Secure Electronic Medical Record Management Using Hierarchically Determined and Recursively Limited Authorized Access

US 20080172737A1
Filed: 01/11/2007
Published: 07/17/2008
Est. Priority Date: 01/11/2007
Status: Abandoned Application

First Claim

Patent Images

1. A method for providing secure access to a patient'"'"'s medical records, said method comprising:

receiving an access authorization account that specifies access parameters relating to the patient'"'"'s medical records, said access authorization account specifying;

an authorized user identification that specifies one or more user identification codes that may be utilized to access the patient'"'"'s medical records;

content scope authorization that specifies the scope of data content within the patient'"'"'s medical records that is accessible using the authorized user identification;

access scope authorization that specifies the extent to which the accessible data content is modifiable using the authorized user identification; and

an access period that specifies an access termination time; and

processing the access authorization account to determine and implement limited access to the patient'"'"'s medical records.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and system for providing secure access to a patient'"'"'s medical records. In one embodiment, an access authorization account is received that specifies access parameters relating to the patient'"'"'s medical records. The access authorization account specifies: an authorized user identification that specifies one or more user identification codes that may be utilized to access the patient'"'"'s medical records; content scope authorization that specifies the scope of data content within the patient'"'"'s medical records that is accessible using the authorized user identification; content access authorization that specifies the extent to which the accessible data content is modifiable using the authorized user identification; and an access period that specifies an access termination time. The access authorization account is processed by an access manager to determine and implement limited access to the patient'"'"'s medical records.

86 Citations

View as Search Results

20 Claims

1. A method for providing secure access to a patient'"'"'s medical records, said method comprising:
- receiving an access authorization account that specifies access parameters relating to the patient'"'"'s medical records, said access authorization account specifying;
  
  an authorized user identification that specifies one or more user identification codes that may be utilized to access the patient'"'"'s medical records;
  
  content scope authorization that specifies the scope of data content within the patient'"'"'s medical records that is accessible using the authorized user identification;
  
  access scope authorization that specifies the extent to which the accessible data content is modifiable using the authorized user identification; and
  
  an access period that specifies an access termination time; and
  
  processing the access authorization account to determine and implement limited access to the patient'"'"'s medical records.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein said access authorization account further specifies a temporal authentication having temporal account identification data and a temporal password for accessing a subset of account content with subset of access authorization within a subset of the access period.
  - 3. The method of claim 1, wherein integrated temporal accounts are automatically authenticated and authorized by the access authorization account.
  - 4. The method of claim 1, wherein the medical records access authorization account is a top-level medical records access authorization account that provides patient authorization of access parameters relating to a patient'"'"'s medical records.
  - 5. The method of claim 1, wherein the access authorization account is an access authorization sub-account that may only be generated in accordance with authorization specified by a higher-level access authorization account for the same patient'"'"'s medical records.
  - 6. The method of claim 5, wherein the content scope and content access authorizations specified by the access authorization sub-account are restricted in accordance with the content scope and content access authorizations specified by the higher-level access authorization account.
  - 7. The method of claim 1, wherein the authorized user identification specifies a user identification code and a password code.
  - 8. The method of claim 7, wherein the access authorization account is an access authorization sub-account descended from a top-level access authorization account for the same patient'"'"'s medical records, and wherein the user identification code is modifiably different from a user identification code specified in the top-level access authorization account and the password code is not modifiable from the password code specified in the top-level access authorization account.
  - 9. The method of claim 1, wherein the access authorization account is an access authorization sub-account descended from a top-level access authorization account for the same patient'"'"'s medical records, and wherein the specified access period may only be modified to fall within the access period specified in the top-level access authorization account.

10. A system for providing secure access to a patient'"'"'s medical records, said system comprising:
- means for receiving an access authorization account that specifies access parameters relating to the patient'"'"'s medical records, said access authorization account specifying;
  
  an authorized user identification that specifies one or more user identification codes that may be utilized to access the patient'"'"'s medical records;
  
  content scope authorization that specifies the scope of data content within the patient'"'"'s medical records that is accessible using the authorized user identification;
  
  access scope authorization that specifies the extent to which the accessible data content is modifiable using the authorized user identification; and
  
  an access period that specifies an access termination time; and
  
  means for processing the access authorization account to determine and implement limited access to the patient'"'"'s medical records.
- View Dependent Claims (11, 12, 13, 14, 15, 16)
- - 11. The system of claim 10, wherein said access authorization account further specifies a temporal authentication having temporal account identification data and a temporal password for accessing a subset of account content with subset of access authorization within a subset of the access period.
  - 12. The system of claim 10, wherein the medical records access authorization account is a top-level medical records access authorization account that provides patient authorization of access parameters relating to a patient'"'"'s medical records.
  - 13. The system of claim 10, wherein the access authorization account is an access authorization sub-account that may only be generated in accordance with authorization specified by a higher-level access authorization account for the same patient'"'"'s medical records.
  - 14. The system of claim 13, wherein the content scope and content access authorizations specified by the access authorization sub-account are restricted in accordance with the content scope and content access authorizations specified by the higher-level access authorization account.
  - 15. The system of claim 10, wherein the authorized user identification specifies a user identification code and a password code, and wherein the access authorization account is an access authorization sub-account descended from a top-level access authorization account for the same patient'"'"'s medical records, and wherein the user identification code is modifiably different from a user identification code specified in the top-level access authorization account and the password code is not modifiable from the password code specified in the top-level access authorization account.
  - 16. The system of claim 10, wherein the access authorization account is an access authorization sub-account descended from a top-level access authorization account for the same patient'"'"'s medical records, and wherein the specified access period may only be modified to fall within the access period specified in the top-level access authorization account.

17. A tangible computer-readable medium having encoded thereon computer-executable instructions for providing secure access to a patient'"'"'s medical records, said computer-executable instructions performing a method comprising:
- receiving an access authorization account that specifies access parameters relating to the patient'"'"'s medical records, said access authorization account specifying;
  
  an authorized user identification that specifies one or more user identification codes that may be utilized to access the patient'"'"'s medical records;
  
  content scope authorization that specifies the scope of data content within the patient'"'"'s medical records that is accessible using the authorized user identification;
  
  access scope authorization that specifies the extent to which the accessible data content is modifiable using the authorized user identification; and
  
  an access period that specifies an access termination time; and
  
  processing the access authorization account to determine and implement limited access to the patient'"'"'s medical records.
- View Dependent Claims (18, 19, 20)
- - 18. The tangible computer-readable medium of claim 17, wherein said access authorization account further specifies a temporal authentication having temporal account identification data and a temporal password for accessing a subset of account content with subset of access authorization within a subset of the access period.
  - 19. The tangible computer-readable medium of claim 17, wherein the access authorization account is an access authorization sub-account that may only be generated in accordance with authorization specified by a higher-level access authorization account for the same patient'"'"'s medical records.
  - 20. The tangible computer-readable medium of claim 19, wherein the content scope and content access authorizations specified by the access authorization sub-account are restricted in accordance with the content scope and content access authorizations specified by the higher-level access authorization account.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Wang, Hao, Shen, Jinmei

Application Number

US11/622,065
Publication Number

US 20080172737A1
Time in Patent Office

Days
Field of Search
US Class Current

726/21
CPC Class Codes

G06F 21/6245 Protecting personal data, e...

G16H 10/60 for patient-specific data, ...

Secure Electronic Medical Record Management Using Hierarchically Determined and Recursively Limited Authorized Access

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

86 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secure Electronic Medical Record Management Using Hierarchically Determined and Recursively Limited Authorized Access

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

86 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links