公开(公告)号：US10439824B2

公开(公告)日：2019-10-08

申请号：US15687567

申请日：2017-08-28

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Andrzej Knafel ,  Thomas Weingartner

IPC: H04L9/00 ,  H04L9/32 ,  H04L29/06

Abstract: A method for authenticating an instrument for processing a biological sample or reagent is disclosed. The method comprises generating a PIN code by the instrument, entering the PIN code and identification data associated with the instrument in a database of an electronic device, verifying the PIN code and identification data at the electronic device, transmitting an authentication certificate to the instrument if the PIN code and identification data correspond to target data stored in the database, installing the authentication certificate on the instrument, whereby the instrument is registered with the electronic device, and using the authentication certificate for an encrypted communication between the instrument and the electronic device. Further, a system is disclosed which comprises an instrument for processing a biological sample or reagent and an electronic device. The system is configured to carry out each step of the method.

公开(公告)号：US20130339745A1

公开(公告)日：2013-12-19

申请号：US13899732

申请日：2013-05-22

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel

IPC: G06F21/31

CPC classification number: G06F21/602 ,  A61B5/7285 ,  G06F19/00 ,  G06F21/31 ,  G06F21/335 ,  G06F21/36 ,  G16H10/60

Abstract: A method for controlling an analysis system is presented. The method comprises receiving, by an encryption unit, authentication data of a user. In the case of a successful authentication, a user-specific security code is generated by the encryption unit. The security code is outputted by the encryption unit to the authenticated user. The security code and the user-ID are received by an authentication unit coupled to the analysis system via a user-interface coupled to the authentication unit. The security code is decrypted by the authentication unit. If the decrypted security code matches with the user-ID, the user is authenticated at the authentication unit and an authentication signal is generated by the authentication unit for permitting the user to initialize at least one function of the analysis system.

公开(公告)号：US10944760B2

公开(公告)日：2021-03-09

申请号：US16580068

申请日：2019-09-24

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel ,  Anton Steimle

IPC: H04L29/06 ,  H04L9/32 ,  G06F21/33 ,  G06F21/34 ,  G16H10/40

Abstract: An identification, authentication and authorization method in a laboratory system is presented. The system comprises at least one laboratory device. The method comprises receiving identification data identifying a user; receiving identity confirmation data to authenticate the user; and generating authentication data upon successful authentication of the user. The authentication data is configured to enable authentication of the user based on only the identification data during a validity time period without repeated receipt of the identity confirmation data. The method further comprises receiving the identification data by an identification unit; validating the authentication data corresponding to the identification data comprising the step of verifying non-expiry of the validity time period; and granting authorization to the user for the laboratory device upon successful validation of the authentication data.

公开(公告)号：US20160065590A1

公开(公告)日：2016-03-03

申请号：US14827790

申请日：2015-08-17

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel ,  Anton Steimle

IPC: H04L29/06 ,  H04L9/32

CPC classification number: H04L63/123 ,  G06F21/335 ,  G06F21/34 ,  G16H10/40 ,  H04L9/3234 ,  H04L9/3247 ,  H04L63/0428 ,  H04L63/0807 ,  H04L63/0853 ,  H04L63/108 ,  H04L2209/24 ,  H04L2209/72 ,  H04L2209/805 ,  H04L2463/082

Abstract: An identification, authentication and authorization method in a laboratory system is presented. The system comprises at least one laboratory device. The method comprises receiving identification data identifying a user; receiving identity confirmation data to authenticate the user; and generating authentication data upon successful authentication of the user. The authentication data is configured to enable authentication of the user based on only the identification data during a validity time period without repeated receipt of the identity confirmation data. The method further comprises receiving the identification data by an identification unit; validating the authentication data corresponding to the identification data comprising the step of verifying non-expiry of the validity time period; and granting authorization to the user for the laboratory device upon successful validation of the authentication data.

Abstract translation: 介绍了实验室系统中的识别，认证和授权方法。 该系统包括至少一个实验室装置。 该方法包括接收识别用户的识别数据; 接收身份确认数据以验证用户; 以及在用户成功认证时生成认证数据。 认证数据被配置为仅在有效时间段内仅基于识别数据进行用户认证，而不重复接收到身份确认数据。 该方法还包括由识别单元接收识别数据; 验证对应于所述识别数据的认证数据，所述认证数据包括验证所述有效期限的无效的步骤; 并且在认证数据成功验证之后授予实验室设备的用户的授权。

公开(公告)号：US20160048691A1

公开(公告)日：2016-02-18

申请号：US14920255

申请日：2015-10-22

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel

IPC: G06F21/60 ,  G06F21/31

CPC classification number: G06F21/602 ,  A61B5/7285 ,  G06F19/00 ,  G06F21/31 ,  G06F21/335 ,  G06F21/36 ,  G16H10/60

Abstract: A method for controlling an analysis system is presented. The method comprises receiving, by an encryption unit, authentication data of a user. In the case of a successful authentication, a user-specific security code is generated by the encryption unit. The security code is outputted by the encryption unit to the authenticated user. The security code and the user-ID are received by an authentication unit coupled to the analysis system via a user-interface coupled to the authentication unit. The security code is decrypted by the authentication unit. If the decrypted security code matches with the user-ID, the user is authenticated at the authentication unit and an authentication signal is generated by the authentication unit for permitting the user to initialize at least one function of the analysis system.

公开(公告)号：US20150178508A1

公开(公告)日：2015-06-25

申请号：US14632599

申请日：2015-02-26

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel

IPC: G06F21/60 ,  G06F21/36 ,  G06F19/00

CPC classification number: G06F21/602 ,  A61B5/7285 ,  G06F19/00 ,  G06F21/31 ,  G06F21/335 ,  G06F21/36 ,  G16H10/60

Abstract: A method for controlling an analysis system is presented. The method comprises receiving, by an encryption unit, authentication data of a user. In the case of a successful authentication, a user-specific security code is generated by the encryption unit. The security code is outputted by the encryption unit to the authenticated user. The security code and the user-ID are received by an authentication unit coupled to the analysis system via a user-interface coupled to the authentication unit. The security code is decrypted by the authentication unit. If the decrypted security code matches with the user-ID, the user is authenticated at the authentication unit and an authentication signal is generated by the authentication unit for permitting the user to initialize at least one function of the analysis system.

Abstract translation: 提出了一种控制分析系统的方法。 该方法包括由加密单元接收用户的认证数据。 在成功认证的情况下，加密单元生成用户特定的安全码。 安全码由加密单元输出给认证用户。 安全码和用户ID由耦合到分析系统的认证单元经由耦合到认证单元的用户界面接收。 认证单元对安全码进行解密。 如果解密的安全码与用户ID匹配，则认证单元认证用户，并由认证单元生成认证信号，以允许用户初始化分析系统的至少一个功能。

公开(公告)号：US20200021604A1

公开(公告)日：2020-01-16

申请号：US16580068

申请日：2019-09-24

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel ,  Anton Steimle

IPC: H04L29/06 ,  H04L9/32

Abstract: An identification, authentication and authorization method in a laboratory system is presented. The system comprises at least one laboratory device. The method comprises receiving identification data identifying a user; receiving identity confirmation data to authenticate the user; and generating authentication data upon successful authentication of the user. The authentication data is configured to enable authentication of the user based on only the identification data during a validity time period without repeated receipt of the identity confirmation data. The method further comprises receiving the identification data by an identification unit; validating the authentication data corresponding to the identification data comprising the step of verifying non-expiry of the validity time period; and granting authorization to the user for the laboratory device upon successful validation of the authentication data.

公开(公告)号：US08996878B2

公开(公告)日：2015-03-31

申请号：US13899732

申请日：2013-05-22

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Lothar Gramelspacher ,  Andrzej Knafel

IPC: G06F21/31 ,  G06F21/33 ,  A61B5/00

CPC classification number: G06F21/602 ,  A61B5/7285 ,  G06F19/00 ,  G06F21/31 ,  G06F21/335 ,  G06F21/36 ,  G16H10/60

Abstract: A method for controlling an analysis system is presented. The method comprises receiving, by an encryption unit, authentication data of a user. In the case of a successful authentication, a user-specific security code is generated by the encryption unit. The security code is outputted by the encryption unit to the authenticated user. The security code and the user-ID are received by an authentication unit coupled to the analysis system via a user-interface coupled to the authentication unit. The security code is decrypted by the authentication unit. If the decrypted security code matches with the user-ID, the user is authenticated at the authentication unit and an authentication signal is generated by the authentication unit for permitting the user to initialize at least one function of the analysis system.

公开(公告)号：US20140289875A1

公开(公告)日：2014-09-25

申请号：US14199291

申请日：2014-03-06

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Andrzej Knafel

IPC: G06F21/60

CPC classification number: G06F21/6245 ,  G06F2221/2111

Abstract: A method and an analysis system that help ensure that sensitive data, including in particular patient data, are not accessible to unauthorized persons is presented. The method and system help prevent sensitive data stored on portable devices from being transported along with a portable device to a location outside of a security perimeter. By determining if a portable device is outside of the security perimeter and then automatically erasing the sensitive data stored on the portable device if that is the case, the method and system help prevent disclosure of sensitive data to unauthorized persons.

Abstract translation: 介绍了一种有助于确保未经授权的人员无法访问敏感数据（特别是患者数据）的方法和分析系统。 该方法和系统有助于防止存储在便携式设备上的敏感数据与便携式设备一起传输到安全范围之外的位置。 通过确定便携式设备是否在安全边界之外，然后如果是这种情况，则自动擦除存储在便携式设备上的敏感数据，该方法和系统有助于防止向未授权人员泄露敏感数据。

公开(公告)号：US20190120866A1

公开(公告)日：2019-04-25

申请号：US16224483

申请日：2018-12-18

Applicant: Roche Diagnostics Operations, Inc.

Inventor： Andrzej Knafel ,  Joerg Haechler

IPC: G01N35/00 ,  G05B19/418

Abstract: An analysis system for analyzing biological samples is disclosed, and which may comprise two or more analysis system components for performing an analysis. A sample workflow manager and an instrument manager coupled to the sample workflow manager may be coupled to the system components for receiving a process status from the system components, wherein the sample workflow manager provides at least one preconfigured processing route to the instrument manager in accordance with the process status. The instrument manager may comprise a memory for storing the preconfigured processing route, wherein the instrument manager is adapted for receiving a test order for analyzing the biological sample using the system components, and wherein the instrument manager is adapted for generating commands for controlling a transport device for transporting the biological sample in accordance with the test order and the at least one preconfigured processing route.