Re: StreamSec
From: Jim McKay (jdmckay_at_*no-spam*sbcglobal.net)
Date: 07/07/04
- Next message: Yahia El-Qasem: "Re: Gnostice eDocEngine"
- Previous message: Chuck: "Delphi Hosting - New Online Help"
- In reply to: Matthew S. Vesperman: "StreamSec"
- Next in thread: Brian Moelk: "Re: StreamSec"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: 7 Jul 2004 10:16:34 -0700
Matthew S. Vesperman wrote:
>I would like some feedback as to the quality of support from
>http://www.streamsec.com/
>
>How good is their support?
hi:
I've been customer +- 18 months, and use StreamSec(SS) intregally
w/kbmMW for HIPAA based medicare/insurance billing over web.
Patient info privacy big part of the puzzly, hence my use
of SS.
Frankly, I have not asked/used Henrick's support a whole lot,
as by the time I bought SS I had become pretty well versed
in what I needed to do w/SS. Few times I've needed help,
he's been very responsive, and extremely precise, detailed
and clear. In other forums where I participate in which
SS is integral, I've seen people describe Henrick's support
as "patience of a saint".
Given recent goings on in this group re: security problems,
and (IMO) given a number of responses/questions/opinons indicating
so many seem to have notion the coding an encryption algo on
data makes it secure, I'll take the opportunity to expand my
comment, as it seems appropriatte given (xxx) developers may
have stuff "out there" which they've told customer's was
"secure", and it's not.
Briefly, big part of HIPAA deals w/Patient Record(s) privacy.
There's significant law/standards written into spec defining
security requirements on network/in transport/data format etc.
After consulting attorney on liability issues, decided to
investigate encryption/security issues in depth. Didn't take
long to realize required tools were difficult to build, much
less use. RNG one (of many) such examples.
So, I started w/Bruce Schneir's book on recomendation of
people I asked who had experience in this field:
http://www.schneier.com/book-applied.html
(NOTE: SS has links to some articles/pubs on web site that,
if read/taken to heart, will lead to similar conclusions
that I've expressed).
Long/short: after completing that, it was quite clear where/how
(supposedly) securely ecrypted softare is hacked/cracked/deciphered.
It was on basis of this that I defined what I needed in the way
of encryption/security tools.
I chose SS after some painstaking tours this SS trial, because
it was only Delphi tool set I could find that met requirements
I set up.
Every one of our systems has to pass federal certification for
(among other things) security, and *every single one* has passed
w/out issue (some 200+). In the process, I've seen *many* fail,
for reasons similar to naivite evidenced here lately.
So, I say all of above as prelude to saying, that AFAIC, SS
is a very complete, reliable, professional security/encryption
suite. If you're developing systems that *require* security,
I for one wholeheartedly endorse/recomend SS. I don't think
I could have gotten my stuff out the door (in Delphi) w/out it.
I'd also say, do yourself a favor and do a little research: there's
a whole lot of less than obvious caveats/gotcha's which,
left unkown/unacknowledged, can lead to a *very*
"false sense of security" <heehee>.
-- Regards: Jim McKay "A conservative is a man with 2 good legs who has not learned how to walk forward." FDR "To announce that there must be no criticism of the president, or that we are to stand by the president right or wrong, is not only unpatriotic and servile, but is morally treasonable to the American public." Theodore Roosevelt Posted with XanaNews: Ver: 1.16.3.1
- Next message: Yahia El-Qasem: "Re: Gnostice eDocEngine"
- Previous message: Chuck: "Delphi Hosting - New Online Help"
- In reply to: Matthew S. Vesperman: "StreamSec"
- Next in thread: Brian Moelk: "Re: StreamSec"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
