Foreseeing the increased adoption of networked applications in the healthcare industry and the associated security concerns, the Health Insurance Portability and Accountability Act (HIPAA) Security Standard was published as a proposed rule in 1998 in the US Federal Register. The HIPAA Security Rule mandates health plan providers, healthcare clearing houses, and other organizations processing health information to take reasonable and appropriate precautions to protect health information.
SSH's end-to-end communications security solution helps healthcare organizations to implement and maintain technical safeguards for protecting sensitive patient records as required by the HIPAA Security Rule. By providing confidentiality and integrity for data transmission through strong FIPS 140-2 certified encryption, the SSH Tectia solution effectively eliminates the risk of altering or eavesdropping on patient data in networked healthcare applications.
Our Tectia SSH client/server solution, supports transparent application tunneling, which secures both legacy client/server and future healthcare applications end-to-end – without the need to re-engineer or reconfigure the existing applications. Once SSH's platform has been deployed, physicians, nurses, and other healthcare professionals can continue using their familiar healthcare applications over a completely invisible security layer, minimizing the need for expensive retraining.
SSH's Information Assurance Platform supports various identification methods, including passwords and two-factor authentication to establish a user’s online identity before allowing access to sensitive patient data. Integration with the leading third-party authentication solutions such as RSA SecurID, and Aladdin eToken allows deploying best-of-breed solutions for network security.
Centralized management and auditing allows centralized control of technical safeguards relating to transmission security and reduces the total costs by automating resource-consuming administration tasks. Access to sensitive patient information can be logged, and recorded for playback for full accountability.