<div>
This might answer your question regarding encryption.... <br />
<a href="http://questions.cms.hhs.gov/cgi-bin/cmshhs.cfg/php/enduser/std_adp.php?p_sid=DENHT5Eh&p_lva=&p_faqid=1854&p_created=1048511378&p_sp=cF9zcmNoPSZwX2dyaWRzb3J0PSZwX3Jvd19jbnQ9MTEyJnBfY2F0X2x2bDE9MiZwX2NhdF9sdmwyPTI1JnBfcGFnZT0x&p_li=" rel="ugc">http://questions.cms.hhs.gov/cgi-bin/cmshhs.cfg/php/enduser/std_adp.php?p_sid=DENHT5Eh&p_lva=&p_faqid=1854&p_created=1048511378&p_sp=cF9zcmNoPSZwX2dyaWRzb3J0PSZwX3Jvd19jbnQ9MTEyJnBfY2F0X2x2bDE9MiZwX2NhdF9sdmwyPTI1JnBfcGFnZT0x&p_li=</a><br />
<br />

</div>


This might answer your question regarding encryption....
http://questions.cms.hhs.gov/cgi-bin/cmshhs.cfg/php/enduser/std_adp.php?p_sid=DENHT5Eh&p_lva=&p_faqid=1854&p_created=1048511378&p_sp=cF9zcmNoPSZwX2dyaWRzb3J0PSZwX3Jvd19jbnQ9MTEyJnBfY2F0X2x2bDE9MiZwX2NhdF9sdmwyPTI1JnBfcGFnZT0x&p_li= [http://questions.cms.hhs.gov/cgi-bin/cmshhs.cfg/php/enduser/std_adp.php?p_sid=DENHT5Eh&p_lva=&p_faqid=1854&p_created=1048511378&p_sp=cF9zcmNoPSZwX2dyaWRzb3J0PSZwX3Jvd19jbnQ9MTEyJnBfY2F0X2x2bDE9MiZwX2NhdF9sdmwyPTI1JnBfcGFnZT0x&p_li=]



<div>
<div class="content wysiwyg-content">
I am a IT consultant for doctors offices. &nbsp;I am trying to find out whether windows desktop remote connection is Hipaa compliant. &nbsp;We have all of our customers VPN and then use RDC but one doctor has had someone else tell them that RDC which uses RC4 encryption is enough and Hipaa complaint. &nbsp;I have researched this and can't find exact docmentation, only the opinions that you are much better off using a VPN first.
</div>
</div>


I am a IT consultant for doctors offices.  I am trying to find out whether windows desktop remote connection is Hipaa compliant.  We have all of our customers VPN and then use RDC but one doctor has had someone else tell them that RDC which uses RC4 encryption is enough and Hipaa complaint.  I have researched this and can't find exact docmentation, only the opinions that you are much better off using a VPN first.

Is windows desktop remote connection Hipaa compliant

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.