Multi-factor authentication (MFA)
What is Multi-Factor Authentication
To be able to guarantee security and privacy at all times and to be able to comply with Dutch legislation and regulations regarding Health Information Systems (which process personal health information), you must log in using multi-factor authentication.
Multi-factor authentication (MFA) is an authentication method in which two different steps must be successfully completed to gain access to existing applications. The first step always involves the password associated with the user account. The MFA is a second step.
The different steps are discussed in this document under the heading ‘Available MFA options’. Using MFA, the chance of unauthorized access to the MRDM applications is minimized as much as possible.
MFA in the NEN-7510 standard
Article 9.4.1 of the NEN-7510 standard in Article 9.4.1 (‘Restriction of access to information’) contains the following passage about the use of MFA: Health information systems that process personal health information must identify the users and this must are done through authentication involving at least two factors.
How do you use MFA?
You can choose from three different options:
This consists of an application (app) that you can download from the app store on your smartphone. We recommend the following apps: Lastpass Authenticator, Microsoft Authenticator or Google Authenticator. You log in as usual with your username and password. In addition, you use the application to generate additional code that gives you access to DataEntry or the Codman Dashboard
Would you like to know more about using the authenticator application? Then read on here.
If you do not want to use the Authenticator application, you can choose the SMS function. You log in as usual with your username and password. You will then receive an SMS with a code on your phone. You accept this code.
Would you like to know more about using the SMS function? Then read on here.
In case you (temporarily) do not have a smartphone or mobile phone, you can also use the e-mail function. You will receive a one-time password by email. Note: you can only use this option if you have used MFA before via the Authenticator app or SMS function.
Would you like to know more about using the E-mail function? Then read on here.
When setting up MFA you will receive a one-time recovery code. You can use this recovery code if the second step does not work (anymore). Please keep this recovery code safe. When you use the recovery code, you will immediately receive a new one-time recovery code that must also be kept in a safe place.