Cloud-based file-sharing services like Dropbox have become popular, but organizations with sensitive data say they're reluctant to turn it over to cloud services. Instead, they're buying file-sharing products they manage on their own for bulk file transfers among business partners.
They're setting up their own large-file transfer services using products from Biscom and Accellion, among others, to allow password-protected access to upload or download large amounts of data. Among the advantages to these products, according to enterprise IT managers using them, is they can be integrated with Active Directory or LDAP for role-based end-user authentication privileges.
[ Also on InfoWorld: 5 signs that you've lost control over your cloud apps. | In the data center today, the action is in the private cloud. InfoWorld's experts take you through what you need to know to do it right in our "Private Cloud Deep Dive" PDF special report. | Also check out our "Cloud Security Deep Dive," our "Cloud Storage Deep Dive," and our "Cloud Services Deep Dive." ]
Rodney Cook, information technology manager for Denver-based Colorado Associated Community Health Information Exchange (CACHIE) Support Services, the separate tech services arm for the Colorado Community Managed Care Network (CCMCN), says his job is to provide help to outside healthcare providers in setting up electronic patient records that qualify under federal Medicare/Medicaid rules.
CACHIE provides a fairly new type of electronic file storage and management service that's now being funded in every state as part of the Patient Protection and Affordable Care Act of 2010, Cook says. "Every state has at least one," he adds, saying CACHIE is funded in Colorado to encourage the rollout of electronic health records and provide data storage for organizations that don't want to do this on their own.
While CACHIE's parent organization, CCMCN, did at one time use Dropbox for its own internal needs such as writing research grants, some of the security incidents at Dropbox during the past year prompted CCMCN look to for alternatives to cloud services when it was setting up CACHIE Support Services to share sensitive personal health information.
Dropbox had a glitch related to a software upgrade last June that affected the authentication mechanism and allowed logging into an account without the correct password, Dropbox acknowledged. Dropbox was also in the news when last August, security researchers at USENIX disclosed exploits against the service, vulnerabilities that Dropbox fixed.
It all convinced Cook that CACHIE should manage its own file-sharing with healthcare providers, and the choice was made to use the Accellion Secure Collaboration appliance to send and receive large electronic files securely.