Integrated and secure architecture for delivery of communications services in a hospital
First Claim
1. An architecture for delivery of communications services within a hospital, comprising:
- a set of healthcare data processing resources for providing healthcare communications services to users at a plurality of delivery points throughout the hospital;
a set of non-healthcare data processing resources for providing non-healthcare communications services to the users at the plurality of delivery points;
a data routing entity connected to the healthcare data processing resources and to the non-healthcare data processing resources;
a common access infrastructure connected between the data routing entity and the plurality of delivery points, for supporting both the healthcare communications services and the non-healthcare communications services;
the data routing entity being operative to control access by the users at the plurality of delivery points to the healthcare data processing resources and to the non-healthcare data processing resources.
6 Assignments
0 Petitions
Accused Products
Abstract
Service delivery architecture for delivering communications services within a hospital, comprising healthcare and non-healthcare data processing resources, a router and an access infrastructure leading from the router to a plurality of delivery points. The data routing entity controls access by the users at the plurality of delivery points to the healthcare and non-healthcare data processing resources. Healthcare and non-healthcare communications services are delivered over the same access infrastructure. For added security, the host comprises a plurality of authentication entities for authenticating users belonging to respective user classes. An access controller receives an authentication request message comprising user credentials and a user class regarding a user at an end user device. The access controller determines, based on the user class, a destination authentication entity and, releases the credentials towards the destination authentication entity.
-
Citations
95 Claims
-
1. An architecture for delivery of communications services within a hospital, comprising:
-
a set of healthcare data processing resources for providing healthcare communications services to users at a plurality of delivery points throughout the hospital;
a set of non-healthcare data processing resources for providing non-healthcare communications services to the users at the plurality of delivery points;
a data routing entity connected to the healthcare data processing resources and to the non-healthcare data processing resources;
a common access infrastructure connected between the data routing entity and the plurality of delivery points, for supporting both the healthcare communications services and the non-healthcare communications services;
the data routing entity being operative to control access by the users at the plurality of delivery points to the healthcare data processing resources and to the non-healthcare data processing resources. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. An access controller for use in authenticating users of a network, the access controller comprising:
-
an input operative to receive an authentication request message indicative of user credentials and a user class regarding a user of an end user device;
a control entity operative to determine, based on the user class, a destination authentication entity from among a plurality of authentication entities;
an output operative to release the user credentials towards the destination authentication entity for authentication of the user. - View Dependent Claims (43, 44, 45, 46, 47)
-
-
48. A host processing entity for use in allowing users to access data processing resources in a hospital, the host processing entity comprising:
-
a plurality of authentication entities for authenticating users belonging to respective user classes;
an access controller operative to;
receive an authentication request message comprising user credentials and a user class regarding a user at an end user device;
determine, based on the user class, a destination authentication entity from among the plurality of authentication entities;
release the user credentials towards the destination authentication entity for authentication of the user. - View Dependent Claims (49, 50, 51, 52, 53, 54, 55, 56, 57, 74, 75, 76, 77, 78, 79, 80, 81)
-
-
58. A method of controlling user access to resources in a data network, the method comprising:
-
receiving an authentication request message comprising user credentials and a user class regarding a user at an end user device;
determining, based on the user class, a destination authentication entity from among a plurality of authentication entities;
releasing the user credentials towards the destination authentication entity for authentication of the user. - View Dependent Claims (59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73)
-
-
82. Computer-readable media tangibly embodying a program element for execution by a computing device to implement an access controller, said access controller including:
-
an interface entity operative to receive an authentication request message indicative of user credentials and a user class regarding a user at an end user device;
a control entity operative to determine, based on the user class, a destination authentication entity from among a plurality of authentication entities;
the interface further operative to release the user credentials towards the destination authentication entity for authentication of the user.
-
-
83. An access controller for controlling user access to resources in a data network, comprising:
-
means for receiving an authentication request message indicative of user credentials and a user class regarding a user at an end user device;
means for determining, based on the user class, a destination authentication entity from among a plurality of authentication entities;
means for releasing the user credentials towards the destination authentication entity for authentication of the user.
-
-
84. A method of formulating an authentication request message, comprising:
-
receiving authentication primitives from an end user, the authentication primitives being indicative of a user class and user credentials regarding a user;
determining the user class from the authentication primitives;
creating an authentication request message from the authentication primitives, the authentication request message containing data indicative of at least the user credentials and being in a format that is dependent upon the user class;
outputting the authentication request message. - View Dependent Claims (85, 86, 87, 88, 89, 90, 91)
-
-
92. An end user device, comprising:
-
an input device operative to receive authentication primitives from an end user, the authentication primitives being indicative of a user class and user credentials regarding a user;
a message formulator, operative to determine the user class from the authentication primitives and to create an authentication request message from the authentication primitives, the authentication request message containing data indicative of at least the user credentials and being in a format that is dependent upon the user class;
an output for releasing the authentication request message. - View Dependent Claims (93, 94, 95)
-
Specification