System and method for secure relayed communications from an implantable medical device

US 9,942,051 B1
Filed: 12/14/2015
Issued: 04/10/2018
Est. Priority Date: 03/15/2013
Status: Active Grant

First Claim

Patent Images

1. A medical device, comprising:

a wireless radio frequency digital communication transceiver adapted for local communications;

a physiological interface adapted to communicate medical prognostic, diagnostic or therapeutic information, by at least one of receiving a physiological signal, producing a physiological stimulation, producing a motion or displacement, infusing a drug, and acquiring a biological sample; and

at least one programmable automated electronic processor within the medical device, configured to;

communicate through the wireless radio frequency digital communication transceiver to a proximate relay device external to the medical device;

control the relay device to communicate with a plurality of remote servers, the relay device being configured to establish a secure communication tunnel between the medical device and a selected one of a plurality of different endpoints through a public network, the plurality of different endpoints each being associated with a respective public key infrastructure security certificate;

receive a request for opening a communication channel with a respective endpoint based on a message received through the wireless radio frequency digital communication transceiver from the relay device;

verify the received request based on communications through the relay device, by receiving a respective security certificate associated with the respective endpoint, verifying a public key associated with the respective security certificate, and checking a certificate revocation list for presence of the security certificate;

after verifying the received request, establish the secure communication tunnel between the medical device and the respective endpoint according to the verified security certificate; and

communicate the medical prognostic, diagnostic or therapeutic information through the secure communication tunnel.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides systems and methods for supporting encrypted communications with a medical device, such as an implantable device, through a relay device to a remote server, and may employ cloud computing technologies. An implantable medical device is generally constrained to employ a low power transceiver, which supports short distance digital communications. A relay device, such as a smartphone or WiFi access point, acts as a conduit for the communications to the internet or other network, which need not be private or secure. The medical device supports encrypted secure communications, such as a virtual private network technology. The medical device negotiates a secure channel through a smartphone or router, for example, which provides application support for the communication, but may be isolated from the content.

1409 Citations

20 Claims

1. A medical device, comprising:
- a wireless radio frequency digital communication transceiver adapted for local communications;
  
  a physiological interface adapted to communicate medical prognostic, diagnostic or therapeutic information, by at least one of receiving a physiological signal, producing a physiological stimulation, producing a motion or displacement, infusing a drug, and acquiring a biological sample; and
  
  at least one programmable automated electronic processor within the medical device, configured to;
  
  communicate through the wireless radio frequency digital communication transceiver to a proximate relay device external to the medical device;
  
  control the relay device to communicate with a plurality of remote servers, the relay device being configured to establish a secure communication tunnel between the medical device and a selected one of a plurality of different endpoints through a public network, the plurality of different endpoints each being associated with a respective public key infrastructure security certificate;
  
  receive a request for opening a communication channel with a respective endpoint based on a message received through the wireless radio frequency digital communication transceiver from the relay device;
  
  verify the received request based on communications through the relay device, by receiving a respective security certificate associated with the respective endpoint, verifying a public key associated with the respective security certificate, and checking a certificate revocation list for presence of the security certificate;
  
  after verifying the received request, establish the secure communication tunnel between the medical device and the respective endpoint according to the verified security certificate; and
  
  communicate the medical prognostic, diagnostic or therapeutic information through the secure communication tunnel.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 2. The medical device according to claim 1, wherein the at least one programmable automated electronic processor is further configured to block communication of the medical prognostic, diagnostic or therapeutic information through any communication channel other than the secure communication tunnel.
  - 3. The medical device according to claim 1, wherein the relay device comprises a smartphone which supports concurrent communications over a cellular communication channel and an industrial, scientific and medical (ISM) band communication channel.
  - 4. The medical device according to claim 1, wherein the relay device comprises a smartphone configured perform the relay device functions based on a downloadable app.
  - 5. The medical device according to claim 1, wherein the at least one programmable automated electronic processor is reprogrammable, and is further configured to receive at least one of a new program and a modified program for storage and execution after verifying a security certificate and communication channel of source of the at least one of the new program and the modified program.
  - 6. The medical device according to claim 1, wherein the wireless radio frequency digital communication transceiver, a physiological interface, and at least one programmable automated electronic processor are provided within a housing configured for implantation into a human.
  - 7. The medical device according to claim 6, wherein the physiological interface is configured to monitor a physiological signal of a patient in which the medical device is implanted, and the private medical data is derived from the monitored physiological signal.
  - 8. The medical device according to claim 6, wherein the physiological interface is configured to produce a physiological stimulation of a patient in which the medical device is implanted, and the medical data comprises parameters for controlling the physiological stimulation.
  - 9. The medical device according to claim 6, wherein the physiological interface is configured to produce a motion or displacement within a patient in which the medical device is implanted, and the medical data comprises parameters for controlling the motion or displacement.
  - 10. The medical device according to claim 6, wherein the physiological interface is configured to infuse a drug into a patient in which the medical device is implanted, and the medical data comprises parameters for controlling the infusion of the drug into the patient.
  - 11. The medical device according to claim 6, wherein the physiological interface is configured to acquire a biological sample from a patient in which the medical device is implanted, and the medical data comprises parameters for controlling the acquisition of the biological sample.
  - 12. The medical device according to claim 1, wherein the wireless radio frequency digital communication transceiver communicates with the proximate relay device over an insecure physical channel, and at least one programmable automated electronic processor is further configured to:
    - initiate a request to a respective one of the plurality of different endpoints, to open a cryptographically secure tunneling protocol communication session according to the public key infrastructure, by sending a second message over the insecure physical channel.
  - 13. The medical device according to claim 12, wherein the cryptographically secure tunneling protocol communication comprises a virtual private network (VPN).
  - 14. The medical device according to claim 1, wherein the relay device comprises a smartphone, and the smartphone provides a user interface to control the medical device, wherein the at least one programmable automated electronic processor is configured to validate the smartphone with respect to at least one of an execution checkpoint, a hash of memory contents, and an execution timing.

15. A method of controlling a medical device, the medical device comprising:
- a wireless radio frequency digital communication transceiver adapted for local communications;
  
  a physiological interface adapted to communicate medical prognostic, diagnostic or therapeutic information, by at least one of receiving a physiological signal, producing a physiological stimulation, producing a motion or displacement, infusing a drug, and acquiring a biological sample; and
  
  at least one programmable automated electronic processor,the method comprising;
  
  communicating through the wireless radio frequency digital communication transceiver to a proximate relay device external to the medical device;
  
  controlling the relay device to communicate with a plurality of remote servers, the relay device establishing a secure communication tunnel between the medical device and a selected one of a plurality of different endpoints through a public network, the plurality of different endpoints each being associated with a respective public key infrastructure security certificate;
  
  receiving a request for opening a communication channel with a respective endpoint based on a message received through the wireless radio frequency digital communication transceiver from the relay device;
  
  verifying the received request based on communications through the relay device, by receiving a respective security certificate associated with the respective endpoint, verifying a public key associated with the respective security certificate, and checking a certificate revocation list for presence of the security certificate;
  
  after verifying the received request, establishing the secure communication tunnel between the medical device and the respective endpoint according to the verified security certificate; and
  
  communicating the medical prognostic, diagnostic or therapeutic information through the secure communication tunnel.
- View Dependent Claims (16, 17, 18)
- - 16. The method according to claim 15, further comprising blocking communication of the medical prognostic, diagnostic or therapeutic information through any communication channel other than the secure communication tunnel.
  - 17. The method according to claim 15, wherein the wireless radio frequency digital communication transceiver, a physiological interface, and at least one programmable automated electronic processor are provided within a housing configured for implantation into a human, the relay device comprises a smartphone which supports concurrent communications over a cellular communication channel and an industrial, scientific and medical (ISM) band communication channel, under control of at least a downloadable app, and the at least one programmable automated electronic processor is reprogrammable, and receives at least one of a new program and a modified program for storage and execution after verifying a security certificate and communication channel of source of the at least one of the new program and the modified program.
  - 18. The method according to claim 15, wherein the wireless radio frequency digital communication transceiver communicates with the proximate relay device over an insecure physical channel, and the at least one programmable automated electronic processor initiates a request to a respective one of the plurality of different endpoints, to open a cryptographically secure tunneling protocol communication session according to the public key infrastructure, by sending a message over the insecure physical channel.

19. A method of operating a medical device, comprising:
- providing a wireless radio frequency digital communication radio transceiver, an interface for a medical interface device; and
  
  at least one programmable automated electronic processor;
  
  communicating through the wireless radio frequency digital communication transceiver over a radio frequency communication channel;
  
  controlling a relay device external to the medical device, to establish cryptographically secure communications with each of a plurality of different endpoints each having a respective associated security certificate;
  
  authenticate each respective different endpoint associated security certificate according to a public key infrastructure hierarchy management system comprising at least a certificate revocation list queried by the medical device through the wireless radio frequency digital communication radio transceiver and a validity period,receive a request initiated from a respective one of the plurality of different endpoints, to open a new cryptographically secure communication session between the medical device and the respective one of the plurality of different endpoints, the request being conveyed in at least one message received through the wireless radio frequency digital communication radio transceiver, andinitiate the new cryptographically secure communication session between the medical device and the respective one of the plurality of different endpoints, passing through the relay device, the new cryptographically secure communication session communicating at least one message comprising medical data to or from the physiological interface, the request being conveyed in at least one message transmitted through the wireless radio frequency digital communication radio transceiver.
- View Dependent Claims (20)
- - 20. The method according to claim 19, further comprising initiating a request to a respective one of the plurality of different endpoints, to open a cryptographically secure tunneling protocol communication session according to the public key infrastructure, by sending through the relay device the at least one message received through the wireless radio frequency digital communication radio transceiver.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Poltorak Technologies, LLC
Original Assignee
Poltorak Technologies, LLC
Inventors
Poltorak, Alexander
Primary Examiner(s)
Schwartz, Darren B

Application Number

US14/968,336
Time in Patent Office

848 Days
Field of Search
US Class Current
CPC Class Codes

A61B 5/0006   ECG or EEG signals

G16H 20/17   delivered via infusion or i...

G16H 20/30   relating to physical therap...

G16H 40/67   for remote operation

H04L 2209/80   Wireless network architectu...

H04L 2209/88   Medical equipments

H04L 63/0272   Virtual private networks

H04L 63/04   for providing a confidentia...

H04L 63/0428   wherein the data content is...

H04L 63/0823   using certificates cryptogr...

H04L 9/006   involving public key infras...

H04L 9/3268   using certificate validatio...

H04W 12/02   Protecting privacy or anony...

H04W 12/033   of the user plane, e.g. use...

H04W 12/33   using wearable devices, e.g...

H04W 12/43   using shared identity modul...

Y02D 30/70   in wireless communication n...

System and method for secure relayed communications from an implantable medical device

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

1409 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

System and method for secure relayed communications from an implantable medical device

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

1409 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links