Professional Documents
Culture Documents
for healthcare
M.A.Azeem
2984433
Health care Regulations
Public interest and government regulations, such as the
European Directive on Data Privacy, HIPAA, and
French decree number 2007-960, are requiring providers
to be vigilant about who accesses systems, and for what
purpose, putting more pressure on providers.
User provisioning
Unified access
By supporting existing building access cards, IBM
Tivoli Identity and Access Assurance delivers a unified
access solution
Health information exchanges
Health information exchanges (HIEs) facilitate access to and
retrieval of clinical data to improve healthcare
Contactless card Users are identified as they approach the workstation. Clinical staff requiring Fast Log on
They enter a password to log on.
Mobile device Users receive a code on their mobile device and use this Remote Physicians
code with their username and password to log on.
iTag Users leverage any personal device or photo badge with With iTag, users do not need to
smart labels to enable two-factor authentication. carry a separate token for
authentication.
Biometrics Users use their intrinsic physical traits such as This solution is an alternative to
fingerprints and palm prints to log in. physical credentials for clinical
staff
Smart USB Key, Smart Users insert a smart USB key, a smart card , or a token This solution is best for users who
card or Token and enter a password to log in. require a higher level of security
protection.
One-time password or Users carry an authentication token , which is used to This is best for remote users who
Token generate a one-time password .They use this password need a second factor to log in
with a PIN to log in. remotely to their corporate portal
Strong Passwords Users enter a User Id and strong password to Log on. Is Best for any group whose risk
profiles do not warrant a second
factor , or where a second factor is
not viable.
User-centric event capture , reporting , & archival
HIPAA and similar privacy safeguards require healthcare
providers to implement audit controls for health information
technology (HIT) systems with patient information.