Summary of HIPAA Technical Security Services

Summary of HIPAA Technical Security Services are explained below:

1. Access control: Covers various types of role-, user-, and context-based access; treats encryption as optional

2. Audit controls: Mechanisms to log and record electronic activity to create audit trails

3. Authorization controls: Provide for user- and role-based access

4. Data authentication: Refers to message integrity; mentions digital signatures as a solution to maintain message integrity

5. Entity authentication: Includes PIN, tokens, and biometric devices for end-entity authentication