I have been charged with creating a secure patient messaging portal for a healthcare application. Obviously, due to the sensitive nature of healthcare information, security is of utmost importance. Aside from the obvious of using SSL, I would appreciate any feedback on other best practices considerations that would be applicable to this ....