CMS releases first of 7 security white papers

The Centers for Medicare & Medicaid Services (CMS) has released one of seven guidance papers on the Health Insurance Portability and Accountability Act (HIPAA) security rule. Security 101 for Covered Entities offers a basic overview of the security rule and covers topics such as what administrative simplification means, who the rule covers, and who must comply. The papers are meant to assist providers in understanding the HIPAA security rule — not provide sure-fire compliance methods. Topics for future papers include administrative, physical, and technical safeguards; policies and procedures; documentation requirements; basics of risk analysis and risk management; and implementation for the small provider.

To access the paper, go to and scroll down to "Security Educational Material." Click on "Security 101" to download the document.