My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Data Sharing Agreement
>
Meetings
>
2019
>
01. January
>
2019-01-15 10:00 AM - Commissioners' Agenda
>
Data Sharing Agreement
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/1/2019 12:13:28 PM
Creation date
2/1/2019 12:13:02 PM
Metadata
Fields
Template:
Meeting
Date
1/15/2019
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Fully Executed Version
Supplemental fields
Alpha Order
j
Item
Request to Approve an Agreement with the Washington State Department Health for Data Sharing
Order
10
Placement
Consent Agenda
Row ID
50670
Type
Agreement
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
28
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
a) If so authorized the data must be encrypted during transmissions using a key <br />length of at least 128 bits. Industry standard mechanisms and algorithms, such <br />as those validated by the National Institute of Standards and Technology <br />(NIST) are required. <br />b) Authentication must occur using a unique user ID and Complex Password (of <br />at least 8 characters). W hen t he data is class ifie d as Confidential o r Re st r icted, <br />authentication requires secure encryption protocols and multi-factor <br />authentication mechanisms, such as hardware or software tokens, smart <br />cards, digital certificates or biometrics. <br />c) Accounts must lock after 5 unsuccessful access attempts, and remain locked <br />for at least 15 minutes, or require administrator reset. <br />F. Data storage on mobile devices or portable storage media <br />1. Examples of mobile devices are : smart phones, tablets, laptops, notebook or netbook <br />computers, and personal media players. <br />2. Examples of portable storage media are: flash memory devices (e.g. USB flash drives), and <br />portable hard disks . <br />3. The data must not be stored by the Information Recipient on mobile devices or portable <br />storage media unless specifically authorized within the terms of this Agreement. If so <br />authorized: <br />a) The devices/media must be encrypted with a key length of at least 128 bits, using <br />industry standard mechanisms validated by the National Institute of Standards and <br />Technologies (NIST). <br />• Encryption keys must be stored in a secured environment that is separate from <br />the data and protected in the same manner as the data. <br />b) Access to the devices/media is controlled with a user ID and a Complex Password (of <br />at least 6 characters), or a stronger authentication method such as biometrics. <br />c) The devices/media must be set to automatically wipe or be rendered unusable after <br />no more than 10 failed access attempts. <br />d) The devices/media must be locked whenever they are left unattended and set to lock <br />automatically after an inactivity activity period of 3 minutes or less. <br />e) The data on these mobile devices/media must not be stored in the Cloud. This <br />includes device backups. <br />Page 22 of 26 <br />09/2017
The URL can be used to link to this page
Your browser does not support the video tag.