Friday, December 7, 2012

Cool Technology of the Week


I've written several posts about security including identity management, role-based access control, and two factor authentication.

As we work to follow best practices, I'm always interested in learning about emerging technologies.

I was recently emailed about OneID as a means to secure identity using specifically registered devices.   Here's a technology overview.

Here's the full story.

The bottom line is that by using digital certificates placed on your known devices, application passwords can be eliminated for those applications that can integrate with the OneID approach.

If a device is lost or stolen, it's easy to deactivate the device and remove all authentication.

The approach is resistant to phishing, keystroke loggers, and malware since nothing typed on the device is sufficient for authentication.

Device-based certificate management for easy authentication that eliminates many password management issues.   That's cool

3 comments:

  1. John,

    We have two EMRs, CERNER for the acute care and E-Clinicalworks for the physician practices. We want to implement their portal and have one common login and password. Do you think OneID will work with both portals, and do you think I will find it difficult to convince CERNER and/or ECW to make the integration for us? Both solutions are hosted by the vendor, and we have little access to the infrastructure. We operate a Regional Medical Center with 180 beds with about 20 service lines. We also have 17 different medical clinics (family medicine, pediatrics, specialty services).

    RR

    ReplyDelete
  2. Check out single sign on provider Imprivata for Cerner/eCW authentication.

    ReplyDelete
  3. I think the problem is that these are the patient portals and consumers/patients don't have access to our AD domain. We currently using Impravata as a single sign on solution among our internal applications. Do they have a product it can work externally with our patients/consumers?

    Thank yuo,

    RR

    ReplyDelete