AES replaced DES and 3DES. It is one of the recommended encryption standards meeting HIPAA requirements. AES may be used by federal departments and agencies when an agency determines that sensitive but unclassified information requires cryptographic protection. In addition, AES may be adopted and used by non-federal government organizations. Such use is encouraged when it provides the desired security for commercial and private organizations.