Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for obtaining identity verification information of a patient. Verifying the patient's identity by: obtaining an indication that the patient identification document is authentic, and verifying that the representation of a biometric of the patient corresponds to a biometric indicated on the patient identification document. Determining that a physical location of a computing device is proximate to a physical location of the patient. In response to verifying the patient and determining that the physical location of the computing device is proximate to the physical location of the patient, determining eligibility of the patient to receive services from the service provider.

A system and method for homomorphic encryption in a healthcare network environment is provided and includes receiving digital data over the healthcare network at a data custodian server in a plurality of formats from various data sources, encrypting the data according to a homomorphic encryption scheme, receiving a query at the data custodian server from a data consumer device concerning a portion of the encrypted data, initiating a secure homomorphic work session between the data custodian server and the data consumer device, generating a homomorphic work space associated with the homomorphic work session, compiling, by the data custodian server, a results set satisfying the query, loading the results set into the homomorphic work space, and building an application programming interface (API) compatible with the results set, the API facilitating encrypted analysis on the results set in the homomorphic work space.

Partially homomorphic encryption systems may be transformed into fully homomorphic encryption systems that are scalable, rapid in translation speed, difficult to invert or break, capable of enabling various types of public and/or private key generation protocols and semantically secure. Input plaintext data are transformed into modified plaintext data using a prime number operation and the modified plaintext data is then encrypted using any number of conventional encryption schemes. Desired computations on the encrypted data are transformed into homomorphic operations, based on the nature of the encryption format, and the homomorphic operations are applied to yield manipulated encrypted data. The manipulated encrypted data may be decrypted and the decrypted plaintext data may be modified into final, output plaintext data using a similar prime number operation as applied during encryption. The final, output plaintext is equivalent to plaintext data that would have been generated by just applying the desired computations to the input plaintext data.

A system, method, and computer program product for automatically identifying a casualty and matching an electronic health record (EHR) to the casualty. A casualty identification is determined by matching a presenting image of the casualty with one of a master image or a social media profile image of the casualty. A recognized patient broadcast module (RPBM) is configured to query one or more electronic health records (EHR) service providers for the existence of an EHR corresponding the identified casualty and automatically communicate the existence of the EHR to the EMS provider. A blockchain trusted identification module (BTIM) is configured to establish a trust relationship between the EMS provider and the one or more EHR service providers to establish a trusted pathway for delivery of the casualty's EHR to the EMS provider. With the casualty's EHR emergency responders to can provide better care for the casualty in an emergency situation.

The disclosure relates to a process for performing transactions among a number of participants, in which every participant has a unique pseudonym assigned to him and the assignment of a pseudonym to a participant and the participant's transaction data are stored on a notary server.

A hearing device includes: a processing unit configured to compensate for hearing loss of a user of the hearing device; and an interface; wherein the processing unit is configured to: receive a session request for a session via the interface, obtain and store a session key, encrypt the session key based on a hearing device key, send a session response comprising the encrypted session key, and receive session data in the session via the interface.

Methods and systems for automatically communicating information (e.g., patient information, flow rate, etc. . . . ) between a non-MRI compatible IV pump and a MRI compatible IV pump are described herein. Such methods and systems prevent human error from affecting the reprogramming of the IV pumps. Furthermore, automatically clamping infusion lines when a new line is added and locked in also reduces possible human error by removing the need for user input during this process.

A system and method for secure wireless control of a device including, but not limited to, replay attack protection, man-in-the-middle protection, data obfuscation, and challenge-response authentication. The system includes a control device, a controlled device interface, a controlled device, a control device interface, and a wireless link. The controlled device interface and the control device interface manage secure communications between the control device and the controlled device over the wireless link. The controlled device can include a medical device such as, for example, but not limited to, an insulin pump and a wheelchair.

A method for controlling access to data being processed by a remote computing resource includes issuing a public encryption key for a data creator from a public certificate authority, detecting an encounter with a data owner, creating private encryption keys for the data creator and the data owner in response to detecting the encounter, encrypting data being sent to the remote computing resource with the public encryption key, the data creator's private encryption key, and the data owner's private encryption key, decrypting the data based on public verification of the public encryption key and local verification of the data creator's private encryption key and the data owner's private encryption key at the remote computing resource, and controlling the data creator's access to the data by altering the permission of at least one of the public encryption key and data creator's private encryption key.

A system and method for facilitating device and application authentication between an external device and an implanted medical device (IMD), wherein a therapy application executing on the external device is operative to communicate with the IMD via wireless telemetry communications. A device authentication parameter may be decomposed into two key components, wherein one component may be stored in a cloud key vault and the other component may be distributed to the external device as an obfuscated portion embedded in the therapy application. Upon receiving the therapy application, the external device is operative to separately retrieve both key components and reconstitute the original authentication parameter therefrom, which may be presented to the IMD for authentication.