The Transport and Security Standards Workgroup supported standards for security and transport in certification criteria and supported alignment with the National Strategy for Trusted Identities in Cyberspace (NSTIC). Some examples included: securing data at rest, security for application programming interfaces and RESTful approaches that support modular application integration, data segmentation for privacy, and digital signature.
June 5, 2015
At the December 10, 2014 meeting, the Health IT Standards Committee approved recommendations from the Transport and Security Workgroup related to user authentication to:
- Adoption of a multi-factor authentication certification criterion
- Certification criterion for encrypting authentication credentials (e.g., passwords) at-rest