The Business Challenge
The healthcare sector, at large, is one of the most diverse and complex security infrastructures to manage. The use of usernames and passwords complicates care and presents a significant overall risk to the organization and patients. A compromised credential can lead to fraud, access to illegal drugs, data breaches, and even access to medical devices when connected to patients.
It’s a difficult balancing act. Unfortunately, we’ve seen a perfect storm within the healthcare space with the detrimental impact of COVID-19 and ransomware attacks on patient healthcare at many hospital systems worldwide. Including remote identity proofing and user authentication as part of a digital transformation healthcare organizations can mitigate these attacks.
1Kosmos identity-based biometric security platform supports these needs by providing quick, secure access to data and systems while protecting patient privacy. The 1Kosmos approach begins with strong identity verification delivering high identity assurance which supports strong identity-based access. In doing so, organizations will eliminate passwords and verify the identity of users logging in to minimize the threats from data breaches, ransomware, phishing, and fraud.
The 1Kosmos Advantage
1Kosmos BlockID provides indisputable ID proofing for healthcare organizations including patients.
With 1Kosmos BlockID, practitioners will self-enroll their identity using a drivers license, passport or citizenID. The identity enrollment can even verify if a user is a physician by validating their NPIN (National Physician Information Number). The advantage of 1Kosmos BlockID is the flexibility of identity assurance levels supported. Organizations can choose the practitioner’s identity assurance right up to and including NIST 800 63-3 standards for Identity Assurance Level 2 (IAL2) and Authentication Assurance Level 2 (AAL2).
Verifying identity against credentials (e.g., Drivers License) is easy. For example, through the 1Kosmos BlockID App, users will scan the front of their driver’s license and the “PDF417” barcode on the back, performing real-time ID card detection and classification. Users will also, through the 1Kosmos App, read the “MRZ” data for passports, perform UV, white light, and ink-depth checks, and scan the embedded RFID chip. The result is a verified identity credential and the information they contain to W3C VC standards.
Once verified, the healthcare worker will use their digital identity for physical access and account login rather than a username and password. This not only provides users with a positive experience, but the organization also benefits from a high level of certainty for who is at the other end of the digital connection.
Replace or augment all existing access technologies with a single platform.
Replace or augment all existing access technologies with a single platform that easily integrates into the existing technology stack and delivers an identity-based biometric authentication for both physical and logical access requirements.
By implementing 1Kosmos BlockID, organizations will consolidate several types of methods into one experience. The 1Kosmos advantage is adding to or replacing the authentication method with LiveID to enhance the security and identity assurance levels of any access request. This is a significant enhancement to any MFA capability.
1Kosmos BlockID provides out-of-the-box integrations not only for Windows but also for Unix, web applications, Mac OS, and other custom logins to help ensure a consistent login experience across the diversity of systems found in healthcare today.
1Kosmos BlockID also comes with a developer-friendly SDK and APIs that comply with the strictest certification standards for handling and retaining sensitive data, so you can connect to new and legacy systems. In addition, 1Kosmos can also integrate into commercial, corporate, or government systems via industry authentication standards such as OAuth, OIDC, SAML, and FIDO and offers legacy support via RADIUS.
MFA thats nothing more than a blink and a smile
LiveID enhances the security and identity assurance levels of any access request delivering MFA that’s nothing more than a blink and a smile. With 1Kosmos BlockID, practitioners will utilize their trusted mobile device for daily authentication and step-up authentication for physical and logical access.
The DEA Regulation for EPCS standard calls for 2-factor authentication. The BlockID platform can be used to meet the strict “something you have” (mobile phone) and “something you are” (a biometric), enhancing security as well as the user experience. The 1Kosmos approach binds healthcare workers to their proofed and validated identity through the identity enrolment process. In doing so, 1Kosmos BlockID creates an identity-based biometric authentication and a passwordless experience, eliminating the need for 3rd party 2FA, one-time codes, and other external authentication devices. As a result, each access event is associated with a real, verified identity.
Biometric MFA delivers a more convenient, touchless user experience and provides fast and highly secure access without passwords. Users blink and smile into their selfie camera to gain access without using a password. With a passwordless approach, healthcare organizations will eliminate phishing attacks, malware attacks, data breaches, account compromise, and fraudulent activities related to passwords.
One platform for secure physical and logical access.
The 1Kosmos BlockID app provides access to logical platforms such as data, applications, and services, and physical facilities.
Most people, including healthcare providers, tend to take their mobile devices everywhere they go. By leveraging that fact, 1Kosmos gives healthcare organizations Users will utilize their trusted mobile device for daily authentication and step-up authentication for physical, logical, or even offline access. As a result, each access event is associated with a real, verified identity. Additionally, from a security perspective, leveraging a mobile device will remove gaps and lag time when onboarding and offboarding workers and during emergency response initiatives.
By implementing 1Kosmos BlockID, organizations will consolidate several types of access methods into one experience.