Auth0 Meets Compliance Standards and Security Needs
Because healthcare data is so sensitive, storing the data is highly regulated. “Healthcare services require a very high level of certification. Having a service provider like Auth0 allows us to not store any passwords in our system for our customers, which is major. Storing passwords is a burden that impacts ISO 27001,” Kilani says, referring to the international standard used to regulate information security.
Lifen has found that using Auth0 enhances, rather than stifles, their ability to implement creative, innovative solutions. With Auth0's customizable Rules, the team has created unique features. For instance, when doctors working in hospital basements couldn’t receive antifraud authentication codes by SMS, Lifen implemented a landline call solution to solve the problem.
“We've also used Auth0 Rules to verify the customer IP address, and to allow us to migrate customers to our new system,” Kilani says. The original migration solution required users to reset their password manually, an option that generated multiple support calls per day. “After using the Auth0 Rules and implementing more flexibility and diversity in the multi-factor authentication, these problems just disappeared,” he says.
Lifen is now confident in the security and efficacy of their solution and in their partnership with Auth0. “Auth0 maintains the highest level of security that is possible at this point,” Kilani says, adding, “Every single doctor and patient that accesses our solution performs their authentication through Auth0. We’ve put Auth0 at the heart of our service.”