Secure communication between infusion pump and server
First Claim
1. An infusion pump having improved network access security, comprising:
- a network interface circuit configured to provide communications over a network; and
a processing circuit configured to;
generate infusion pump data for transmission to a remote server computer;
generate a header portion of a request message having at least one field;
hash the infusion pump data using a first cryptographic function to provide a first hashed code;
insert the first hashed code into the header portion of the request message;
hash the header portion but not payload data using a second cryptographic hash function and a cryptographic key to provide a second hashed code, wherein the second cryptographic function may be the same function or a different function than the first cryptographic hash function;
insert the second hashed code into the header portion of the request message;
insert the infusion pump data into a body portion of the request message; and
transmit the request message to the remote server computer over the communications network.
1 Assignment
0 Petitions
Accused Products
Abstract
An infusion pump and server computer have improved network access security. The infusion pump has a network interface circuit to provide communications over a network and a processing circuit that generates infusion pump data for transmission to a remote server computer. The processing circuit generates a header portion of a request message having at least one field, hashes the header portion but not payload data using a cryptographic hash function and a cryptographic key to provide a hashed code, and inserts the hashed code into the header portion of the request message. The processing circuit inserts the infusion pump data into a body portion of the request message and transmits the request message to the remote server computer over the communications network.
37 Citations
18 Claims
-
1. An infusion pump having improved network access security, comprising:
-
a network interface circuit configured to provide communications over a network; and a processing circuit configured to; generate infusion pump data for transmission to a remote server computer; generate a header portion of a request message having at least one field; hash the infusion pump data using a first cryptographic function to provide a first hashed code; insert the first hashed code into the header portion of the request message; hash the header portion but not payload data using a second cryptographic hash function and a cryptographic key to provide a second hashed code, wherein the second cryptographic function may be the same function or a different function than the first cryptographic hash function; insert the second hashed code into the header portion of the request message; insert the infusion pump data into a body portion of the request message; and transmit the request message to the remote server computer over the communications network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A server computer for responding to a request message from an infusion pump, comprising:
-
a network interface circuit configured to provide communications over a network; and a processing circuit configured to; store an infusion pump dataset for transmission to the infusion pump; receive a request message from the infusion pump; generate a header portion of a response message having at least one field; hash the infusion pump dataset using a first cryptographic hash function to provide a first hashed code; insert the first hashed code into the header portion of the message; hash the header portion but not payload data using a second cryptographic hash function and a cryptographic key to provide a second hashed code, wherein the second cryptographic hash function may be the same function or a different function than the first cryptographic hash function; insert the second hashed code into the header portion of the response message; insert the infusion pump dataset into a body portion of the response message; and transmit the response message to the infusion pump over the network. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. An infusion pump having improved network access security, comprising:
-
a memory configured to store infusion pump data; a pump configured to pump a medicament to a human patient; a network interface circuit configured to provide communications over a network; and a processing circuit configured to control the pump and to; retrieve infusion pump data from the infusion pump memory for transmission to a remote server computer; hash the infusion pump data using a first cryptographic function to provide a first hashed code, generate header data for a header portion of a Hypertext Transfer Protocol request message, generate a time stamp; hash the header data, the time stamp and the first hashed code using a second cryptographic hash function and a cryptographic key to provide a second hashed code for the header portion, wherein the first cryptographic function is the same as or different than the second cryptographic hash function, wherein the cryptographic key is a shared cryptographic key which is shared between the infusion pump and the remote server computer out of band; insert the second hashed code into the header portion of the Hypertext Transfer Protocol request message; insert the infusion pump data into a body portion of the Hypertext Transfer Protocol request message; generate a request line for the Hypertext Transfer Protocol request message; and transmit the Hypertext Transfer Protocol request message to the remote server computer over the communications network.
-
Specification