COMMUNICATION SECURED BETWEEN A MEDICAL DEVICE AND ITS REMOTE CONTROL DEVICE
First Claim
Patent Images
1. A network node which communicates in a secure and wireless manner, said assembly comprising:
- a. At least one medical node which comprises;
i. Communication means for communicating with a second nodeii. A memory which comprises at least one key information to establish and/or to communicate in a secure mannerb. A second node which comprises;
i. Communication means for communicating with the at least one medical node,ii. At least one connecting means for connecting to at least one security token,iii. Inputs meansiv. A CPU which is connected to said communication means, connecting means and inputs means,c. Said at least one security token which comprises;
i. Connecting means for connecting to the second nodeii. A memory which comprises at least one key information to establish and/or to communicate in a secure mannerWherein only one security token is paired with at least one medical node,Wherein all or part of said key information is stored in a secure part of the memory of at least one medical node and in a secure part of the memory of the security tokenWherein no key information is exchanged by wireless communication.Wherein said key information comprises the pairing data used to pair said nodes and/or at least one encryption key.
1 Assignment
0 Petitions
Accused Products
Abstract
The invention comprises a medical assembly composed by a medical device and a remote control which communicate in a secure and wireless manner. The remote control is connected to at least one security token. Key information stored in the medical device and the security token is used to establish a connection and to communicate in a secure manner.
73 Citations
71 Claims
-
1. A network node which communicates in a secure and wireless manner, said assembly comprising:
-
a. At least one medical node which comprises; i. Communication means for communicating with a second node ii. A memory which comprises at least one key information to establish and/or to communicate in a secure manner b. A second node which comprises; i. Communication means for communicating with the at least one medical node, ii. At least one connecting means for connecting to at least one security token, iii. Inputs means iv. A CPU which is connected to said communication means, connecting means and inputs means, c. Said at least one security token which comprises; i. Connecting means for connecting to the second node ii. A memory which comprises at least one key information to establish and/or to communicate in a secure manner Wherein only one security token is paired with at least one medical node, Wherein all or part of said key information is stored in a secure part of the memory of at least one medical node and in a secure part of the memory of the security token Wherein no key information is exchanged by wireless communication. Wherein said key information comprises the pairing data used to pair said nodes and/or at least one encryption key. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 43, 44, 45, 47, 48, 49, 50, 51, 52, 54, 55, 56, 57, 58, 60, 61, 64, 65, 66, 67, 68, 69, 70, 71)
-
-
42. Assembly according to any precedent claims, wherein the second node comprises encryption means for encrypting and/or decrypting said encrypted data, and wherein the said encryption key stored in the at least one security token is up-loaded in the second node by wire communication
-
46. A method to generate a session key to secure at least one communication between two distinct nodes, one of them comprising a token, said method comprising the following steps:
-
Providing two distinct nodes;
1 and 2. Said node 1 may comprise an encrypted key 1, a key generator and an encryption engine. Said node 2 comprises means for connecting to said token which may comprise an encrypted key 2, a key generator and an encryption engine.Initialising a first communication by a first node Generating a value V1 by the first node Encrypting said value V1 with the key 1 (optional) Transmitting said (encrypted) value V1 to the second node Transmitting said (encrypted) value V1 to the token Decrypting said value V1 with the key 2 (optional) Generating a value V2 by the token Computing a session key Ks1 by the token using the value V1 and V2 Encrypting said value V2 with the key 2 (optional) Transmitting said (encrypted) value V2 to the second node Transmitting said (encrypted) value V2 to the first node Decrypting said value V2 with the key 1 (optional) Computing a session key Ks2 by the first node using the value V1 and V2 - View Dependent Claims (62, 63)
-
-
53. Process to share a secret between a node and its security token as disclosed above, the pairing process comprising the following steps:
-
Providing a token and a medical node Providing a means for allowing a communication between said token and said medical node Sharing at least one secret between the token and the medical node.
-
-
59. Loopback process between two distinct nodes, a security token and a user, the process comprising the following steps:
-
Receiving of a command sent by a second node to the first node Storing said command in the memory of the first node Encrypting said command by the first node using an encryption key A Sending said encrypted command to the second node Receiving said encrypted command by the second node Sending said encrypted command to the security token Receiving said encrypted command by the security token Decrypting said encrypted command by the security token using an encryption key B Displaying said command on the display means of the second node Checking the command by the user Validating by the user of said command using inputs means of the second node or of the security token (if it is an external CMU comprising inputs means such as a validation button) Sending said validation to the first node to execute the command.
-
Specification