® delivers strong authentication to Windows networks. Authasas® Advanced Authentication is distributed across the globe via a network of value added distributors and resellers. Authasas is a subsidiary of BioXS International BV. For more information please visit http://www.authasas.com.

About Lumidigm

Lumidigm Inc., a global leader in authentication solutions is dedicated to enabling convenient, secure, and reliable identification of people, products and credentials. Developed with “real world” performance as a priority, Lumidigm’s multispectral imaging technology, innovative software and biometric fingerprint sensors allow customers to know “who” or “what” to a high degree of certainty. Lumidigm and its strategic partners have met challenging authentication requirements in markets such as banking, healthcare, entertainment, and government services. The Lumidigm Advantage is also suitable for industrial, commercial, and transportation applications. Lumidigm is headquartered in Albuquerque, New Mexico. For more information, visit www.lumidigm.com.

November 21, 2012 I Written By

triCerat Introduces Cliptite™ to Help Ensure Data Loss Protection

U.S. software developer triCerat is launching Cliptite™ today to help healthcare professionals secure sensitive data sharing and prevent data loss when using Windows Clipboard. Cliptite™ is designed specifically for remote desktop and application environments in hospitals and other healthcare settings that require an additional level of security.

COLUMBIA, MD, USA (October 31, 2012) — To help healthcare professionals secure sensitive data sharing and prevent data loss when using Windows Clipboard, software developer triCerat, Inc. – creator of the revolutionary ScrewDrivers® printing technology – is introducing its Cliptite™ software.

triCerat’s Cliptite™ software is designed specifically for remote desktop and application environments in hospitals and other healthcare settings that require an additional level of security to prevent data loss when using Windows Clipboard, the integrated Microsoft component that allows content to be copied and pasted between applications.

Employing assignable encryption technology, Cliptite™ allows administrators to safely enable the Windows Clipboard redirection across multiple ICA and RDP sessions without worrying that the data will be copied to an unauthorized client system.

“When sharing sensitive data in the workplace, many organizations tend to either overlook the potential data loss of the Windows Clipboard copy and paste mechanism and hope for the best, or turn off the Windows Clipboard entirely to ensure data loss protection,” according to Andrew Parlette, Vice President of Product Engineering at triCerat.

Cliptite™ allows organizations to enable the Windows Clipboard securely without great implementation or testing burdens by intercepting all data before it is copied onto the Windows Clipboard. The data is then encrypted using a secure 128-bit key and subsequently placed on the Windows Clipboard as encrypted data. If a user running an unauthorized server or workstation attempts to access the Windows Clipboard, the resulting data will be scrambled and unrecognizable. However, when a user running an authorized server or workstation accesses the Windows Clipboard, the data will be transferred and decrypted to the requesting application.

“Regardless of industry, Cliptite™ provides a cost-effective solution that enables users to secure the Windows Clipboard over a remote connection and safely provide Windows Clipboard data sharing,” says Parlette. For more information, visit www.tricerat.com.

About triCerat, Inc.

Creator of the revolutionary ScrewDrivers® print management technology that changed the way thousands of organizations operate on a daily basis, triCerat has developed its complete Simplify family of desktop management tools that improve the performance, stability, security, and reliability of server, workstation, and virtual desktop environments. Based in Columbia, MD, triCerat has more than 10,000 clients worldwide. Founded in 1997, triCerat is a Citrix Ready Technology Partner, a Microsoft Gold Certified Partner, and a VMware Technology Alliance Partner.

November 19, 2012 I Written By

Verizon Offers Six Tips to Help Consumers Protect their Personal Health Information and Fight Health Care Fraud

BASKING RIDGE, N.J. – “The best protection against health care fraud in the U.S. is a cautious and vigilant consumer, and all of us should be aware of common tactics and abuses that are driving up our health care costs,” says Verizon Health IT Solutions Managing Director Renu Chipalkatti.

About 10 percent of the $2.6 trillion spent annually on health care goes to fraud and abuse, including falsified billings, false coding of services, billing for services not delivered or excessive, and billing separately for elements that should be part of a bundled service.

To help in the estimated $260 billion battle against annual health care fraud, Verizon offers six tips for consumers, including:

1.      Guard your personal information – Provide your insurance identification only to those who provide you with medical services and don’t allow anyone to borrow your insurance identification/Medicare card.

2.       Beware of “free” medical services – If it sounds too good to be true, it probably is. A common fraud scheme has door-to-door or telephone sales people offering medical services or equipment for free in exchange for your insurance/Medicare identification number.

3.      Keep accurate medical records – Even if your doctor uses electronic medical records, you should always keep your own records. You could use a personal health information service or keep a written record of any medical services and medications you’ve received – just write down the doctor or doctors you saw, the services you received, and when they occurred.

4.      Review your medical bills — Be sure to ask for your bill at the time of your doctor visit. Then check your bills and compare it with your insurer’s description of your benefits to make sure you aren’t charged for services you didn’t receive or charged for the same service twice. Also check that the dates of services and charges match up. If you find a problem or have questions, contact your health care provider immediately. If your questions are not resolved, contact your health plan provider.

5.      Destroy medical records before discarding – Be sure to shred or rip up any medical documents to stop your information from ending up in the wrong hands, or worse yet, having your identity stolen.

6.      Report possible fraud – If you suspect you’re a victim of fraud, contact your health plan provider or the Department of Health and Human Services, Office of the Inspector General. 

In an encouraging sign that efforts to combat health care fraud and abuse are gaining momentum, public and private health insurance companies are adopting new methods of detecting and preventing fraud.  There are still some providers who use the “pay and chase” model – which is ineffective and expensive – but a growing number are focused on aggressive, proactive approaches.

Predictive modeling technology, for example, can proactively identify unusual patterns in provider behavior that can indicate fraudulent activity. Verizon offers this as part of a comprehensive set of prevention, detection and management tools to help combat fraudulent health care activity.

Verizon’s Fraud Management for Healthcare service is able to monitor 100 percent of claims in near-real time and automates pre-payment detection with speed and efficiency.  Verizon builds models to detect specific behaviors that signal fraud, flags them and assigns a priority based on a risk score so case managers can focus on the activities that will have the biggest impact.

Verizon’s health IT practice offers a comprehensive portfolio of managed, IT and consulting services for the health care industry to help transform patient care delivery, enhance access to care and better manage costs.

Verizon Communications Inc.

(NYSE, Nasdaq: VZ), headquartered in New York, is a global leader in delivering broadband and other wireless and wireline communications services to consumer, business, government and wholesale customers.  Verizon Wireless operates America’s most reliable wireless network, with nearly 96 million retail customers nationwide.  Verizon also provides converged communications, information and entertainment services over America’s most advanced fiber-optic network, and delivers integrated business solutions to customers in more than 150 countries, including all of the Fortune 500.  A Dow 30 company with $111 billion in 2011 revenues, Verizon employs a diverse workforce of 184,500.  For more information, visit www.verizon.com.

November 17, 2012 I Written By

Encryptics Introduces Email Security for iPhone and iPad

DALLAS–(May 2012)–Encryptics, a data protection company that secures digital content for the lifecycle of a document, has launched Encryptics Mobile, an extension of the Encryptics Professional solution. Encryptics asks, Is Your Data .SAFE? With Encryptics Professional and Encryptics Mobile, messages sent from an iPhone or iPad are .SAFE (dot SAFE).
The Encryptics .SAFE technology allows data to be securely sent and received from an iPhone or iPad, wherever an Internet connection is available. Encryptics offers the most cutting-edge technology on the market. No matter what network is being used, data is secured at the device, so it remains secure in the cloud as well as after it reaches the intended recipient.
Mobile devices are often lost or stolen. The power in their portability is also what makes them uniquely vulnerable to a data breach. It’s critical to secure sensitive information on smart devices in new ways that maintain their cross-platform communications power while fully securing every transmission. The Encryptics Mobile solution does this and more. It is easy to install and use.  Digital content never touches Encryptics servers; instead traveling directly from the author/sender to recipient(s), secured via multiple keys, digital signatures, and hardware fingerprints.
Encryptics Chief Executive Officer, Brandon Hart, said, “Now data can be secured no matter where you are in the world, whether you’re using a smartphone or tablet. Critical information often has a time sensitive component. This means you need to be able to send and receive details with full security from anywhere, at any time, and now you can with the Mobile extension of the Encryptics Professional solution.
“We previewed our Encryptics Mobile extension at HIMSS12 (Healthcare Information and Management Systems Society) annual conference held in Las Vegas in February. Healthcare professionals were very excited about the ability to send their data .SAFE from anywhere. Smart devices are now part of the daily workflow in many industries where security and data protection are critical, even mandated by law. Being able to send secure data while on-the-go is becoming more important than ever.”
About Encryptics

Encryptics Professional is the award-winning security solution for digital communication needs.  Information is transmitted securely via .SAFE technology by Encryptics Trusted Peer-to-Peer™ platform. The sender has full control over their information through Encryptics Advanced Digital Rights Management (DRM) features, giving the power to prevent Forward, Copy, Print, and Save.  Added Features allow for Read Receipt, control over Timeline Options, even Email Recall.  Encryptics won the 2011 Best of FOSE Special Judges’ Award at the FOSE (Federal Office Systems Exposition) Show in Washington D.C. when it was introduced to the government cyber-security industry. To learn more, visit http://www.encryptics.com, call 877.454.7595, or email support@encryptics.com

June 11, 2012 I Written By

ClearDATA Co-Founder and Chief Privacy Officer Chris Bowen to Speak at 21st Annual WEDI National Conference

ClearDATA CPO to Highlight Best Practices of Securing PHI in the Cloud

Phoenix, AZ, April 30, 2012 – – ClearDATA Networks, Inc., the leading healthcare cloud computing platform and service provider, today announced that its co-founder and Chief Privacy Officer Chris Bowen will be a featured speaker on the topic of “PHI and Cloud Computing” at the 21st Annual WEDI National Conference being held May 1-3, 2012 in Tampa, Florida.  Healthcare leaders from across the nation attend the WEDI (Workgroup for Electronic Data Interchange) Conference to learn about and address issues of primary concern to the healthcare industry.

“Securing data and patient information is a top priority in our industry and many are concerned of potential security risks associated with moving PHI to the cloud,” said Chris Bowen, Chief Privacy Officer for ClearDATA Networks, Inc. “While safeguarding PHI in the cloud does introduce new security issues, it can also reduce or eliminate many security threats. Done properly, PHI in the cloud can effectively be more secure, and definitely more cost effective, than storing PHI onsite for a healthcare provider.”

WEDI Conference Session Title: PHI and Cloud Computing

Wednesday, May 2, 2012 from 3:25 PM – 4:55 PM

Grand Hyatt Hotel Tampa Bay, White Ibis Room

Abstract: Cloud Computing has become a popular choice to move/store data while leveraging speed and cost effectiveness. However, covered entities, business associates and all others responsible to keep sensitive date (including PHI) protected and secure have a lot to consider when moving into the cloud environment. Vendors are offering cloud technology; the federal government is mandating its business to move towards the cloud and NIST has been releasing Special Publications regarding cloud computing and security.

Speakers:

Lesley Berkeyheiser, The Clayton Group, Moderator

Lola Jordan, Companion Data Services

Chris Bowen, ClearDATA.net

Chris Bowen Bio

Mr. Bowen is a managed services and experienced operations and compliance executive providing privacy and security guidance to large IDNs, software companies, and healthcare executives. He is one of only 2,593 Certified Information Privacy Professionals in the United States (CIPP/US) by the International Association of Privacy Professionals, and one of only 621 worldwide with the CIPP/IT certification. He previously founded DirectClarity, a healthcare application services and cloud information security company, that was acquired by ClearDATA, which still provides application and consulting services to large hospitals and foundations throughout the US under his direction. As a co-founder of ClearDATA Networks, Mr. Bowen shared the vision of providing secure, HIPAA compliant cloud hosting services to the healthcare industry and merged his company with ClearDATA.

Formerly Chris was actively involved in public policy and politics at the national and state levels. After successfully running his first congressional campaign at age 24, he authored and shepherded passage of Arizona’s Anatomical Gift Act of 1996, and later completed his MBA while serving as a top advisor to the Arizona Speaker of the House. While employed by the House he was appointed by the Speaker to represent him on the Arizona Internet Privacy Committee, and sub committee on voter privacy.

About the Workgroup for Electronic Data Interchange (WEDI)

To provide multi-stakeholder leadership and guidance to the healthcare industry on how to use and leverage the industry’s collective technology, knowledge, expertise and information resources to improve the administrative efficiency, quality and cost effectiveness of healthcare information.  For more information, visit: http://www.wedi.org/index.shtml.

About ClearDATA Networks

ClearDATA is the market leader for cloud computing and information security services for healthcare providers, software vendors and VARs.  ClearDATA’s services enable providers to fully automate and securely manage healthcare medical records, applications, IT infrastructure and digital storage. The company provides HITECH HIPAA-compliant cloud and hosting infrastructure and managed services, offsite backup and disaster recovery, medical image archiving, information security and world-class support. The company offers HIPAA Security Risk and Remediation services through its U.S. Healthcare Compliance division to the healthcare industry in order to ensure that they meet the rigorous standards of security required for protected health information to demonstrate Meaningful Use. For more information, call 602-635-4000, email: sales@cleardata.net or visit: www.cleardata.net.

May 11, 2012 I Written By

ClearDATA and REC Partner HealthPOINT Provide HIPAA Security Risk Analysis for 44 CHAD Locations in North and South Dakota

Services Help Providers Meet Meaningful Use Requirements and RECs Achieve Sustainability

Phoenix, AZ, April, 18, 2012 – – ClearDATA Networks, Inc., the leading healthcare cloud computing platform and service provider, and Dakota State University’s  HealthPOINT, the South Dakota Regional Extension Center for Health IT (REC) , today announced that they have jointly provided HIPAA Security Risk Analysis (SRA) and other information security services for 44 healthcare provider locations of organizations belonging to the Community HealthCare Association of the Dakotas (CHAD).  The companies also offer additional information security services such as Perimeter Security Verification of the client’s security posture as well as a detailed security analysis, complete remediation plan, and executive report appropriate for an executive and/or board meeting.

A HIPAA Security Risk Analysis (SRA) is a Stage 1 Meaningful Use Core #15 requirement for healthcare organizations to qualify for incentive dollars in 2012. Organizations interested in learning more about the HIPAA SRA requirements can email: SRA@cleardata.net.

The ClearDATA REC Partner Program helps RECs achieve Meaningful Use and sustainable revenue by providing cloud hosting services, backup, disaster recovery, security risk analysis (SRA) and remediation services to the healthcare providers in their respective states.  ClearDATA has performed hundreds of SRAs to healthcare organizations across the U.S..

“We’re excited to partner with HealthPOINT to provide the SRA services for the Community HealthCare Association of the Dakotas in order to help them achieve Meaningful Use,” said David Bean, executive vice president of sales and marketing for ClearDATA Networks, Inc.  “Our combined expertise in cloud computing and information security services deliver maximum data protection and patient privacy for healthcare organizations according to HIPAA Security Rule Standards. “

“The Community HealthCare Association of the Dakotas provides excellent healthcare services to the public throughout the Dakotas and recognizes the importance of securing patient information and privacy,” says Dan Friedrich, director for HealthPOINT, South Dakota’s Regional Extension Center.  “Dakota State University  is pleased to partner with ClearDATA to help CHAD and other healthcare organizations utilize advanced technology solutions that enable them to improve their productivity and more effectively serve the community.”

About the ClearDATA HIPAA Security Risk Analysis

The ClearDATA HIPAA Security Risk Analysis service measures the IT-related risks associated with key regulations and standards including the Healthcare Insurance Portability and Accountability Act (HIPAA), the Health Information Technology for Economic and Clinical Health (HITECH) Act, Payment Card Industry Data Security Standards (PCI DSS), Sarbanes Oxley Act (SOX), and SAS 70. It focuses specifically on the three areas of 45 CFR 164.308(a)(1); namely, the Administrative, Physical and Technical safeguards. Each of these areas is analyzed to verify that they are: a) sufficient to be effective, b) currently operational, c) applicable for the organization and d) represent applicable compliance programs.

Additionally, the SRA service can review the organization’s vendor relationships and Business Associate Agreements, and if necessary, conduct an SRA for the Business Associate.

About HealthPOINT, the South Dakota Regional Extension Center

HealthPOINT, as a department of Dakota State University, is South Dakota’s Regional Extension Center. As a federally designated health information technology resource and support center for all South Dakota healthcare providers, HealthPOINT focuses on an action-based approach to propel providers in adopting electronic health record systems. HealthPOINT leverages Dakota State University’s strengths in Health Information Management and Information Assurance academic programs to provide high quality, cost effective services to South Dakota providers. For more information, contact Dan Friedrich, Director for HealthPOINT at 605-256-5555 or visit www.healthpoint.dsu.edu.

About ClearDATA Networks

ClearDATA is the market leader for cloud computing and information security services for healthcare providers, software vendors and VARs.  ClearDATA’s services enable providers to fully automate and securely manage healthcare medical records, applications, IT infrastructure and digital storage. The company provides HITECH HIPAA-compliant cloud and hosting infrastructure and managed services, offsite backup and disaster recovery, medical image archiving, information security and world-class support. The company offers HIPAA Security Risk and Remediation services through its U.S. Healthcare Compliance division to the healthcare industry in order to ensure that they meet the rigorous standards of security required for protected health information to demonstrate Meaningful Use. For more information, call 602-635-4000, email: sales@cleardata.net or visit: www.cleardata.net.

May 3, 2012 I Written By

Villanova University Conducts Most Comprehensive NFC Access Control Trial to Date

Ingersoll Rand Security Technologies and The CBORD Group enable students and staff to use personal cellphones as credentials to gain access to dorms, academic buildings and administrative offices

CARMEL, IN – March 21, 2012 – Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, and The CBORD Group, Inc., the leading provider of campus card and integrated security solutions to colleges and universities, are conducting the most comprehensive access control Near Field Communications (NFC) trial in the North American marketplace to date. Since November 2011, Villanova University students and staff have been using the aptiQmobile™ web-based service from Ingersoll Rand Security Technologies along with NFC and their own personal smartphones as their credential to access dormitories, academic buildings and administration offices. The NFC credential seamlessly integrates with Villanova’s CS Gold® campus card system from CBORD®.

To enter buildings, students simply open the aptiQmobile™ app and tap their phone to the smart reader on the wall in the same way that they would present their Wildcard campus ID badge.

“Today’s students are so technologically advanced that it is second nature for them to put everything on their phones and, most of the time, it’s already in their hands while walking across campus,” explains Kathy Gallagher, Villanova director of card services. “We want to provide our students the utmost in convenience and flexibility through the technology we offer. It’s easier for students to use an app on their phone versus digging for their card.”

Three research projects were conducted among 1300 students and decision makers across 980 U.S. colleges and universities, both public and private, 2-year and 4-year, during May of 2011. Researchers found that two-thirds of American college students are interested in using their mobile phone in place of an ID card. Students feel they are less likely to lose their phone than an ID card and they know that ID cards are shared; phones aren’t. In fact, people will almost always notice that their phone is lost faster than noticing a card is missing. Using a phone as a credential also offers the ability to remotely erase credential data in case it’s lost or stolen, providing an extra layer of security.  In a survey among the students in the Villanova trial, over 70 percent stated they would prefer to use their phone instead of a badge to enter buildings.

The enhanced convenience of using smartphones instead of badges extends to administrators in charge of access control systems. Rather than having to print physical ID badges for each student at enrollment time, a mobile ‘key’ can be issued online by the administrator directly to the student’s phone at any time, saving the university staff time, administrative costs and the expense of printers, ink, card inventory and other needed supplies.

“Using smart phones as badges saves time that can be better spent on other issues,” emphasizes John Bonass, Villanova systems manager. “Assigning the credential to the students’ phone takes less work than printing and delivering a badge, and since students are very protective of their phones, this should lead to a greatly reduced replacement rate. If a phone is lost or broken, a new ID can be reissued to the new phone without even having the students come to our office.”

“CBORD is committed to providing leading technology solutions that improve the quality of university life, solving practical problems, enhancing safety and lowering costs at the same time,” commented Max Steinhardt, COO of CBORD.  “In partnership with Villanova and Ingersoll Rand, this smart phone approach to the student credential is a way to make the system better support the way the university community lives and works day to day.”

“An added benefit of the aptiQmobile NFC solution is that the organization may not need to change out their locks to use it when it becomes commercially available,” adds Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “If smart-enabled AD-Series locks or XceedID smart readers are already installed, it’s simply a matter of downloading the credentials to the students’ phones and they are ready to go. If non-smart access technology is being used, multi-technology readers can be installed to help ease into the transition by reading both the ID badges and the smartphones.”

In the United States, more than 40 million phones are expected to be NFC-enabled by the end of 2012 and according to a report by Market Research, nearly half of all mobile phones will be NFC enabled by 2016.

About Ingersoll Rand Security Technologies

Ingersoll Rand (NYSE:IR) advances the quality of life by creating and sustaining safe, comfortable and efficient environments. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Schlage is the leader in security devices, trusted for 90 years, spanning both the commercial and residential markets. Ingersoll Rand is a $14 billion global business committed to a world of sustainable progress and enduring results. For more information, visit ingersollrand.com or schlage.com.

About The CBORD Group, Inc.

The CBORD Group serves colleges and universities, healthcare facilities, corporations, senior living facilities, supermarkets, and a host of other market segments. CBORD’s products are used in access control, integrated security, campus ID card privilege control, housing services, food service, catering, nutrition services, online ordering, and other institution-wide activities. Founded in 1975, The CBORD Group serves more than 6,000 clients in the U.S., Canada, Europe, South Africa, the Middle East, New Zealand, and Australia. To learn more about CBORD, visit www.cbord.com.

The CBORD Group, Inc. operates as a unit of Roper Industries, Inc. (NYSE: ROP). Roper Industries is a market-driven, diversified growth company and is a constituent of the Fortune 1000, the Russell 1000, and the S&P 500 indices. Roper provides engineered products and solutions for global niche markets, including water, energy, radio frequency, and research/medical applications.

March 27, 2012 I Written By

Schlage® AD-Series Locks and XceedID® Smart Card Readers Already NFC-Compatible

Facilities presently using AD-Series locks and/or XceedID smart card readers can use NFC-enabled smart phones as credentials

CARMEL, IN – March 19, 2012 – Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, announced that all existing 13.56 MHz smart versions of the AD-Series locks and XceedID smart card readers are already compatible with the new aptiQmobile™ NFC technology. The popular Schlage AD-Series locks will let people use aptiQmobile™ web-based service and their own Near Field Communications (NFC-enabled)-smartphones as their credential to allow secure access into their facilities. To gain entrance, they simply open the aptiQmobile™ app and tap their phone to the AD-Series lock on the door. Those with XceedID smart card readers will be able to do likewise. No new readers for either the AD-Series or XceedID solutions are required.

When the Schlage AD-Series lock was introduced back in September of 2009 Ingersoll Rand Security Technologies stated that “security professionals can now choose the specific electronic lock they need with full confidence that it can later be upgraded without ever taking it off the door…(the) locks provide options to truly customize the access control solution, quickly migrate to future needs and provide seamless integration, now and later, at a lower cost of ownership.”

“Already NFC-ready, the AD-Series is living up to its promise,” emphasizes Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “It was built with the future in mind and that future has arrived with the ability to use a mobile phone for access control.”

Likewise, all XceedID smart card readers are also compatible with the NFC solution. XceedID smart card readers are integral features in a wide range of smart card-based solutions from a variety of manufacturers, including Access Smart, CBORD, Heartland Campus Solutions, SCM, idOnDemand, Solero Systems, Screencheck, ISG, NEDAP, ID Group, LSI, Card Quest, One Source, Gemalto, Cypress Computer Systems and Vision Database Systems (VDC). For customers that use products from these companies featuring the XceedID smart reader, they can use their current smart card readers to leverage NFC-based access control.

According to Earles, “Organizations are looking to future-proof their investments and NFC is one of the key technologies on the horizon. Using aptiQmobile on their NFC-enabled smartphones in conjunction with AD-Series locks or XceedID smart card readers, these organizations can be assured that their systems are flexible and their investments are solid.”

NFC technology is now being added to a growing number of mobile handsets to enable access control as well as many other applications. More than 40 million phones are expected to be NFC-enabled by the end of 2012 and over half the phones sold in 2015 will be NFC-capable.

At the ISC West Exposition, to be held in Las Vegas March 28-30, attendees visiting the Ingersoll Rand Security Technologies booth 16053 will see a smartphone with the aptiQmobile app being used just like a smart card (or proximity card) to open a locked door. They will also learn about a successful pilot program using aptiQmobile at a major East Coast university.

About Ingersoll Rand Security Technologies

Ingersoll Rand (NYSE:IR) is a world leader in creating and sustaining safe, comfortable and efficient environments in commercial, residential and industrial markets. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Ingersoll Rand Security Technologies’ market-leading products include electronic and biometric access control systems; time-and-attendance and personnel scheduling systems; mechanical locks; portable security; door closers, exit devices, architectural hardware, and steel doors and frames; and other technologies and services for global security markets.  Ingersoll Rand is a $14 billion global business committed to sustainable business practices within our company and for our customers. For more information, visit www.ingersollrand.com or www.securitytechnologies.ingersollrand.com.

March 25, 2012 I Written By

aptiQmobile™ Keys from Ingersoll Rand Security Technologies Turn Smart Phones into Credentials

CARMEL, IN, March 15, 2011– Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, introduced its new aptiQmobile™ web-based key management system. The system will send access control credentials over the air to Near Field Communications (NFC)-enabled smartphones, allowing people to use their phones to enter buildings in place of their smart-card ID badges.

“Many smartphones currently on the market are already NFC-enabled with more models being launched every month,” emphasizes Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “NFC-enabled phones can send encrypted data a short distance to a NFC-enabled reader located, for instance, next to a retail cash register or a door lock.

“To turn these smartphones into an access control credential, you simply download the aptiQmobile app to your smart phone and use it to retrieve your secure mobile key that was set up by your access control site administrator,” explains Earles. “Once your mobile key is downloaded, open the app and tap it to the reader just like using a smart card.  It’s very secure and extremely easy to use.”

Research shows that nearly two-thirds of college students are interested in using their mobile phones in place of their ID card and aptiQmobile brings the industry one step closer to that reality. Ingersoll Rand is currently conducting aptiQmobile pilot trials across the country to issue credentials over the air to phones and using those phones in day-to-day access control scenarios. The aptiQmobile management system will become commercially available later this year as NFC-enabled smartphones become more widely available.

At the ISC West Exposition, to be held in Las Vegas March 28-30, attendees visiting the Ingersoll Rand Security Technologies booth 16053 will see a smartphone with the aptiQmobile app being used just like a smart card (or proximity card) to open a locked door. They will also learn about a successful pilot program using aptiQmobile at a major East Coast university.

About Ingersoll Rand

Ingersoll Rand (NYSE:IR) is a world leader in creating and sustaining safe, comfortable and efficient environments in commercial, residential and industrial markets. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Ingersoll Rand Security Technologies’ market-leading products include electronic and biometric access control systems; time-and-attendance and personnel scheduling systems; mechanical locks; portable security; door closers, exit devices, architectural hardware, and steel doors and frames; and other technologies and services for global security markets.  Ingersoll Rand is a $14 billion global business committed to sustainable business practices within our company and for our customers. For more information, visit www.ingersollrand.com or www.securitytechnologies.ingersollrand.com.

March 19, 2012 I Written By