The Importance of Identity Proofing for EPCS
In an effort to mitigate the opioid crisis, the Drug Enforcement Administration mandated a NIST 800-63 certified identity proofing and authentication process for physicians issuing prescriptions of controlled substances online.
ID.me provides seamless identity verification for physicians and healthcare providers to meet EPCS requirements. It is the first credential service provider in the United States to become NIST 800-63-3 certified, and it already services more than 200 organizations including healthcare systems, government agencies, financial institutions, and nonprofits.
Why healthcare organizations verify physician identity with ID.me
NIST 800-63-3 Certified
Meet IAL2 / AAL2 identity proofing and authentication standards to comply with DEA, HHS, and state-level requirements. ID.me’s platform also meets the NIST 800-63-2 LOA3 standards.
Once a provider has verified their identity with ID.me, that person will never have to re-verify their identity again across any organization where ID.me is integrated.
Easy to Use
Adopt a simple, intuitive, mobile-first identity verification experience, designed to meet RWD and 508 compliance requirements. Healthcare providers can complete identity proofing and self-enrollment from their offices.
ID.me offers multiple paths to verification, granting providers the flexibility to complete identity proofing through the method most convenient for them.
How it works
Providers create an ID.me account, which they’ll use going forward to log in and prescribe EPCS.
Providers' accounts are protected from takeover with multifactor authentication:
- Enhanced SMS
- Phone call to landline
- Biometrics via ID.me app
- Security key
- Code Generator
Providers verify identity by taking a photo of their driver’s license, state ID, or passport, as well as a quick selfie.
Data extracted from the ID document pre-fills form. Providers confirm data and add SSN.
Providers input information such as DEA and NPI numbers to verify medical provider status.