High-Level Product Description and Features
- 17 Oct 2025
- 2 Minutes to read
- Contributors
- DarkLight
- PDF
High-Level Product Description and Features
- Updated on 17 Oct 2025
- 2 Minutes to read
- Contributors
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback!
HealthCast EPCS is a frictionless, DEA-compliant, Multi-Factor Authentication (MFA) solution for securing workflows for Electronic Prescriptions of Controlled Substances (EPCS).
EpicAuth Support
The RapidIdentity EPCS authentication plugin now supports both Hyperspace (VB) and Hyperdrive versions released in 2022 and later.
Product Features
HealthCast EPCS features include supervised enrollment and credentialing of providers, multi-factor authentication of providers during the signing of e-prescriptions, auditing and reporting of DEA-mandated events, and assists healthcare organizations in meeting EPCS DEA requirements.
Facial Recognition
The RapidIDentity mobile app can use Face ID for increased security if given access. Facial recognition is only used by the app when a user attempts to access their OTP code within the app, or when receiving a ping while the phone is locked (assuming the smartphone uses facial recognition for unlock). If the RapidIdentity mobile app is already open, it does not enforce facial recognition to approve/deny the ping.
Identification Proofing and Enrollment
The HealthCast EPCS solution currently supports institutional enrollment for organizations. The HealthCast EPCS solution provides the ability for establishing the role of EPCS Enrollment Supervisor. This secured role helps ensure the actions around providers' enrollment and authentication credentials' issuance are appropriately supervised.
👤 EPCS Enrollment Supervisor Role
The EPCS Enrollment Supervisor role refers to the user who is authorized in RapidIdentity MFA to enroll the HealthCast EPCS providers. Upon provider credentialing, the EPCS Enrollment Supervisor enrolls the provider in services such as PingMe and Fingerprint Biometrics to issue the supervised authenticated credentials.
Authentication for HealthCast EPCS
The solution authenticates providers during the EPCS workflow. During the signing process, the provider will be prompted for additional authentication in which the solution authorizes the provider and allows the prescription process to be completed through its additional layer of identity security.
Auditing and Reporting
HealthCast EPCS assists in capturing and providing the reporting and exporting of the following events:
- Establishment of and/or modifications to users in the EPCS Enrollment Supervisor role
- Authentications of the EPCS Enrollment Supervisor related to any EPCS enrollment processes of providers, with the inclusion of failed authentication attempts
- Authentication of each provider during their EPCS enrollment process, with the inclusion of failed authentication attempts
- Enrollment and issuing of credentials for authenticated EPCS providers for each configured authentication methods: Biometric and/or PingMe
- Modifications to and/or the removal of credentials for enrolled EPCS providers
- Both successful and failed two-factor authentication transactions for provider signing of EPCS prescriptions
⚠️ Audit and Reporting Limitations
The HealthCast EPCS solution offers the ability to capture and retrieve records related to the events listed above. It does not capture or provide the reporting and exporting of the following events:
- Actions related to the "EPCS Access Approver" assigning EPCS access controls to providers
- Note: The organization will need to establish its own procedures in establishing that role and capturing, tracking, and reporting on activities related to that role, as well as any settings for, or change to, logical access controls
- The Enrollment Supervisor checking providers’ identification
- Attempted unauthorized access to the electronic prescription application
Was this article helpful?