System and method for secure relayed communications from an implantable medical device

US 10,841,104 B2
Filed: 05/24/2019
Issued: 11/17/2020
Est. Priority Date: 03/15/2013
Status: Active Grant

First Claim

Patent Images

1. A communication device, comprising:

a wireless network digital communication transceiver, configured to communicate with another wireless digital communication transceiver through a multi-hop mesh network comprising at least one untrusted intermediate node, according to a multi-hop mesh networking communication protocol;

an external interface, configured to at least one of receive information from a sensor, and to generate a control signal for an output device; and

at least one automated processor, configured to;

receive an identification of a remote server through the wireless network digital communication transceiver, the identification being automatically securely and reliably transmitted from an authenticated source through the at least one untrusted intermediate node;

updating the identification of the remote server, after receipt of the identification using secure and reliable communications through the at least one untrusted intermediate node;

check the remote server against a remotely-hosted certificate revocation list, using secure and reliable communications through the at least one untrusted intermediate node;

perform a secure and reliable key exchange with the remote server if a certificate of the remote server is not on the certificate revocation list, through the at least one untrusted intermediate node, secure from interception key information by the at least one untrusted intermediate node; and

establish an encrypted communication channel based on the secure and reliable key exchange with the remote server by communications through both the wireless network digital communication transceiver and the at least one untrusted intermediate node; and

communicate information between the encrypted communication channel and the external interface secure from interception and secure from undetected message modification by the at least one untrusted intermediate node.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for supporting encrypted communications with a medical device, such as an implantable device, through a relay device to a remote server, and may employ cloud computing technologies. An implantable medical device is generally constrained to employ a low power transceiver, which supports short distance digital communications. A relay device, such as a smartphone or WiFi access point, acts as a conduit for the communications to the internet or other network, which need not be private or secure. The medical device supports encrypted secure communications, such as a virtual private network technology. The medical device negotiates a secure channel through a smartphone or router, for example, which provides application support for the communication, but may be isolated from the content.

1411 Citations

20 Claims

1. A communication device, comprising:
- a wireless network digital communication transceiver, configured to communicate with another wireless digital communication transceiver through a multi-hop mesh network comprising at least one untrusted intermediate node, according to a multi-hop mesh networking communication protocol;
  
  an external interface, configured to at least one of receive information from a sensor, and to generate a control signal for an output device; and
  
  at least one automated processor, configured to;
  
  receive an identification of a remote server through the wireless network digital communication transceiver, the identification being automatically securely and reliably transmitted from an authenticated source through the at least one untrusted intermediate node;
  
  updating the identification of the remote server, after receipt of the identification using secure and reliable communications through the at least one untrusted intermediate node;
  
  check the remote server against a remotely-hosted certificate revocation list, using secure and reliable communications through the at least one untrusted intermediate node;
  
  perform a secure and reliable key exchange with the remote server if a certificate of the remote server is not on the certificate revocation list, through the at least one untrusted intermediate node, secure from interception key information by the at least one untrusted intermediate node; and
  
  establish an encrypted communication channel based on the secure and reliable key exchange with the remote server by communications through both the wireless network digital communication transceiver and the at least one untrusted intermediate node; and
  
  communicate information between the encrypted communication channel and the external interface secure from interception and secure from undetected message modification by the at least one untrusted intermediate node.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The communication device according to claim 1, wherein the communicated information comprises control information for execution by the at least one automated processor.
  - 3. The communication device according to claim 1, wherein the communicated information comprises sensor data from the external interface.
  - 4. The communication device according to claim 1, wherein the encrypted communication channel comprises the Internet.
  - 5. The communication device according to claim 1, wherein the wireless network digital communication transceiver comprises a wireless personal area network device.
  - 6. The communication device according to claim 1, wherein the wireless network digital communication transceiver comprises a wireless local area network device.
  - 7. The communication device according to claim 1, wherein the encrypted communication channel comprises a cellular communication channel.
  - 8. The communication device according to claim 1, wherein the encrypted communication channel comprises a virtual private network.
  - 9. The communication device according to claim 1, wherein the wireless network digital communication transceiver comprises an IEEE-802.15 transceiver and the at least one untrusted intermediate node comprises a smartphone executing an untrusted downloadable app, the untrusted downloadable app having access to communications packets of the multi-hop mesh networking communication protocol.
  - 10. The communication device according to claim 1, wherein the at least one automated processor is configured to receive the identification of a remote server based on an initiating inbound received communication through the wireless network digital communication transceiver.
  - 11. The communication device according to claim 1, wherein the at least one automated processor is configured to establish the encrypted communication channel based on an initiating inbound received communication through the wireless network digital communication transceiver.
  - 12. The communication device according to claim 1, wherein the at least one automated processor is further configured to block execution of commands for control of the external interface received through the wireless network digital communication transceiver which are received outside of the encrypted communication channel.

13. A communication method, for controlling a communication device comprising:
- a wireless network digital communication transceiver communicating with another wireless digital communication transceiver through a multi-hop mesh network comprising at least one untrusted intermediate node, according to a multi-hop mesh networking communication protocol;
  
  an external interface for at least one of receiving information from a sensor, and generating a control signal for an output device; and
  
  at least one automated processor,the method comprising;
  
  checking an identification of a remote endpoint for communications against a certificate revocation list;
  
  performing a key exchange with the identified remote endpoint, if the identified remote endpoint is not the on the certificate revocation list, through the at least one untrusted intermediate node;
  
  establishing an encrypted communication channel based on the key exchange with the remote endpoint by communications through the wireless network digital communication transceiver and the at least one untrusted intermediate node; and
  
  communicating information between the encrypted communication channel and the external interface,the receipt of identification, the check against the certificate revocation list, and the communicated information each using communications secure from undetected message modification by the at least one untrusted intermediate node, andthe key exchange, and the communicated information each being secure from interception of key information by the at least one untrusted intermediate node.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The method according to claim 13, further comprising:
    - receiving an identification of the remote endpoint through the wireless network digital communication transceiver; and
      
      automatically securely transmitting the identification of the remote endpoint from an authenticated source through the at least one untrusted intermediate node.
  - 15. The method according to claim 13, further comprising executing control information contained in the communicated information by the at least one automated processor.
  - 16. The method according to claim 13, further comprising transmitting sensor data from the external interface in the communicated information.
  - 17. The method according to claim 13, further comprising at least one of updating an identification of a remote endpoint and initiating the encrypted communication, based on an unsolicited inbound communication received through the wireless network digital communication transceiver.
  - 18. The method according to claim 13, wherein:
    - the encrypted communication channel comprises the Internet;
      
      the wireless network digital communication transceiver comprises at least one of a wireless personal area network device and a wireless local area network device;
      
      the encrypted communication channel comprises a cellular communication channel;
      
      the encrypted communication channel comprises a virtual private network;
      
      the at least one untrusted intermediate node comprises a smartphone executing an untrusted downloadable app; and
      
      the untrusted downloadable app has access to communications packets of the multi-hop mesh networking communication protocol.

19. A non-transitory computer readable medium storing instructions for control of at least one automated processor of a communication device comprising a wireless network digital communication transceiver communicating with another wireless digital communication transceiver through a multi-hop mesh network comprising at least one untrusted intermediate node, according to a multi-hop mesh networking communication protocol, and an external interface at least one of receiving information from a sensor, and generating a control signal for an output device,the instructions comprising:
- instructions for checking an identification of a remote endpoint for communications against a certificate revocation list;
  
  instructions for performing a key exchange with the identified remote endpoint, if the identity of the remote endpoint is not on the certificate revocation list, through the at least one untrusted intermediate node;
  
  instructions for establishing an encrypted communication channel based on the key exchange with the remote endpoint by communications through the wireless network digital communication transceiver and the at least one untrusted intermediate node; and
  
  instructions for communicating information between the encrypted communication channel and the external interface,wherein the instructions for the receipt of identification, the instructions for the check against the certificate revocation list, and the instructions for the communicating of information each define communications secure from undetected message modification by the at least one untrusted intermediate node, andwherein the instructions for performing the key exchange, and the instructions for communicating of information each define communications secure from interception of key information by the at least one untrusted intermediate node.
- View Dependent Claims (20)
- - 20. The non-transitory computer readable medium according to claim 19, further storing instructions for control of at least one automated processor for receiving an identification of the remote endpoint through the wireless network digital communication transceiver, the instructions for receiving the identification of the remote endpoint defining communications which automatically securely transmit from an authenticated source through the at least one untrusted intermediate node.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Poltorak Technologies, LLC
Original Assignee
Poltorak Technologies, LLC
Inventors
Poltorak, Alexander I
Primary Examiner(s)
Schwartz, Darren B

Application Number

US16/422,175
Publication Number

US 20190288860A1
Time in Patent Office

543 Days
Field of Search
US Class Current
CPC Class Codes

A61B 5/0006   ECG or EEG signals

G16H 20/17   delivered via infusion or i...

G16H 20/30   relating to physical therap...

G16H 40/67   for remote operation

H04L 2209/80   Wireless network architectu...

H04L 2209/88   Medical equipments

H04L 63/0272   Virtual private networks

H04L 63/04   for providing a confidentia...

H04L 63/0428   wherein the data content is...

H04L 63/0823   using certificates cryptogr...

H04L 9/006   involving public key infras...

H04L 9/3268   using certificate validatio...

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/33   using wearable devices, e.g...

H04W 12/43   using shared identity modul...

Y02D 30/70   in wireless communication n...

System and method for secure relayed communications from an implantable medical device

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

1411 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for secure relayed communications from an implantable medical device

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

1411 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links