Diversinet Scores FIPS 140-2 Validation for MobiSecure

Diversinet, a provider of secure mobile health technology, has been awarded a Federal Information Processing Standards (FIPS) 140-2 certification for its MobiSecure technology by the National Institute of Standards and Technology (NIST).

The validation is required for MobiSecure to be used in both the U.S. and Canadian government communication systems to make sure sensitive information is kept private. It’s the first mobile health solution to get one. The technology also has enhanced security features such as multi-factor authentication.

"FIPS 140-2 validation of our technology is a milestone not only for Diversinet but also for the mobile health industry," Hon Pak, Diversinet CEO, said. "Healthcare organizations that use Diversinet-powered mHealth solutions to promote care coordination are future-proofing the mobility and security elements of their applications."

"The FIPS seal of approval demonstrates how Diversinet is leading the trend toward greater exchange and protection of personal health information, fueled by increasing smartphone and tablet usage and popularity of bring-your-own-device, or BYOD, policies,” Pak continued. “Multi-factor authentication is one of several advanced features embedded in our platform to safeguard patient information at rest and in transit. Other security measures we provide include a patented encryption technique to prevent cloning and double encryption to thwart phishing.”

In addition to MobiSecure, NIST has also given FIPS 140-2 validation to Diversinet’s Java cryptographic module and Java Crypto Module for Mobile.

The validation comes as governments recommend healthcare technology companies to tighten security even more. The HIT Policy Committee, which advises the U.S. Department of Health and Human Services, recommended that multi-factor authentication be used to access patient data. If the recommendations are adopted, it could be required in all healthcare technology systems in 2015 under the HITECH act.

Airstrip Technologies announced earlier this year that it had selected Diversinet’s software development kits to integrate into its own solutions for government agencies such as government hospitals, citing the FIPS 140-2 validation as one of the chief reasons for doing so.