System and method for communicating with a dialysis machine through a network
First Claim
Patent Images
1. A method performed by a data processor of a server that is communicatively coupled to a dialysis machine via an unsecure network, the method comprising:
- receiving, in the data processor via the unsecure network, a request electronically for a first secure data connection from the dialysis machine, the request including a copy of a first digital certificate stored on a memory of the dialysis machine, the first digital certificate indicative that the dialysis machine is certified to connect to the data processor;
responsive to authenticating the first digital certificate, establishing the first secure data connection over the unsecure network with the dialysis machine;
receiving electronically, in the data processor via the unsecure network from a client device, a request to access information pertaining to an operation of the dialysis machine, the request including a copy of a second digital certificate stored on a memory of the client device, the second digital certificate indicative that the client device is certified to connect to the data processor;
responsive to authenticating the second digital certificate, authorizing the client device to access the dialysis machine by (i) specifying an identifier of the dialysis machine, (ii) using the identifier to associate the client device with the dialysis machine on an access list, and (iii) establishing a second secure data connection over the unsecure network with the client device;
receiving, from the dialysis machine via the first secured data connection, the information pertaining to the operation of the dialysis machine;
determining, using the access list, that the client device is to receive the information pertaining to the operation of the dialysis machine;
transmitting, to the client device via the second secured data connection, the received information;
receiving, from the client device via the second secured data connection, instructions for the dialysis machine; and
transmitting, to the dialysis machine via the first secured data connection, the received instructions to cause the dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment.
1 Assignment
0 Petitions
Accused Products
Abstract
A system is disclosed having a server, a dialysis machine configured to connect to the server through a network and client device configured to connect to the server through the network. In one embodiment, the server is configured to maintain an access list to determine whether the client device is authorized to connect to the dialysis machine. The server is further configured to provide a connection for transfer of data between the dialysis machine and the client device. Various methods of accessing the network using the system components are further disclosed.
1072 Citations
31 Claims
-
1. A method performed by a data processor of a server that is communicatively coupled to a dialysis machine via an unsecure network, the method comprising:
-
receiving, in the data processor via the unsecure network, a request electronically for a first secure data connection from the dialysis machine, the request including a copy of a first digital certificate stored on a memory of the dialysis machine, the first digital certificate indicative that the dialysis machine is certified to connect to the data processor; responsive to authenticating the first digital certificate, establishing the first secure data connection over the unsecure network with the dialysis machine; receiving electronically, in the data processor via the unsecure network from a client device, a request to access information pertaining to an operation of the dialysis machine, the request including a copy of a second digital certificate stored on a memory of the client device, the second digital certificate indicative that the client device is certified to connect to the data processor; responsive to authenticating the second digital certificate, authorizing the client device to access the dialysis machine by (i) specifying an identifier of the dialysis machine, (ii) using the identifier to associate the client device with the dialysis machine on an access list, and (iii) establishing a second secure data connection over the unsecure network with the client device; receiving, from the dialysis machine via the first secured data connection, the information pertaining to the operation of the dialysis machine; determining, using the access list, that the client device is to receive the information pertaining to the operation of the dialysis machine; transmitting, to the client device via the second secured data connection, the received information; receiving, from the client device via the second secured data connection, instructions for the dialysis machine; and transmitting, to the dialysis machine via the first secured data connection, the received instructions to cause the dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method performed on a data processor of a dialysis machine, the method comprising:
-
sending a request to a server to establish a secure data connection over an unsecure network with the server, the request including a copy of a digital certificate stored on a memory of the dialysis machine, the digital certificate indicative that the dialysis machine is certified to connect to the server; receiving an access request from the server, the access request requesting access to the dialysis machine by the server through the secure data connection; providing a response to the access request; providing data to the server through the secure data connection comprising information pertaining to an operation of the dialysis machine; and receiving instructions from the server through the secure data connection, the received instructions causing the dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment. - View Dependent Claims (13, 14)
-
-
15. A system comprising:
-
a server; a dialysis machine configured to connect to the server through an unsecure network; a client device configured to connect to the server through the unsecure network; and wherein the server is configured to maintain an access list to determine whether the client device is authorized to connect to the dialysis machine, and the server is configured to provide a connection for transfer of data between the dialysis machine and the client device by authenticating a first digital certificate received from the dialysis machine, the first digital certificate indicative that the dialysis machine is certified to connect to the server, establishing a first secure data connection over the unsecure network with the dialysis machine after authenticating the first digital certificate, authenticating a second digital certificate received from the client device, the second digital certificate indicative that the client device is certified to connect to the server, establishing a second secure data connection over the unsecure network with the client device after authenticating the second digital certificate, authorizing the client device to the transfer of data with the dialysis machine by using the access list to verify an identifier for the dialysis machine received from the client device, receiving an instruction for the dialysis machine from the client device over the second secure data connection; and transmitting the received instruction to the dialysis machine over the first secure data connection to cause the dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A method performed by a data processor of a server communicatively coupled to dialysis machines via an unsecure network, the method comprising:
-
sending a first access request over the unsecure network to a first dialysis machine, the first access request requesting access to the first dialysis machine and a copy of a first digital certificate stored on a memory of the first dialysis machine, the first digital certificate indicative that the first dialysis machine is certified to connect to the data processor; sending a second access request over the unsecure network to a second dialysis machine, the second access request requesting access to the second dialysis machine and a copy of a second digital certificate stored on a memory of the second dialysis machine, the second digital certificate indicative that the second dialysis machine is certified to connect to the data processor; authenticating the first digital certificate received from the first dialysis machine; responsive to authenticating the first digital certificate, establishing a first secure data connection with the first dialysis machine over the unsecure network; authenticating the second digital certificate received from the second dialysis machine; responsive to authenticating the second digital certificate, establishing a second secure data connection with the second dialysis machine over the unsecure network; receiving a designation of a level of access to each dialysis machine granted to the data processor; receiving, from a first client device, a request to access the first dialysis machine, the request including (i) a copy of a third digital certificate stored on a memory of the first client device, and (ii) an identifier of the first dialysis machine; receiving, from a second client device, a request to access the second dialysis machine, the request including (i) a copy of a fourth digital certificate stored on a memory of the second client device, and (ii) an identifier of the second dialysis machine; responsive to authenticating the third digital certificate, authorizing the first client device to access the first dialysis machine; responsive to authenticating the fourth digital certificate, authorizing the second client device to access the second dialysis machine; receiving, from the first dialysis machine, information pertaining to an operation of the first dialysis machine; receiving, from the second dialysis machine, information pertaining to an operation of the second dialysis machine; providing, to the first client device, the information pertaining to the operation of the first dialysis machine; providing, to the second client device, the information pertaining to the operation of the second dialysis machine; receiving a first instruction for the first dialysis machine from the first client device; transmitting the received first instruction to the first dialysis machine over the first secure data connection to cause the first dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop providing a therapy; receiving a second instruction for the second dialysis machine from the second client device; and transmitting the received second instruction to the second dialysis machine over the second secure data connection to cause the second dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment. - View Dependent Claims (26, 27, 28, 29, 30)
-
-
31. A system comprising:
-
a server; a first dialysis machine configured to connect to the server via an unsecure network; a second dialysis machine configured to connect to the server via the unsecure network; a first client device configured to connect to the server; and a second client device configured to connect to the server, wherein the server is configured to; maintain an access control list to determine whether the first client device is authorized to connect to the first dialysis machine, and whether the second client device is authorized to connect to the second dialysis machine; provide a secure connection for transfer of data between the first dialysis machine and the first client device; provide a secure connection for transfer of data between the second dialysis machine and the second client device; authenticate a first digital certificate received from the first dialysis machine over the unsecure network, the first digital certificate indicative that the first dialysis machine is certified to connect to the server; establish a first secure data connection over the unsecure network with the first dialysis machine after authenticating the first digital certificate; authenticate a second digital certificate received from the second dialysis machine over the unsecure network, the second digital certificate indicative that the second dialysis machine is certified to connect to the server; establish a second secure data connection over the unsecure network with the second dialysis machine after authenticating the second digital certificate; receive a designation of a level of access to the first dialysis machine granted to the first client device; receive a designation of a level of access to the second dialysis machine granted to the second client device; receive, from the first client device, a request to access the first dialysis machine; receive, from the second client device, a request to access the second dialysis machine; authorize the first client device to access the first dialysis machine; authorize the second client device to access the second dialysis machine; receive, from the first dialysis machine, information pertaining to an operation of the first dialysis machine; receive, from the second dialysis machine, information pertaining to an operation of the second dialysis machine; provide, to the first client device, the information pertaining to the operation of the first dialysis;
machine;provide, to the second client device, the information pertaining to the operation of the second dialysis machine; receive a first instruction for the first dialysis machine from the first client device; transmit the received first instruction to the first dialysis machine over the first secure data connection to cause the first dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment; receive a second instruction for the second dialysis machine from the second client device; and transmit the received second instruction to the second dialysis machine over the second secure data connection to cause the second dialysis machine to at least one of (i) program a prescription, (ii) change a prescription, (iii) initiate operation according to a prescription, (iv) silence an alarm or alert, (v) provide additional information, or (vi) stop an ongoing treatment.
-
Specification