... Blowfish to be acceptable, along with a few other widely used and proven systems like DES (though it is being deprecated), RSA, RC5, IDEA and PGP. Other proprietary systems are UNACCEPTABLE under HIPAA unless certified by an independent encryption review agency. This is a key requirement for ...