[Webinar] Streamline your web hosting managementRegister Today

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1760
  • Last Modified:

Is windows desktop remote connection Hipaa compliant

I am a IT consultant for doctors offices.  I am trying to find out whether windows desktop remote connection is Hipaa compliant.  We have all of our customers VPN and then use RDC but one doctor has had someone else tell them that RDC which uses RC4 encryption is enough and Hipaa complaint.  I have researched this and can't find exact docmentation, only the opinions that you are much better off using a VPN first.
  • 2
2 Solutions
also, if all your users are required to authenticate via a secure VPN connection (recommendation would be to use 3DES) then you should be ok.... Best recommendation to make sure you are the safe side is to find someone (auditor or whatnot) who is familiar with HIPAA and verify with them that it is OK to use the remote desktop client...
Hipaa really does not describe specific technologies that must be used in this case. What they are looking for is that a formal risk analysis was performed to determine what the appropriate method would be. Generically speaking, a VPN is a very inexpensive option, while the violation can be pretty expensive. A basic analysis of this would say to use a VPN

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now