NL2018249B1 - A method of storing medical patient data in a cloud based platform as well as a corresponding system. - Google Patents
A method of storing medical patient data in a cloud based platform as well as a corresponding system. Download PDFInfo
- Publication number
- NL2018249B1 NL2018249B1 NL2018249A NL2018249A NL2018249B1 NL 2018249 B1 NL2018249 B1 NL 2018249B1 NL 2018249 A NL2018249 A NL 2018249A NL 2018249 A NL2018249 A NL 2018249A NL 2018249 B1 NL2018249 B1 NL 2018249B1
- Authority
- NL
- Netherlands
- Prior art keywords
- medical
- patient data
- medical patient
- based platform
- cloud
- Prior art date
Links
Classifications
-
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H10/00—ICT specially adapted for the handling or processing of patient-related medical or healthcare data
- G16H10/60—ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
-
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H40/00—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices
- G16H40/60—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices
- G16H40/63—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices for local operation
Abstract
A method of storing medical patient data in a cloud based platform, said method comprising the steps of obtaining medical patient data related to a medical status of a patient, establishing between said cloud based platform and said medical device, over the internet, a secure connection for carrying traffic, adding to said medical patient data, error correction code for improving integrity in transporting said medical patient data, encrypting said medical patient data comprising said error correction code, transferring said encrypted medical patient data comprising said error correction code over said established secure connection towards said cloud based platform, decrypting said transferred encrypted medical patient data, determining whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data, storing said decrypted medical patient data comprising said error correction code.
Description
Background
A medical device is any type of User Equipment, smart phone, apparatus, instrument which has the functionality to be used specifically for diagnostic and/or therapeutic purposes. The medical device can thus be used for diagnosis, prevention monitoring, treatment or alleviation of a disease of a patient.
These types of medical devices vary according to their intended use and indications. For example, devices may be used for blood testing, diabetes, implants prostheses or anything alike.
In any case, patient data is obtained which is stored in the medical device itself. In accordance with national or international law, certain limitations and/or security constrains are opposed to such a storage.
For example, manufacturers of the medical devices need to make sure that the integrity of the patient data is ensured and that the data is kept safe at all time. This means that the manufacturer must ensure that the data that is stored on the medical device, and the data that is retrieved from its storage, should be equal to the data that was actually generated. That is, no unintended mutations in the data may occur to ensure that there are no incorrect conclusions drawn based on erroneous data.
Another aspect is that the data is privacy sensitive. Patients have the right that their data is handled in a private manner. As such, their data i.e. data related to the medical status of the patient, should be kept I stored in such a manner that the data is not being made publicly accessible.
In order to make sure that a medical device meets the above described requirements, it is often necessary that a manufacturer should develop the functionality of a device such that conforms to certain International Organization for Standardization, ISO, standards, or International Electrotechnical Commission, IEC, standards, or anything alike. For example, the level of design, implementation, verification and validation of the functionality if described in these standards.
The above entails that manufacturers often have to provide a huge effort to make sure that the devices they develop meet the required standards. In other words, it is a drawback that manufacturers need to spent a lot of time, energy and resources to develop a medical device such that it can be deployed in a medical environment.
Summary
It is an object of the present invention to provide for a method of storing medical patient data in a cloud based platform, wherein the method ensures that the data’s integrity and security is ensured.
It is another object of the present invention to provide for a system for storing medical patient data in a cloud based platform, wherein the system ensures that the data is handled integer and secure.
In a first aspect, there is provided a method of storing medical patient data in a cloud based platform, said method comprising the steps of:
obtaining, by a medical device, medical patient data related to a medical status of a patient;
establishing between said cloud based platform and said medical device, over the internet, a secure connection for carrying traffic;
adding, by said medical device, to said medical patient data, error correction code for improving integrity in transporting said medical patient data;
encrypting, by said medical device, said medical patient data comprising said error correction code;
transferring, by said medical device, said encrypted medical patient data comprising said error correction code over said established secure connection towards said cloud based platform;
decrypting, by said cloud based platform, said transferred encrypted medical patient data;
determining, by said cloud based platform, whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data;
storing, by said cloud based platform in a patient database, said decrypted medical patient data comprising said error correction code.
It was the insights of the inventors that the efforts required from medical manufacturers can be reduced in case they are provided with a system and/or a method for storing their medical patient data, wherein the method and/or system already meets the requirements, i.e. the method and/or system meet the required standards.
In order to do so, the inventors have found that the medical patient data should be transmitted using the internet, from the medical device towards a cloud based platform, over a secure connection. For example, a Virtual Private Network tunnel can be established between the medical device and the cloud based platform, over which VPN tunnel the medical patient data is transmitted. Another option is that the medical patient data is transmitted over a HyperText Transfer Protocol Secure, HTTPS, connection. An HTTPS connection is a HTTP connection encrypted by Transport Layer Security, or its predecessor, Secure Sockets Layer. The main advantage for HTTPS is authentication of the visited website and protection of the privacy and integrity of the medical patient data. Yet another option is to use websockets for the transfer of the medical patient data. The above described aspect improves the security of the medical patient data that is being exchanged between the medical device and the cloud based platform.
Another aspect is that the medical device adds error correction code for improving the integrity of the medical patient data that is being transported from the medical device to the cloud based platform. An error correction code is, for example, redundant data that is added to the actual obtained medical patient data, such that it can be recovered by the cloud based platform even when a number of errors, up to the capability of the error correction code being used, were introduced during the transfer or storage of the medical patient data. The error correction code thus provides an additional layer of integrity for ensuring that the data does not get erroneously modified during the whole process.
Yet another aspect is that the medical device encrypts the medical patient data comprising the error correction code. The encryption is made in such a way that the cloud based platform is able to decrypt is. That is, the cloud based platform should be provided with a decryption key, which decryption key is used for decrypting the data.. Thus, even if a third party was able to intercept the data that was being transmitted from the medical device to the cloud based platform, it will still not be useful as the data is encrypted. The third party will then also need to decrypt the data, but it then further needs a decryption key or anything alike. As such, the security, i.e. privacy, of the patient is even further improved by encrypting the data before it is transferred to the cloud based platform.
In accordance with the present disclosure, a medical device is any device suitable for obtaining medical patient data related to a medical status of a patient. Such a medical device may be a smart phone, tablet, desktop personal computer, or a dedicated device.
It is further noted that the method, and system, according to the present invention may further be deployed for any other types of data. For example, military data, banking data or data of multinationals, like aerospace, oil industry, nuclear power plants, space agencies or alike. In other words, the method and/or system may be extended to other fields which have the same, or similar, requirements with respect to their data.
It is noted that the order in which the method and/or the system according to the present disclosure performs the encryption step and the adding of the error correction code may differ. For example, error correction code may be added to the medical patient data and, once that has been performed, the data may be encrypted. Another option is to encrypt the medical patient data first and, once that has been performed, add error correction code to the encrypted medical patient data.
In an example, the cloud based platform comprises a web-based interface for providing external access to said cloud based platform, and wherein said cloud based platform further comprises at least two separate, independent, computing entities, wherein said method comprises the further steps of:
receiving, via said web-based interface, an algorithm to be executed for said stored medical patient data;
executing said algorithm by inputting said stored, or received, medical patient data by each of said at least two separate, independent, computing entities in parallel;
determining whether outputs of said computing entities are valid by correlating said outputs with respect to each other.
The inventors have found that the integrity of the process of handling medical patient data can further be improved in case separate, independent, computing entities execute the same algorithm on the medical patient data. In case the outputs of these executions do not match entirely with each other, it is assumed that something went wrong. In case the outputs of these executions do match with each other, it is assumed that the output is correct. This further safeguards the integrity ofthe medical patient data, and any medical conclusion that is based on such a data and/or the algorithms performed.
In other words, the inventors have found that certain errors, at least for a very small percentage, are caused by the computing entities that perform the algorithms. Errors can be identified and actions can be taken accordingly in case such an execution is performed redundantly, for example two times in parallel, three times in parallel, etc.
In another example, the patient database comprises a plurality of identities of patients, wherein each identity is coupled with medical patient data, and wherein said step of executing said algorithm further comprises:
executing said algorithm by inputting said stored medical patient data as well as least another medical patient data related to another identity of a patient.
The inventors have found that, in case the medical patient data is no longer stored locally, at each medical device itself, the data stored in the cloud based platform may be used to enhance the medical process itself. That is, medical patient data related to a first patient may also be used as an input to an algorithm directed for a second patient. As such, the therapy treatment, the doses for a medicine, or anything alike, can be determined much more accurately. This does not mean that the data of the first patient is made publically available. The data of the first patient may be anonymized to make sure that it is kept private.
In another example, the method further comprises the steps of: retrieving, by said cloud based platform, said decrypted medical patient data comprising error correction code, from said patient database;
encrypting, by said cloud based platform, said medical patient data comprising said error correction code;
transferring, by said cloud based platform, said encrypted medical patient data comprising said error correction code over said established secure connection towards said medical device;
decrypting, by said medical device, said transferred encrypted medical patient data;
determining, by said medical device, whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data.
The inventors have found that the data should not only be stored in a cloud based manner, but the data should also, preferably, be retrievable by the medical device from the cloud based platform. That is, the stored medical patient data should be transmitted back to the medical device. In order to do so, the same requirements need to be met for this situation in comparison with the situation that the medical patient data was transmitted from the medical device towards the cloud based platform.
In another example, the step of obtaining said medical patient data comprises any of:
measuring, by a sensor coupled to said medical device, said medical patient data related to said medical status of said patient, and receiving, by a input device provided in said medical device, said medical patient data related to said medical status of said patient.
Here, it is defined that the medical patient data is either to be inputted manually by an operator or is to be inputted by means of a sensor coupled to the medical device.
The expressions, i.e. wording, of the different aspects comprised by the method and cloud based platform according to the present disclosure should not be taken literally. The wording of the aspects is merely chosen to accurately express the rationale behind the actual functioning of the aspects.
In accordance with the present disclosure, different aspects application to the above mentioned examples of the methods, including the advantages thereof, correspond to the aspects which are applicable to the cloud based platform.
In a second aspect, there is provided a system of storing medical patient data in a cloud based platform, said system comprising said cloud based platform as well as a medical device, said medical device comprising:
obtain equipment arranged for obtaining medical patient data related to a medical status of a patient;
add equipment arranged for adding to said medical patient data, error correction code for improving integrity in transporting said medical patient data;
encrypt equipment arranged for encrypting said medical patient data comprising said error correction code;
wherein said medical device and said cloud based platform are mutually arranged to establish between said cloud based platform and said medical device, over the internet, a secure connection for carrying traffic, wherein said cloud based platform comprises:
transfer equipment arranged for transferring said encrypted medical patient data comprising said error correction code over said established secure connection towards said cloud based platform;
decrypt equipment arranged for decrypting said transferred encrypted medical patient data;
determine equipment arranged for determining whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data;
store equipment arranged for storing in a patient data base, said decrypted medical patient data comprising said error correction code.
In an example, the cloud based platform comprises a web portal for providing external access to said cloud based platform, and wherein said cloud based platform further comprises at least two separate, independent, computing entities, wherein said cloud based platform further comprises:
receive equipment arranged for receiving, via said web portal, an algorithm to be executed for said stored medical patient data;
process equipment arranged for executing said algorithm by inputting said stored medical patient data by each of said at least two separate, independent, computing entities in parallel;
wherein said determine equipment is further arranged for determining whether outputs of said computing entities are valid by correlating said outputs with respect to each other.
In an example, said patient database comprises a plurality of identities of patients, wherein each identity is coupled with medical patient data, and wherein said process equipment is further arranged for executing said algorithm by inputting said stored medical patient data as well as least another medical patient data related to another identity of a patient.
In a further example, the cloud based platform further comprises:
retrieve equipment arranged for retrieving said decrypted medical patient data from said patient database;
add equipment arranged for adding to said retrieved decrypted medical patient data, error correction code for improving integrity in transporting said medical patient data;
encrypt equipment arranged for encrypting said medical patient data comprising said error correction code;
transfer equipment arranged for transferring said encrypted medical patient data comprising said error correction code over said established secure connection towards said medical device;
wherein said medical device further comprises:
decrypt equipment arranged for decrypting said transferred encrypted medical patient data;
determine equipment arranged for determining whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data.
In yet another example, the medical device comprises a sensor, and wherein said obtain equipment is further arranged for measuring, by said sensor coupled to said medical device, said medical patient data related to said medical status of said patient.
In an example, the medical device comprises an input device arranged for receiving medical patient data related to said medical status of said patient.
The above-mentioned and other features and advantages of the disclosure will be best understood from the following description referring to the attached drawings. In the drawings, like reference numerals denote identical parts or parts performing an identical or comparable function or operation.
Brief description of the drawings
Figure 1 is a schematic diagram illustrating a cloud based platform according to the present disclosure.
Figure 2 is a schematic flow chart illustrating a basic aspect of the present disclosure.
Detailed description
Figure 1 is a schematic diagram 1 illustrating a cloud based system according to the present disclosure. The system 1 is directed for storing medical patient data in a cloud based platform. It is noted that the same system 1 may be deployed for other types of data, for example, military data. The system is especially useful for data which are to be secure, of which it’s integrity needs to be ensured and need to stay private.
The system 1 comprises a cloud based platform 4 as well as a medical device 2. The cloud based platform 4 is indicated as a single computer / server. In practice, however, the cloud based platform 4 may consist of a plurality of server, each interconnected to each other to form a single cloud based network. The servers may be redundant to each other, i.e. the may operate in a same or similar manner, in order to improve the robustness of the system. The servers may, alternatively or additionally, operate as a fail-safe server, i.e. a backup server in case one ofthe servers ofthe cloud based platform 4 breaks down, i.e. malfunctions.
The medical device 2 is indicated as a smartphone. It is noted that a plurality of devices may be referred to as a medical device. For example, traditional devices for measuring blood pressure, diabetes, or any other type of medical disease/condition may be used within the system. In this particular case, the medical device is a smartphone that may be operated by staff personnel. The staff personnel may input medical patient data, or medical patient data may be obtained via a plurality of sensors. In any case, the medical patient data retrieved is to be stored in a secure, integer and safe way.
Traditionally, the medical patient data was stored on the medical device itself. By storing the data locally, it is prevented that other personnel, or other people, are able to access that data.
The present invention, however, provides for a method and system to make the medical patient data available in a cloud based platform, but does so in a secure and safe manner. Further, the method and system ensure that the medical patient data is handled with a high degree of integrity.
As such, the medical device comprises obtain equipment arranged for obtaining medical patient data related to a medical status of a patient. The medical equipment further comprises add equipment arranged for adding error correction code to the medical patient data for improving integrity of that data during transport of that data to the cloud based platform.
Finally, the medical device comprises encrypt equipment arranged for encrypting the medical patient data comprising the error correction code. The medical device thus provides security in the form of encryption and provides for integrity in the form of the error correction code.
In order to transfer the medical patient data to the cloud based platform, a secure connection 3 is to be established. That is, either the cloud based platform or the medical device initiates a request to the other party for establishing a secure connection such that the data can be transferred. The secure connection is, for example, an HTTPS connection or a Virtual Private Network, VPN, tunnel. This ensures that third parties are not able to access, or sniff, the data that is being transferred between the medical device and the cloud based platform.
The cloud based platform thus comprises receive equipment arranged for receiving the encrypted medical patient data comprising the error correction code over the established secure connection.
Further, decrypt equipment is provided in the cloud based platform to ensure that the cloud based platform is able to decrypt the received encrypted medical patient data. Determine equipment is further provided which is arranged for determining whether the decrypted medical patient data is received erroneously and, if so, for correcting the erroneously received decrypted medical patient data. Finally, store equipment is arranged for storing, in a patient database 6, over a storing connection 5, the decrypted medical patient data comprising the error correction code. It is noted that the storing connection 5 is, usually, an internal connection within the server itself.
Figure 2 is a schematic flow chart 21 illustrating a basic aspect of the present disclosure. The method is related to the storing of medical patient data in a cloud based platform, said method comprising the steps of:
obtaining 22, by a medical device, medical patient data related to a medical status of a patient;
establishing 23 between said cloud based platform and said medical device, over the internet, a secure connection for carrying traffic;
adding 24, by said medical device, to said medical patient data, error correction code for improving integrity in transporting said medical patient data;
encrypting 25, by said medical device, said medical patient data comprising said error correction code;
transferring 26, by said medical device, said encrypted medical patient data comprising said error correction code over said established secure connection towards said cloud based platform;
decrypting 27, by said cloud based platform, said transferred encrypted medical patient data;
determining 28, by said cloud based platform, whether said decrypted medical patient data is received erroneously and, if so, correcting said decrypted medical patient data;
storing 29, by said cloud based platform in a patient database, said decrypted medical patient data comprising said error correction code.
Other variations to the disclosed embodiments can be understood and effected by those skilled in the art in practicing the claimed invention, from a study of the drawings, the disclosure, and the appended claims. In the claims, the word comprising does not exclude other elements or steps, and the indefinite article a or an does not exclude a plurality. A single processor or other unit may fulfil the functions of several items recited in the claims. The mere fact that certain measures are recited in mutually different dependent claims does not indicate that a combination of these measured cannot be used to advantage. A computer program may be stored/distributed on a suitable medium, such as an optical storage medium or a solid-state medium supplied together with or as part of other hardware, but may also be distributed in other forms, such as via the Internet or other wired or wireless telecommunication systems. Any reference signs in the claims should not be construed as limiting the scope thereof.
The present disclosure is not limited to the embodiments as disclosed above, and can be modified and enhances by those skilled in the art beyond the scope of the present disclosure as disclosed in the appended claims without having to apply inventive skills.
Claims (11)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
NL2018249A NL2018249B1 (en) | 2017-01-27 | 2017-01-27 | A method of storing medical patient data in a cloud based platform as well as a corresponding system. |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
NL2018249A NL2018249B1 (en) | 2017-01-27 | 2017-01-27 | A method of storing medical patient data in a cloud based platform as well as a corresponding system. |
Publications (1)
Publication Number | Publication Date |
---|---|
NL2018249B1 true NL2018249B1 (en) | 2018-08-07 |
Family
ID=58670269
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
NL2018249A NL2018249B1 (en) | 2017-01-27 | 2017-01-27 | A method of storing medical patient data in a cloud based platform as well as a corresponding system. |
Country Status (1)
Country | Link |
---|---|
NL (1) | NL2018249B1 (en) |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2014100687A2 (en) * | 2012-12-21 | 2014-06-26 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
WO2014100571A2 (en) * | 2012-12-21 | 2014-06-26 | Deka Products Limited Partnership | System, method, and apparatus for communicating data |
-
2017
- 2017-01-27 NL NL2018249A patent/NL2018249B1/en not_active IP Right Cessation
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2014100687A2 (en) * | 2012-12-21 | 2014-06-26 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
WO2014100571A2 (en) * | 2012-12-21 | 2014-06-26 | Deka Products Limited Partnership | System, method, and apparatus for communicating data |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Thapa et al. | Precision health data: Requirements, challenges and existing techniques for data security and privacy | |
US20230230665A1 (en) | Secure portable medical information access systems and methods related thereto | |
US11055419B2 (en) | Decentralized data authentication system for creation of integrated lifetime health records | |
Puri et al. | Artificial intelligence‐powered decentralized framework for Internet of Things in Healthcare 4.0 | |
WO2018176484A1 (en) | Method and apparatus for processing medical image transmission data, and electronic device | |
US10102399B2 (en) | Secure evaluation of a program | |
BR112019008148B1 (en) | METHOD IMPLEMENTED BY COMPUTER AND SYSTEM FOR IMPLEMENTING A METHOD | |
Gonçalves et al. | Security architecture for mobile e-health applications in medication control | |
Mehrtak et al. | Security challenges and solutions using healthcare cloud computing | |
BR112019008151A2 (en) | computer-implemented method, non-transient computer-readable storage medium, and system | |
JP7023294B2 (en) | Creating a matching cohort and exchanging protected data using the blockchain | |
US11212264B1 (en) | Systems and methods for third party data protection | |
US10164950B2 (en) | Controlling access to clinical data analyzed by remote computing resources | |
CN107408135A (en) | For carrying out the database server and client of query processing to encryption data | |
WO2017127560A1 (en) | Systems and methods for enabling data de-identification and anonymous data linkage | |
US20210375408A1 (en) | Blockchain-based distribution of medical data records | |
CN106796619B (en) | Genomic information services | |
Kapadiya et al. | Blockchain and AI-empowered healthcare insurance fraud detection: an analysis, architecture, and future prospects | |
US10216940B2 (en) | Systems, methods, apparatuses, and computer program products for truncated, encrypted searching of encrypted identifiers | |
Ren et al. | Efficient data integrity auditing for storage security in mobile health cloud | |
CN105808943A (en) | Electronic prescription processing system and method applied to Internet hospital | |
Ramachandran et al. | A review on blockchain-based strategies for management of electronic health records (EHRs) | |
Datta et al. | Secure cloud computing for genomic data | |
CN103971063A (en) | Transfer medium for security-critical medical image contents | |
Senthilkumar et al. | SCB-HC-ECC–based privacy safeguard protocol for secure cloud storage of smart card–based health care system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
MM | Lapsed because of non-payment of the annual fee |
Effective date: 20200201 |