Skip navigation

Secure Remote Access to Patient Records

Duo helps protect confidential patient information by integrating with Epic’s EHR to provide secure remote access that’s tailored to the needs of the healthcare industry.

Safely Support BYOD

When your users log into your EHR, Duo’s two-factor authentication solution helps you identify an individual, then checks the security health of their device before granting access.

Trusted Endpoints lets you secure access to your EHR systems and support your BYOD policies by allowing you to detect personal, employee-owned devices. Administrators can use Duo’s out-of-the-box integration with Citrix Netscaler Gateway and VMware Horizon View.

Two-Factor Authentication for HIPAA Compliance

Duo’s solution can help you meet healthcare data regulatory compliance. The Health Insurance Portability and Accountability Act (HIPAA) recommends the use of strong access controls to any system providing access to patient data.

Two-Factor Authentication for EPCS Compliance

Healthcare organizations are required to meet federal regulations, known as Electronic Prescriptions for Controlled Substances (EPCS) compliance for e-prescribing, reporting and analysis.

Physicians can enroll with Duo and digitally sign e-prescriptions via push notifications on their smartphones. With one tap, physicians can approve e-prescriptions using the Duo Mobile app. Doctors can also use a variety of other authentication methods, like soft or hard tokens and U2F.

Plus, administrators can use Duo’s out-of-the-box integration with Epic Hyperspace’s e-prescription workflow for quick and easy setup. Duo also provides security reports for auditing, tracking and compliance.

Note: [Duo’s one-time passcodes generated via SMS and callback methods are not FIPS-140-2 compliant. Current versions of Duo Mobile for iOS 6 and above, Android, and Windows Phone do generate FIPS 140-2 Level 1 validated OTP passcodes.

For the purposes of EPCS, choose between Duo Push, U2F (YubiKey hard tokens), OTP hard tokens, or FIPS 140-2 validated hardware token to help meet your compliance team’s interpretation of the Federal EPCS Guidelines.]

Cover of An Enterprise Healthcare CISO’s Journey to Zero Trust eBook

An Enterprise Healthcare CISO’s Journey to Zero Trust

Download Duo's CISO guide to get a detailed account of one healthcare CISO's experience with a zero-trust security model.

Get the Free Guide