MULTI-FACTOR AUTHENTICATION FOR REMOTE ACCESS OF PATIENT DATA
First Claim
1. A computer-implemented method for authenticating a mobile device and a user of the mobile device to receive patient data from a clinical information system of a medical facility, comprising:
- receiving a logon request at a data management system, the logon request comprising credentials and at least one technical factor;
accessing, at the data management system, a validation database based on the at least one technical factor;
determining, at the data management system, that the mobile device is an authorized mobile device based on information provided by the validation database and the at least one technical factor;
validating the credentials to ensure that the user is authorized to access patient data provided by the clinical information system; and
then, upon determining that the user is authorized to access patient data;
establishing a session to communicate patient data between the mobile device and the clinical information system, the data managements system processing the patient data communicated during the session.
11 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure is directed to authenticating a mobile device and a user of the mobile device to receive patient data from a clinical information system of a medical facility. In some implementations, methods include receiving a logon request, the logon request comprising credentials and at least one technical factor, accessing a validation database based on the at least one technical factor, determining that the mobile device is an authorized mobile device based on information provided by the validation database and the at least one technical factor, validating the credentials to ensure that the user is authorized to access patient data provided by the clinical information system, and then, upon determining that the user is authorized to access patient data: establishing a session to communicate patient data between the mobile device and the clinical information system, the data managements system processing the patient data communicated during the session.
61 Citations
18 Claims
-
1. A computer-implemented method for authenticating a mobile device and a user of the mobile device to receive patient data from a clinical information system of a medical facility, comprising:
-
receiving a logon request at a data management system, the logon request comprising credentials and at least one technical factor; accessing, at the data management system, a validation database based on the at least one technical factor; determining, at the data management system, that the mobile device is an authorized mobile device based on information provided by the validation database and the at least one technical factor; validating the credentials to ensure that the user is authorized to access patient data provided by the clinical information system; and
then, upon determining that the user is authorized to access patient data;establishing a session to communicate patient data between the mobile device and the clinical information system, the data managements system processing the patient data communicated during the session. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer-readable storage device encoded with a computer program comprising instructions that, when executed, operate to cause one or more processors to perform operations comprising:
-
receiving a logon request, the logon request comprising credentials and at least one technical factor; accessing a validation database based on the at least one technical factor; determining that a mobile device sending the logon request is an authorized mobile device based on information provided by the validation database and the at least one technical factor; validating the credentials to ensure that a user of the mobile device is authorized to access patient data provided by a clinical information system; and
then, upon determining that the user is authorized to access patient data;establishing a session to communicate patient data between the mobile device and the clinical information system, and processing the patient data communicated during the session.
-
-
18. A system comprising:
-
one or more processors; and a computer-readable medium coupled to the one or more processors having instructions stored thereon which, when executed by the one or more processors, causes the one or more processors to perform operations comprising; receiving a logon request, the logon request comprising credentials and at least one technical factor; accessing a validation database based on the at least one technical factor; determining that a mobile device sending the logon request is an authorized mobile device based on information provided by the validation database and the at least one technical factor; validating the credentials to ensure that a user of the mobile device is authorized to access patient data provided by a clinical information system; and
then, upon determining that the user is authorized to access patient data;establishing a session to communicate patient data between the mobile device and the clinical information system, and processing the patient data communicated during the session.
-
Specification