Mastercard and b.well launch new digital ID
Mastercard has partnered with digital healthcare platform b.well Connected Health to provide users with a new way to prove their identity when accessing healthcare services.
The b.well platform brings together patient data across providers, insurers, pharmacies, and a patient's own apps and devices, so people can share their information, manage their medications, understand their costs, and receive personalised health insights and alerts. With the introduction of Mastercard's ID Verification service, b.well users will be able to securely verify their identity in real time via their mobile phones.
This replaces traditional processes with physical documents like a driver's license. Mastercard's ID Verification service uses a combination of government ID document scanning, facial biometrics with liveness detection, and mobile phone intelligence to deliver high success rates for automated user verification.
ThedaCare, a 7-hospital health system in Wisconsin, has become the first health provider to make b.well available to its users, under the name "Ripple".
The partnership between Mastercard and b.well actually began in 2017, when b.well was selected to join Mastercard's entrepreneurial incubator ‘Start Path’. Mastercard's SVP for Digital Identity, Sarah Clark, explains why they've launched this initiative now: "With digital access to healthcare now considered essential following the disruption of 2020, ensuring safety and security for patients when it comes to accessing and sharing personal health data is a clear priority not just for the healthcare industry, but for our society-at-large.
"The technology already in place with b.well and Thedacare gives patients a world-class system for managing their healthcare information. The addition of the extra security, convenience and peace of mind from the Mastercard ID Verification process provides the experience and trust they deserve in this new digital age" she says.
Mastercard’s digital ID verification goes beyond existing digital tools using passwords and codes that Clark says are now outdated. "We’ve already seen large-scale data breaches compromising the static identifiers and passwords of millions of citizens. One of the best ways to address this range of authentication-related risks is by implementing password-less authentication which can be achieved through the use of smart biometrics.
"Mastercard's ID Verification service has been created to meet the twin objectives of providing a smooth customer experience while meeting the highest standards (such as NIST Identity Assurance Level 2 IAL2) for online identity proofing and authentication. This focus on experience, backed up by robust security design that protects data shared across multiple entities and locations, means it’s flexible enough to meet the needs of a complex healthcare system" she adds.
Looking ahead, Clark sees the digital ID being deployed in other spaces. "ID Verification is part of a much bigger picture – it serves as the basis for a new system of organising and protecting patient or customer data based on identity that can help transform the way an organisation works. It leads on to bigger and better things – for those in healthcare and other industries.
"In the past year, Mastercard has expanded tests of its digital identity service, which is based on a decentralised approach, with users in control of their data. While in the case of b.well we’re helping verify patients so they can have trusted and secure access to and control over their healthcare data, it also provides the basis for integrating other data flows such as income verification and other financial information. It can mean greater convenience in enrolling on insurance plans, easier claiming procedures, more efficient and reliable transfer of medical records to other providers and reduce medical fraud by protecting patient data" Clark says.
"Ultimately, it can lead to an organisation becoming part of a globally interoperable ecosystem where a person’s reusable digital identity can be utilised for health, finance or any other service with the user choosing on a case by case basis what data to share of their identity with which organisation."
Check Point: Securing the future of enterprise IT
Cybersecurity solutions provider Check Point was founded in 1993 with a mission to secure ‘everything,’ and that includes the cloud. Conscious that nothing remains static in the digital world, the company prides itself on an ability to integrate new technology with its solutions. Across almost three decades in operation, Check Point, with its team of over 3,500 experts, has become adept at protecting networks, endpoints, mobile, IoT, and cloud.
“The pandemic has been somewhat of an accelerator in the evolution of cyber risk,” explains Erez Yarkoni, Global VP for Cloud Business. “We had remote workers and cloud adoption a long time beforehand, but now the volume and surface area is far greater.” Formerly a CIO for several big-name telcos before joining Check Point in 2019, Yarkoni considers the cloud to be “part of [his] heritage” and one of modern IT’s most valuable tools.
Check Point has three important ‘product families’, Quantum, CloudGuard, and Harmony, with each one providing another layer of holistic IT protection:
- Quantum: secures enterprise networks from sophisticated cyber attacks
- CloudGuard: acts as a scalable and unified cloud-native security platform for the protection of any cloud
- Harmony: protects remote users and devices from cyber threats that might compromise organisational data
However, more than just providing security, Yarkoni emphasises the need for software to be proactive and minimise the possibility of threats in the first instance. This is something Check Point assuredly delivers, “the industry recognises that preventing, not just detecting, is crucial. Check Point has one platform that gives customers the end-to-end cover they need; they don't have to go anywhere else. That level of threat prevention capability is core to our DNA and across all three product lines.”
In many ways, Check Point’s solutions’ capabilities have actually converged to meet the exact working requirements of contemporary enterprise IT. As more companies embark on their own digital transformation journeys in the wake of COVID-19, the inevitability of unforeseen threats increases, which also makes forming security-based partnerships essential. Healthcare of Ontario Pension Plan (HOOPP) sought out Check Point for this very reason when it was in the process of selecting Microsoft Azure as its cloud provider. “Let's be clear: Azure is a secure cloud, but when you operate in a cloud you need several layers of security and governance to prevent mistakes from becoming risks,” Yarkoni clarifies.
The partnership is a distinctly three-way split, with each bringing its own core expertise and competencies. More than that, Check Point, HOOPP and Microsoft are all invested in deepening their understanding of each other at an engineering and developmental level. “Both of our organisations (Check Point and Microsoft) are customer-obsessed: we look at the problem from the eyes of the customer and ask, ‘Are we creating value?’” That kind of focus is proving to be invaluable in the digital era, when the challenges and threats of tomorrow remain unpredictable. In this climate, only the best protected will survive and Check Point is standing by, ready to help.
“HOOPP is an amazing organisation,” concludes Yarkoni. “For us to be successful with a customer and be selected as a partner is actually a badge of honor. It says, ‘We passed a very intense and in-depth inspection by very smart people,’ and for me that’s the best thing about working with organisations like HOOPP.”