Networking News

Two-Factor Authentication Gains Stature in IT Infrastructure

Since 2010, non-federal acute care hospitals have increased their capability for two-factor authentication by an average of 11 percent each year.

By Frank Irving

- U.S. hospitals are increasingly supporting the health IT infrastructure for two-factor authentication to protect access to electronic protected health information (ePHI). The Office of the National Coordinator for Health IT (ONC) reports in a new data brief that as of 2014, about half of non-federal acute care hospitals support two-factor authentication, up 53 percent since 2010.

Two-factor authentication is on the rise at U.S. hospitals to help secure access to electronic PHI.

The technology requires users to provide at least one additional form of identification beyond user name and password to gain access to ePHI. “The use of two-factor authentication to prove one’s identity is based on the premise that an unauthorized actor is unlikely to be able to supply both factors required for access,” the report states.

Examples include requiring users to answer security questions or enter a randomly generated number sent to their mobile device, the report explains. Other authentication factors may include a token or key in the possession of the user or a biometric marker such as a fingerprint or voice recognition. The extra layer of protection satisfies a HIPAA requirement for covered entities to verify authorization for a person seeking access to ePHI.

Since 2010, non-federal acute care hospitals have increased their capability for two-factor authentication by an average of 11 percent each year, according to data drawn from ONC/American Hospital Association (AHA) IT surveys spanning the 2010-2014 range.

  • Lack of Broadband Access Can Hinder Rural Telehealth Programs
  • Health IT Infrastructure Requirements for AI Cybersecurity
  • Advanced Visualization Critical to Health IT Data Analytics
  • Healthcare Blockchain Could Solve Industry’s Biggest Problems
  • Software-Defined Networking Aids HIT Infrastructure Advancement
  • Site Surveys Ensure Reliable, Secure Healthcare Wireless Networks
  • Clinics Wary of Portals Despite Health Data Sharing Benefits
  • Distinguishing Healthcare Mobile Apps from Web, Desktop Apps
  • Creating HIT Infrastructure to Support Healthcare Robotics
  • Considerations for Choosing Public or Private Cloud-based EHRs
  • Hyper-Convergence Consolidates IT Systems, Cuts Costs
  • Ensuring Healthcare Networks Can Keep Key Data in the Fast Lane
  • EHR Interoperability Transformations Affect HIT Infrastructure
  • Seacoast Health Implements New Medical Device Integration Solution
  • Dropbox Supports Healthcare Data Exchange and Collaboration
  • Spending on Electronic Health Records Exceeds Expectations
  • Mobile Device Integration: Are Tablets a Dying Breed?
  • Unstructured Healthcare Data Needs Advanced Machine Learning Tools
  • HHS Comes Up Short in Web Application, Network Security, says OIG
  • Healthcare Industry Is Key Sector Fueling UCC Market Growth
  • Microsoft Azure Supports Full Suite of AI, Automation Platforms
  • Health Data Encryption Grows with Technology Advancements
  • Comparing Public, Private, Hybrid Healthcare Cloud Storage
  • mHealth Growth Depends on Rural Broadband Access
  • Will Multi-Cloud Gain Traction in Health IT Infrastructure?
  • HIT Infrastructure Consolidation Increases Efficiently, Security
  • Cloud Information Management Systems Aid HIT Infrastructure
  • How Certification, Testing Impact Health IT Interoperability
  • Cloud Adoption Hindered by Legacy Network Architecture
  • Healthcare Infrastructure Security Frameworks Support Innovation
  • Healthcare Software-Defined Networking Allows Cloud Utilization
  • Data Theft, Social Engineering Threaten Health IT Networks
  • Successful Network Connectivity Critical for Patient Safety
  • Health IT Advisory Committee Cancels Meeting Due to Shutdown
  • IBM Watson Launches Healthcare AI Cybersecurity Beta Program
  • Oracle Sets Sights on Besting AWS Cloud Computing Offering
  • Cambia Forms Da Vinci Tie-Ups to Boost Healthcare Interoperability
  • Cost, Flexibility Increase Virtualization’s Health IT Appeal
  • How Red Hat’s Linux Update Affects HIT Infrastructure, Security
  • HITRUST Unveils Tool to Assess Healthcare Supply Chain Risk
  • Certified Health IT Infrastructure Requirements of MACRA Rule
  • AWS Launches Machine Learning Service to Mine Patient Data
  • Preparing Health IT Infrastructure for Artificial Intelligence
  • Pure Storage Releases FlashBlade for Clinical Data Storage
  • Cray Supercomputers, Microsoft Azure Aid Healthcare Analytics
  • Hyper-Converged VDI Modernizes Health IT Infrastructure
  • Secure Communications Key in Recent Uniphy Mobile App Launch
  • Adventist Health Deploys Advanced Clinical Research Platform
  • Management Tools Vital to Continued Health IT Cloud Adoption
  • UPMC’s Cloud-Based OS Boosts Healthcare Interoperability
  • VMware, Amazon Launch Collaboration of VMware Cloud on AWS
  • Selecting Healthcare App Development Tools for Integration
  • 3 HIT Infrastructure Tips for Success in Healthcare VDI Resurgence
  • Virtualization Growth Continues in Health IT Infrastructure
  • ONC’s 2nd Interoperability Forum Focuses on FHIR API, Faxes
  • Intermountain Uses Open Source to Improve HIT Infrastructure
  • Choosing Between Healthcare Public Cloud, Private Cloud
  • 60% of Healthcare Organizations Have Faced CMS or Payer Audit
  • AMA Collaboration to Develop a Standard Data Framework
  • Data Migration Supports Future-Proof Health IT Infrastructure
  • Recent Imaging Platform Collaboration Highlights EHR Solutions
  • IBM DBaaS Toolkit Supports Open Source Cloud Databases
  • Implementing 21st Century Cures Act Preoccupies ONC’s Work
  • Cynerio Gets $7M for Healthcare Internet of Things Security Product
  • HIT Infrastructure Focus in Philips, Health System Partnership
  • Salesforce Health Cloud Improves Mount Sinai Medicaid Program
  • Coordinating Conversations about Healthcare Interoperability
  • Remote Monitoring, Operations Drive Healthcare IoT Adoption
  • Healthcare IoT Infrastructure Relies on Device-to-Cloud Security
  • Healthcare Wireless Mesh Networks Support More IoT Devices
  • Lack of Use-Cases Delay Healthcare Blockchain Implementation
  • Open APIs, Use Cases Driving Interoperability at Allscripts
  • Collaborative Edge Computing Supports Health IT Advancement
  • Healthcare Orgs Over Spending on Unified Endpoint Management
  • VMware, AWS Collaborate on New Hybrid Cloud Infrastructure
  • National HIE Connection and App Store in ONC Plans for 2016
  • Dell EMC Releases ECM Platform for Virtual IT Infrastructure
  • Advanced Healthcare Supply Chain Technology Cuts Costs
  • Healthcare Blockchain Puts Patients in Control of EHRs
  • Enhanced IT Infrastructure Key Element in Healthcare Interoperability
  • CenturyLink, Cloudera Release Big Data-as-a-Service Solution
  • PokitDok Receives EHNAC HIE, Healthcare Cloud Accreditations
  • OBHG Boosts Clinician Engagement with Ob Exchange Platform
  • Rural Hospital Chooses Commvault for Health Data Management
  • Major Vendors Form IoT Cybersecurity Alliance
  • What’s the Difference Between Cloud, Virtualization in Healthcare?
  • Sovereign Health Announces Expanded Telehealth Service
  • ONC Promotes Open APIs to Solve Interoperability Challenges
  • DoD to Roll Out Next Phase of EHR Modernization This Fall
  • New Healthcare Technology from Tech Firms Could Solve Problems
  • Solid HIT Infrastructure Supports Population Health Management
  • VMWorld 2017 Highlights Collaboration for Innovation
  • Growth of Medical IoT Devices Prompts Wi-Fi AP Upgrades
  • Healthcare’s Strong Network Security May Reflect Outdated Model
  • Making Health IT Infrastructure More Resilient
  • Virtual Reality In Healthcare Assists Surgery, Medical Education
  • Using Virtual Machines to Benefit from the Healthcare Cloud
  • Outdated Health IT Infrastructure Attracts Hackers to Hospitals
  • Benefits of Virtual Desktop Infrastructure to Healthcare
  • Ransomware Emerges as Top Health IT Infrastructure Threat
  • However, the data brief points out that two-factor authentication varies significantly by hospital type, with medium and large hospitals reporting significantly higher rates of use than other hospital types. The 2014 numbers break down as follows:

    • Large hospitals – 63 percent
    • Medium hospitals – 59 percent
    • Small urban hospitals – 51 percent
    • Small rural hospitals – 40 percent
    • Critical access hospitals – 35 percent

    The report also reveals variation by state in hospitals’ capability for two-factor authentication. Ohio (93 percent), Vermont (83 percent), Connecticut (81 percent), Virginia (72 percent), District of Columbia (69 percent), California (68 percent), Arkansas (55 percent) and Michigan (55 percent) all reported rates of use significantly higher than the national average. In contrast, 13 states headed by Montana (19 percent), North Dakota (23 percent), Iowa (26 percent) and Louisiana (26 percent) reported significantly lower rates of use than the national average.

    The data brief also notes that two-factor authentication is also an essential capability for providers who e-prescribe controlled substances.

    “In 2010, the Drug Enforcement Administration added the requirement of two-factor authentication for electronic prescribing to the interim final rule, Electronic Prescription for Controlled Substances. This rule gives practitioners the option to electronically prescribe with several options for obtaining authentication credentials,” the report states. “Additionally, the increased use of two-factor authentication by practitioners may help support the [HHS] Secretary’s initiative to decrease opioid-related deaths and morbidity.”

    For the underlying survey data, ONC/AHA requested the person most knowledgeable about the hospital’s IT (typically the chief information officer) to provide responses via mail survey or secure online site.

    Meghan Gabriel, PhD; Dustin Charles, MPH; JaWanna Henry, MPH; and Tricia Lee Wilkins, PharmD, PhD, from ONC’s Office of Planning, Evaluation and Analysis and Office of Clinical Quality and Safety, co-authored the report.



    Sign up for our free newsletter covering the latest IT technology for Hospitals:

    Our privacy policy

    no, thanks

    Continue to site...