EP1200943A1 - System und verfahren zum speichern, verwalten und zurückfinden von gesundheitsinformationen auf einer chipkarte - Google Patents

System und verfahren zum speichern, verwalten und zurückfinden von gesundheitsinformationen auf einer chipkarte

Info

Publication number
EP1200943A1
EP1200943A1 EP00952164A EP00952164A EP1200943A1 EP 1200943 A1 EP1200943 A1 EP 1200943A1 EP 00952164 A EP00952164 A EP 00952164A EP 00952164 A EP00952164 A EP 00952164A EP 1200943 A1 EP1200943 A1 EP 1200943A1
Authority
EP
European Patent Office
Prior art keywords
smart card
patient
database
file
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP00952164A
Other languages
English (en)
French (fr)
Inventor
David Nelson
Scott Henkel
Michael Warthen
Ravi Sharma
Hans Erickson
Scott D. Miller
Charlotte M. Miller
Andrew W. Bergstrom
Lee O. Vanwagner
Jeff L. Henninger
Anne L. Frazer
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Entrust Corp
Original Assignee
Datacard Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Datacard Corp filed Critical Datacard Corp
Publication of EP1200943A1 publication Critical patent/EP1200943A1/de
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/22Payment schemes or models
    • G06Q20/229Hierarchy of users of accounts
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • G06Q20/3576Multiple memory zones on card
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • G16H10/65ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records stored on portable record carriers, e.g. on smartcards, RFID tags or CD
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H80/00ICT specially adapted for facilitating communication between medical practitioners or patients, e.g. for collaborative diagnosis, therapy or health monitoring
    • BPERFORMING OPERATIONS; TRANSPORTING
    • B42BOOKBINDING; ALBUMS; FILES; SPECIAL PRINTED MATTER
    • B42DBOOKS; BOOK COVERS; LOOSE LEAVES; PRINTED MATTER CHARACTERISED BY IDENTIFICATION OR SECURITY FEATURES; PRINTED MATTER OF SPECIAL FORMAT OR STYLE NOT OTHERWISE PROVIDED FOR; DEVICES FOR USE THEREWITH AND NOT OTHERWISE PROVIDED FOR; MOVABLE-STRIP WRITING OR READING APPARATUS
    • B42D25/00Information-bearing cards or sheet-like structures characterised by identification or security features; Manufacture thereof
    • B42D25/20Information-bearing cards or sheet-like structures characterised by identification or security features; Manufacture thereof characterised by a particular use or purpose
    • B42D25/28Information-bearing cards or sheet-like structures characterised by identification or security features; Manufacture thereof characterised by a particular use or purpose for use in medical treatment or therapy

Definitions

  • the present invention relates to a system and method for storing, managing, and retrieving healthcare information, more particularly, to a system and method for storing, managing, and retrieving healthcare information on a smart card.
  • Some existing healthcare record systems use a patient ID card to locate patient's medical or health information stored in a care provider's own database.
  • This type of ID card contains patient's general information, such as a patient's name, address, ID number, birthday, etc.
  • the ID card does not contain any medical or health information.
  • ID card is often proprietary, which is issued and used by the patient's primary care provider. Another care provider or paramedic/emergency team is not able to use the card to efficiently obtain the medical or health history of a patient.
  • this type of ID card may not be able to promptly record a current medical or health treatment provided by a healthcare provider other than a patient's primary care provider. Further, patients have to repeatedly register their general information every time they go to a different care provider. Furthermore, patients have to bring a different card every time when they go to see a different care provider.
  • an ID card in a patient's healthcare record system.
  • One main concern is patient's privacy if an ID card contains healthcare information. It is important to make sure that only certain authorized persons, such as a patient, a primary doctor, a pharmacist, a paramedic, etc., can access, update, or delete information in a patient's database. Also, it is important that the scope of authorization is defined such that only certain portions of a patient's database can be accessed, updated, or deleted by authorized persons. For example, a patient may only be authorized to read certain test data file or lab result file, or update certain patient's general information, such as a current address, etc. A pharmacist may only be authorized to access a prescription file of the patient's database.
  • Another concern related to a patient's healthcare record system is how to efficiently manage and maintain patient's healthcare information.
  • healthcare providers have created their own databases to store patient healthcare information. These databases are generally designed for a particular care provider. As a result, these databases are often different and do not interface with each other. Thus, it is difficult to store, manage, or maintain a patient's specific healthcare record system in a ubiquitous manner. Care providers often do not have prompt access to a patient's vital medical or health information. Also, care providers are not able to promptly update a current healthcare treatment on a patient into the system. As a result, another care provider may not be able to access the most current healthcare information about this patient.
  • a further concern related to a patient's healthcare record system is the easy access issue.
  • a patient often wants to access certain information, for example, the recent test report, etc.
  • the existing systems do not provide such easy access.
  • it is difficult for a patient or an authorized party to monitor a patient's health condition.
  • the present invention discloses a patient healthcare record system and method for storing, managing, and retrieving healthcare information on a smart card.
  • the present invention provides a method of storing, managing, and retrieving information in a record system via a smart card.
  • the method includes entering information at a first location, entering a smart card PIN at the first location, and issuing the smart card which stores at least a portion of the information and the smart card PIN.
  • the information and the smart card PIN are stored on a server of the record system.
  • the smart card stores a flat file which is accessed via a database interface.
  • the database interface converts the flat file stored on the smart card into a database file. Still in one embodiment, the method further includes accessing the information at the first location by reading the smart card via a smart card reader at the first location. After an update at the first location, the method further includes storing a record of the update on the server, and storing at least a portion of the record of the update on the smart card. Further in one embodiment, the method further includes accessing the information at a second location by reading the smart card via a smart card reader at the second location. After an update at the second location, the method further includes storing a record of the update on the server, and storing at least a portion of the record of the update on the smart card.
  • the present invention also provides a patient specific healthcare record system in an accessible, portable, and secure manner.
  • the system includes: a smart card having a processor, an operating system, and at least one file; a smart card reader operable to read/write the smart card; a computer coupled to the smart card reader, the computer having a processor, an operating system, a smart card application operable to convert the at least one file on the smart card to a smart card database file, and a system database file.
  • the smart card database file is a subset of the system database file.
  • the smart card database file may contain a security code to access the system database file.
  • the computer includes a lost card database file that is a subset of the system database file and is a copy of the smart card database file.
  • a patient specific healthcare record system includes: a smart card having a processor, an operating system, and at least one file; a smart card reader operable to read/write the smart card; a client computer coupled to the smart card reader, the client computer having a processor, an operating system; a server computer coupled to the client computer, the server computer having a processor, an operating system, a smart card application operable to convert the at least one file on the smart card to a smart card database file, and a system database file.
  • the smart card database file is a subset of the system database file and accessible via the client computer.
  • the smart card database file may contain a security code to access the system database file.
  • the server computer includes a lost card database file that is a subset of the system database file and is a copy of the smart card database file.
  • the client computer and the server computer are coupled in a network, such as a Local Area Network (LAN) or a Wide Area Network (WAN), etc.
  • LAN Local Area Network
  • WAN Wide Area Network
  • a patient specific healthcare record system includes: a smart card having a processor, an operating system, and at least one file; a smart card reader operable to read/write the smart card; a web browser device coupled to the smart card reader, the web browser device having a processor and an operating system and being operable to browse the Internet; an Internet web portal/server coupled to the web browser device, the Internet web portal/server having a processor, an operating system, a system database file, and a smart card application operable to convert the at least one file on the smart card to a smart card database file.
  • the smart card database file is a subset of the system database file and accessible via the web browser device.
  • the smart card database file may contain a security code to access the system database file.
  • the Internet web portal/server includes a lost card database file that is a subset of the system database file and is a copy of the subset of the system database file.
  • system further includes a second smart card having a processor, an operating system, and a key data file, the smart card application being operable to access a second subset of the system database file based on the key data file of the second smart card, the web browser device browsing the second subset of the system database file.
  • the system further includes an Internet ancillary service web portal/server having a processor, an operating system, and a data file, the Internet ancillary service web portal/server being communicable with the Internet web portal/server, and the web browser device browsing the data file of the Internet ancillary service web portal/server.
  • the data file stored on the smart card is a key data file.
  • the patient's actual medical records are not stored on the smart card, but are stored in a database on a server.
  • the key data file provides a key or security code to access the database on the server.
  • an authorized user having a smart card can access, update, and/or delete patient's healthcare records stored on the smart card.
  • the authorized users can be the patient's primary care provider, paramedic, pharmacist, the patient's care provider other than the primary care provider, patient, smart card issuer, system administrator, etc.
  • Such authorization can be implemented in one embodiment by granting access to such a user using another smart card and verifying a security code entered by the user. Once the system verifies the entered security code by reading the user's smart card, the user can access an authorized portion of the smart card database file. If the authorized users are patients themselves, the authorization can be implemented in one embodiment by entering the patients' PINs, etc.
  • the present invention provides ubiquitous access, at the point of care, to the patient's healthcare records stored on a smart card and/or the patient's healthcare records, if authorized, via a computer, a server computer in a network, or the Internet web portal/server on the Internet.
  • the care provider can promptly access and update the patient's healthcare records stored on his/her smart card and/or the patient's healthcare record, if authorized, stored on a computer, a LAN server, or the Internet web portal/server.
  • the record of such treatment is appended to the previously recorded medical records such that another care provider or institution can later review the updated records in a subsequent treatment.
  • the patient's healthcare records are generated and maintained from a patient's perspective rather than from a care provider or institution's perspective.
  • a smart card may be used as a security key, or an electronic purse to allow quick and efficient medical payments (e.g. co-pay).
  • the present invention may provide a method of tracking specific population segments that are high risk, high usage, and high cost of a certain medical or health treatment.
  • the population segments may be defined according to patient demographics and/or clinical histories. Examples of high-risk patients may include oncology, diabetes, asthma, or cardiology patients. Examples of high usage patients may include maternity patients during a pregnancy period. Examples of high cost patients may include a well child group, or children within the ages of 0-13 years.
  • the present invention may provide a care provider a user- friendly interface on a patient's vital medical or health information, as opposed to a longitudinal list of medical records. Using this information, the care provider is capable of making an adequate assessment of the patient's medical condition.
  • the database fields displayed at the user interface would not include the patient's complete healthcare records, but rather the vital medical information would be included therein. Most data entries in the database fields may be pre-defined and limited to specific categories.
  • FIG. 1 is a block diagram showing one embodiment of a patient healthcare record system in accordance with the principles of the present invention.
  • FIG. 2 is a block diagram showing a second embodiment of a patient healthcare record system in accordance with the principles of the present invention.
  • FIG. 3 is a block diagram showing a third embodiment of a patient healthcare record system in accordance with the principles of the present invention.
  • FIG. 4 is a block diagram showing a fourth embodiment of a patient healthcare record system in accordance with the principles of the present invention.
  • FIG. 5 is a flow chart diagram showing a method of storing patient's information and issuing a new patient's smart card in accordance with the principles of the present invention.
  • FIG. 6 is a flow chart diagram showing a method of accessing and updating a return patient's smart card by a care provider in accordance with the principles of the present invention.
  • FIG. 7 is a flow chart diagram showing a method of accessing and updating a referral patient's smart card by a care provider in accordance with the principles of the present invention.
  • FIG. 8 is a flow chart diagram showing a method of accessing and updating a patient's smart card by an authorized paramedic/emergency team in accordance with the principles of the present invention.
  • FIG. 9 is a flow chart diagram showing a method of accessing and updating a patient's smart card by the patient in accordance with the principles of the present invention.
  • FIG. 10 is a flow chart diagram showing a method of accessing a lost card database and issuing a new smart card in accordance with the principles of the present invention.
  • the present invention relates to a patient specific healthcare system and method for storing, managing, and retrieving healthcare information on a smart card.
  • the present invention discloses a patient healthcare record system and method of storing, managing, and retrieving healthcare information on a smart card.
  • the system allows healthcare providers to electronically capture, store and subsequently recall sufficient details concerning a patient's medical and health history to formulate a treatment plan.
  • the system in accordance with the principles of the present invention provides the tools for storing and maintaining the information on a smart card.
  • the smart card is generally controlled and carried by a patient. Given the disparate nature of healthcare delivery systems, the portability of information stored on the smart card can be used to improve the quality of care by making the healthcare information available at the point of care.
  • smart cards In addition to storing, managing, and retrieving patient's healthcare information, smart cards also represent a suitable technology for storing digital certificates which, when used with biometrics identification, can be used to authenticate a cardholder's identity. Once identified, the cardholder can then be granted access to extended privileges, such as access to areas on the Internet web portal server not accessible to the general public information.
  • the system in accordance with the present invention may provide at least the following applications:
  • Smart card technology in addition to storing, managing, and retrieving patients' healthcare information, for securing and limiting access by user classification to the patients' healthcare information.
  • An enterprise-ready smart card issuance and tracking system including a lost card database or smart card life-cycle management.
  • An institutional smart card/patient tracking system e.g. a local institutional database for tracking a patient healthcare record.
  • An Internet web portal server that extends the value of a smart card to a patient and a care provider by providing content that is tailored to the patient's specific healthcare background and interests.
  • Interfaces facilitating the exchange of patient information including lab and radiology reports.
  • FIG 1 there is generally illustrated by reference numeral 20, one embodiment of a patient healthcare system in accordance with the principles of the present invention.
  • the patient healthcare system 20 includes a smart card 22 having a CPU 24, an operating system (O/S) 26, and a plurality of flat files 28.
  • the flat files 28 are one patient's healthcare records.
  • the term, "flat files”, is used to refer to files that are not associated with each other in a database structure.
  • a smart card application for example a smart card application using a database interface, such as an Object Linking and Embedding Database (OLE DB) 30 which is described later in detail, is used to link the flat files 28 such that a user is able to view the records in a database format.
  • the smart card application 30 is stored and operated at a PC 32 shown in Figure 1, a server PC 34 shown in Figure 2, or an Internet web portal/server 36 shown in Figures 3 and 4.
  • the system 20 also includes a smart card reader 38 operable to read/write the smart card 22.
  • the smart card reader 38 provides smart card read/write capabilities and is known in the art to read and/or write the smart card 22.
  • the PC 32 operates the smart card reader 38 so that the files 28 on the smart card 22 are loaded into the PC or vice versa. It is appreciated that the smart card reader 38 can be assembled as a part of the PC 32.
  • the smart card reader 38 can be implemented as an I/O device of the PC 32, such as a keyboard, PCMIC port, etc.
  • the smart card reader 38 may also be implemented in a handheld CE type device.
  • the PC 32 includes a processor (not shown) which operates the smart card application 30.
  • a patient healthcare database 40 and a lost card database 42 are stored in the PC 32.
  • the patient healthcare database 40 is a patient healthcare database including all the patients registered in the system 20.
  • a specific patient's healthcare records are stored and updated in the patient healthcare database 40.
  • the database generated from the flat files 28 on a specific patient's smart card 22 is a subset of the patient's healthcare records stored in the patient healthcare database 40.
  • the records on the smart card 22 are stored and updated by an authorized class of users, such as a patient, a care provider, or a smart card database administrator. For example, a patient may be authorized to update a certain fields of the database, such as the patient's current address, insurance information, emergency contact person, etc.
  • a care provider may be authorized to update patient's healthcare records in a certain fields of the database once a new diagnosis or treatment is performed.
  • a smart card database administrator may be authorized to validate a user's access to the files 28 on the smart card 22 and/or the database 40,42 on the PC 32, PC server 34, or web portal/server 36.
  • the records in the lost card database 42 are a copy of the records in the flat files 28 stored on the smart card 22.
  • the lost card database 42 is also a subset of the patient's healthcare records stored in the patient healthcare database 40.
  • the lost card database 42 is used in issuing a new smart card if the smart card 22 is lost.
  • the most recent updated records in the lost card database 42 are stored on the new smart card.
  • only the smart card database administrator has the access to the lost card database.
  • the smart card database administrator may update the system to validate the new smart card.
  • the lost card database 42 is a separate database from the patient healthcare database 40. It is appreciated that the lost card database 42 can be implemented as a part of the patient healthcare database 40 within the scope of the present invention.
  • FIG 2 there is generally illustrated by reference numeral 44, a second embodiment of a patient healthcare system in accordance with the principles of the present invention. In Figure 2, same reference numerals are used for the corresponding parts of the system 20 in Figure 1 for the purpose of illustration.
  • the patient healthcare system 44 includes a client PC 46 coupled to the smart card reader 38 and the server PC 34.
  • the client PC 46 has a processor and an operating system (not shown).
  • the server PC 34 has a processor and an operating system and is in a network communication with a plurality of client PCs 46. Each of the client PCs 46 has the capability of coupling to a smart card reader.
  • the smart card application 30, the patient healthcare database 40, and the lost card database 42 are stored and operated on the server PC 34.
  • Each of the client PCs 46 is capable of operating the smart card application 30, accessing the patient healthcare database 40, and the lost card database 42 on the server PC 34 so that the system 44 is ubiquous to each of the client PCs 46 in the network.
  • the network can be a Local Area Network (LAN) or a Wide Area Network (WAN), etc., or a World Wide Web (WWW), etc.
  • LAN Local Area Network
  • WAN Wide Area Network
  • WWW World Wide Web
  • FIG 3 there is generally illustrated by reference numeral 48, a third embodiment of a patient healthcare system in accordance with the principles of the present invention.
  • the patient healthcare system 48 includes a smart card 50 having the CPU 24, the operating system (O/S) 26, and a key data file 52.
  • the key data file 52 may include an access code to allow a user to access a certain authorized portion of the patient healthcare database 40 or the lost card database 42.
  • the key data file 52 is read by the smart card application 30 and is operable to retrieve the authorized portion of the patient healthcare database 40.
  • the lost card database 42 includes a copy of the key data file 52 so that when a new smart card is issued to replace the lost smart card 50, the lost card database 42 is copied onto the new smart card.
  • the key data file 52 may be maintained by a separate key management system. In this case, when a new smart card is issued, a copy of the key data file which is maintained by a separate key management system is stored on the new smart card.
  • the system 48 also includes a web browser device 54, such as a PC or a handheld device, etc., having a processor and an operating system (not shown). The web browser device 54 is operable to browse the Internet and communicable with the Internet web portal/server 36.
  • the web browser device 54 is coupled to the smart card reader 38 to read/write the smart card 50.
  • the Internet web portal/server 36 can be implemented as a PC at an Internet service provider or a workstation, etc.
  • the Internet web portal/server 36 has a processor and an operating system (not shown) and is in communication with a plurality of web browser devices 54 coupled to the Internet.
  • the smart card application 30, the patient healthcare database 40, and the lost card database 42 are stored and operated on the Internet web portal/server 36.
  • Each of the web browser devices 54 is capable of accessing the smart card application 30, accessing the patient healthcare database 40, and the lost card database 42 on the Internet web portal/server 36 so that the system 48 is ubiquous to each of the web browser devices 54.
  • the Internet web portal/server 36 may be coupled to a plurality of Internet ancillary services 56 (only one is shown for illustration purposes). Each of the Internet ancillary services 56 is provided on an Internet web portal/server 58.
  • the Internet ancillary services 56 may include a web site or chat room for advising treatments to a specific disease, diet programs, or exercise programs.
  • a user of the smart card 50 may access the contents of the Internet ancillary services 56 via the web browser device 54.
  • an exemplary user profile of the system 48 is shown.
  • One group of the users of the system 48 is patients 60 who hold the smart cards 50.
  • Another group is patients' primary care providers 62 who provide primary medical/health care for the patients 60.
  • An additional group can be clinic/general physicians 64 who are care providers other than the patients' primary care providers.
  • Still another group can be pharmacists or other similar outpatient service providers 66 who supply patients' medications or other similar functions.
  • Yet another group can be emergency teams/paramedics 68 who provide emergent, first response medical care for the patients.
  • Further another group may be lost card administrators 70 who issue new smart cards to the patients who lost the smart cards.
  • Still another group may be smart card issuers 72 who initially issue smart cards to the patients.
  • the patient/smart cardholder 60 enters a security code, for example, a Personal Identification Number (PIN), a biometric identification, and/or a password, etc.
  • a security code for example, a Personal Identification Number (PIN), a biometric identification, and/or a password, etc.
  • the patient/smart cardholder 60 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that a patient is authorized to access may be defined in a database which stores the access rules of various users.
  • Database field definition technique is well known in the database art. Accordingly, a patient may be able to view certain information such as the lab test results, recent medical treatment, and ancillary services, etc. The patient may also be able to update the patient's general information as mentioned above. If the user of the system is the primary care provider 62, the primary care provider 62 inserts the patient's smart card 50 and a primary care provider's own smart card 72 in the smart card reader 38.
  • the primary care provider 62 Upon verification of the entered security code using a key data file 74 of the primary care provider's smart card 72 and the key data file 52 of the patient's smart card 50, the primary care provider 62 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that a primary care provider is authorized to access may be defined in a database which stores the access rules of various users.
  • the primary care provider 62 may be able to view patient's healthcare records and update current treatments, conditions, and/or prescriptions, etc. Since the system 48 is ubiquous, the primary care provider is also able to view the past treatments, conditions, and/or prescriptions made by the clinic/general physicians 64 in a prompt manner.
  • the clinic/general physician 64 may insert the patient's smart card 50 and the clinic/general physician's own smart card 76 in the smart card reader 38.
  • the clinic/general physician's 64 Upon verification of the entered security code using a key data file 78 of the clinic/general physician's smart card 76 and the key data file 52 of the patient's smart card 50, the clinic/general physician's 64 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the clinic/general physician is authorized to access may be defined in a database which stores the access rules of various users.
  • the clinic/general physician 64 may be able to view patient's healthcare records and update current treatments, conditions, and/or prescriptions, etc. Since the system 48 is ubiquous, the clinic/general physician 64 is also able to view the past treatments, conditions, and/or prescriptions made by the primary care provider or the other clinic/general physicians 64 in a prompt manner.
  • the pharmacist/outpatient service 66 inserts the patient's smart card 50 and the pharmacist/outpatient service's own smart card 80 in the smart card reader 38.
  • the pharmacist/outpatient service 66 Upon verification of the entered security code using a key data file 82 of the pharmacist/outpatient service's own smart card 80 and the key data file 52 of the patient's smart card 50, the pharmacist/outpatient service 66 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the pharmacist/outpatient service 66 is authorized to access may be defined in a database which stores the access rules of various users.
  • the pharmacist/outpatient service 66 may be able to view patient's prescription, insurance company, etc., and update the information of the prescribed medication. Since the system is ubiquous, the pharmacist/outpatient service 66 is able to view and update the above information in a prompt manner.
  • the paramedics/emergency team 68 inserts the patient's smart card 50 and the paramedics/emergency team own smart card 84 in the smart card reader 38.
  • the paramedics/emergency team 68 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the paramedics/emergency team 68 is authorized to access may be defined in a database which stores the access rules of various users.
  • the paramedics/emergency team 68 may be able to view patient's prescription and recent medical treatment and condition records, etc., and update their treatments, observed conditions, etc. Since the system 48 is ubiquous, the paramedics/emergency team 68 is able to view and update the above information in a prompt manner.
  • the lost card administrator 70 inserts the lost card administrator own smart card 88 in the smart card reader 38.
  • the lost card administrator 70 Upon verification of the entered security code using a key data file 90 of the lost card administrator own smart card 88, the lost card administrator 70 is able to access the lost card database 42 and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36, for example, the portion or field that validates the new smart card.
  • the portion or field that the lost card administrator 70 is authorized to access may be defined in a database which stores the access rules of various users.
  • the smart card initial issuer 72 inserts the smart card initial issuer's own smart card 92 in the smart card reader 38.
  • the smart card initial issuer 72 Upon verification of the entered security code using a key data file 94 of the smart card initial issuer's own smart card 92, the smart card initial issuer 72 is able to enter patient's registration information into the patient's healthcare database 40, define which user is authorized to access/read/write which portions or fields of the patient's healthcare database 40, the key data file 52, and the lost card database 42, define which portions or fields of the key data file 52 should be stored on the smart card 50, the patient healthcare database 40, and the lost card database 42, store the information on the smart card 50, and validate the smart card 50, etc.
  • FIG 4 there is generally illustrated by reference numeral 96, a fourth embodiment of a patient healthcare system in accordance with the principles of the present invention.
  • the patient healthcare system 96 in Figure 4 is an alternative embodiment of the patient healthcare system 48 in Figure 3 where the patient's smart card 50 has the flat files 28 instead of the key data file 52 as shown in Figure 3.
  • same reference numerals are used for the corresponding parts of the systems 20, 44, and 48 in Figures 1-3 for the purpose of illustration.
  • the patient healthcare system 96 includes a smart card 50 having the CPU 24, the operating system (O/S) 26, and flat files 28.
  • the flat files 28 are operable with the smart card application 30 using a database interface, such as an Object Linking and Embedding Database (OLE DB).
  • OEL DB Object Linking and Embedding Database
  • the flat files 28 are presented in a database format (referred to as a flat file database 28).
  • the web browser device 54 browses the flat file database 28.
  • the flat file database 28 may also include a field that authorizes the retrieval of a portion of the patient healthcare database 40.
  • the lost card database 42 stored on the Internet web portal/server 36 includes a copy of the flat file database 28 so that when a new smart card is issued to replace the lost smart card 50, the lost card database 42 belonged to the patient is copied onto the new smart card.
  • the user profile of the system 96 is similar to that is shown in Figure 3.
  • One group of the users of the system 96 is patients 60 who hold the smart cards 50.
  • Another group is patients' primary care providers 62 who provide primary medical/health care for the patients 60.
  • An additional group can be clinic/general physicians 64 who are care providers other than the patients' primary care providers.
  • Still another group can be pharmacists or other similar outpatient service providers 66 who supply patients' medications or other similar functions.
  • Yet another group can be emergency teams/paramedics 68 who provide emergent, first response medical care for the patients.
  • Further another group may be lost card administrators 70 who issue new smart cards to the patients who lost the smart cards.
  • Still another group may be smart card issuers 72 who initially issue smart cards to the patients.
  • the smart card issuers 72 can be the same people as the lost card administrators 70 without departing from the principles of the present invention.
  • the patient/smart cardholder 60 enters a security code, for example, a Personal Identification Number (PIN), a biometric identification, and/or a password, etc.
  • a security code for example, a Personal Identification Number (PIN), a biometric identification, and/or a password, etc.
  • the patient/smart cardholder 60 Upon verification of the entered security code, the patient/smart cardholder 60 is able to access an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that a patient is authorized to access may be defined in a database which stores the access rules of various users.
  • a patient may be able to view certain information, for example, the lab test results, recent medical treatment, and/or ancillary services 56, etc.
  • the patient may also be able to update the patient's general information, for example, the current address, etc.
  • the flat file database 28 is then updated.
  • the patient healthcare database 40 and/or the lost card database 42 are updated automatically.
  • a warning or notice may be presented to the user on the web browser device 54 to ask the user whether an update should be made in the patient healthcare database 40 immediately. The user enters yes or no. If the entry is yes, the update is made immediately, and the lost card database 42 is automatically updated immediately. If the entry is no, the update is put on hold until next time the smart card 50 is used. It is appreciated that the synchronization between the flat file database 28 stored on the smart card 50 and the patient healthcare database 40 stored on the Internet web portal/server 36 can be implemented in a variety of ways within the scope of the present invention.
  • the primary care provider 62 inserts the patient's smart card 50 and a primary care provider's own smart card 72 in the smart card reader 38.
  • the primary care provider 62 Upon verification of the entered security code using a key data file 74 of the primary care provider's smart card 72 and the flat file database 28 of the patient's smart card 50, the primary care provider 62 is able to access an authorized portion or field of the flat file database 28 and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that a primary care provider is authorized to access may be defined in a database which stores the access rules of various users.
  • the primary care provider 62 may be able to view patient's healthcare records and update current treatments, conditions, and/or prescriptions, etc. Since the system 96 is ubiquous, the primary care provider 62 is also able to view the past treatments, conditions, and/or prescriptions made by the clinic/general physician 64 in a prompt manner.
  • the clinic/general physician 64 may insert the patient's smart card 50 and the clinic/general physician's own smart card 76 in the smart card reader 38.
  • the clinic/general physician's 64 Upon verification of the entered security code using a key data file 78 of the clinic/general physician's smart card 76 and the flat file database 28 of the patient's smart card 50, the clinic/general physician's 64 is able to access an authorized portion or field of the flat file database 28 and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the clinic/general physician is authorized to access may be defined in a database which stores the access rules of various users.
  • the clinic/general physician 64 may be able to view patient's healthcare records and update current treatments, conditions, and/or prescriptions, etc.
  • the clinic/general physician 64 is also able to view the past treatments, conditions, and/or prescriptions made by the primary care provider 62 or the other clinic/general physician in a prompt manner. If the user of the system 96 is the pharmacist/outpatient service 66, the pharmacist/outpatient service 66 inserts the patient's smart card 50 and the pharmacist/outpatient service's own smart card 80 in the smart card reader 38.
  • the pharmacist/outpatient service 66 Upon verification of the entered security code using a key data file 82 of the pharmacist/outpatient service's own smart card 80 and the flat file database 28 of the patient's smart card 50, the pharmacist/outpatient service 66 is able to access an authorized portion or field of the flat file database 28 and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the pharmacist/outpatient service 66 is authorized to access may be defined in a database which stores the access rules of various users.
  • the pharmacist/outpatient service 66 may be able to view patient's prescription, insurance company, etc., and update the information of the prescribed medication. Since the system 96 is ubiquous, the pharmacist/outpatient service 66 is able to view and update the above information in a prompt manner.
  • the paramedics/emergency team 68 inserts the patient's smart card 50 and the paramedics/emergency team own smart card 84 in the smart card reader 38.
  • the paramedics/emergency team 68 is able to access an authorized portion or field of the flat file database 28 and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36.
  • the portion or field that the paramedics/emergency team 68 is authorized to access may be defined in a database which stores the access rules of various users.
  • the paramedics/emergency team 68 may be able to view patient's prescription and recent medical treatment and condition records, etc., and update their treatments, observed conditions, etc. Since the system 96 is ubiquous, the paramedics/emergency team 68 is able to view and update the above information in a prompt manner. If the user of the system 96 is the lost card administrator 70, the lost card administrator 70 inserts the lost card administrator own smart card 88 in the smart card reader 38.
  • the lost card administrator 70 Upon verification of the entered security code using a key data file 90 of the lost card administrator own smart card 88, the lost card administrator 70 is able to access the lost card database 42, an authorized portion or field of the flat file database 28, and an authorized portion or field of the patient healthcare records stored on the Internet web portal/server 36, for example, the portion or field that validates the new smart card.
  • the portion or field that the lost card administrator 70 is authorized to access may be defined in a database which stores the access rules of various users. If the user of the system 96 is the smart card initial issuer 72, the smart card initial issuer 72 inserts the smart card initial issuer's own smart card 92 in the smart card reader 38.
  • the smart card initial issuer 72 Upon verification of the entered security code using a key data file 94 of the smart card initial issuer's own smart card 92, the smart card initial issuer 72 is able to enter patient's registration information into the patient's healthcare database 40, define which user is authorized to access/read/write which portions or fields of the patient's healthcare database 40, flat file database 28, and the lost card database 42, define which portions or fields should be stored on the flat file database 28, the patient healthcare database 40, and/or the lost card database 42, store the information on the smart card, and validate the smart card, etc.
  • a care provider or smart card administrator uses his/her own smart card to gain access to the system and/or databases. It is appreciated that in alternative embodiments, instead of using his/her own smart card, a care provider or smart card administrator may access the system and/or databases via a variety of other methods, such as entering an authorized key code, or biometric identification, etc.
  • FIG. 5 shows a flow operation 98 of storing patient's information and issuing a new patient's smart card in accordance with the principles of the present invention.
  • the operation 98 starts with an operation 100 of entering patient's general information in a new smart card data file.
  • the entry can be done by a patient filling general information in a kiosk or a pre-printed paper form, and then by a care provider electronically scanning the general information into the new smart card data file or manually entering the general information into the new smart card data file.
  • a patient selects a smart card PIN in an operation 102.
  • the patient authorizes emergency or first response access in the new smart card data file in an operation 104.
  • the new smart card data file is sent to a new smart card issuer in an operation 108.
  • the new smart card issuer then issues a new smart card with a flat file database stored on the smart card in an operation 110.
  • the flat file database on the smart card contains at least a portion of patient's new smart card data file, and the new smart card data file is stored on a PC, a PC server, or an Internet web portal/server. It is appreciated that the sequence of the flow operation 98 does not need to be in an order shown in FIG. 5. For example, the operation 102 of selecting a smart card PIN can be performed after the operation 104 of authorizing emergency, first response access. It is also appreciated that the operation 106 may be omitted if no treatment is performed.
  • FIG. 6 shows a flow operation 112 of accessing and updating a return patient's smart card by a care provider in accordance with the principles of the present invention.
  • the operation 112 starts with an operation 114 of inserting a patient's smart card in a smart card reader at a care provider. Then, the flat file database stored on the patient's smart card is accessed in an operation 116. In another embodiment, the care provider may not be able to access the flat file database on the smart card unless authorized.
  • the smart card reader reads a care provider's smart card to obtain authorization to access the patient's database stored on the server in an operation 118. Once authorized in the operation 118, the patient's medical information stored on the server is accessed in an operation 120.
  • FIG. 7 illustrates a flow operation 126 of accessing and updating a referral patient's smart card by a care provider in accordance with the principles of the present invention.
  • the operation 126 starts with an operation 128 of inserting a patient's smart card in a smart card reader at a care provider.
  • the patient's database stored on the smart card is accessed in an operation 130.
  • the care provider may not be able to access the flat file database store on the smart card unless authorized.
  • the smart card reader reads a care provider's smart card to obtain authorization to access the patient's database stored on the server in an operation 132.
  • the patient's medical information stored on the server for example, the medical information entered previously by another care provider, is accessed in an operation 134.
  • the database stored on the server is updated in an operation 136, and the database stored on patient's smart card is updated in an operation 138. It is appreciated that the sequence of the flow operation 126 does not need to be in an order shown in FIG. 7.
  • the operation 138 of updating the database stored on patient's smart card can be performed before the operation 136 of updating the database stored on the server.
  • FIG. 8 shows a flow operation 140 of accessing and updating a patient's smart card by an authorized paramedic/emergency team in accordance with the principles of the present invention.
  • the operation 140 starts with an operation 142 of inserting emergency provider's smart card and patient's smart card to obtain authorization to access the patient's database stored on the smart card. If authorized, the patient's database stored on the smart card is accessed in an operation 144, and the patient's database stored on the server is accessed in an operation 146. After the emergency provider provides a new treatment, the database stored on the server is updated in an operation 148, and the database stored on patient's smart card is updated in an operation 150. It is appreciated that the sequence of the flow operation 140 does not need to be in an order shown in FIG. 8. For example, the operation 150 of updating the database stored on patient's smart card can be performed before the operation 148 of updating the database stored on the server.
  • FIG. 9 illustrates a flow operation 152 of accessing and updating a patient's smart card by the patient in accordance with the principles of the present invention.
  • the operation 152 starts with an operation 154 of inserting a patient's smart card to obtain authorization to access the database stored on the smart card. Then, the patient accesses the authorized portion of the database stored on the smart card in an operation 156. Next, the patient updates the flat file database in the authorized portion of the database stored on the smart card in an operation
  • the database stored on the server is updated by the smart card application stored on the server in an operation 160. It is appreciated that the sequence of the flow operation 152 does not need to be in an order shown in FIG. 9.
  • FIG. 10 shows a flow operation 162 of accessing a lost card database and issuing a new smart card in accordance with the principles of the present invention.
  • the operation 162 starts with an operation 164 of entering an administrator's identification to obtain authorization to a lost card database stored on a server.
  • the administrator may enter a security code or insert an administrator smart card to obtain authorization. If authorized, the administrator enters patient's general information to search lost card database information of the patient stored on the server in an operation 166.
  • the administrator accesses the patient's lost card database stored on the server in an operation 168.
  • the administrator issues a new smart card with a flat file database stored on the smart card being the same as the lost card database in an operation 170. It is appreciated that the sequence of the flow operation 162 does not need to be in an order shown in FIG. 10.
  • a smart card of the patient's healthcare system provides the implementation of one embodiment of: (I) a smart card of the patient's healthcare system; and (II) a smart card application using a database interface, such as an Object Linking and Embedding Database (OLE DB), of the patient's healthcare system in accordance with the principles of the present invention.
  • OLE DB Object Linking and Embedding Database
  • the patient's healthcare system is a combination of physical components, such as a smart card and a smart card software application.
  • the physical components may also include a PC-based workstation and the associated smart card reader.
  • the smart card application may include a complete turnkey user interface package that provides the user all of the functionality required to capture data and store the data to both a database and a smart card.
  • ISO/IEC 7816-1 1987
  • Identification cards - Integrated circuit(s) cards with contacts - Part 1 Physical characteristics
  • the system may include a biometrics capture device, such as an eye scan or a finger print identification device.
  • a flat file database is stored on the smart card.
  • the flat file database may include a plurality of database fields.
  • the database fields may include the following pre-defined properties:
  • Name with a name including 1-32 alphanumeric and underscore characters.
  • Each table includes at least one index field.
  • An index is a specially defined database field by which the database stores records. Because databases store their records according to the indexed field's value, searching on indexed fields is much faster than on non-indexed fields.
  • Unique off for all fields but the unique identifier. At least one index field is set to contain a unique value for each record.
  • the flat file database may also include a security code field. As an example, the security code field may be selected from the following sections:
  • Patient's ID number 1-16 alphanumeric string. This is a unique identifier for each patient in the database.
  • Patient's social security number zero length or 9-digit string with an input mask.
  • Last name 1-20 character text string. This is a patient's last name.
  • First name 1-20 character text string. This is a patient's first name.
  • Middle name 0-20 character text string. This is a patient's middle initial or name.
  • Suffix 0-16 character text string. This is a patient's post-title (e.g. Jr., Sr., II, III, IV, PhD, DDS).
  • the flat file database may also include a personal contact field, an employment information field, an emergency contact field, an insurance information field, a guarantor information field, a patient's preference field (e.g. a preferred primary care physician information, a preferred hospital, a preferred pharmacy, living will information, organ donor information, or other demographic information), and a medical history field (such as allergies information, diabetes information, e.g. date of diagnosis, etc., past surgery information, e.g. the surgeon's name, etc., medication information, e.g. the refill frequency, etc., radiology and lab test information, child and/or adult immunization information, maternity information if applicable, pregnancy information if applicable, past medical problems, e.g. seizure, etc.), etc.
  • a personal contact field e.g. a preferred primary care physician information, a preferred hospital, a preferred pharmacy, living will information, organ donor information, or other demographic information
  • a medical history field such as allergies information, diabetes information, e.g. date of
  • a system administrator or database administrator may specify directories and sub-directories into which various data files and defaults can be stored and defined.
  • the data files may include a user path name, an audit log path name, and a database path name.
  • a smart card application using a database interface such as an Object Linking and Embedding Database (OLE DB), of the patient's healthcare system.
  • OLE DB Object Linking and Embedding Database
  • the patient healthcare system may be distributed with three DLLs (Dynamic Link Library): DSCOleDB.DLL, SCDBLib.DLL, and CommonDLL.DLL, that provide an OLE DB interface to a smart card to allow the system to use a smart card in the same way that it would use another database to store information.
  • DLLs Dynamic Link Library
  • SCDBLib.DLL SCDBLib.DLL
  • CommonDLL.DLL CommonDLL.DLL
  • the smart card application is used for communication with a smart card.
  • the smart card application may use a database interface, such as an Object Linking and Embedding Database (OLE DB), and is designed to allow database operations to be performed on a variety of data sources or flat files even if these data sources or flat files are not actually a database in a traditional sense.
  • OLE DB Object Linking and Embedding Database
  • an application may communicate with a spreadsheet through the OLE DB provided that a spreadsheet vendor supplies a proper interface layer. Because the OLE DB architecture provides this type of flexibility, the OLE DB is used to store data on a smart card. With this design, the system is able to use a smart card for data storage in much the same way that it uses an Access database.
  • the smart card OLE DB will return rowsets that can then be displayed and modified. Since the smart card application using an OLE DB is independent of the system core design, changes to the smart card application using an OLE DB do not require the system core design to be changed. For example, changing the type of smart card reader used and/or changing the type of smart cards used do not require changes in the source code of the smart card application using an OLE DB. Secondly, the smart card application using an OLE DB provides more independence to the system. Also, the smart card application using an OLE DB provides greater flexibility so as to minimize code changes in the smart card application.
  • the smart card application using an OLE DB includes several layers that perform different functions.
  • the system can communicate with a top layer using, for example, Microsoft's OLE DB COM interfaces.
  • no layer beneath this one is accessed directly by other applications, and each layer only interacts with the layers above and below.
  • One exception to this is the CommonDLL.
  • the CommonDLL includes some functionality that is used by all of the other layers or components. Although these layers are largely independent of each other in terms of the functionality that they provide, there are some notable parallels between the different layers.
  • the interface that the OLE DB uses to communicate with a DSM (Data Store Manager) layer is similar to a layer that the DSM uses to communicate with an IOS (Input/Output Security) layer.
  • a Standard Template Library (STL) is used throughout the layers and components.
  • the DSCOleDB of the OLE DB is to implement a set of OLE DB interfaces to allow database operations to be performed by an application. This may be the only layer that is generally accessible to an outside application.
  • the application using an OLE DB performs several functions. Primarily, it is responsible for receiving and parsing commands.
  • the commands include a small number of simple, proprietary or customized commands that perform database operations. For example, the five basic commands in a database, i.e., "select,” “update,” “insert,” “delete” and “flush,” are supported. Each of these commands, with the exception of the flush command, may be performed on a single table.
  • DSM Data Store Manager
  • DSM Data Store Manager
  • objects represent data stores and tables on the smart card and are stored in memory until a "flush” operation is performed.
  • a "flush” operation is performed.
  • an "update” operation followed by a "flush” operation will change the appropriate information in the tables on the smart card.
  • the SCDBLib of the OLE DB includes the functionality and classes that are used by the OLE DB.
  • the interface to the SCDBLib is not a COM interface. Instead, the classes and functions that are used by the OLE DB are exported from the DLL.
  • Three distinct layers may exist within the SCDBLib, each of which provides a different type of functionality . These layers are described below:
  • DSM Data Store Manager
  • the DSM layer has three main purposes. First, this layer provides the decision-making logic that is used to determine what should and should not be stored on a smart card, as well as the format for the information that is stored on the smart card. For example, some fields provide information that is useful, but not critical. Since the amount of space available on the smart card is quite small compared to the amount of space that is available in the database, some fields that are stored in the database may not be stored on the smart card. In these cases, the DSM layer will not store the information on the card. In other cases, a field may be stored in the database in a manner that is straightforward, but inefficient. In such cases, the DSM layer may store the information in a format that is less straightforward, but takes up less room on the smart card. To the layers above the DSM layer, these format translations are transparent.
  • the second purpose of the DSM layer is to translate table names as they are requested by the application into table numbers that are used by the IOS layer below it, as well as dividing fields of tables into records. Since the IOS layer handles tables as raw sequences of data while the application handles data according to table names and field names, the DSM layer provides a bridge between these two different ways of representing the data.
  • the third purpose of the DSM layer is to provide versioning support. Since a single smart card can be carried between different medical facilities that may have different versions of the system, the DSM layer is able to translate between older and newer versions of the system. In other words, the DSM layer should be able to recognize information on the smart card that has been stored by an older version of the application and to return that information to the application in the format that the application expects. This should again be transparent to the layers above the DSM.
  • the DSM layer includes the classes that are exported from the DLL to be used by the OLE DB.
  • the three primary exported classes are the ReaderConnection class, the DataStoreConnection class, and the TableConnection class. These three classes provide an abstraction of the database operations that are performed by the application.
  • IOS Input/Output/Security
  • the primary purpose of the IOS layer is to manage the directories that are stored on a smart card.
  • the DSM layer requests information using the database abstractions data stores and tables. Since the card itself uses file system abstractions instead of database abstractions, this layer is responsible for bridging those two abstractions.
  • the IOS layer accepts table data in the form of tables composed of uniform-sized records. Each record may include a sequence of raw bytes and the IOS layer does not interpret this data in any way. Each record may be indexed by an unsigned integer.
  • the directory and file abstractions allow for different smart cards to be used transparently with minimal changes to existing code.
  • the WindowsTM implementation of PC/SC uses a C-style API (Application Programming Interface) that provides support for the functionality described in a PC/SC standard.
  • C-style API Application Programming Interface
  • C++ wrapper classes were written. The organization of these classes and their relationship to each other is based upon the PC/SC standard. The classes will translate error values that are returned by the API into exceptions.
  • the PC/SC layer is largely independent of the layers above it.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • Medical Informatics (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Theoretical Computer Science (AREA)
  • Epidemiology (AREA)
  • General Health & Medical Sciences (AREA)
  • Primary Health Care (AREA)
  • Public Health (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Biomedical Technology (AREA)
  • Pathology (AREA)
  • Medical Treatment And Welfare Office Work (AREA)
EP00952164A 1999-07-19 2000-07-19 System und verfahren zum speichern, verwalten und zurückfinden von gesundheitsinformationen auf einer chipkarte Withdrawn EP1200943A1 (de)

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
US14450399P 1999-07-19 1999-07-19
US144503P 1999-07-19
US61869100A 2000-07-18 2000-07-18
US618691 2000-07-18
PCT/US2000/019706 WO2001006468A1 (en) 1999-07-19 2000-07-19 System and method for storing, managing, and retrieving healthcare information on a smart card

Publications (1)

Publication Number Publication Date
EP1200943A1 true EP1200943A1 (de) 2002-05-02

Family

ID=26842059

Family Applications (1)

Application Number Title Priority Date Filing Date
EP00952164A Withdrawn EP1200943A1 (de) 1999-07-19 2000-07-19 System und verfahren zum speichern, verwalten und zurückfinden von gesundheitsinformationen auf einer chipkarte

Country Status (3)

Country Link
EP (1) EP1200943A1 (de)
AU (1) AU6491300A (de)
WO (1) WO2001006468A1 (de)

Families Citing this family (42)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6602469B1 (en) 1998-11-09 2003-08-05 Lifestream Technologies, Inc. Health monitoring and diagnostic device and network-based health assessment and medical records maintenance system
US6802007B1 (en) * 2000-04-24 2004-10-05 International Business Machines Corporation Privacy and security for smartcards in a method, system and program
DE10056886C2 (de) * 2000-11-16 2003-07-10 Christian Edlhuber Informationsvermittlungsvorrichtung mit Datenträgerkarte und Trägerkörper im Kreditkartenformat
WO2002069236A2 (en) * 2001-02-22 2002-09-06 Lifestream Technologies, Inc. Mobile data management system
WO2002093508A1 (en) * 2001-05-16 2002-11-21 Georges Chiche Portable personal medical file system
US7119659B2 (en) * 2001-07-10 2006-10-10 American Express Travel Related Services Company, Inc. Systems and methods for providing a RF transaction device for use in a private label transaction
CA2462981A1 (en) * 2001-10-11 2003-04-24 Symbasis Gmbh Data processing system for patient data
US10173008B2 (en) 2002-01-29 2019-01-08 Baxter International Inc. System and method for communicating with a dialysis machine through a network
US8775196B2 (en) 2002-01-29 2014-07-08 Baxter International Inc. System and method for notification and escalation of medical data
FR2837298B1 (fr) * 2002-03-14 2004-08-13 Jean Charles Aubert Procede de gestion d'informations stockees sur une carte a puce lisible par un telephone mobile
US8234128B2 (en) 2002-04-30 2012-07-31 Baxter International, Inc. System and method for verifying medical device operational parameters
US7490085B2 (en) 2002-12-18 2009-02-10 Ge Medical Systems Global Technology Company, Llc Computer-assisted data processing system and method incorporating automated learning
US20040122704A1 (en) * 2002-12-18 2004-06-24 Sabol John M. Integrated medical knowledge base interface system and method
AU2003202332A1 (en) * 2003-01-15 2004-08-10 The Statum Group Inc. Method and system for creating a conveniently accessible medical history
FR2869435B1 (fr) * 2004-04-23 2006-08-04 Gred Sa Systeme de generation automatique d'un message d'informations medicales
DE102004051296B3 (de) * 2004-10-20 2006-05-11 Compugroup Health Services Gmbh Computersystem und Verfahren zur Speicherung von Daten
US20060106646A1 (en) * 2004-11-18 2006-05-18 Eastman Kodak Company Medical kiosk with multiple input sources
ITRM20040627A1 (it) * 2004-12-22 2005-03-22 Sergio Licheri Sistema per la gestione di dati sanitari, e relativo supporto portatile di memoria, preferibilmente una carta elettronica o chip card, utilizzato dal sistema.
WO2007053885A1 (en) * 2005-11-08 2007-05-18 Yak Biotech Solutions Pty Ltd Method and apparatus for handling personal information
US20080010094A1 (en) * 2006-06-21 2008-01-10 Mark Carlson Distribution of health information for providing health related services
US20080071577A1 (en) * 2006-09-14 2008-03-20 Highley Robert D Dual-access security system for medical records
DE102007018403B4 (de) 2007-04-17 2009-06-25 Vita-X Ag Computersystem und Verfahren zur Speicherung von Daten
US10089443B2 (en) 2012-05-15 2018-10-02 Baxter International Inc. Home medical device systems and methods for therapy prescription and tracking, servicing and inventory
DE102008040416A1 (de) * 2008-07-15 2010-01-21 Bundesdruckerei Gmbh Verfahren zum Lesen von Attributen aus einem ID-Token
US8554579B2 (en) 2008-10-13 2013-10-08 Fht, Inc. Management, reporting and benchmarking of medication preparation
WO2010125561A2 (en) * 2009-04-27 2010-11-04 Yaniv Granat Mpic (medical pharmaceutical identification card) - (healthcardinternational)
US8939356B2 (en) 2009-06-08 2015-01-27 Visa International Service Association Portable prescription payment device management platform apparautses, methods and systems
US10614458B2 (en) 2009-08-14 2020-04-07 Visa U.S.A. Inc. Influenza vaccine administration payment device processing
WO2012079069A2 (en) * 2010-12-10 2012-06-14 Gail Bronwyn Lese Electronic health record web-based platform
US9589266B2 (en) 2011-04-01 2017-03-07 Visa International Service Association Restricted-use account payment administration apparatuses, methods and systems
US9760871B1 (en) 2011-04-01 2017-09-12 Visa International Service Association Event-triggered business-to-business electronic payment processing apparatuses, methods and systems
FR2995431A1 (fr) * 2012-09-10 2014-03-14 Patrick Coudert Procede d'acces et de partage d'un dossier medical
KR101623326B1 (ko) 2012-10-26 2016-05-20 백스터 코포레이션 잉글우드 의료 투여분 조제 시스템을 위한 개선된 작업 스테이션
EP3779876A1 (de) 2012-10-26 2021-02-17 Baxter Corporation Englewood Verbesserte bilderfassung für system zur zubereitung einer medizinischen dosis
FR2999757A1 (fr) * 2012-12-13 2014-06-20 Patrick Coudert Procede d'acces securise a des donnees medicales confidentielles, et support de stockage pour ledit procede
EP2919175A1 (de) * 2014-03-10 2015-09-16 Avionord S.r.l. Verfahren und vorrichtung für das automatisierte management von klinischen patientendaten in notsituationen
AU2015284368A1 (en) 2014-06-30 2017-01-12 Baxter Corporation Englewood Managed medical information exchange
SG11201701007UA (en) * 2014-07-10 2017-03-30 Robert Higgs Universal access smart card for personal health records system
US11107574B2 (en) 2014-09-30 2021-08-31 Baxter Corporation Englewood Management of medication preparation with formulary management
US11575673B2 (en) 2014-09-30 2023-02-07 Baxter Corporation Englewood Central user management in a distributed healthcare information management system
SG11201704359VA (en) 2014-12-05 2017-06-29 Baxter Corp Englewood Dose preparation data analytics
EP3800610A1 (de) 2015-03-03 2021-04-07 Baxter Corporation Englewood Pharmaziearbeitsflussverwaltung mit integrierten alarmen

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1999022330A1 (en) * 1997-10-29 1999-05-06 Janice Johnson Method and system for consolidating and distributing information

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5291399A (en) * 1990-07-27 1994-03-01 Executone Information Systems, Inc. Method and apparatus for accessing a portable personal database as for a hospital environment
US6725200B1 (en) * 1994-09-13 2004-04-20 Irmgard Rost Personal data archive system
WO1997004712A1 (de) * 1995-07-26 1997-02-13 Mc Medical Card Systems Gmbh System zur personenbezogenen übertragung und speicherung medizinisch-klinischer daten und eine ic-karte für ein derartiges system
CA2182755A1 (en) * 1995-08-22 1997-02-23 Donald Loughlin Global emergency medical information communication system and method for delivering medical information via credit card transaction terminals located in emergency rooms, emergency vehicles, and other remote locations around the world
WO1997022092A2 (en) * 1995-12-14 1997-06-19 Venda Security Corporation Secure personal information card and method of using the same
DE19629856A1 (de) * 1996-07-24 1998-01-29 Ibm Verfahren und System zum sicheren Übertragen und Speichern von schützbaren Informationen

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1999022330A1 (en) * 1997-10-29 1999-05-06 Janice Johnson Method and system for consolidating and distributing information

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO0106468A1 *

Also Published As

Publication number Publication date
WO2001006468A1 (en) 2001-01-25
AU6491300A (en) 2001-02-05

Similar Documents

Publication Publication Date Title
WO2001006468A1 (en) System and method for storing, managing, and retrieving healthcare information on a smart card
USRE46866E1 (en) System for maintaining patient medical records for participating patients
US6988075B1 (en) Patient-controlled medical information system and method
US5995965A (en) System and method for remotely accessing user data records
US8612260B2 (en) System for communication of health care data
US6725200B1 (en) Personal data archive system
US7668734B2 (en) Internet medical information system (IMED)
US20050216313A1 (en) Method, device, and systems to facilitate identity management and bidirectional data flow within a patient electronic record keeping system
US20130218599A1 (en) Dual-access security system for medical records
US20090112627A1 (en) Method and System for Creating, Assembling, Managing, Utilizing, and Securely Storing Portable Personal Medical Records
US20090138281A1 (en) Patient-controlled medical information system and method
US20020188473A1 (en) Method and system for healthcare management
AU2002310349A1 (en) Method and system for healthcare management
JP2002318820A (ja) 医療情報提供システム
JP2002203045A (ja) 医療データ管理システムおよび医療データ管理装置
EP1077415A1 (de) Verfahren und Methode zum Zugriff auf räumlich entfernte Daten
KR20010089056A (ko) 디지털 전자카드를 이용한 의료정보 시스템
De la Rosa Algarín et al. Securing XML with role-based access control: Case study in health care
US20110231206A1 (en) Method which creates a community-wide health information infrastructure
KR100538583B1 (ko) 온라인 상에서의 간호사용 의료정보 관리 방법
KR100380341B1 (ko) 통합카드를 이용한 의료시스템
US7155422B2 (en) Medical information system, method and article of manufacture
Mourtou The development of data and information elements for a minimally functional electronic medical record environment in Greek public hospitals
Palantei et al. Transactions of Real-Time Medical Services Using Smart Card to Support the Role of Smart Campus
Engelbrecht et al. Telemedicine and diabetes

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20020215

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE

AX Request for extension of the european patent

Free format text: AL;LT;LV;MK;RO;SI

RIN1 Information on inventor provided before grant (corrected)

Inventor name: HENKEL, SCOTT

Inventor name: WARTHEN, MICHAEL

Inventor name: NELSON, DAVID

Inventor name: MILLER, CHARLOTTE, M.

Inventor name: BERGSTROM, ANDREW, W.

Inventor name: SHARMA, RAVI

Inventor name: MILLER, SCOTT, D.

Inventor name: ERICKSON, HANS

17Q First examination report despatched

Effective date: 20030630

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20050629