I read in some presentation that des, 3 des, aes are all acceptable by hipaa but not RSA.

Is it so? Why?

I am looking for the least complex algo that I should use if I were to pass HIPAA compliance. I am sending some data using sockets to my internent server from PDAs and mobile phones using j2ME.