Enterprise-grade, HIPAA-compliant biomedical data acquisition and visualization software designed for medical professionals. Featuring AES-256 encryption, secure password vault, real-time signal analysis, and comprehensive physiological monitoring with full regulatory compliance.
HIPAA-compliant biomedical data acquisition and visualization designed for clinical excellence
Generate encrypted PDF runsheets with AES-256 encryption via iText library. Dual password system with configurable permission levels (Restricted, ReadOnly, Standard, Full) ensures PHI protection from creation through disposal.
Integrated encrypted vault using PBKDF2-SHA256 with 600,000 iterations. Orbital passphrase format for master passwords, optional MFA protection, and automatic backup retention of 10 most recent vault states.
AES-256-GCM authenticated encryption for JSON metadata headers provides both confidentiality and tamper detection. Prevents metadata leakage of subject identifiers, timestamps, and session information.
High-fidelity multi-channel waveform display with configurable refresh rates up to 60Hz, enabling precise real-time physiological monitoring and immediate response to critical events.
Enterprise-grade TCP/RPC connectivity with BioLab acquisition hardware. Robust data streaming architecture ensures reliable, high-throughput data collection with minimal latency.
NetSparkle auto-updater with cryptographic verification and digital signatures ensures your installation remains current with the latest features and security patches—no admin required.
Get started with the latest HIPAA-compliant release. The installer includes all required dependencies, AES-256 encryption services, and runtime components for immediate deployment in clinical environments.
Minimum system specifications for optimal AFT3CH performance
Windows 10/11 (64-bit)
.NET 8.0 (included)
4 GB RAM minimum
200 MB available
1280x720 minimum
Internet for updates
Comprehensive security overview for IT professionals, compliance officers, and network administrators
AFT3CH v1.0.2 is a fully HIPAA-compliant Windows desktop application for viewing and processing physiological signals from BIOPAC systems. It implements comprehensive security controls meeting all technical safeguards under 45 CFR §164.312.
The application runs as a standard user-mode .NET desktop application without installing services, kernel drivers, or modifying firewall rules. All PHI is protected with AES-256 encryption, and comprehensive audit logging tracks all operations for 6-year HIPAA retention requirements.
AFT3CH v1.0.2 implements comprehensive encryption for all Protected Health Information (PHI), ensuring data remains secure from creation through disposal.
All PDF runsheets encrypted using AES-256 via the iText library. Dual password system with separate owner and user passwords for granular access control.
Restricted (Default): No printing/copying/modification for HIPAA compliance.
ReadOnly: View and print only.
Standard: View, print, and copy.
Full: All permissions granted.
Format: Orbital passphrase (e.g., saturn-bright-comet-4829)
Key Derivation: PBKDF2-SHA256 with 600,000 iterations
Storage: Windows DPAPI via SecureKeyManager
MFA Protection: Optional multi-factor authentication
Auto-Backup: Maintains 10 most recent vault backups
System Operations: MFA bypassed for automated runsheet generation
HIPAA Reference: These encryption controls satisfy 45 CFR §164.312(a)(2)(iv) Encryption, §164.312(c)(1) Integrity, and §164.312(e)(2)(ii) Transmission Security requirements.
The HipaaAuditLogger tracks all PHI-related operations to support the 6-year HIPAA data retention requirement and incident investigation.
Data Integrity: Atomic file operations (temp files + atomic replace) prevent data corruption during write operations.
AFT3CH communicates with AcqKnowledge using BIOPAC's documented NDT mechanism, where AcqKnowledge acts as the server and AFT3CH as the client.
All communications use standard TCP/UDP sockets on configurable ports. The protocol consists of binary sample frames with no arbitrary command execution beyond documented acquisition control.
Direction: Outbound from AFT3CH
Target: AcqKnowledge control port (configured in AcqKnowledge → Preferences → Networking)
Protocol: TCP
Purpose: Query acquisition, specify channels, start/stop via NDT commands
Direction: Inbound to AFT3CH (optional, only if on different hosts)
Source: AcqKnowledge host
Protocol: TCP or UDP (as configured)
Purpose: NDT binary data protocol for physiological streams
Firewall Summary: Only explicitly configured NDT ports between AFT3CH and AcqKnowledge are required. No exposure to wider network beyond these connections.
AFT3CH can optionally send telemetry using MQTT as a client only, never as a broker. All connections are client-initiated and encrypted.
MQTT carried over encrypted TLS channel providing confidentiality and integrity on the wire. Tunneled through port 443 in restricted networks.
End-to-end encryption using AES-256-GCM authenticated encryption. Only authorized endpoints with correct key material can decrypt message contents. Tampering detected via GCM tag.
Developed by Orbit Biomed, a leader in HIPAA-compliant physiological monitoring solutions
Designed in collaboration with medical professionals and researchers to meet the highest standards of clinical practice and data integrity.
Full HIPAA compliance with AES-256 encryption, secure password vault, comprehensive audit logging, and 6-year data retention support for medical and research environments.
Regular updates with new features, security enhancements, and support for the latest biomedical hardware and protocols.
Comprehensive resources and expert assistance for AFT3CH users
Access comprehensive user guides, HIPAA compliance documentation, API specifications, and technical documentation for system integration and operation.
Contact our support team at support@orbit-biomed.com for technical assistance, compliance questions, and troubleshooting.
Video tutorials, webinars, and training sessions available to help your team maximize the effectiveness of AFT3CH and maintain HIPAA compliance.