| CPC H04L 63/0838 (2013.01) [G16H 40/20 (2018.01); H04L 9/0866 (2013.01); H04L 63/0442 (2013.01); H04L 2209/88 (2013.01)] | 12 Claims |
|
1. A medical device comprising a processor and a storage medium having stored thereon instructions which, when executed by the processor, cause the medical device to:
generate an authentication token based upon at least a username of a current user and a randomly generated one-time password (OTP) for said current user, wherein the authentication token is encrypted using a public key, the one-time password, and the username;
present the authentication token to said current user, wherein presenting the authentication token causes a mobile device of said current user to transmit said authentication token to an online authorization server for said medical device, and, upon authentication of said current user, to decrypt the authentication token and cause the mobile device to display the one-time password to the user;
enable access of said current user to said medical device upon receiving said OTP from said current user; and
generate an access/activity log to track and store activity of said current user,
wherein the generating the authentication token comprises generating a QR code,
wherein said authentication token includes a requested access level, said authorization server to cause the mobile device to display said OTP if said current user has permission for said requested access level.
|