Encrypt electronic patient health information

The HIPAA Security Rule requires healthcare organizations to use appropriate safeguards to ensure that electronic protected health information (ePHI) remains secure while the HITECH Act, which expands the HIPAA encryption compliance requirement set, requires the timely disclosure of data breaches.

Entrust supports HIPAA compliance through:

  • Encryption key management
  • Strong user authentication

    Regulation

    The US Health Insurance Portability and Accountability Act (HIPAA)

    The HIPAA Security Rule requires covered entities to implement technical safeguards to protect all electronic protected healthcare information (ePHI), making specific reference to encryption, access controls, encryption key management, risk management, auditing and monitoring of ePHI information. The HIPAA Security Rule enumerates examples of encryption methods that covered entities can employ, along with the factors to consider when implementing a HIPAA encryption strategy.

    Health Information Technology for Economic and Clinical Health (HITECH) Act

    Enacted as a part of the American Recovery and Reinvestment Act (ARRA) of 2009, the HITECH Act expands the HIPAA encryption compliance requirement set, requiring the disclosure of data breaches of “unprotected” (unencrypted) personal health records, including those by business associates, vendors and related entities.

    HIPAA Omnibus Rule of 2013

    The “HIPAA Omnibus Rule” of 2013 formally holds business associates liable for compliance with the HIPAA Security Rule.

    Compliance

    Encryption Key Protection

    Entrust nShield® hardware security modules (HSMs) are FIPS-certified, tamper-resistant devices that help protect ePHI by securely generating, managing and storing encryption and signing keys.

    Strong User Authentication

    Entrust nShield HSMs can help you create high-assurance systems to authenticate users and devices using enterprise systems, limiting accessing to only authorized entities.

    Resources

    Brochures : Entrust nShield HSM Family Brochure

    Entrust nShield HSMs provide a hardened, tamper-resistant environment for secure cryptographic processing, key generation and protection, encryption and more. Available in three FIPS 140-2 certified form factors, Entrust nShield HSMs support a variety of deployment scenarios.

    Related Solutions

    Related Products

    Chat Now