Extensible deployment system

US 9,892,268 B2
Filed: 07/03/2014
Issued: 02/13/2018
Est. Priority Date: 11/15/2012
Status: Active Grant

First Claim

Patent Images

1. A system, comprising:

one or more processors; and

a memory including instructions that, when executed by the one or more processors, cause the one or more processors to;

receive a user authentication request for accessing a first server comprising a management console application, the management console application configured to access management console services to monitor a medical device in a hospital system, wherein the user authentication request comprises a user identifier and a password, and wherein the first server further comprises a local user database and a local authentication system;

determine whether the user identifier exists in the local user database;

authenticate the user identifier and the password through the local authentication system when the user identifier exists in the local user database, otherwise authenticate the user identifier and password through an external authentication system in a second server communicably coupled to the first server; and

provide access to the first server when the user identifier and the password are authenticated through either the local authentication system or the external authentication system, otherwise deny access to the first server.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An extensible deployment system is disclosed that provides for flexible deployment and centralized management of a scalable communication system. The scalable communication system may be segmented into multiple groups of services, e.g. multiple solutions, that may be deployed across one or more servers. The groups of services may each access separate databases in a single database instance that may allow for the groups of services to be deployed and upgraded independently. A management interface may be provided that allows for centralized management, and deployment, of all of the groups of services, irrespective of the independent upgrade paths of the groups of services. The management interface may include a local authentication system and may also be interoperable with one or more external authentication systems, such that users may use login credentials of an external authentication system to access the management interface.

18 Citations

View as Search Results

12 Claims

1. A system, comprising:
- one or more processors; and
  
  a memory including instructions that, when executed by the one or more processors, cause the one or more processors to;
  
  receive a user authentication request for accessing a first server comprising a management console application, the management console application configured to access management console services to monitor a medical device in a hospital system, wherein the user authentication request comprises a user identifier and a password, and wherein the first server further comprises a local user database and a local authentication system;
  
  determine whether the user identifier exists in the local user database;
  
  authenticate the user identifier and the password through the local authentication system when the user identifier exists in the local user database, otherwise authenticate the user identifier and password through an external authentication system in a second server communicably coupled to the first server; and
  
  provide access to the first server when the user identifier and the password are authenticated through either the local authentication system or the external authentication system, otherwise deny access to the first server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The system of claim 1, wherein the memory further includes instructions that, when executed by the one or more processors, cause the one or more processors to:
    - determine whether the user identifier is categorized as an external user identifier or an internal user identifier when the user identifier exists in the local user database; and
      
      authenticate the user identifier and the password through the local authentication system if the user identifier exists in the local user database and the user identifier is categorized as the internal user identifier, otherwise authenticate the user identifier and password through an external authentication system.
  - 3. The system of claim 1, wherein the management console application is further configured to trace a first plurality of messages transmitted by a medical device in the hospital system and translated into an internal messaging format by a first service and a second plurality of messages transmitted by a second medical device in the hospital system and transmitted into the internal messaging format by a second service.
  - 4. The system of claim 3, wherein the first service accesses a first database having a first schema and the second service accesses a second database having a second schema that is different than the first schema.
  - 5. The system of claim 1, wherein the external authentication system comprises an active directory authentication system.
  - 6. The system of claim 1, wherein the memory further includes instructions that, when executed by the one or more processors, cause the one or more processors to:
    - add the user identifier to the local user database as an external user identifier when the user identifier and password are authenticated through the external authentication system.
  - 7. The system of claim 1, wherein the memory further includes instructions that, when executed by the one or more processors, cause the one or more processors to:
    - provide an authentication interface comprising a security certificate; and
      
      receive a user authentication request via the authentication interface.
  - 8. The system of claim 7, wherein the security certificate is self-signed.

9. A method for authenticating a user in a centralized communication system (CCS) for extensible deployment, the method comprising:
- receiving an authentication request from a user in a first server, the first server comprising a management console application that is configured to access management console services to monitor a medical device in a hospital system, a local user database, and a local authentication system, wherein the authentication request comprises a user identifier and a password;
  
  determining whether the user identifier exists in the local user database;
  
  authenticating a user identifier and a user password through the local authentication system when the user identifier exists in the local user database, otherwise authenticating the user identifier and the password through an external authentication system in a second server communicably coupled to the first server; and
  
  providing access to the management console application when the user identifier and the user password are authenticated.
- View Dependent Claims (10, 11, 12)
- - 10. The method of claim 9, wherein authenticating the user identifier and the user password comprises transmitting the user identifier and the password from the first server to the external authentication system when the user identifier is not in a local user database.
  - 11. The method of claim 9, further comprising creating user profiles in the local user database when the user identifier and the password are identified by the external authentication system.
  - 12. The method of claim 9, further comprising providing a user input interface to the user;
    - and, through the user input interface;
      
      receiving an input to extend the CCS by a new service grouping;
      
      extending the CCS by a new service; and
      
      adding a CCS server hosting the new service.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Carefusion 303 Incorporated (Becton, Dickinson & Co)
Original Assignee
Carefusion 303 Incorporated (Becton, Dickinson & Co)
Inventors
Nguyen, Nick T., Massey, Richard W., Lam, Willis, Nguyen, Ryan, Barnefiher, Gerald E.
Primary Examiner(s)
Williams, Jeffery

Application Number

US14/323,343
Publication Number

US 20140317727A1
Time in Patent Office

1,321 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 16/211   Schema design and management

G06F 21/604   Tools and structures for ma...

G06F 8/60   Software deployment

G06F 9/5055   considering software capabi...

H04L 63/083   using passwords cryptograph...

Extensible deployment system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

18 Citations

12 Claims

Specification

Use Cases

Quick Links

Others

Extensible deployment system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

18 Citations

12 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others