Imprivata Announces ProveID Functionality Validating User Identity for Sensitive Electronic Transactions

Business Wire, August 20, 2007

OneSign ProveID meets the need for transactional strong authentication as required by policies and regulation in a variety of industries

LEXINGTON, Mass. -- Imprivata([R]), Inc., the enterprise identity and access management appliance company, today announced ProveID(TM) for OneSign, a new functionality within OneSign that provides the means to insert transactional strong authentication into any application's workflow, addressing increasing policy and regulatory compliance requirements being mandated in numerous industries, states and countries. ProveID, in combination with any application, can ensure transactions are properly and traceably authenticated, eliminating compliance and policy risks including unauthorized data transfers, complicated workflows and illegitimate or erroneous transactions or activities.

"As identity-based regulations become more common and stringent across many industries, transactional strong authentication will be the norm in any situation where a person's identity is an important element of a transaction," said Omar Hussain, president and CEO of Imprivata. "OneSign has been overwhelmingly accepted in a wide range of industries as an easy to use and implement identity, authentication and password management platform. Tightly integrating OneSign's authentication management capability with applications' transactions helps organizations meet regulations or simply institute good risk management."

Imprivata's ProveID allows customers and independent software vendors to use OneSign's core functionality within their applications, thereby simplifying workflows, providing clear audit trails and minimizing risk of errors, unauthorized access and system abuse. The needs for this technology are broad and include sensitive human resource tasks, drug ordering and handling, warehouse inventory management and tracking transactions in retail or institutional banking.

ProveID addresses customer demand in response to increasing regulatory pressures, such as the state of Ohio Board of Pharmacy's requirement for two-factor authentication for controlled drug prescription orders. The authentication requirements may include countersigning, multifactor authentication or strong passwords to bolster policy enforcement and compliance where these efforts are most important - immediately prior to completing the transaction. OhioHealth, a family of not-for-profit, faith-based hospitals and healthcare organizations, is utilizing the OneSign's ProveID functionality in conjunction with McKesson's Horizon Expert Orders and Horizon Emergency Care solutions to meet the state requirement for transactional strong authentication.

"With the technology available today, it is possible to run a digital facility -- something we will accomplish in Dublin, Ohio within the year. While we are making this transition, we are also facing increasing regulations requiring transaction-specific two-factor identification for drug orders," said Lamont Yoder, vice president and chief nursing officer RN, MBA, CNAA, FACHE at Dublin Methodist Hospital, OhioHealth. "With ProveID we can make the leap to digital workflows knowing that we will easily meet this requirement and our security will be stronger than ever before."

Additional efforts to make this functionality available to hospital customers include a project underway with Forward Advantage through the im-one initiative to bring ProveID to the MEDITECH market. As MEDITECH hospitals implement Computerized Physician Order Entry (CPOE) and other advanced clinical applications, the need for authenticating users throughout the ordering and documentation processes becomes increasingly important.

Imprivata OneSign is an identity and access management solution conveniently packaged in an affordable, secure purpose-built appliance that is easy to implement and maintain. The OneSign platform includes OneSign Authentication Management (AM), which increases network security by replacing network access passwords with strong authentication options; OneSign Single Sign-On (SSO), which quickly and effectively solves password management, security and user access issues; and OneSign Physical/Logical, which integrates building and network access systems to enable location-based authentication. Any application can easily interface with ProveID through its open, standards-based API. ProveID supports all major forms of two-factor authentication, including fingerprint biometrics, one-time password tokens and smart cards.

About Imprivata

Imprivata is the enterprise identity and access management appliance company delivering OneSign--an easy, smart and affordable appliance for securing networks, applications and building/IT access. The OneSign appliance includes OneSign Authentication Management, which increases network security by replacing Windows passwords with strong authentication options; OneSign Single Sign-On, which quickly and effectively solves password management, security and user access issues; and OneSign Physical/Logical, which integrates building and network access systems to enable location-based authentication. Based in Lexington, Mass., the company is privately-held with venture funding from Polaris Venture Partners, Highland Capital Partners and General Catalyst Partners and its solution is distributed through an established worldwide network of channel, ISV and technology partners. For more information, please visit www.imprivata.com.