HIPPA-compliant Biometric Authentication
Wednesday, September 13, 2017: 4:15 PM - 5:15 PM
Recent trends indicate that many healthcare providers view the use of biometric technologies as a mean of increasing security when it comes to protecting user’s health information under the Health Insurance Portability and Accountability Act (HIPAA).
The advent of Fast Identity Online (FIDO) standard as a replacement to password based solutions open the question of the use of biometric technologies for patient identification and authentication within the healthcare industry.
It is not clear if standard based definition do exist that define a systematic method for using biometric authentication for strong authentication in healthcare. It is not easy to determine if HIPAA or other compliance standard do specify criteria for strong biometric authentication. However, risk based authentication systems that are based on behavioral or physical biometrics such as the use of use of fingerprint, voice, facial and Retina scans provides stronger measures of confirming people claimed identity.
In this session panelists will consider the use of Biometric authentication as a mean of enhancing the security of healthcare providers systems. The following questions will be addressed:
1. Can biometric be used as a replacement of passwords
2. Is the biometric technology within mobile devices good enough to be used for strong authentication
3. How to measure the strength of biometric authentication
4. How to use NIST SOFA and the new 800 63-3 to ensure secure HIPPA based authentication solutions
5. Provide examples of risk based authentication as used in the industry today
Federal Identity Forum
- Wednesday, September 13, 4:16 PM - 5:14 PM