MedSciNet

Two-Factor Authentication

To meet the requirements of Swedish regulation concerning the privacy and security of Swedish National Quality Registry systems, MedSciNet has developed a two-factor (also known as "strong") authentication method as an optional module for its online solutions.

Our current method for two-factor authentication relies on an integrated SMS messaging functionality where a user is sent a randomly generated, single-use code that must be entered along with the user's private password while logging in to an application. The method is already in use within several of our National Quality Registry system implementations.

In addition we are currently working on implementing support for the SITHS-card, a type of personal "smart card" which is tentatively set to become the standard for electronic authentication in the Swedish health care system.