Method and system for associating database content for security enhancement

US 9,003,538 B2
Filed: 12/07/2007
Issued: 04/07/2015
Est. Priority Date: 12/07/2007
Status: Active Grant

First Claim

Patent Images

1. A method for associating database content comprising the steps of:

providing a computing system including a storage media;

installing an application in the storage media adapted to access and manipulate medical records of a patient;

providing a first encryption key stored in a computer readable media, the first encryption key accessible by the application;

encrypting user access data including a user identification and password with the first encryption key and storing the encrypted user access data in a system database that comprises,encrypting a plurality of user data, each of the plurality of user data associated with a unique command,providing a second encryption key stored in a computer readable media, the second encryption key also accessible by the application,encrypting a second plurality of medical records with the second encryption key and storing the encrypted second plurality of medical records in a results database, andencrypting a second user access data, the second user access data associated with a second command, wherein the application responds to input of the second command associated with the second user access data by accessing the second encryption key and the second encryption key decrypting the second user access data, wherein the application identifies the second command as being associated with an authorized user based on the decrypted second user access data and provides the authorized user access to utilize the application for accessing the second plurality of medical records;

encrypting a plurality of medical records with the first encryption key and storing the encrypted medical records in a results database embedded in the storage media of the computing device and the second plurality of medical records encrypted with the second encryption key is stored in a results database embedded in a remote storage media; and

inputting a command requesting rights to utilize the application for accessing the medical records, wherein the application responds to the step of inputting by accessing the first encryption key and decrypting the user access data, wherein the application identifies the command as being associated with an authorized user based on the decrypted user access data and provides the authorized user access to utilize the application for accessing the plurality of medical records encrypted with the first encryption key.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for associating database content for security enhancement is provided, the method being applicable to a system comprising a computer configured to process a data management application and to store data in databases. According to one embodiment of the method according to the invention, the application uses an encryption key to encrypt data. The application stores the encrypted data in two or more databases. The databases may comprise a system database for storing encrypted user access data and one or more results databases for storing patient data. Databases may be stored locally, remotely, or both locally and remotely.

Citations

10 Claims

1. A method for associating database content comprising the steps of:
- providing a computing system including a storage media;
  
  installing an application in the storage media adapted to access and manipulate medical records of a patient;
  
  providing a first encryption key stored in a computer readable media, the first encryption key accessible by the application;
  
  encrypting user access data including a user identification and password with the first encryption key and storing the encrypted user access data in a system database that comprises,encrypting a plurality of user data, each of the plurality of user data associated with a unique command,providing a second encryption key stored in a computer readable media, the second encryption key also accessible by the application,encrypting a second plurality of medical records with the second encryption key and storing the encrypted second plurality of medical records in a results database, andencrypting a second user access data, the second user access data associated with a second command, wherein the application responds to input of the second command associated with the second user access data by accessing the second encryption key and the second encryption key decrypting the second user access data, wherein the application identifies the second command as being associated with an authorized user based on the decrypted second user access data and provides the authorized user access to utilize the application for accessing the second plurality of medical records;
  
  encrypting a plurality of medical records with the first encryption key and storing the encrypted medical records in a results database embedded in the storage media of the computing device and the second plurality of medical records encrypted with the second encryption key is stored in a results database embedded in a remote storage media; and
  
  inputting a command requesting rights to utilize the application for accessing the medical records, wherein the application responds to the step of inputting by accessing the first encryption key and decrypting the user access data, wherein the application identifies the command as being associated with an authorized user based on the decrypted user access data and provides the authorized user access to utilize the application for accessing the plurality of medical records encrypted with the first encryption key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1 wherein the first encryption key is stored in a key store.
  - 3. The method of claim 2 wherein the key store is selected from a group consisting of an operating system key store and a key server appliance, removable media, and a file.
  - 4. The method of claim 1 wherein the system database is embedded in the storage media and the results database is embedded in a remote storage media.
  - 5. The method of claim 1 wherein a plurality of results databases are embedded in a remote storage media and are accessible by the application.
  - 6. The method of claim 1 wherein the command, input in the step of inputting, comprises a log-in ID.
  - 7. The method of claim 1 further including the steps of:
    - providing a second encryption key stored in a computer readable media, the second encryption key also accessible by the application;
      
      encrypting a second plurality of medical records with the second encryption key and storing the encrypted second plurality of medical records in a results database; and
      
      encrypting a second user access data, the second user access data associated with a second command, wherein the application responds to input of the second command associated with the second user access data by accessing the second encryption key and the second encryption key decrypting the second user access data, wherein the application identifies the second command as being associated with an authorized user based on the decrypted second user access data and provides the authorized user access to utilize the application for accessing the second plurality of medical records.
  - 8. The method of claim 7 wherein the encrypted second plurality of medical records and the plurality of medical records encrypted by the first encryption key are stored in the same results database.
  - 9. The method of claim 1 wherein the application, upon identifying the command as associated with an authorized user, further provides the authorized user access to the application for manipulating the medical records encrypted with the first encryption key.
  - 10. The method of claim 1, wherein the step of encrypting the plurality of medical records comprises encrypting a first medical record prior to encrypting a second medical record.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Roche Diabetes Care Inc. (Roche Holding AG)
Original Assignee
Roche Diagnostics Operations Incorporated (Roche Holding AG)
Inventors
Markisohn, David Bradley, Gejdos, Igor, Young, Morris J., Bernard, Keith E.
Primary Examiner(s)
Lagor, Alexander

Application Number

US11/999,951
Publication Number

US 20090150683A1
Time in Patent Office

2,678 Days
Field of Search

None
US Class Current

726/26
CPC Class Codes

G06F 21/62   Protecting access to data v...

G06F 21/6245   Protecting personal data, e...

G16H 10/60   for patient-specific data, ...

G16H 40/67   for remote operation

Method and system for associating database content for security enhancement

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for associating database content for security enhancement

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links