Systems and methods for preventing an attack on healthcare data processing resources in a hospital information system
First Claim
1. A system comprising;
- healthcare data processing resources;
non-healthcare data processing resources;
a switching entity disposed between the healthcare data processing resources and the non-healthcare data processing resources;
a communication link connected to the switching entity and connectable to an end user device;
a healthcare authentication entity for authenticating users claiming to be healthcare users and a non-healthcare authentication entity for authenticating users claiming to be non-healthcare users;
the switching entity being operative to alternatively support, over the communication link, either a healthcare session between the end user device and the healthcare data processing resources, or a non-healthcare session between the end user device and the non-healthcare data processing resources;
the switching entity being configured to prevent the healthcare data processing resources and the non-healthcare data processing resources from communicating with each other via the switching entity.
6 Assignments
0 Petitions
Accused Products
Abstract
A system comprising a switching entity disposed between healthcare data processing resources and non-healthcare data processing resources. The switching entity is capable of operation in a first state in which an end user device is communicatively coupled to the healthcare data processing resources to support a healthcare session and a second state in which the end user device is communicatively coupled to the non-healthcare data processing resources to support a non-healthcare session. If the authentication request message is received while the switching entity is operating in the second state and a particular non-healthcare session is in progress, and the selected authentication entity is the healthcare authentication entity, initiating a memory purge at the end user device. Attacks on the healthcare data processing resources, both from the non-healthcare resources directly and via the end user device, are thus prevented.
66 Citations
75 Claims
-
1. A system comprising;
-
healthcare data processing resources; non-healthcare data processing resources; a switching entity disposed between the healthcare data processing resources and the non-healthcare data processing resources; a communication link connected to the switching entity and connectable to an end user device; a healthcare authentication entity for authenticating users claiming to be healthcare users and a non-healthcare authentication entity for authenticating users claiming to be non-healthcare users; the switching entity being operative to alternatively support, over the communication link, either a healthcare session between the end user device and the healthcare data processing resources, or a non-healthcare session between the end user device and the non-healthcare data processing resources; the switching entity being configured to prevent the healthcare data processing resources and the non-healthcare data processing resources from communicating with each other via the switching entity. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 42, 43, 44)
-
-
36. A system comprising:
-
healthcare data processing resources, the healthcare data processing resources comprising a plurality of healthcare application servers for running clinical software; non-healthcare data processing resources; a switching entity disposed between the healthcare data processing resources and the non-healthcare data processing resources; a communication link connected to the switching entity and connectable to an end user device; the switching entity being operative to alternatively support, over the communication link, either a healthcare session between the end user device and the healthcare data processing resources, or a non-healthcare session between the end user device and the non-healthcare data processing resources, wherein the healthcare session allows the delivery of a computerized physician order entry service; the switching entity being configured to prevent the healthcare data processing resources and the non-healthcare data processing resources from communicating with each other via the switching entity. - View Dependent Claims (37, 38, 39, 40, 41, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75)
-
Specification