FR2894697A1 - Information e.g. medical analysis result, transferring method for e.g. public health agency, involves storing extracted information part in database of server, and transferring stored information to web server - Google Patents

Abstract

The method involves creating an electronic print file on a server (1), which is readable in a machine language and representative of an initial document. The file is sent to a printer (11) connected to the server for printing the document. The file from the server is received on a server (2), and a part of information is extracted from the file and transformed into a format readable in a human language. The extracted information part is stored in a database (22) of the server (2), and the stored information is transferred to a web server (3). An independent claim is also included for an information transferring system.

Description

The present invention relates generally to the field of

  communication, including authentication and electronic communication of medical test results.

  The object of the present invention is to make available to the public concerned (patient, doctor, etc.), by electronic means preferably secure, particular information such as for example medical analysis results. More specifically, the present application relates to a method for providing information, comprising the steps of: - Creating, on a first server, an electronic print file, readable in a machine language, representative of a document initial, and - Send this electronic file to computer resources connected to the first server.

  It is known from the state of the art prior to application FR 2 871 267 filed by the Applicant.

  The solution proposed in this prior art consists in providing a patient with medical analysis results concerning him via a dedicated PLC terminal for this purpose. The controller terminal comprises printing means and means for reading a smart card, in particular dedicated to the reading of a Vitale card (registered trademark).

  The problem associated with such a solution is that it requires a specific PLC terminal, including a particular maintenance.

  The object of the present invention is to remedy these drawbacks by proposing a solution aimed at getting out of this specificity while maintaining a strong authentication method.

  For this purpose, the present invention, furthermore in accordance with the preamble cited at the beginning of the description, is essentially characterized in that the method further comprises the steps of: - Receiving the electronic file on computer means such as a second server, - Extract from the electronic file at least part of the information and transform them into a human-readable format, - Save in a database at least a part of the extracted information, and Make available on a Web server at least some of the information extracted. In the preferred embodiment, the electronic file includes data between escape codes, the data between two successive escape codes being representative of an alpha-numeric character, the transformation step being performed by creating a correspondence table between the characters and their respective ASCII code, the correspondence table being stored in a memory of the second server.

  Advantageously, the method further comprises a step of creating an electronic duplicate of the initial document and an electronic signature step of said duplicate, giving it an original value, the signature step being performed by associated electronic signature means preferably to a client computer connected to the web server.

  In one embodiment, the electronic signature step is performed remotely by online communication means with or without a wire, said online communication preferably being secured.

  Thanks to this configuration, a biologist / manager can realize his signatures remotely without physical presence constraints in a particular location. In one embodiment, the method according to the invention further comprises an optional automatic encryption step of the duplicate. Thus, the possession of the public key of a patient makes it possible to increase the level of security of the communication between the laboratory and the patient.

  Preferably, the method according to the invention further comprises a verification step of the electronic signature, said verification being carried out by an authorized person, using wired or wireless line communication means, said communication online being preferably secure.

  In the preferred embodiment, verification of the electronic signature is performed automatically after each signature reception on the server 3 by the latter.

  To limit the interdependence and thus improve the reliability and security, the sending of the electronic file to the second server is performed by means of one-way communication.

  In one embodiment, the electronic file is formatted in a print language (PCL).

  In the preferred embodiment, the method according to the invention further comprises a step of transmitting to the authorized recipient (s), availability information of the results and / or remote connection information. .

  The invention also relates to the system for implementing the method according to the invention.

  In this case, the system comprises: a first server configured at least for storing a first set of information; a second server configured to receive from the first server a set of information in the form of an electronic file, and comprising means; processing information received from the first server, and - a web server configured to upload at least a portion of the information contained by the second server. Other features and advantages of the present invention will appear more clearly on reading the following description given by way of illustrative and nonlimiting example and with reference to the attached figure showing an embodiment of the system according to the invention.

  The present invention advantageously relates to the medical field. In particular, it is implemented for the provision of medical analysis results. Also for the sake of clarity of the present description, only this mode of implementation will be described below.

  In a classic and schematic way, a patient is prescribed by his doctor treating medical tests. The patient must then go to a specialized laboratory, do the examinations in question and wait for the results.

  When these are available, most of the time, the patient is obliged to return to the laboratory to retrieve his results to bring them to his doctor, which is not practical. The solution developed in the cited prior art has the disadvantage of requiring the patient to return to the analysis laboratory in order to obtain the examination results. The present invention aims to escape this constraint while maintaining a security / confidentiality aspect inherent in the medical field.

  10 Indeed, it is necessary that the analysis results are safe (non-modifiable), nominative (associated with the right patient), and confidential (not accessible to unauthorized persons).

  For this purpose, with reference to the single figure, most medical analyzes are performed by automata (not shown) controlled by at least one software implanted on a particular first server 1. For the security reasons set forth above, the first server 1 and the associated software (s) are not accessible from the outside.

  The conventionally generated analysis results constitute a first set of information that is stored on the first server 1. This data is then processed for printing as a final document on a printer 11 connected to the server. The conventional treatment consists in associating the results, in particular with the coordinates of the corresponding patient, and preferably in addition with the coordinates of the doctor prescribing the analyzes. These data are formatted according to an initial form, template, form letter, etc.

  The first server typically includes a database containing at least the information such as identification (name, first name) coordinates (geographical address, mobile phone, email), date of birth, etc. patients, and optionally the coordinates of the doctors.

  The recording and storage of this information is done at any time, and the association between this individual information and the test results is an initial document.

  The initial document is then generally printed by printing means connected to the first server (printer 11). This final document may include all or part of the information (analysis results) depending on the recipient (doctor, patient ...). For example, it is not necessary to always print all the personal data relating to a patient.

  The solution according to the invention is to put on line on a particular server 3, such as a web server, at least a part of this information, so that at least a portion of these are accessible by a telecommunications network , internal to the laboratory or external such as the Internet. This (these) same network (s) may also be preferably used by the biologist for electronic signature purposes, as described later.

  Thanks to the solution of the invention, an authorized person, that is to say mainly the patient and / or his / her attending physician, can access at least a part of the results, and optionally to other information from a post remote such as for example a mobile phone 100 provided with WAP functionalities, a fixed or portable computer 200 provided with appropriate network means, a personal assistant (PDA) 300, or any other suitable means of communication, the solution of the invention being able to be implemented for wired or wireless communications, and whatever the standard or communication protocol used (Wi-Fi, Wimax, TCP / IP, FTP, etc.). These same means can also be used for electronic signature purposes.

  The security of the data contained in a memory 12 of the server 1 is ensured by the fact that this server communicates with other computing devices (servers, printers) by one-way means, for example by communication ports configured for this purpose . Preferably, the communication itself is one-way, the first server transmitting to the other computing devices only electronic files encoded in print language.

  The communication between the first server 1 and the printer 11 is done in a conventional manner, by sending an electronic file. This file can be encoded in different formats.

  In a first type of coding, the electronic file contains information in the clear, that is to say, directly exploitable, comprehensible in human language. Examples are PostScript (PS) type files, or PCL type files in which characters are transmitted according to their ASCII code.

  In a second type of PCL encoding, the language is always made up of binary sequences but the character is no longer defined by its ASCII code but by a bitmap bitmap. Which means that we lose the link between the graphics of a character and what it corresponds to.

  The structure of such a file is such that the so-called bitmap encoding includes tracing commands for the printer, and escape codes that allow to associate with an alpha-numeric character intrinsic characteristics such as size, font , position, etc.

  An embodiment of the invention particularly concerns this type of electronic files.

  The operation performed then consists of (re) associating the graphic of a character with its ASCII code.

  For this purpose, the system according to the present invention comprises a second server 2, preferably declared as a printer with the first server 1. This declaration guarantees a one-way transfer of data from the electronic file between the first server 1 and the second server 2 .

  Preferably, the second server 2 is provided with input and display means 21, integrated or not, for example a screen and a keyboard or a computer.

  According to the invention, the initial document can be printed in a conventional manner by the printing means 11 by means of an electronic file. This electronic file is sent to the second server 2. Upon receipt of this electronic file, upstream of the routine implementation of the method according to the invention, the method comprises a first, initial, learning phase.

  This learning phase consists of displaying on the screen the graphical representation of the characters to be printed received by the electronic file. Thus, visually, an operator can reassociate a character with his graphics, thus restoring correspondence with his ASCII code.

  Preferably, the correspondence table thus created is stored in a memory of the second server 2, for example in a database 22.

  With this step of graphic recognition, the printable data transmitted by the first server 1 in non-exploitable form become humanly readable while maintaining the security of the first server 1. Once this learning phase has been completed, consisting mainly of reassigning to all the graphics used for the initial documents of a given analysis laboratory, their corresponding ASCII code, the recognition of the characters is carried out with a guarantee of 100%, since the initial document models are frozen.

  In the case where the print language is directly readable in human language, this learning phase is not necessary.

  However, the data thus extracted are at this stage only a sum of alpha-numeric characters. Preferably, the invention further comprises a step of reassociating at least a portion of these data so as to reform fields, ie, relevant information such as words, numbers, names. For this purpose, two means are described below, and allow to edit the information in an output form.

  In a first variant, the initial document 25 is considered as a plane comprising orthogonal axes for assigning x and y coordinates in this plane to the edited information. Relevant information is identified by the coordinates of its first character. In a second variant, the method according to the invention comprises a step of searching in the starting document for a regular expression. Regular expression means a string of characters common to each initial document, for example Tel. for the patient's phone number. Preferably, this chain is always present in the same place of the starting document. However, the method can also be implemented when this regular expression is located at different locations.

  With this configuration, the solution is even more reliable than a conventional OCR system and has a 100% success rate.

  The data extracted from the electronic file is stored in a database 22 of the second server. The second server is advantageously provided with processing means, for example making it possible to perform statistics on a given type of analysis, a given geographical region, etc. to be made available for example from the laboratory or from a public health organization. A number of other information can thus complement the content of the database 22.

  The result of analyzes of a patient is conventionally formatted on the letterhead of the laboratory having carried out the examinations by the means of the first server 1 combining these data with others, as seen previously, the corresponding initial document. the results of analyzes of a patient thus generated being then printed and manually signed by a manager, laboratory, designated by biologist in the present description.

  The method according to the invention makes it possible to generate an electronic duplicate of this conventional initial document.

  For this purpose, the second server 2 further comprises copy means (layers or other) configured to reproduce in electronic form including the letterhead of the analysis laboratory. In addition, and preferably, an electronic copy of the digital signature of the responsible (s) (biologists) is stored in a memory. The method according to the invention thus makes it possible to produce a duplicate of the initial document by formatting the extracted data and the layer (s). The assembly thus constituted is recorded in the form of an electronic file that is preferably non-modifiable, and for example in image form (PDF, JPG, etc.).

  Preferably, the created duplicate also contains a mention that it is an electronic duplicate.

  The method according to the invention then comprises a step of performing an electronic signature of the electronic duplicate. The electronic signature is made by any known means, for example a hash function. It is implemented as described below.

  The second server 2 is connected to a third server 3. This third server, said web server and can be located on the same machine as that of the second server 2, is configured for online applications.

  The holder of the certificate (biologist) connects to this server either locally or remotely by means of online communication. The security of the implementation device of the signature is carried out by any cryptographic means. Preferably, in the context of medical analyzes, the cryptographic means are based on the smart card CPS (Professional Health Card), which is a name card issued and managed by a trusted authority, the GIP-CPS (Group of Public Interest). The present solution allows the use of CPS smart card readers to authenticate the owner of a CPS card, and to allow that owner to sign CPS scan results. In both cases, the method works as follows: The practitioner (biologist analyst or doctor) opens his web browser on the website of the third server 3.

  During the first connection, it is indicated to him 30 a web page which allows him to download a plug-in module of the XPCOM or ACTIVE X type, specific to his browser (eg FireFox or Internet Explorer), as well as the certificate of the third server 3. Once this module installed in its browser, it will no longer be necessary to go through this step. The practitioner accesses the secure CPS card connection page, uses an https connection, enters his CPS card into the reader and enters his PIN code on the keyboard in the zone provided for this purpose and then validates his entry. This validation triggers activation of the module that connects to the smart card reader and then performs the task to be performed (authentication and / or signature). The module receives back encrypted information that it communicates to the website. The web server can therefore control the information received from the CPS card.

  Preferably, the use of the module is restricted to the website to which it is attached. Thus only the site of the third server 3 can read the CPS card remotely. The secure access to the third server 3 by the practitioner enables him to sign all or part of the duplicates made available on the web page. In the case where several practitioners share a workspace, the server 3 may further comprise selection means configured to display, to each practitioner, only the list of documents concerning him.

  The electronic signature is executed on the condensate (result of the hash function) of the aforementioned electronic duplicate file, and is sent to the third server 3, for example by a hidden field of the web page used for the signature, to be stored in a database, for example the database 22.

  Once the signature has been made, the second server 2, which communicates with the web server 3, contains the duplicate image files, the corresponding condensates and the corresponding signatures.

  At this stage, the persons authorized to consult this document are warned by any means of communication of the availability of the results. For example, the reception of the signed electronic file on the web server 3 may trigger an automatic sending to the patient and / or his / her treating physician of an electronic mail and / or an SMS, the data necessary for this purpose being stored in the database 22.

  The method according to the invention therefore advantageously also comprises a step of transmitting to the recipient (s) authorized (s), information availability of the results.

  In addition, this transmission may also include remote connection information. For example, the data thus transmitted may contain the second part of the information necessary for a remote authenticated connection such as a password, the first part of the information necessary for an authenticated connection such as an associated identifier. having been previously transmitted, preferably by other means. In the preferred embodiment, this availability and / or connection information is transmitted to the recipient (s) empowered (s) by SMS or email. 10 Approved persons may include the patient, the parent or guardian if the patient is a minor or incapable, the attending physician, or any other natural or legal person, for example a public health organization.

  Advantageously, the method according to the invention can be used to select the information provided according to the identity, the level of authorization, of these persons. For example, the treating physician can access all of the analysis data, and the patient to only part of it (eg, the conclusion), and a public health agency to the test results and other data. statistics excluding any nominative data.

  Access to available results is preferably achieved by secure means. For example by login / password access. The transmission of this connection information will preferably be done in parallel. This means that two different means of communication are used simultaneously or not to transmit respectively the identifier and the password. As an alternative, of less preference, the transmission of this information can be carried out in block or in series. By way of example, block means the simultaneous delivery of this connection information to its recipient. Serial means that the same means of communication is used at two different times.

  As an alternative, the access can also be done by cryptographic means mentioned above. For example by the use of the CPS smart card for the attending physician, and by the use of a smart card, for example of the payment card or Vitale card (registered trademark), for the patient. Remote access is thus secured by creating a secure link of the https type. As an alternative, secure access can also be implemented through the use of secure networks (VPN), or other types of web protocols (WEB SERVICES, SOAP) as well as secure RSS feeds.

  Advantageously, the method according to the invention also enables the rightholder (patient) to verify the electronic signature, as well as the identity of the signatory authenticated by a trusted authority and by law, that is to say, to identify the signatory.

  For this purpose, the web server 3 comprises means for verifying the trusted third-party certificate (GIP-CPS), for example by an Open 30 SSL command line, the trusted third-party certificate being used in a conventional architecture of public key infrastructure (PKI).

Claims (11)

  A method of providing information, comprising the steps of: - creating, on a first server, an electronic print file, readable in a machine language, representative of an initial document, and - send this file electronic means to computer means connected to the first server, characterized in that it further comprises the steps of: - Receive the electronic file on computer resources such as a second server, -Extract the electronic file at least one part of the information and transform it into a human-readable format, -Save in a database at least part of the extracted information, - Make available on a Web server at least a part of the extracted information   2. The method according to claim 1, wherein the electronic file comprises data between escape codes, the data between two successive escape codes being representative of an alpha-numeric character, the transformation step. being performed by creating a correspondence table between the characters and their respective ASCII code, the correspondence table being stored in a memory of the second server 2.   3. Method according to any one of the preceding claims, further comprising a step of creating a duplicate of the initial document and an electronic signature step of said duplicate, the signature step being performed electronic signature means connected to the second server 2 or the web server 3.   4. The method of claim 3, further comprising an optionally automatic encryption step of the duplicate.   The method of any of claims 3 or 4, wherein the electronic signature step is performed remotely by wired or wireless line communication means, said on-line communication preferably being secured.   6. Method according to any one of claims 3 to 5, further comprising a verification step of the electronic signature, said verification being carried out using wired or wireless online communication means, said online communication. preferably being secured. 25   7. The method of claim 6, wherein the verification of the electronic signature is performed automatically by a server.   8. A method according to any one of the preceding claims, wherein the sending of the electronic file to the second server is performed by one-way communication means.   The method of claim 8, wherein the electronic file is formatted in a print language (PCL).   The method of any one of the preceding claims, further comprising a step of transmitting to the recipient (s) enabled (s), availability information of the results and / or remote connection information.   An information provisioning system configured to implement the method of any one of the preceding claims, and comprising. a first server configured at least for storing a first set of information; a second server configured to receive a set of information from the first server in the form of an electronic file, and comprising means for processing the information received from the first server; and 25 - a web server configured to upload at least a portion of the information contained by the second server.