Information Technology at Purdue

About ITaP | ITaP People | Purdue Directory

ITaP Search

Login   |    ITaP Home > Security Resources > Security Guidelines

Security Programs

• HIPAA Compliance Information
• GLB Information Security Program
• ResNet Policies
• Port Restriction Plan
• Recommendations for securing windows NT/2k/XP/2k3 servers from NetBIOS TCP (port 137/445) resource enumeration attacks




The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a comprehensive law affecting all businesses, institutions, and organizations which deal with protected health information.

To help ensure compliance, ITNS is required to perform a risk assessment of all areas which stores or processes protected health information. For more information on our risk assessment process, please visit the Risk Assessment page under the Security Services page.

More information on HIPAA can be found in the following documents:

• HIPAA Information Sheet - Discusses HIPAA and the Risk Assessment required by federal law and university policy.
• For more information on HIPAA please visit http://www.purdue.edu/hipaa/.
• HIPAA Training Slides
• Complete the HIPAA Confidentiality Agreement

Purdue University, West Lafayette, IN 47907 USA, (765) 494-4600
© 2008 Purdue University. An equal access, equal opportunity university.

Inquiries or comments: itap@purdue.edu