Skip to content

Implement Encryption and Decryption #4

Open
Open
Implement Encryption and Decryption#4
Labels
compliancehigh
@suhasramanand

Description

@suhasramanand
suhasramanand
opened on Mar 4, 2026

Implement a mechanism to encrypt and decrypt ePHI when deemed appropriate.

Acceptance criteria

  • Minimum encryption standard: AES-256 for data at rest
  • Minimum encryption standard: TLS 1.3 for data in transit
  • Key rotation required every 90 days

Source: § 2.1.4

Covered entities SHOULD implement a mechanism to encrypt and decrypt ePHI when deemed appropriate.

Metadata

Metadata

Assignees

No one assigned

    Labels

    compliancehigh

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions