CLIAMS:What is claimed is:
1. A method for retrieving medical information of a patient, the method comprising:
a. receiving a first identifier associated with the patient and a second identifier associated with a medical practitioner;
b. transmitting an authorization request to a mobile device of the medical practitioner, wherein the authorization request is transmitted on receiving the second identifier;
c. receiving an authorization response from the medical practitioner, wherein the authorization response comprises a mobile identity of the medical practitioner;
d. authorizing the medical practitioner based on the received authorization response; and
e. retrieving the medical information of the patient upon successful authorization of the medical practitioner.
2. The method as claimed in claim 1, further comprising updating the medical information of the patient.
3. The method as claimed in claim 1, wherein the medical information is provided to the medical practitioner by at least one of displaying on an online display, printing, faxing the medical information to the medical practitioner, and e-mailing the medical information to the medical practitioner.
4. The method as claimed in claim 1, further comprising the step of disabling access to the medical information on elapse of a preprogrammed period of time.
5. The method as claimed in claim 1, wherein the medical information of the patient comprises at least one of:
a. genetic information of the patient;
b. immunization record of the patient;
c. benchmark medical information;
d. medication history of the patient; and
e. a list of known allergic substances.
6. The method as claimed in claim 1, wherein the medical information of the patient is provided by the patient and is stored upon successful authentication of the patient.
7. The method as claimed in claim 6, wherein the patient is authenticated based on a mobile identity of the patient.
8. A system for retrieving medical information of a patient, the system comprising:
a. a transmitter configured to:
i. transmit an authorization request to a mobile device of the medical practitioner; and
ii. send the medical information of the patient upon successful authorization of the medical practitioner;
b. a receiver configured to:
i. receive a first identifier associated with the patient and a second identifier associated with a medical practitioner; and
ii. receive an authorization response from the medical practitioner, wherein the authorization response comprises a mobile identity of the medical practitioner;
c. a storage module configured to:
i. store the mobile identity of the patient and the medical practitioner; and
ii. store the medical information of the patient; and
d. one or more processors, wherein the one or more processors are configured to:
i. verify the mobile identity of the medical practitioner; and
ii. retrieve the medical information of the patient.
9. The system as claimed in claim 8, further comprising a notification module to notify the patient on retrieval of the medical information of the patient.
10. The system as claimed in claim 8, wherein the receiver is further configured to receive the medical information of the patient.
,TagSPECI:PATIENT INFORMATION RETRIEVAL
FIELD OF INVENTION
[0001] The present invention relates to patient medical records and in particular, the present invention relates to secure retrieval of patient medical records.
BACKGROUND
[0002] Patient medical records refer to medical information including a patient’s age, the patient’s blood group, the patient’s past treatments, the patient’s current medications (if any), substances to which the patient is allergic, and the like. The patient records the patient’s medical details and stores them in a database. Alternatively, a medical practitioner creates a record of the patient’s medical details and stores them in the database. The medical practitioner updates the stored medical records on every subsequent visit of the patient. The medical record is generally useful whenever the patient visits the medical practitioner, and is particularly useful in the situation of an emergency. In an emergency, the patient may be unconscious. Even in the state of consciousness, the patient may not be able to provide the patient’s medical details to the medical practitioner accurately. Any incorrect or incomplete information about the patient’s health is liable to hamper treatment given to the patient. Thus, there is a need that the medical records of the patient be present and accessible at the time of the emergency.
[0003] Giving access to the medical records of the patient is a selective task. The medical records may contain sensitive information. Thus, the medical records should not be accessible by any unauthorized person. Unauthorized access of the medical records can be misused for fraudulent activities. In a particular example of misuse of medical records, fraudsters can use the medical records to extract money from insurance companies. In another example, a person can use the medical records to harm the patient. Additionally, unauthorized access of the medical records of the patient leaves the medical records vulnerable to alterations. Unauthorized persons can fetch and alter the medical records. As a result, the patient’s health is at risk.
[0004] The conventional systems provide methods for retrieval of patient medical records. US 20050125258 A1 provides a method for electronic healthcare record storage and retrieval. The method includes creating a medical record database by the patient. The method further includes retrieval of the patient medical record on verification of the patient. The method does not verify the medical practitioner before providing the medical records. Hence, an unauthorized person can obtain the medical record. Thus, the method lacks the desired level of confidentiality of patient medical records.
[0005] US 20090198696 A1 discloses a method for interactive retrieval and access to a patient's emergency medical record information. The method includes storing the patient medical records into a database. The method further includes retrieval of the patient medical records on validation of the patient. This method does not verify the identity of the person requesting the medical records. Thus, this method lacks the desired level of security of patient medical records.
[0006] In light of the above discussion, there is a need for a method and a system to overcome the above stated problems.
SUMMARY
[0007] The above-mentioned shortcomings, disadvantages and problems are addressed herein which will be understood by reading and understanding the following specification.
[0008] In embodiments, the present invention provides a method and a system for retrieving medical information of a patient. The method and system includes receiving a first identifier associated with the patient and a second identifier associated with a medical practitioner. Further, the method and system includes transmitting an authorization request to a mobile device of the medical practitioner. The authorization request is transmitted on receiving the second identifier. Furthermore, the method and system includes receiving an authorization response from the medical practitioner. The authorization response includes a digital signature of the medical practitioner. Additionally, the method and system includes authorizing the medical practitioner based on the received authorization response. In addition, the method and system includes retrieving the medical information of the patient upon successful authorization of the medical practitioner.
[0009] In an embodiment, the method further includes updating the medical information of the patient. The patient periodically updates the patient’s medical information. In another embodiment, the medical practitioner updates the medical information of the patient after examining the patient.
[0010] In an embodiment, the method further includes providing the medical information of the patient to the medical practitioner by at least one of displaying on an online display, printing, faxing the medical information of the patient to the medical practitioner, and e-mailing the medical information of the patient to the medical practitioner.
[0011] In an embodiment, the method further includes disabling access to the medical information of the patient on elapse of a preprogrammed period.
[0012] In an embodiment, the medical information of the patient includes at least one of genetic information of the patient, immunization record of the patient, benchmark medical information, medication history of the patient, a list of known allergic substances, the patient’s age, the patient’s blood group, and the patient’s current medications (if any).
[0013] In an embodiment, the medical information of the patient is provided by the patient and is stored upon successful authentication of the patient. In an embodiment, the patient is authenticated based on a mobile identity of the patient.
BRIEF DESCRIPTION OF THE DRAWINGS
[0014] Figure 1 illustrates a system for retrieving medical information of a patient, in accordance with various embodiments of the present invention;
[0015] Figure 2 illustrates a flowchart for retrieving medical information of the patient, in accordance with various embodiments of the present invention;
[0016] Figure 3 illustrates a block diagram of a system for retrieving medical information of the patient, in accordance with various embodiments of the present invention; and
[0017] Figure 4 illustrates a block diagram of a subscriber identification module (SIM) card, in accordance with various embodiments of the present invention.
DETAILED DESCRIPTION OF THE INVENTION
[0018] In the following detailed description, reference is made to the accompanying drawings that form a part hereof, and in which is shown by way of illustration specific embodiments, which may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the embodiments, and it is to be understood that other embodiments may be utilized and that logical, mechanical, electrical and other changes may be made without departing from the scope of the embodiments. The following detailed description is, therefore, not to be taken in a limiting sense.
[0019] Figure 1 illustrates a system 100 for retrieving medical information of a patient 110, in accordance with various embodiments of the present invention. The system includes a medical record database 150. The medical record database 150 stores medical information of the patient 110. The medical information of the patient includes at least one of genetic information of the patient 110, immunization record of the patient 110, benchmark medical information, medication history of the patient 110, a list of known allergic substances, the patient 110’s age, the patient 110’s blood group, and the patient 110’s current medications (if any). A patient 110 interacts with the medical record database 150 to store the medical information of the patient 110. The medical record database 150 authenticates the patient 110. The medical record database 150 requests the patient 110 to provide the medical information of the patient 110 on successful authentication of the patient 110. Subsequently, the medical record database 150 stores the medical information of the patient 110.
[0020] In an embodiment, the patient 110 is a customer and the medical record database 150 is a customer record database of a commercial organization. Examples of the commercial organization are an ecommerce website, a retail shop, a shopping complex, and the like. In an embodiment, a staff member of the commercial organization inputs information of the customer into the customer record database. In another embodiment, the commercial organization automatically provides the customer details to the customer record database on purchase of goods by the customer. Examples of the customer details are an identifier associated with the customer, the date of purchase, the amount of goods purchased, bonus points received by the customer, and the like.
[0021] In another embodiment, the patient 110 is a bank customer and the medical record database 150 is a customer record database of a bank. In an embodiment, a staff of the bank provides the customer record database with information relevant to the bank customer. In another embodiment, the customer record database is automatically updated each time the bank customer transacts at the bank.
[0022] A medical practitioner 130 interacts with the medical record database 150 to retrieve the medical information of the patient 110. The medical record database 150 authenticates the medical practitioner 130. Subsequently, the medical record database 150 retrieves and provides medical information of the patient 110 to the medical practitioner 130.
[0023] In an embodiment, the medical practitioner 130 is the doctor of the hospital. The doctor receives medical information of the patient from the medical record database 150 on successful authentication of the doctor.
[0024] In another embodiment, the medical practitioner 130 is an employer. The employer can retrieve information about employees of the employer on successful verification of the employer.
[0025] Figure 2 illustrates a flowchart 200 for retrieving medical information of the patient 110, in accordance with various embodiments of the present invention. At step 210, the flowchart initiates.
[0026] At step 220, the medical record database 150 receives a first identifier and a second identifier. The first identifier is associated with the patient 110 and the second identifier is associated with the medical practitioner 130. The first identifier is stored in a mobile device 120 of the patient 110. The first identifier is a mobile identity of the patient 110. The second identifier is the stored in a mobile device 140 of the medical practitioner 130. The second identifier is a mobile identity of the medical practitioner 130.
[0027] The mobile device 120 and/or the mobile device 140 refer to handheld electronic devices that are used to communicate over a communication network. Examples of the mobile device 120 and/or the mobile device 140 are a cell phone, a personal digital assistant (PDA), a wireless email terminal, a tablet computer, and the like. Examples of the communication network are a local area network, a wide area network, a wireless network, a telecommunication network, and the like. Types of the telecommunication network include but may not be limited to a global system for mobile communication (GSM) network, a general packet radio service (GPRS) network, a code division multiple access (CDMA) network, enhanced data GSM environment (EDGE), wideband CDMA (WCDMA), and the like.
[0028] Mobile identity relates to an extension of digital identity provided via the mobile device 120 and communication networks. Mobile identity relates to a manner of verifying personal identity using mobile device 120. Mobile identity is often based on a combination of knowledge factor, possession factor, and inherence factor.
[0029] Knowledge factor refers to a set of parameters that the patient 110 would remember. For example, knowledge factor is a password, a security code, a security question, and the like. Possession factor refers to a set of parameters that are within the patient 110’s possession. For example, possession factor is an encrypted subscriber identification module (SIM), an encryption module on the mobile device 120 that generates security pass-codes, an identification communication tag on the mobile device 120, a one-time password delivered to the mobile device 120, mobile digital signature contained on the mobile device 120, and the like. Inherence factor refers to a set of parameters that are inherent to the patient 110. For example, inherence factor is the biometric signature of the patient 110, the iris scan of the patient 110, the geographical location of the patient 110, and the like.
[0030] The medical record database 150 verifies the patient 110 through the patient 110’s mobile identity. In an embodiment, mobile identity of the patient 110 relates to digital signatures. In this embodiment, possession factor is used. In an embodiment, the subscriber identification module (SIM) card maintains the digital certificates of the patient 110. In order to use the certificates, the patient 110 has to enter a security code.
[0031] The mobile device 120 verifies the entered security code. After successful verification, the mobile device 120 allows access to the digital certificates of the patient 110. In another embodiment, a mobile digital signature application is present on the mobile device 120. The mobile digital signature application on the mobile device 120 receives the digital signature from a security server after the registration of the mobile device 120 for creation of mobile identity.
[0032] In another embodiment, mobile identity is an identity code unique to the mobile device 120. Examples of the identity code are an International Mobile Subscriber Identity (IMSI), a Mobile Subscriber Identity Number (MSISDN) of the mobile device 120, and the like. In another example, a key generator present on the mobile device 120 generates the identity code. The identity code is used to identify the mobile device 120 uniquely associated with it, thereby serving the purpose of a unique identifier.
[0033] In yet another embodiment, mobile identity relates to biometric signatures and digital signatures. In this embodiment, a combination of inherence factor and possession factor is used. The patient 110 scans the patient 110’s thumbprint on the mobile device 120. The mobile device 120 generates and transmits a response including the digital signature of the patient 110 and the scanned biometric signature. The digital signature is stored on the subscriber identification module (SIM) card or on the mobile device 120.
[0034] The medical record database 150 stores medical information of the patient 110 on successful authentication of the patient 110. The medical information includes at least one of genetic information of the patient 110, immunization record of the patient 110, benchmark medical information, medication history of the patient 110, a list of known allergic substances, the patient 110’s age, the patient 110’s blood group, and the patient 110’s current medications (if any). The stored medical information is updated periodically. In an embodiment, the patient 110 updates the medical information on realizing a change in the current medical information. In another embodiment, the medical practitioner 130 updates the medical information each time the patient 110 visits the medical practitioner 130.
[0035] At step 230, the medical record database 150 identifies the medical practitioner 130 based on the second identifier received from the medical practitioner 130. The second identifier is the mobile identity of the medical practitioner 130. As explained above, mobile identity relates to the extension of digital identity provided via the mobile device 140 and communication networks. Mobile identity relates to the manner of verifying personal identity using the mobile device 140.
[0036] The medical record database 150 transmits an authorization request message to the mobile device 140 of the medical practitioner 130. The authorization request message includes a request to provide the digital signature of the medical practitioner 130.
[0037] The medical practitioner 130 signs the authorization request message using a security code known only to the medical practitioner 130. The mobile device 140 verifies the entered security code. After successful verification, the mobile device 140 allows access to the digital certificates of the medical practitioner 130. In another embodiment, a mobile digital signature application is present on the mobile device 140. The mobile digital signature application on the mobile device 140 receives the digital signature from a security server after the registration of the mobile device 140 for creation of mobile identity.
[0038] In another embodiment, mobile identity is an identity code unique to the mobile device 140. Examples of the identity code are an International Mobile Subscriber Identity (IMSI), a Mobile Subscriber Identity Number (MSISDN) of the mobile device 140, and the like. In another example, a key generator present on the mobile device 140 generates the identity code. The identity code is used to identify the mobile device 140 uniquely associated with it, thereby serving the purpose of a unique identifier.
[0039] In yet another embodiment, mobile identity relates to biometric signatures and digital signatures. In this embodiment, a combination of inherence factor and possession factor is used. The medical practitioner 130 scans the medical practitioner 130’s thumbprint on the mobile device 140. The mobile device 140 generates and transmits a response including the digital signature of the medical practitioner 130 and the scanned biometric signature. The digital signature is stored on the subscriber identification module (SIM) card or on the mobile device 140.
[0040] At step 240, the mobile device 140 sends the digital signature of the medical practitioner 130 to the medical record database 150. In an embodiment, the mobile device communicates with the medical record database 150 via short message service(SMS). SMS is a text messaging service provided by telecommunication operators. SMS uses standardized communication protocols to allow mobile devices to exchange short text messages.
[0041] In another embodiment, the mobile device 140 communicates with the medical record database 150 using Unstructured Supplementary Service Data (USSD). USSD is a protocol generally used by global system for communications cellular telephones to communicate with servers on a real-time basis. USSD can be used for WAP browsing, mobile-money services, location-based content services, menu-based information services, and as part of configuring the phone on a network.
[0042] In yet another embodiment, the mobile device communicates with the medical record database 150 using Interactive voice response (IVR). IVR is a technology for human beings to interact with computers using voice. IVR allows users to interact with a database to acquire information from or enter data into the database.
[0043] At step 250, the medical record database 150 authorizes the medical practitioner 130 based on the received digital signature. At step 260, the medical record database 150 retrieves the medical information of the patient 110. The medical record database 150 identifies the patient 110 based on the first identifier received at step 220. Subsequently, the medical record database 150 sends the medical information of the patient 110 to the medical practitioner 130. In an embodiment, the medical information is displayed on an online display of the medical practitioner 130. In another embodiment, the medical record database 150 sends the medical information to the medical practitioner 130 in the printed form. In yet another embodiment, the medical record database 150 faxes the medical information to the medical practitioner 130. In yet another embodiment, the medical record database 150 sends an email containing the medical information of the patient 110 to the medical practitioner 130. At step 270, the flowchart terminates.
[0044] In another aspect, Figure 3 illustrates a block diagram 300 of a system 310 for retrieving medical information of the patient 110, in accordance with various embodiments of the present invention. The system 310 includes a transmitter 320. The transmitter 320 transmits an authorization request message to the mobile device 140 of the medical practitioner 130. The authorization request message prompts the medical practitioner 130 to enter the security code to access the digital signature. The mobile device 140 verifies the entered security code. On successful verification, the mobile device 140 grants access to the digital signature. The medical record database 150 authorizes the medical practitioner 130 based on the digital signature.
[0045] Further, the transmitter 320 sends the medical information of the patient 110 to the medical practitioner 130 on successful authorization of the medical practitioner 130. The medical information includes at least one of genetic information of the patient 110, immunization record of the patient 110, benchmark medical information, medication history of the patient 110, a list of known allergic substances, the patient 110’s age, the patient 110’s blood group, and the patient 110’s current medications (if any).
[0046] In addition, the system 310 includes a receiver 330. The receiver 330 receives the first identifier associated with the patient 110 and the second identifier associated with the medical practitioner 130. As explained above, the first identifier is stored in the mobile device 120 of the patient 110. The first identifier is the mobile identity of the patient 110. The second identifier is the stored in the mobile device 140 of the medical practitioner 130. The second identifier is the mobile identity of the medical practitioner 130. The medical record database 150 uniquely identifies the patient 110 using the mobile identity of the patient 110. The medical record database 150 uniquely identifies the medical practitioner 130 using the mobile identity of the medical practitioner 130. In an embodiment, the receiver 330 is further configured to receive the medical information of the patient 110 on authentication of the patient 110.
[0047] Additionally, the system 310 includes a storage module 340. The storage module 340 stores the received mobile identity of the patient 110 and the received mobile identity of the medical practitioner 130. Further, the storage module stores the medical information of the patient 110. The medical information includes at least one of genetic information of the patient 110, immunization record of the patient 110, benchmark medical information, medication history of the patient 110, a list of known allergic substances, the patient 110’s age, the patient 110’s blood group, and the patient 110’s current medications (if any).
[0048] In addition, the system 310 includes one or more processors 350. The one or more processors 350 verify the mobile identity of the medical practitioner 130 to authorize the medical practitioner 130. Subsequently, the one or more processors 350 retrieve the medical information of the patient 110. As explained above, the medical information of the patient 110 includes at least one of genetic information of the patient 110, immunization record of the patient 110, benchmark medical information, medication history of the patient 110, a list of known allergic substances, the patient 110’s age, the patient 110’s blood group, and the patient 110’s current medications (if any). In an embodiment, the one or more processors 350 verify the patient 110 using the mobile identity of the patient 110.
[0049] The one or more processors are further configured to generate the authorization request message. Then, the authorization request message is sent to the mobile device 140 of the medical practitioner 130.
[0050] Figure 4 illustrates a block diagram 400 of a subscriber identification module (SIM) card 410, in accordance with various embodiments of the present invention. In an embodiment, as explained above, the subscriber identification module (SIM) card 410 is for storing the digital signature of the patient 110. The subscriber identification module (SIM) card 410 follows Java Card specifications. Java-based applets and applications are run on the subscriber identification module (SIM) card 410.
[0051] The subscriber identification module (SIM) card 410 includes a hardware crypto processor 420, a SIM application 430, a symmetric encryption key 440, a secure key storage module 450 and an Integrated Circuit Card Identifier (ICCID) storage module 460.The hardware crypto processor 420 is a true random number generator. The hardware crypto processor 420 generates random numbers for cryptography.
[0052] The SIM application 430 refers to a SIM Application Toolkit (STK) installed on the subscriber identification module (SIM) card 410. The SIM application 430 is responsible for overall control of the digital signature on the subscriber identification module (SIM) card 410. For example, the SIM application 430 generates the digital signature using the hardware crypto processor 420. In another example, as explained above, the SIM application 430 requires the patient 110 to enter a security pin to access the digital signature.
[0053] The symmetric encryption key 440 refers to an encryption key unique to the subscriber identification module (SIM) card 410. The symmetric encryption key 440 is stored in subscriber identification module (SIM) card 410 during the generation of the subscriber identification module (SIM) card 410. The symmetric encryption key 440 is used for secure communication. The mobile device 120 encrypts all incoming and outgoing communication arising from the SIM application 430 with the symmetric encryption key 440. In an embodiment, a copy of the symmetric encryption key 440 is present with a messaging server. The messaging server receives communication from the mobile device 120, decrypts the communication using the symmetric encryption key 440 and then forwards the decrypted communication in a secure manner.
[0054] The secure key storage module 450 stores public key-private key pairs associated with the mobile device 120. In an embodiment, the secure key storage module 450 includes sixteen key slots. The key slots store two types of keys: a weaker key type for authentication purpose and a stronger key type for non-repudiation purpose.
[0055] The ICCID storage module 460 stores the Integrated Circuit Card Identifier (ICCID). ICCID uniquely identifies Subscriber Identification Module (SIM) card internationally. In an embodiment, the public key is associated with a combination of the ICCID and the MSISDN.
[0056] The present invention makes retrieval of medical information of the patient secure by restricting unauthorized access of the medical information of the patient. Further, the present invention makes the process of retrieval of medical information faster. Furthermore, the present invention does uses a mobile device to retrieve the medical information of the patient. The mobile device is commonly available at almost all medical facilities. Thus, the present invention can be carried out at almost all medical facilities.
[0057] This written description uses examples to describe the subject matter herein, including the best mode, and also to enable any person skilled in the art to make and use the subject matter. The patentable scope of the subject matter is defined by the claims, and may include other examples that occur to those skilled in the art. Such other examples are intended to be within the scope of the claims if they have structural elements that do not differ from the literal language of the claims, or if they include equivalent structural elements with insubstantial differences from the literal language of the claims.