On Tue, 24 Nov 1998 18:44:28 -0000, "Laurie Slater"
<[log in to unmask]> wrote:
>
>Attended a meeting yesterday with 15 local GPs who are about to
>get on the NHS net. ......
>
>A laptop was used to connect to the NHS Net and the password was
>entered in two halves. The first half from memory, the second
>from a credit card sized gizmo which receives a newly transmitted
>password each minute.
>
>Impressed the hell out of me!
Far from impressing me, I think it is a pain in the neck. We've just
been given a PC and one of these gizmos as part of the pilot scheme to
get welsh GPs on our version of the NHS net (Cymru Web). The gadget
has an LCD screen with a number which changes every 60 seconds. This
is synchronised with the server so you can type it in as part of your
password when you log on. This means that you have to have the gadget
physically in your hand when you dial in. We were given one free, but
any more cost 50ukp each. If and when we have a network of PCs in the
surgery this means we will either have to fork out 450ukp for 9
gadgets or run round borrowing it off each other to dial in. At the
moment we only have one PC with a modem, but there is still a problem
if one of us wants to dial in from home.
Obviously the gadget makes the system more secure, but there is always
a trade off between security and ease of access and I think they've
got the balance wrong. I'm sure the IT managers who run Cymru Web
would be happiest if no NHS staff could connect at all - then it would
be really secure!!
David
---------------------------------------
Dr David Evans
Cardiff
[log in to unmask]
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|