System and method for providing personal control of access to confidential records over a public network

US 20040199765A1
Filed: 12/22/2003
Published: 10/07/2004
Est. Priority Date: 08/20/1999
Status: Abandoned Application

First Claim

Patent Images

1. A method for maintaining confidential records of an individual comprising the steps of:

selecting, by the individual, a record server that is publicly accessible over a network;

encrypting a confidential record of the individual;

storing the encrypted confidential record on the selected record server; and

accessing the encrypted confidential record stored on the selected record server through a defined gateway system.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Described are a system and method for maintaining confidential records of an individual over a publicly accessible network. The system and method provide adequate confidentiality of the confidential records, mobility of individual access to the records, security of the data in the records, individual control of the confidential records, and integration with institutional information systems. The individual selects a publicly accessible record server for storing a confidential record. The confidential record is encrypted and stored by the gateway system on the selected record server. A predetermined agent is given an access token for accessing the confidential record over the network through the gateway server system. In a medical context, for example, the predetermined agent can be a health care institution, a medical research facility, or the individual who is a patient. The individual determines the privileges for the predetermined agent for accessing the confidential records. Such privileges can include reading, creating, modifying, annotating, and deleting. The individual also determines each portion of the confidential record that is accessible to the predetermined agent.

Citations

21 Claims

1. A method for maintaining confidential records of an individual comprising the steps of:
- selecting, by the individual, a record server that is publicly accessible over a network;
  
  encrypting a confidential record of the individual;
  
  storing the encrypted confidential record on the selected record server; and
  
  accessing the encrypted confidential record stored on the selected record server through a defined gateway system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
- - 2. The method of claim 1 further comprising the step of distributing an access token to a predetermined agent by the individual for use in accessing the stored confidential record over the network.
  - 3. The method of claim 2 wherein the predetermined agent is a healthcare institution.
  - 4. The method of claim 1 wherein the confidential record is a medical record.
  - 5. The method of claim 4 wherein the individual is a patient.
  - 6. The method of claim 5 wherein the predetermined agent is the patient who has privileges to read, modify, and annotate the medical record.
  - 7. The method of claim 2 further comprising the step of controlling, by the individual, privileges which the predetermined agent has for accessing the confidential record.
  - 8. The method of claim 2 further comprising the step of associating a class of agents with a set of privileges for accessing the confidential record, wherein the predetermined agent is a member of the class.
  - 9. The method of claim 2 wherein the access token is a private cryptographic key.
  - 10. The method of claim 2 wherein the access token is a biometric of the predetermined individual that is measurable by a biometric hardware device.
  - 11. The method of claim 2 wherein the access token is a smart-card.
  - 12. The method of claim 2 further comprising the step of accessing by the predetermined agent the encrypted confidential record on the record server from any node on the network capable of accepting the access token.
  - 13. The method of claim 2 further comprising the step of maintaining anonymity of the individual when the predetermined agent accesses the encrypted confidential record of the individual.
  - 14. The method of claim 2 further comprising the step of determining by the individual each portion of the confidential record that is accessible to the predetermined agent.
  - 15. The method of claim 1 wherein the gateway system and the record server selected by the individual are the same node on the network.
  - 16. The method of claim 1 further comprising the step of defining a schema for representing the confidential record using a markup language.

17. In a network, a system for providing access to confidential records of an individual comprising:
- digital information representing a confidential record of the individual;
  
  a publicly accessible server system connected to the network and selected by the individual for storing the confidential record; and
  
  a gateway system, in communication with the server system, comprising software for accessing the confidential record of the individual.
- View Dependent Claims (18, 19, 20)
- - 18. The system of claim 17 further comprising an access token distributed to a predetermined agent by the individual for use by the gateway system in accessing the stored confidential record.
  - 19. The system of claim 18 wherein the access token is a private cryptographic key.
  - 20. The system of claim 18 wherein the access token is a biometric of the predetermined agent that is measurable by a biometric hardware device.

21-27. -27 (Cancelled).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Children's Medical Center Corporation
Original Assignee
Children's Medical Center Corporation
Inventors
Kohane, Isaac S., Mandl, Kenneth D., Riva, Alberto, Szolovits, Peter

Application Number

US10/743,518
Publication Number

US 20040199765A1
Time in Patent Office

Days
Field of Search
US Class Current

713/165
CPC Class Codes

G06F 21/6245   Protecting personal data, e...

H04L 63/0428   wherein the data content is...

H04L 63/10   for controlling access to d...

H04L 63/102   Entity profiles

System and method for providing personal control of access to confidential records over a public network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for providing personal control of access to confidential records over a public network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links