CLIAMS:What is claimed is,
1. A method for configuring operational parameters on a plurality of medical devices, the method comprising:
a. receiving a plurality of authentication request messages from the plurality of medical devices, wherein each authentication request message of the plurality of authentication request messages comprises mobile identity of a medical professional and a device identifier of the medical device;
b. authorizing a plurality of medical professionals to access the plurality of medical devices, wherein authorizing each medical professional of the plurality of medical professionals is based on each authentication request message of the plurality of authentication request messages;
c. receiving a plurality of identifiers of a plurality of patients from the plurality of medical devices;
d. retrieving a plurality of medical histories of the plurality of patients based on the received plurality of identifiers of the plurality of patients; and
e. configuring the operational parameters on the plurality of medical devices based on the retrieved plurality of medical histories of the plurality of patients.
2. The method as claimed in claim 1, wherein the mobile identity of each medical professional of the plurality of medical professionals is at least one of an International Mobile Subscriber Identity (IMSI), a Mobile Subscriber Identity Number (MSIDN), an encrypted SIM number, a Mobile Subscriber Integrated Services Digital Network-Number (MSISDN), a mobile digital signature of the mobile device of the medical professional.
3. The method as claimed in claim 1, wherein authorizing the plurality of medical professionals to access the plurality of medical devices further comprises:
a. authenticating the plurality of medical professionals, wherein authenticating each medical professional of the plurality of medical professionals is based on each authentication request message of the plurality of authentication request messages;
b. determining information of a mobile device associated with each medical professional of the plurality of medical professionals based on the mobile identity of each medical professional of the plurality of medical professionals upon authentication;
c. transmitting a plurality of sign-in requests to a plurality of mobile devices associated with the plurality of medical professionals, wherein each sign-in request of the plurality of sign-in requests is sent to each mobile device of the plurality of mobile devices associated with each medical professional of the plurality of medical professionals;
d. receiving a plurality of sign-in response from the plurality of mobile devices, wherein each sign-in response of the plurality of sign-in responses is received from each mobile device of the plurality of mobile devices associated with each medical professional of the plurality of medical professionals; and
e. verifying the plurality of sign-in responses to authorize the plurality of medical professionals, wherein each sign-in response of the plurality of sign-in responses is verified to authorize each medical professional of the plurality of medical professionals to access each medical device of the plurality of medical devices.
4. The method as claimed in claim 3, wherein each sign-in response of the plurality of sign-in responses is digitally signed using a mobile digital signature application on each mobile device of the plurality of mobile devices associated with each medical professional of the plurality of medical professionals.
5. The method as claimed in claim 1, wherein receiving the plurality of identifiers of the plurality of patients further comprises comparing the received plurality of identifiers of the plurality of patients with identification attributes of the plurality of patients stored in a datastore for retrieving the plurality of medical histories of the plurality of patients.
6. The method as claimed in claim 1, wherein receiving the plurality of identifiers of the plurality of patients further comprises:
a. receiving a mobile identity of each patient of the plurality of patients;
b. authenticating each patient of the plurality of patients based on received mobile identity of the plurality of patients;
c. determining information of a mobile device associated with each patient of the plurality of patients;
d. transmitting a plurality of sign-in requests to a plurality of mobile devices, wherein each sign-in request of the plurality of sign-in requests is sent to each mobile device of the plurality of mobile devices associated with each patient of the plurality of patients;
e. receiving a plurality of sign-in responses from the plurality of mobile devices, wherein each sign-in response of the plurality of sign-in responses is received from each mobile device of the plurality of mobile devices associated with each patient of the plurality of patients; and
f. authorizing each patient of the plurality of patients to retrieve each medical history of the plurality of medical histories.
7. The method as claimed in claim 6, wherein authorizing each patient of the plurality of patients further comprises:
a. receiving the mobile identity of each patient of the plurality of patients;
b. authenticating each patient of the plurality of patients based on received mobile identity of the plurality of patients;
c. determining information of a mobile device associated with a plurality of nominees of the plurality of patients;
d. transmitting a plurality of sign-in requests to a plurality of mobile devices, wherein each sign-in request of the plurality of sign-in requests is sent to each mobile device of the plurality of mobile devices associated with each nominee of the plurality of nominees;
e. receiving a plurality of sign-in responses from the plurality of mobile devices, wherein each sign-in response of the plurality of sign-in responses is received from each mobile device of the plurality of mobile devices associated with each nominee of the plurality of nominees; and
f. authorizing the plurality of nominees of the plurality of patients to retrieve medical history of the plurality of patients.
8. The method as claimed in claim 1, wherein configuring the operational parameter further comprises calculating threshold values for each patient of the plurality of patients by analyzing each medical history of the retrieved plurality of medical histories.
9. A central unit for configuring operational parameters on a plurality of medical devices, the system comprising:
a. a datastore configured to store identification attributes of a plurality of medical professionals, identification attributes of a plurality of medical devices, and identification attributes of a plurality of patients.
b. a receiver configured to receive:
i. a plurality of authentication request messages from a plurality of medical devices, wherein each authentication request message of the plurality of authentication request messages comprises mobile identity of each medical professional of the plurality of medical professionals and a device identifier of each medical device of the plurality of medical devices,
ii. a plurality of identifiers of the plurality of patients, and
iii. a plurality of sign-in responses from a plurality of mobile devices associated with a plurality of medical professionals, wherein each sign-in response of the plurality of sign-in responses is received from each mobile device of the plurality of mobile devices;
c. a processor configured to
i. authenticate the plurality of medical professional based on the received plurality of authentication request messages,
ii. determine information of the plurality of mobile devices associated with the plurality of medical professionals using the identity attributes of the plurality of medical professionals in the datastore,
iii. verify a plurality of sign-in responses,
iv. authorize the plurality of medical professionals, and
v. retrieve the plurality of medical histories of the plurality of patients using the identity attributes of the plurality of patients in the datastore;
d. a transmitter configured to transmit a plurality of sign-in requests to the plurality of mobile devices, wherein each sign-in request of the plurality of sign-in requests is transmitted to each mobile device of the plurality mobile devices associated with each medical professional of the plurality of medical professionals; and
e. a configuration module for configuring the operational parameters on the plurality of medical devices.
10. The system as claimed in claim 7, wherein the identification attribute of the plurality medical professionals and the identification attribute of the plurality of patients stored in the datastore are provided during initial registration of the plurality of medical professionals and the plurality of patients with a hospital information system.
,TagSPECI:SYSTEM AND METHOD FOR CONFIGURING OPERATIONAL PARAMETERS ON THE MEDICAL DEVICE

FIELD OF INVENTION
[0001] The present invention relates to medical device and in particular, it relates to configuring operational parameters of the medical device.

BACKGROUND OF THE INVENTION
[0002] Medical devices are used in health care centers, hospitals, and nursing homes and in the field to diagnose or treat patients based on their health conditions. Some medical devices require strict access control as specialized training is required to operate them, or their misuse can be hazardous to the patients’ health.
[0003] Operation of the medical device will be known to qualified medical professionals who are authorized to adjust settings on the medical device safely. The settings of the medical device have to be adjusted according to the medical history of the patient. Access of the medical device by an unauthorized person may change the device settings, and could endanger the life of the patient. Accordingly, there is a need to restrict access to these medical devices, primarily to ensure the patients’ safety.
[0004] There are several approaches provided to securely access the medical device. In US8347370, access to the medical device is provided to the authorized medical professionals who are identified and authenticated by the biometric identity-authentication systems. However, there are limitations in biometric identity-authentication system. Biometric data is not secret, as it can be duplicated easily. People leave their fingerprint on everything they touch, biometric data can be intercepted in electronic communications, voices can be recorded, and so forth. Further, the biometric identity-authentication systems are very expensive.
[0005] In WO2013085884, the authorized medical professionals are provided with login credentials to access the medical device. However, if the authorized person forgets to lock the device after use, it is accessible to others. Additionally, if the login credentials are shared with an unauthorized person, even they can access the medical device.
[0006] In US8315367B2, access to the medical device is restricted by use of personal identification devices such as trusted pocket identifiers, Near Field Communication (NFC) enabled mobile devices, etc. These devices connect wirelessly with the medical device when carried into the radio frequency range and authenticate access to medical device. This system does not discriminate between multiple people carrying the device in the wireless radio frequency range of the medical device. The presence of an authorized person within radio frequency range of the medical device would cause the medical device to be unlocked inadvertently.
[0007] In light of the above discussion, there is a need for a system and method which overcomes all the above stated problems.

BRIEF DESCRIPTION OF THE INVENTION
[0008] The above-mentioned shortcomings, disadvantages and problems are addressed herein which will be understood by reading and understanding the following specification.
[0009] In embodiments, the present invention provides a method for configuring operational parameters on a plurality of medical devices. The method includes receiving a plurality of authentication request messages, authorizing a plurality of medical professionals, receiving a plurality of identifiers of a plurality of patients, retrieving a plurality of medical histories of the plurality of patients, and configuring the operational parameters on the plurality of medical devices. The plurality of authentication request messages includes a mobile identity of each medical professional of the plurality of medical professionals, and a device identifier of each medical device of the plurality of medical devices.
[0010] In an embodiment, the mobile identity of each medical professional of the plurality of medical professionals includes at least one of an International Mobile Subscriber Identity (IMSI), an encrypted SIM number, a Mobile Subscriber Integrated Services Digital Network-Number (MSISDN), a Mobile Subscriber Identity Number (MSIDN), and a mobile digital signature of a mobile device of the medical professional.
[0011] In an embodiment, authorizing the plurality of medical professionals further includes authenticating the plurality of medical professionals, determining information of a mobile devices associated with the each medical professional of the plurality of medical professionals, transmitting a plurality of sign-in request to a plurality of mobile devices, receiving a plurality of sign-in responses from the plurality mobile devices, and verifying the plurality of sign-in responses to authorize the plurality of medical professionals.
[0012] In an embodiment, each sign-in response of the plurality of sign-in responses is digitally signed using a mobile digital signature application on each mobile device of the plurality of mobile devices.
[0013] In an embodiment, receiving the plurality of identifiers of the plurality of patients further includes comparing the received plurality of identifiers of the plurality of patients with the identification attributes of the plurality of patients stored in a datastore for retrieving the plurality of medical histories of the plurality of patients.
[0014] In an embodiment, receiving the plurality of identifiers of the plurality of patients further includes receiving the mobile identity of each patient of the plurality of patients, authenticating each patient of the plurality of patients, determining information of a mobile device associated with each patient of the plurality of patients, transmitting a plurality of sign-in request to a plurality of mobile devices, receiving a plurality of sign-in responses from the plurality mobile devices, and verifying the plurality of sign-in responses to authorize the plurality of patients to retrieve the medical history of the plurality of patients.
[0015] In an embodiment, authorizing the plurality of patients further includes receiving the mobile identity of each patient of the plurality of patients, authenticating each patient of the plurality of patients, determining information of a mobile device associated with a plurality of nominees of the plurality of patients, transmitting a plurality of sign-in request to a plurality of mobile devices of the plurality of nominees, receiving a plurality of sign-in responses from the plurality mobile devices, and verifying the plurality of sign-in responses to authorize the plurality of nominees to retrieve the medical history of the plurality of patients.
[0016] In an embodiment, configuring the operational parameters on the plurality of medical devices further includes calculating threshold values for each patient of the plurality of patients by analyzing each medical history of the retrieved plurality of medical histories.
[0017] In another aspect, the present invention provides a system for configuring the operational parameters on the plurality of medical devices. The system is a central unit configured to communicate with the medical device. The central unit includes the datastore, a receiver, a processor, a transmitter, and a configuration module. The datastore is configured to store identification attributes of the plurality of medical professionals, identification attributes of the plurality of medical devices, and identification attributes of the plurality of patients. The receiver is configured to receive the plurality of authentication request messages, the plurality of identifiers of the plurality of patients, and the plurality of sign-in responses. The processor is configured to authenticate the plurality of medical professionals, determine information of the plurality mobile devices associated with the plurality medical professionals using the identification attributes of the plurality of medical professionals in the datastore, verify the plurality of sign-in responses, authorize the plurality of medical professionals, and retrieve the plurality of medical histories of the plurality of patients, using the identification attributes of the plurality of patients in the datastore. The transmitter is configured to transmit the plurality of sign-in requests to the plurality of mobile devices. The configuration module is provided to configure the operational parameters on the plurality of medical devices.
[0018] In an embodiment, the identification attributes of the plurality medical professionals and identification attributes of the plurality of patients stored in the datastore is provided during the initial registration of the plurality of medical professionals and the plurality of patients respectively with a hospital information system.
[0019] Systems and methods of varying scope are described herein. In addition to the aspects and advantages described in this summary, further aspects and advantages will become apparent by reference to the drawings and with reference to the detailed description that follows.

BRIEF DESCRIPTION OF THE DRAWINGS
[0020] Figure 1 illustrates a system for configuring operational parameters on a medical device, in accordance with various embodiments of the present invention;
[0021] Figure 2 illustrates a method for configuring the operational parameters on a plurality of medical devices, in accordance with various embodiments of the present invention;
[0022] Figure 3 illustrates a method for configuring the operational parameters on the plurality of medical devices by authorizing a plurality of medical professionals, in accordance with various embodiments of the present invention;
[0023] Figure 4 illustrates a block diagram of a central unit, in accordance with various embodiments of the present invention;
[0024] Figure 5 illustrates a sequence diagram for configuring the operational parameters on the plurality of medical devices, in accordance with various embodiments of the present invention;
[0025] Figure 6 illustrates a sequence diagram for authorizing the plurality of medical professionals, in accordance with various embodiments of the present invention;
[0026] Figure 7 illustrates a mobile device of a medical professional receiving sign-in request for authorization, in accordance with various embodiments of the present invention; and
[0027] Figure 8 is a block diagram of a subscriber identification module (SIM) card, in accordance with various embodiments of the present invention.

DETAILED DESCRIPTION OF THE INVENTION
[0028] In the following detailed description, reference is made to the accompanying drawings that form a part hereof, and in which is shown by way of illustration specific embodiments, which may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the embodiments, and it is to be understood that other embodiments may be utilized and that logical, mechanical, electrical and other changes may be made without departing from the scope of the embodiments. The following detailed description is, therefore, not to be taken in a limiting sense.
[0029] Figure 1 illustrates a system 100 for configuring the operational parameters on a plurality of medical devices, in accordance with various embodiments of the present invention. The system 100 includes a medical device 102, and a medical device 104. In context of the present invention, the medical device 102 refers to an electronic device used for various purposes such as, in diagnosis, monitoring, therapy, treatment, surgery, and the like. Examples of the medical device 102 include, but are not be limited to Magnetic Resonance Imaging (MRI) scanners, Computed Tomography (CT) scanners, X-Ray scanners, pacemakers, coronary grafts, cochlear ear implants, artificial heart defibrillators (implantable or external), drug pumps and non-mechanical drug delivery systems, artificial valves, replacement joints, monitors, neuro-stimulators, and prosthetics. The functions and capabilities of the medical device 104 are similar to the functions and capabilities of the medical device 102. The medical device 102 and the medical device 104 collectively hereinafter referred as a plurality of medical devices 102 and 104.
[0030] Further, the system 100 includes a medical professional 106, and a mobile device 108 of the medical professional 106. The medical professional 106 refers to an individual who provides treatment service and general patient care. Examples of the medical professional 106 includes, but are not limited to physicians (such as, medical doctors, including surgeons, generalists, specialists, and the like.), physician assistants, nurses, nurse practitioners, therapists, orderlies, paramedics, technicians, and pharmacists.
[0031] The mobile device 108 refers to a handheld computing device. The mobile device 108 communicates with the central unit 114 via the communication channel. Examples of the mobile device 108 includes, but are not limited to a cell phone, a smart phone, a personal digital assistant (PDA), a wireless email terminal, a laptop, and a tablet computer. Examples of the communication network includes, but are not be limited to a local area network, a wide area network, a wireless network, and a telecommunication network. Example of the telecommunication network includes, but are not be limited to a global system for mobile communication (GSM) network, a general packet radio service (GPRS) network, a code division multiple access (CDMA) system, an enhanced data GSM environment (EDGE), and a wideband CDMA (WCDMA).
[0032] Furthermore, the system 100 includes a medical professional 110, and a mobile device 112 of the medical professional 110. The functions and capabilities of the medical professional 110 are similar to the functions and capabilities of the medical professional 106. The medical professional 106 and the medical professional 110 collectively hereinafter referred as a plurality of medical professionals 106 and 110. The functions and capabilities of the mobile device 112 are similar to the functions and capabilities of the mobile device 108. The mobile device 108 and the mobile device 112 collectively hereinafter referred as a plurality of mobile devices 108 and 112.
[0033] Moreover, the system 110 includes a central unit 114. The central unit 114 refers to a server of a Hospital Information System (hereinafter HIS). In an embodiment, the central unit 114 authorizes the plurality of medical professionals 106 and 110, and configures operational parameters on the plurality of medical devices 102 and 104. The central unit includes a datastore. The datastore stores personal identification data.
[0034] In addition, the system 100 includes a patient 116, and a mobile device 118 of the patient 116. The patient 116 refers to individual who receive medical attention, care, or treatment by the plurality of medical professionals 106 and 110. The patient 116 receive treatment based on the health condition the patient 116.
[0035] The functions and capabilities of the mobile device 118 of the patient 116 are similar to the functions and capabilities of the mobile device 108 of the medical professional 106.
[0036] Further, the system 100 includes a patient 120, and a mobile device 122 of the patient 120. The functions and capabilities of the patient 120 are similar to the functions and capabilities of the patient 116. The patient 116 and the patient 120 collectively hereinafter referred as a plurality of patients 116 and 120. The functions and capabilities of the mobile device 122 of the patient 120 are similar to the functions and capabilities of the mobile device 118 of the patient 116. The mobile device 118 and the mobile device 122 collectively hereinafter referred as a plurality of mobile devices 118 and 122.
[0037] The central unit 114 authenticates the plurality of medical professionals 106 and 110. After authenticating the plurality of medical professionals 106 and 110, the central unit authorizes the plurality of medical professionals 106 and 110. On authorizing the plurality of medical professionals 106 and 110, the central unit 114 receives a plurality of identifiers of the plurality of patients 116 and 120. The central unit 114 receives the plurality of identifiers of the plurality of patients 116 and 120 for configuring the operational parameters on the plurality of medical devices 102 and 104.
[0038] The central unit retrieves a plurality of medical histories of the plurality of patients 116 and 120 for configuring the operational parameters on the plurality of medical devices 102 and 104. The central unit 114 is capable of communicating via the communication channel. The central unit 114 communicates with the plurality of medical devices 102 and 104, the plurality of medical professionals 106 and 110, the plurality of mobile devices 108 and 112, the plurality of patients 116 and 120, and the plurality of mobile devices 118 and 122.
[0039] The personal identification data stored in the datastore of the central unit 114 includes identification attributes of the plurality of medical professionals 106 and 110, and identification attributes of the plurality of patients 116 and 120.
[0040] The central unit 114 authorizes each medical professional (the medical professional 106 or the medical professional 110) by verifying the authenticity of each medical professional (the medical professional 106 or the medical professional 110). The central unit 114 authenticates each medical professional (the medical professional 106 or the medical professional 110) based on the stored identification attributes of each medical professional (the medical professional 106 or the medical professional 110) of the plurality of medical professionals 106 and 110. The central unit 114 configures the operational parameters on each medical device (the medical device 102 or the medical device 104) using the stored identification attributes of each patient (the patient 116 or the patient 120).
[0041] Figure 2 illustrates a method 200 for configuring the operational parameters on the plurality of medical devices 102 and 104, in accordance with various embodiments of the present invention. The method 200 initiates at step 202. At step 204, the central unit 112 receives a plurality of authentication request messages from the plurality of medical devices 102 and 104. Each authentication request message of the plurality of authentication request messages includes a mobile identity associated with each medical professional (the medical professional 106 or the medical professional 110), and a device identifier of each medical device (the medical device 102 or the medical device 104).
[0042] In context of the present invention, the mobile identity relates to a digital identity provided via the mobile device 108 and a communication network. In an embodiment, the mobile identity relates to a digital signature. In an embodiment, a subscriber identification module (hereinafter SIM) card holds digital signature of the medical professional 106. In order to use the digital signature, the medical professional 106 has to enter a personal secret code. Then, the mobile device 108 verifies the entered personal secret code and allows access to the digital signature of the medical professional 106, stored on the SIM card. In another embodiment, a mobile digital signature application is present on the mobile device 108. The mobile digital signature application on the mobile device 108 receives a digital signature from a security server upon the registration of the mobile device 108 for creation of mobile identity.
[0043] In another embodiment, the mobile identity is an identity code unique to the mobile device 108. Examples of the identity code include, but are not limited to an International Mobile Subscriber Identity (IMSI), a Mobile Subscriber Integrated Services Digital Network (MSISDN) number of the mobile device 108. In another example, a key generator present on the mobile device 108 generates the identity code. The identity code is used to identify the mobile device 108.
[0044] In yet another embodiment, the mobile identity relates to biometric signatures and digital signatures. The medical professional 106 scans the medical professional 106’s thumbprint on the mobile device 108. The mobile device 108 generates and transmits a response containing digital signature of the medical professional 106 and the scanned thumbprint. The digital signature is stored on the SIM card or on the mobile device 108.
[0045] The mobile identity associated with the mobile device 112 of the medical professional 110 is similar to the mobile identity associated with the mobile device 108 of the medical professional 106.
[0046] To transmit the authentication request message, the medical professional 106 switch on the medical device 102. After switching on the medical device 102, the medical device 102 asks for the mobile identity associated with the medical professional 106 to provide access to the medical device 102. The medical professional 106 provides the mobile identity associated with the mobile device 108 to the medical device 102. The medical professional 106 transmits the mobile identity associated with the medical professional 106 to the medical device 102. In an embodiment, transmitting the mobile identity associated with the medical professional 106 include the medical professional 106 entering the mobile identity associated with the mobile device 108 on a keypad of the medical device 102. In another embodiment, transmitting the mobile identity associated with the medical professional 106 includes transmitting the mobile identity associated with the mobile device 108 to the medical device 102 via the communication channel. Similarly, the medical professional 110 transmits the authentication request message to the medical device 104 for accessing the medical device 104.
[0047] The plurality of medical devices 102 and 104 transmits the plurality of authentication request messages to the central unit 114. The central unit 114 identifies the medical device (the medical device 102 or the medical device 104) on receiving the device identifier of the medical device (the medical device 102 or the medical device 104). The central unit identifies the rest of medical devices of the plurality of medical devices 102 and 104 in similar manner. Further, the central unit 114 verifies the received device identifier and the mobile identity of each medical professional (the medical professional 106 or the medical professional 110) by comparing with the stored identification attribute of corresponding medical professional (the medical professional 106 or the medical professional 110) in the datastore.
[0048] The stored identification attributes of the medical professional 106 include, but are not limited to a name of the medical professional 106, specialization of the medical professional 106, the mobile identity associated with the medical professional 106, and the list of the plurality of medical devices 102 and 104. The list of the plurality of medical devices 102 and 104 is the list of the plurality of medical devices 102 and 104, which the medical professional is authorized to access. The stored identification of the medical professional 110 includes similar parameters as the identification attributes of the medical professional 106 stored in the datastore. The identification attributes of the patient 116 include, but are not be limited to a name of the patient 116, age of the patient 116, mobile device information of the patient 116, nominee of the patient 116, mobile device information of nominee, and a medical history of the patient 116. The identification attributes of the patient 120 includes similar parameters as the identification attributes of the patient 116 stored in the datastore. In an embodiment, the identification attribute of the plurality medical professionals 106 and 110 and the identification attribute of the plurality of patients 116 and 120 stored in the datastore are provided during initial registration of the plurality of medical professionals 106 and 110 and the plurality of patients 116 and 120 respectively with a hospital information system.
[0049] If the received device identifier and the mobile identity match with the identification attribute of corresponding medical professional (the medical professional 106 or the medical professional 110) stored in the datastore, then the central unit 114 authenticates the corresponding medical professional (the medical professional 106 or the medical professional 110).
[0050] At step 206, the central unit 114 authorizes the plurality of medical professionals 106 and 110 to access the plurality of medical devices 102 and 104. After authenticating the plurality of medical professionals 106 and 110 as explained at step 204, information of the plurality of mobile devices 108 and 112 associated with the plurality of medical professionals 106 and 110 are determined. The information of the mobile device 108 is determined from the identification attribute of the medical professional 106 stored in the datastore of the central unit 114. The information of rest of the plurality of mobile devices 108 and 112 is determined in similar manner. The information of the plurality of mobile devices 108 and 112 is determined to identify the plurality of mobile devices 108 and 112 associated with the plurality of medical professionals 106 and 110.
[0051] After determining the information of the plurality of mobile devices 108 and 112, the central unit 114 transmits a plurality of sign-in requests to the plurality of mobile devices 108 and 112. A sign-in request from the plurality of sign-in requests is transmitted to the mobile device 108 associated with the medical professional 106. The central unit 114 transmits rest of the plurality of sign-in requests to the rest of the plurality of mobile devices 108 and 112. The sign-in request sent to each mobile device (the mobile device 108 or the mobile device 112) includes two options: accept or decline.
[0052] The plurality of medical professionals 106 and 110 seeking request to access the corresponding medical device (the medical device 102 or the medical device 104) accepts the sign-in request sent on the associated mobile device (the mobile device 108 or the mobile device 112). The central unit 114 receives a plurality of sign-in responses from the plurality of mobile devices 108 and 112. The mobile device 108 transmits a sign-in response to the central unit 114 for verifying the authorization of the medical professional 106. Similarly, rest of the plurality of mobile devices 108 and 110 transmits rest of the plurality of sign-in responses to the central unit 114.
[0053] In an embodiment, each of the plurality of sign-in responses is digitally signed using the mobile digital signature application on each of the plurality of mobile devices 108 and 112. The central unit 114 verifies a sign-in response from the plurality of sign-in responses by comparing the sign in response with the stored identification attribute of the medical professional (108 or 112) in the datastore. The central unit 114 verifies the rest of the plurality of sign-in responses in similar manner. If the received sign-in response of the medical professional 106 matches with the stored identification attribute of the medical professional 106, then the medical professional 106 is authorized to access the medical device 102. Similarly, if the received sign-in response of the medical professional 110 matches with the stored identification attribute of the medical professional 110, then the medical professional 110 is authorized to access the medical device 104. The authorized medical professional (the medical professional 106 or the medical professional 110) make initial settings on the corresponding medical device (the medical device 102 or the medical device 104) which they want to access.
[0054] Further, at step 208, the central unit 114 receives the plurality of identifiers of the plurality of patients 116 and 120 from the plurality of mobile devices 118 and 122. In an embodiment, each identifier of each patient (the patient 116 or the patient 120) is a mobile identity associated with each patient (the patient 116 or the patient 120). In another embodiment, the identifier of each patient (the patient 116 or the patient 120) is a Quick Response code (hereinafter QR code) on each mobile device (the mobile device 118 or the mobile device 122).
[0055] The mobile identity of each patient (the patient 116 or the patient 120) is similar to the mobile identity of each medical professional (the medical professional 106 or the medical professional 110).
[0056] The mobile device 118 of the patient 116 transmits the mobile identity associated with the patient 116 to the medical device 102. Similarly, the mobile device 122 of the patient 120 transmits the mobile identity associated with the patient 120 to the medical device 104. The mobile identity is transmitted to the medical device (the medical device 102 or the medical device 104) as explained at step 204 of the method 200.
[0057] In an embodiment, the central unit 114 receives the plurality of identifiers of the plurality of patients 116 and 120 to retrieve the plurality of medical histories. The received identifier of the patient 116 is compared with the identification attribute of the patient 116 stored in the datastore of the central unit 114. Similarly, the received identifier of the patient 120 is compared with the identification attribute of the patient 120 stored in the datastore of the central unit 114. If the received identifier of each patient (the patient 116 or the patient 120) match with the stored identification attribute, then the central unit 114 authenticates each patient (the patient 116 or the patient 120) to retrieve corresponding medical history of each patient (the patient 116 or the patient 120).
[0058] Furthermore, at step 210, the central unit 114 retrieves a plurality of medical histories of the plurality of patients 116 and 120. The central unit 114 retrieves the plurality of medical histories of the plurality of patients 116 and 120 from the datastore. The medical history of the patient 116 includes previous treatment details of the patient 116, exposure to any photosensitive devices previously, and the like. Similarly, the medical history of the patient 120 includes previous treatment details of the patient 120, exposure to any photosensitive devices previously, and the like.
[0059] In an embodiment, the central unit 114 retrieves the plurality of medical histories of the plurality of patients 116 and 120 by authorizing the plurality of patients 116 and 120. Authorizing the plurality of patients 116 and 120 is similar to the authorization of the plurality of medical professionals 106 and 110 as explained at step 206 of method 200 in the detailed description of Figure 2.
[0060] In another embodiment, the central unit authorizes a plurality of nominees of the plurality of patients 116 and 120. When the plurality of patients 116 and 120 are minor, unconscious, or incapable of taking legal decisions, the plurality of nominees of the plurality of patients 116 and 120 are authorized to retrieve the plurality of medical histories of the plurality of patients. Authorization of the plurality of nominees is similar to the authorization of the plurality of medical professionals 106 and 110 as explained at step 206 of method 200 in the detailed description of Figure 2.
[0061] In addition, at step 212, the central unit 114 configures the operational parameters on the plurality of medical devices 102 and 104. Configuring the operational parameters includes calculating threshold value for each patient (the patient 116 or the patient 120) by analyzing the medical history associated with each patient (116 or 120). In an embodiment, the threshold value for the patient 116 is calculated by analyzing the medical history of the patient 116 retrieved from the datastore of the central unit 114. Similarly, the threshold value for the patient 120 is calculated by analyzing the medical history of the patient 120 retrieved from the datastore of the central unit 114. The threshold value defines a predefined limit that the plurality of patients 116 and 120 can withstand. The central unit 114 configures settings on the respective medical device (the medical device 102 or the medical device 104) for complete powering on of each medical device (the medical device 102 or the medical device 104) using the corresponding threshold value. The authorized medical professional (the medical professional 106 or the medical professional 110) can make settings on the respective medical device (the medical device 102 or the medical device 104) within this limit based on the health condition of the patient (the patient 116 or the patient 120).
[0062] Thus, after configuring the operational parameters on the plurality of medical devices 102 and 104, the plurality of medical devices 102 and 104 are ready to access by the plurality of medical professionals 106 and 110 to provide treatment to the plurality of patients 116 and 120. The medical device 102 is ready to access by the medical professional 106 to provide treatment to the patient 116. Similarly, the medical device 104 is ready to access by the medical professional 110 to provide treatment to the patient 120. At step 214, the method 200 terminates.
[0063] Figure 3 illustrates a method 300 for configuring operational parameters on the plurality of medical devices (the medical devices 102 or the medical devices 104) by authorizing the plurality of medical professionals 106 and 110, in accordance with various embodiments of the present invention. At step 302, the method 300 initiates. At step 304, the central unit 114 authenticates the plurality of medical professionals 106 and 110 as explained above in the detailed description of the Figure 2, at step 204 of the method 200. At step 306, the central unit 114 determines the information of a plurality of mobile devices 108 and 112 of the plurality of medical professionals 106 and 110 as explained at step 204 of method 200. At step 308, the central unit 114 transmits the plurality of sign-in request to the plurality of mobile devices 108 and 112 of the plurality of medical professionals 106 and 110 as explained at step 204 of the method 200. At step 310, the central unit 114 receives the plurality of sign-in responses as explained above at step 204 of the method 200 to authorize each of the plurality medical professionals 106 and 110. At step 312, the central unit 114 verifies the plurality of sign-in responses received from the plurality of mobile devices 108 and 112 of the plurality of medical professionals 106 and 110. If the plurality of sign-in responses is valid, the method proceeds to step 314. If not, the method terminates at step 322. Further, the steps 314-320 are implemented same as the steps 206-212 of the method 200 in the detailed description of Figure 2. At step 322, the method 300 terminates.
[0064] In another aspect, the present invention provides the central unit 112 for configuring the operational parameters on the plurality of medical devices 102. Figure 4 illustrates a block diagram 400 of a system 402 for configuring the operational parameters, in accordance with various embodiments of the present invention.
[0065] The central unit 112 includes a datastore 404, a receiver 406, a processor 408, a transmitter 410, and a configuration module 412.
[0066] The datastore 404 is same as the datastore explained in detailed description of the system 100 of Figure 1.
[0067] The receiver 406 receives the plurality of authentication request messages from the plurality of medical devices 102 and 104, the plurality of identifiers of the plurality of patients 116 and 120, and the plurality of sign-in responses from the plurality of mobile devices 108 and 112.
[0068] The processor 408 authenticates the plurality of medical professional 104 based on the received plurality of authentication request messages as explained above at step 304 of the method 300. Further, the processor 408 determines the information of the plurality mobile devices 108 and 112 associated with the plurality of medical professionals 106 and 110 using the identification attributes of each of the plurality of medical professionals 106 and 110 stored in the datastore 404. Furthermore, the processor 408 verifies the plurality of sign-in responses to authorize the plurality of medical professionals 106 and 110. Moreover, the processor 408 authorizes the plurality medical professionals 106 and 110 to provide access to the plurality of medical devices 102 and 104. In addition, the processor 408 retrieves the plurality of medical histories of the plurality of patients 116 and 120 using the identification attributes of each of the plurality of patients 116 and 120 stored in the datastore 404. All the processes of the processor 408 are explained in detail in the detailed description of the method 200 of the Figure 2.
[0069] The transmitter 410 transmits each sign-in request to each mobile device (108 or 112) of each medical professional (106 or 110). The function of the transmitter 410 is explained in the detailed description of the method 300 at step 308 of Figure 3.
[0070] The configuration module 412 configures the operational parameters on the plurality of medical devices 102. Configuring the operational parameters includes calculating threshold values. The threshold values are calculated for each of the plurality of patients 108 by analyzing each medical history of the retrieved plurality of medical histories. This explained in detail in the detailed description of method 200 at step 212 of the method 200.
[0071] Figure 5 illustrates a sequence diagram 500 of a method for configuring the operational parameters on the plurality medical devices 102, in accordance with various embodiments of the present invention. The sequence diagram 500 has three participants: the plurality of medical professionals 104, the plurality of patients 108, and the central unit 112. The actions 502-512, displayed in the sequence diagram 500 are same as the steps 204-212 of the method 200.
[0072] Figure 6 illustrates a sequence diagram 600 of a method for authorizing the plurality of medical professionals 104, in accordance with various embodiments of the present invention. The sequence diagram 600 has three participants: the plurality of medical professionals 104, the plurality of mobile devices 106, and the central unit 112. The actions 602-612, displayed in the sequence diagram 600 are same as the steps 304-316 of the method 300.
[0073] Figure 7 illustrates a screenshot 700 of the mobile device 702 on receiving the sign-in request message for authorization, in accordance with various embodiments of the present invention. In an embodiment, the mobile device 702 is same as the mobile device 108 of the medical professional 106. On receiving the sign-in request message, the mobile device 108 presents the medical professional 106 with options to either accept the sign-in request or decline the sign-in request. Button 704 is for accepting the sign-in request for authorization and button 706 is for declining the sign-in request and denying the authorization.
[0074] Figure 8 is a block diagram 800 of a subscriber identification module (SIM) card 802, in accordance with various embodiments of the present invention. In an embodiment, as explained above, the subscriber identification module (SIM) card 802 is for storing the digital signature of the medical professional 106. The subscriber identification module (SIM) card 802 follows Java Card specifications. Java-based applets and applications are run on the subscriber identification module (SIM) card 802.
[0075] The subscriber identification module (SIM) card 802 includes a hardware crypto processor 804, a SIM application 806, a symmetric encryption key 808, a secure key storage module 810 and an Integrated Circuit Card Identifier (ICCID) storage module 812.The hardware crypto processor 804 is a true random number generator. The hardware crypto processor 804 generates random numbers for cryptography.
[0076] The SIM application 806 refers to a SIM Application Toolkit (STK) installed on the subscriber identification module (SIM) card 802. The SIM application 806 is responsible for overall control of the digital signature on the subscriber identification module (SIM) card 802. For example, the SIM application 806 generates the digital signature using the hardware crypto processor 804. In another example, as explained above, the SIM application 806 requires the medical professional 106 to enter a security pin to access the digital signature.
[0077] The symmetric encryption key 808 refers to an encryption key unique to the subscriber identification module (SIM) card 802. The symmetric encryption key 808 is stored in subscriber identification module (SIM) card 802 during the generation of the subscriber identification module (SIM) card 802. The symmetric encryption key 808 is used for secure communication. The mobile device 108 encrypts all incoming and outgoing communication arising from the SIM application 806 with the symmetric encryption key 808. In an embodiment, a copy of the symmetric encryption key 808 is present with a messaging server. The messaging server receives communication from the mobile device 108, decrypts the communication using the symmetric encryption key 808 and then forwards the decrypted communication in a secure manner.
[0078] The secure key storage module 810 stores public key-private key pairs associated with the mobile device 120. In an embodiment, the secure key storage module 810 includes sixteen key slots. The key slots store two types of keys: a weaker key type for authentication purpose and a stronger key type for non-repudiation purpose.
[0079] The ICCID storage module 812 stores the Integrated Circuit Card Identifier (ICCID). ICCID uniquely identifies Subscriber Identification Module (SIM) card internationally. In an embodiment, the public key is associated with a combination of the ICCID and the MSISDN.
[0080] The present invention authorizes the medical professional for secure access of the medical device. In addition, the present invention configures the operational parameters on the medical device automatically by retrieving the patient medical history. Further, the invention authorizes patient to retrieve the medical history. In case, the patient is unconscious or incapable of taking legal decisions, nominee of the patient is authorized to retrieve the medical history of the patient. The operational parameters are configured on the medical device by calculating the threshold values based on the patient medical history. Configuring the operational parameters on the medical device will help in treating the patient efficiently, without overwriting the settings on the medical device. Moreover, operation of the medical device by the authorized medical professional ensures safe handling of the medical device.
[0081] This written description uses examples to describe the subject matter herein, including the best mode, and also to enable any person skilled in the art to make and use the subject matter. The patentable scope of the subject matter is defined by the claims, and may include other examples that occur to those skilled in the art. Such other examples are intended to be within the scope of the claims if they have structural elements that do not differ from the literal language of the claims, or if they include equivalent structural elements with insubstantial differences from the literal language of the claims.