The following comes from Scott Wood the CEO of ACS Technologies in California.
“There are two basic ways to encrypt your dental practice data on your server. You can use encryption software, like BitLocker or you can use Self-Encrypting Drives (SED).
BitLocker and other systems allow the server to reboot without entering a password. Your data is protected against removing the drives from the server and examining them from another computer. However, if you can boot the server, then your level of protection is only as good as your network settings and account passwords.
Once the thieves have the server in their lab, they can fairly easily compromise an account with a weak password over the network and your data may be at risk. That also makes Risk Assessments more difficult asthe likelihood of the data being breached in the event of theft or loss is dependent on so many other complex factors.
With the right hardware and configuration, Self-Encrypting Drives eliminate that risk by effectively preventing the server from functioning in any capacity until a strong passphrase is entered by a human. That level of protection comes at a cost – modest increase in server price for the encryption-capable hardware, but also management becomes more complex when a long password has to be entered physically at the server at each reboot. You need an effective password management process, do not resort to putting the encryption key on a sticky note on the server.”