A system and method for secure wireless control of a device including, but not limited to, replay attack protection, man-in-the-middle protection, data obfuscation, and challenge-response authentication. The system includes a control device, a controlled device interface, a controlled device, a control device interface, and a wireless link. The controlled device interface and the control device interface manage secure communications between the control device and the controlled device over the wireless link. The controlled device can include a medical device such as, for example, but not limited to, an insulin pump and a wheelchair.

A medical device includes a network interface, a processor unit, a memory unit, an actuator physiologically acting on a patient and/or a sensor interface detecting a sensor signal indicative of a patient physiological parameter. The network interface receives a sender network identity data message, a sender authorization level and a sender change request to change an actuator operating parameter and/or a predefined alarm detection value. The memory unit provides a predefined minimum authorization level. The processor unit determines an actual authorization of the sender to change the operating parameter and/or to predefine a value on the basis of the sender authorization level and of the predefined minimum authorization level as well as to change the operating parameter as a function of the result of the determination and/or to perform a detection of an alarm generation state as a function of the indicated predefined value and of the sensor signal.

A method for tracking multiple classes of records in a single blockchain is disclosed, the method comprising: by the administrative node computer, receiving, from a first node computer, a request for a class identifier for a certain class, the request including an address identifier associated with the first node computer; generating the class identifier; creating an association between the class identifier and the address identifier; receiving a data element from the first node computer, the data element including the address identifier, the class identifier, and record update information; verifying that the class identifier is associated with the address identifier; verifying that the record update information is permitted according to the class identifier; and creating, a block for a blockchain, the block including the data element. Class identifiers can used for each record entry to distinguish between classes within the blockchain.

Current cancer screening methods are not suitable to be applied on a broad scale and are not transparent to the patient. The problem is solved by a method to determine a degree of abnormality, the method comprising the following steps: receiving a whole slide image, the whole slide image depicting at least a portion of a cell, classifying at least one image tile of the whole slide image using a neural network to determine a local abnormality degree value associated with the at least one image tile, the local abnormality degree value indicating a likelihood that the associated at least one segment depicts at least a part of a cancerous cell, and determining a degree of abnormality for the whole slide image based on the local abnormality degree value for the at least one image tile.

In a system, a medical apparatus and a remote control device perform a pairing procedure, in which the remote control device sends an identifier of the remote control device, the medical apparatus sends a time-referenced information, the remote control device receives the time-referenced information and generates a first hash key based on the identifier and the time-referenced information, and the medical apparatus receives the identifier and generates a second hash key based on the identifier and the time-referenced information. The second hash key corresponds to the first hash key, wherein, when the pairing has been successfully completed, the remote control device sends an instruction controlling the medical apparatus based on the first hash key, and the medical apparatus accepts the instruction if the first hash key corresponds to the second hash key.

Techniques are provided for using tokenization in conjunction with “behind-the-wall” JWT authentication. “Behind-the-wall” JWT authentication refers to JWT authentication techniques in which the JWT stays exclusively within the private network that is controlled by the web application provider. Because the JWT stays within the private network, the security risk posed by posting the JWT in a client cookie is avoided. However, because JWT is used behind-the-wall to authenticate a user with the services requested by the user, the authentication-related overhead is significantly reduced.

Systems, devices, and methods are disclosed for wireless communication of analyte data. In embodiments, a method of using a diabetes management partner interface to configure an analyte sensor system for wireless communication with a plurality of partner devices is provided. The method includes the analyte sensor system receiving authorization to provide one of the partner devices with access to a set of configuration parameters via the diabetes management partner interface. The set of configuration parameters is stored in a memory of the analyte sensor system. The method also includes, responsive to input received from the one partner device via the diabetes management partner interface, the analyte sensor system setting or causing a modification to the set of configuration parameters, according to a system requirement of the one partner device.

An emergency system (100, 200) for a vehicle comprising a data collection unit (101) for recording emergency data, wherein the emergency data comprise at least vehicle data (110) and the medical data (120) of at least one user of the vehicle, a data storage unit (140) for storing the emergency data, and a data access unit (150) by means of which a communication link (182) can be established to the data storage unit (140).

A computerized system and method to allow patient to control and provide a safe, secure and efficient real-time access to the patient's private health records (PHR) stored in the encrypted uniform format in a Private Health Vault (PHV) database. The system utilizes patient's private encryption key for encrypting and decrypting PHR stored in the PHV. The patient (or patient's appointed agent) controls access to the PHR and authorizes by electronic communications with the PHV server to allow doctors to have access to the centrally maintained and structured medical data in the PHV. The access can be limited in duration.

The patient's private keys may be stored in a remote Key Bank database, separately form the PHV database, and the location of the patient's PHV data may also require transmission of the location id from a separate Mapping server. Additional security is provided by determining digital proximity of the doctor's and patient's mobile devices to the node device in the doctor's office, and terminating access upon set condition. It also utilizes 2-way digital token or id exchange and confirmation between the patent and doctor, as well as digital authentication for access and identity verification. The centralized PHV stores patient data more efficiently and prevents unauthorized use of the patient data by separating the key(s) needed to decrypt patient data from the actual patient records in the PHV.

A system, method, and apparatus for universally accessible personal records provides encrypted storage of user-specific data within a personal record linked to a personal record chain of personal records. The personal record chains are stored in immutable form across a plurality of nodes that collectively function as a dispersed, redundant personal record chain data storage system. A secure QR code may act as a patient's private key or password, and may be scanned by any designated third party in the world who has access to the present invention. When scanned, the private key or password may decrypt the user-specific data and provide a portion or all of the same to the designated third-party. The fact of the designated third-party's access to the user-specific data along with any changes to the user-specific data within a new personal record may be immutably recorded on the personal record chain and multiple copies and chains of personal records may be stored across more than one node.