Guest Post by Dan Borgasano, Imprivata

Healthcare users are increasingly mobile. Now their secure two-factor authentication options are mobile too. VMware and Imprivata have further strengthened their partnership by integrating Imprivata Confirm ID for Remote Access into VMware Digital Clinical Workspace  environments. The solution enables VMware Workspace ONE users to use the same Imprivata DEA-compliant authentication methods they use to login and also e-prescribe securely and conveniently while working remotely.


Why healthcare has unique authentication needs:

As remote work becomes increasingly popular in healthcare, secure remote access poses challenges for security-conscious organizations. Healthcare organizations are becoming high profile targets for phishing, whaling, and spear phishing attacks that trick healthcare users into revealing their passwords to hackers. Hackers then use those credentials to mount ransomware attacks, steal patients’ personally identifiable information, and sell Social Security Numbers and other sensitive identity data on the black market. In response, healthcare organizations are introducing strong two-factor authentication requirements into their remote workflows.

Two-factor authentication requires users to provide two forms of identification to access patient data. These forms, or factors, should include a combination of two of the following:

  • Something you know – such as a username and password combination
  • Something you have – such as a mobile device, a soft token, or a hard token
  • Something you are – such as a fingerprint scan or other biometric identifier

Two-factor authentication can significantly improve security. According to the Annual Report to Congress on the Federal Information Security Management Act, up to 65 percent of cybersecurity incidents could have been prevented with strong, two-factor authentication. However, many of the traditional two-factor authentication methods, though secure, pose additional challenges for remote users because they can be clunky, inefficient, and inconvenient. These kinds of user experience challenges pose unique problems in healthcare environments in which users often need to authenticate as quickly as possible in order to provide time-sensitive care to patients.


How Imprivata and VMware address healthcare’s unique authentication needs:

Imprivata Confirm ID for Remote Access addresses the unique challenge of balancing security and convenience in healthcare settings by combining strong authentication with convenient workflows for all healthcare enterprise users, including clinicians, administrative staff, affiliates, and contractors. Confirm ID integrates directly with VMware Identity Manager and critically, offers a broad range of  DEA-compliant authentication options, including Hands Free Authentication, push token notification, fingerprint biometrics, SMS messages, and conventional software tokens. By providing a DEA certified encryption algorithm, providers are able to use the same workflow for their initial login to access patient information as well as any subsequent EPCS order signing workflows simplifying training keeping providers focused on patients, not technology.


By providing flexible, user-friendly two-factor authentication options in mobile virtualized environments, Imprivata and VMware provide the technology healthcare organizations need to out-smart hackers and avoid becoming the targets of the next high-profile healthcare security breach.

To learn more about how Imprivata Confirm ID can complement your VMware Horizon environment and protect your organization from phishing attacks, visit or download our latest whitepaper