FDA/DEA CSOS Regulation
Comply with Controlled Substance Ordering System (CSOS) requirements
DEA's CSOS program allows for secure electronic controlled substances orders without the supporting paper DEA Form 222. Using a public key infrastructure (PKI), CSOS requires that each individual purchaser enroll with DEA to acquire a CSOS digital certificate.
Entrust nShield HMSs can help prepare organizations to comply with the CSOS program requirements with:
- FIPS-certified protection of private keys;
- Industry-leading experience in designing and implementing PKI solutions.
Regulation
The DEA's CSOS Regulation
The DEA's Controlled Substance Ordering System (CSOS) allows for secure electronic transmission of Schedule I-V controlled substance orders without the supporting paper Form 222.
The DEA requires that auditors validate that the cryptographic modules are FIPS 140-2 certified. Auditors must also validate all aspects of the software that are addressed in the regulations.
Compliance
Authorized User Controls
Establish a secure and scalable PKI that helps ensure that only authorized users and devices have access to enterprise networks. Using Entrust HSMs to help secure the process of issuing CSOS certificates and proactively manage signing keys creates a high-assurance foundation for digital security.
Strong Key Management
Ensure that encrypted data remains unreadable by protecting encryption keys with FIPS-certified Entrust HSMs.
Resources
Brochures: Entrust nShield HSM Family Brochure
Entrust nShield HSMs provide a hardened, tamper-resistant environment for secure cryptographic processing, key generation and protection, encryption and more. Available in three FIPS 140-2 certified form factors, Entrust nShield HSMs support a variety of deployment scenarios.
Related Solutions
HIPAA | HITECH
For electronic health information security and the timely disclosure of data breaches