Cyber security has become a top concern for organizations worldwide, recently highlighted by the WannaCry ransomware that crippled hospitals, universities and businesses. Since a multitude of powerful Windows hacking tools have been released on the dark web, experts fear more impending cyber attacks and data breaches. The best way to prevent suffering from cyber attacks and compromising electronic health records is to have a robust 2-factor authentication system in place utilizing Public Key Infrastructure (PKI). PKI serves your organization through secure Windows Logon, VPN/remote authentication, email encryption and digitally signing documents.
Hospitals and healthcare providers should have 2-factor authentication implemented to comply with the HIPAA mandate for electronic protected healthcare information. 2-Factor Authentication is the proven method to secure devices, electronic health records (eHR) and medical systems. 2 factor authentication is not only mandated for HIPAA but also for practitioners and pharmacies issuing electronic prescriptions for controlled substances (EPCS). According to Title 21 Code of Federal regulations, there must be 2-factor authentication utilizing DEA approved certificates and FIPS 140-2 certified devices to digitally sign electronic prescriptions of controlled substances. Tx Systems has complete solutions for EPCS from clinician to pharmacy including Identity Proofing from our certificate authority partner Identrust part of HID Global.
As part of PKI, users have a credential that normally comes in a smart card or token form factor where a private key in addition to a digital certificate are stored. Tx Systems specializes in implementing smart card solutions that leverage ID badges for secure door and computer access. To enable PKI authentication, small companies can implement a standalone PKI card or a credential management system for medium to large organizations such as ActivID CMS that manages the entire credentials lifecycle. For more info on PKI solutions you can implement at your organization please contact us through the link below.
