US20130012877A1 - Security features for a medical infusion pump - Google Patents
Security features for a medical infusion pumpDownload PDFInfo
- Publication number
- US20130012877A1 US20130012877A1US13/619,575US201213619575AUS2013012877A1US 20130012877 A1US20130012877 A1US 20130012877A1US 201213619575 AUS201213619575 AUS 201213619575AUS 2013012877 A1US2013012877 A1US 2013012877A1
- Authority
- US
- United States
- Prior art keywords
- infusion pump
- medical infusion
- protocol
- pump
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Abandoned
Links
Images
Classifications
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M5/00—Devices for bringing media into the body in a subcutaneous, intra-vascular or intramuscular way; Accessories therefor, e.g. filling or cleaning devices, arm-rests
- A61M5/14—Infusion devices, e.g. infusing by gravity; Blood infusion; Accessories therefor
- A61M5/142—Pressure infusion, e.g. using pumps
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M5/00—Devices for bringing media into the body in a subcutaneous, intra-vascular or intramuscular way; Accessories therefor, e.g. filling or cleaning devices, arm-rests
- A61M5/14—Infusion devices, e.g. infusing by gravity; Blood infusion; Accessories therefor
- A61M5/168—Means for controlling media flow to the body or for metering media to the body, e.g. drip meters, counters ; Monitoring media flow to the body
- A61M5/172—Means for controlling media flow to the body or for metering media to the body, e.g. drip meters, counters ; Monitoring media flow to the body electrical or electronic
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H20/00—ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance
- G16H20/10—ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance relating to drugs or medications, e.g. for ensuring correct administration to patients
- G16H20/17—ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance relating to drugs or medications, e.g. for ensuring correct administration to patients delivered via infusion or injection
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M5/00—Devices for bringing media into the body in a subcutaneous, intra-vascular or intramuscular way; Accessories therefor, e.g. filling or cleaning devices, arm-rests
- A61M5/14—Infusion devices, e.g. infusing by gravity; Blood infusion; Accessories therefor
- A61M5/142—Pressure infusion, e.g. using pumps
- A61M2005/14208—Pressure infusion, e.g. using pumps with a programmable infusion control system, characterised by the infusion program
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M2205/00—General characteristics of the apparatus
- A61M2205/17—General characteristics of the apparatus with redundant control systems
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M2205/00—General characteristics of the apparatus
- A61M2205/50—General characteristics of the apparatus with microprocessors or computers
- A61M2205/502—User interfaces, e.g. screens or keyboards
- A61M2205/505—Touch-screens; Virtual keyboard or keypads; Virtual buttons; Soft keys; Mouse touches
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M2205/00—General characteristics of the apparatus
- A61M2205/50—General characteristics of the apparatus with microprocessors or computers
- A61M2205/52—General characteristics of the apparatus with microprocessors or computers with memories providing a history of measured variating parameters of apparatus or patient
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M2205/00—General characteristics of the apparatus
- A61M2205/60—General characteristics of the apparatus with identification means
- A61M2205/6009—General characteristics of the apparatus with identification means for matching patient with his treatment, e.g. to improve transfusion security
- A—HUMAN NECESSITIES
- A61—MEDICAL OR VETERINARY SCIENCE; HYGIENE
- A61M—DEVICES FOR INTRODUCING MEDIA INTO, OR ONTO, THE BODY; DEVICES FOR TRANSDUCING BODY MEDIA OR FOR TAKING MEDIA FROM THE BODY; DEVICES FOR PRODUCING OR ENDING SLEEP OR STUPOR
- A61M2205/00—General characteristics of the apparatus
- A61M2205/60—General characteristics of the apparatus with identification means
- A61M2205/609—Biometric patient identification means
Definitions
- the present disclosurerelates to use of medical infusion pumps.
- the present disclosurerelates to security and safety features used in conjunction with medical infusion pumps.
- controlled drug intakeis accomplished by infusing fluidic drugs with a medical infusion pump.
- Medical infusion pumpsin general, provide regulated drug delivery to a patient. These pumps are used to deliver a selected drug or other therapeutic agent to a patient at a predetermined rate that is programmed into the pump. A doctor, nurse, or other healthcare professional typically programs each medical infusion pump in accordance with a prescribed dosage of a drug or therapeutic agent. Once the medical infusion pump is programmed, it will execute that program regardless of any human errors introduced during the programming of the pump or creation of the pump protocol. Introduction of additional redundancies in verifying the programming of pumps can reduce errors in drug delivery to a patient.
- medical infusion pumpscan include a variety of functionality related to fluidic drug delivery.
- medical infusion pumpscan alter rates of drug delivery, can deliver boluses (additional drugs beyond the prescribed amount), and can accept reprogramming in accordance with different therapies, drugs, or patients.
- certain aspects of this functionalitymay be intended for use by a doctor, while other functionality may be intended for use by a nurse, and still further functionality may be intended for use by a patient.
- all of these settings and systemsare generally available to all users of the medical infusion pump
- a method of verifying a standing order in a medical infusion pumpincludes selecting a protocol for execution of a standing order in a medical infusion pump, and verifying the protocol in the medical infusion pump.
- the methodalso includes receiving confirmation of the protocol from a system external to the medical infusion pump, and, upon receiving confirmation of the protocol, allowing operation of the medical infusion pump in accordance with the protocol.
- a medical infusion pumpin a second aspect, includes a pump mechanism, a memory, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory.
- the programmable circuitis programmed to select a protocol for execution of a standing order in a medical infusion pump, and verify the protocol in the medical infusion pump.
- the programmable circuitis also programmed to receive confirmation of the protocol from a system external to the medical infusion pump, and upon receiving confirmation of the protocol, allow operation of the medical infusion pump in accordance with the protocol.
- an infusion pump networkin a third aspect, includes a medical infusion pump and a computing system communicatively connected to the medical infusion pump.
- the infusion pump networkis configured to execute program instructions to select a protocol for execution of a standing order in a medical infusion pump and verify the protocol in the medical infusion pump.
- the infusion pump networkis also configured to execute program instructions to transmit confirmation of the protocol from the computing system to the medical infusion pump, and upon receiving confirmation of the protocol in the medical infusion pump, allow operation of the medical infusion pump in accordance with the protocol.
- a medical infusion pumpin a fourth aspect, includes a pump mechanism, a memory, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory.
- the programmable circuitis programmed to receive security data from a user and determine one or more access rights for the user based on the security data.
- the programmable circuitis also programmed to allow access to the medical infusion pump in accordance with the one or more access rights.
- a method of managing access to features in a medical infusion pumpincludes receiving security data from a user and determining one or more access rights for the user based on the security data. The method also includes allowing access to the medical infusion pump in accordance with the one or more access rights.
- a method of managing access to features in a medical infusion pumpincludes associating a user with a user class, the user class assigned one or more access rights in a medical infusion pump.
- the methodfurther includes associating security data with the user, receiving the security data from the user, and determining the one or more access rights for the user based on the security data.
- the methodalso includes allowing access to one or more systems in the medical infusion pump in accordance with the one or more access rights.
- a medical infusion pumpin a seventh aspect, includes a pump mechanism, a memory, a display, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory and the display.
- the programmable circuitis programmed to receive a signal from the display, the signal corresponding to user interaction with the display of the medical infusion pump.
- the programmable circuitis also programmed to evaluate the signal and allow access to one or more settings incorporated into the medical infusion pump in response to evaluating the signal.
- a method of authenticating a user to use a medical infusion pumpincludes receiving a signal from a display of the medical infusion pump, the signal corresponding to user interaction with the display. The method also includes evaluating the signal and allowing access to one or more settings incorporated into the medical infusion pump in response to evaluating the signal.
- a medical infusion pumpin a ninth aspect, includes a pump mechanism, a memory, a touch screen display, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory and the display.
- the programmable circuitis programmed to associate a stored biometric signal with one or more user profiles stored in the medical infusion pump.
- the programmable circuitis also programmed to receive a biometric signal from the touch screen display, the biometric signal corresponding to user interaction with the display.
- the programmable circuitis further programmed to evaluate the received biometric signal based on the stored biometric signal, and upon evaluating the biometric signal, allow access to one or more settings incorporated into the medical infusion pump.
- FIG. 1illustrates a pump-computer communication system according to a possible embodiment of the present disclosure
- FIG. 2illustrates an infusion pump network according to a possible embodiment of the present disclosure
- FIG. 3illustrates the architecture of a computing system that can be used to implement aspects of the present disclosure
- FIG. 4illustrates the architecture of a pump that can be used to implement aspects of the present disclosure
- FIG. 5illustrates the architecture of a pump peripheral device that can be used to implement aspects of the present disclosure
- FIG. 6illustrates a possible layout of a medical care network incorporating medical infusion pumps, according to a possible embodiment of the present disclosure
- FIG. 7is a further example infusion pump network according to a possible embodiment of the present disclosure.
- FIG. 8illustrates a flowchart of methods and systems for verifying a standing order in a medical infusion pump, according to a possible embodiment of the present disclosure
- FIG. 9is a schematic view of an infusion pump network configured for dual confirmation of a standing order, according to a possible embodiment of the present disclosure.
- FIG. 10illustrates a flowchart of methods and systems for managing access to features in a medical infusion pump, according to a possible embodiment of the present disclosure
- FIG. 11illustrates a user access record for managing user rights in a medical infusion pump, according to a possible embodiment of the present disclosure
- FIG. 12illustrates a user class association record useable in a medical infusion pump, according to a possible embodiment of the present disclosure
- FIG. 13illustrates a flowchart of methods and systems for authenticating a user in a medical infusion pump, according to a possible embodiment of the present disclosure
- FIG. 14illustrates a touch screen user authentication record useable in a medical infusion pump, according to a possible embodiment of the present disclosure.
- FIG. 15illustrates a medical infusion pump having a touch screen useable for user authentication, according to a possible embodiment of the present disclosure.
- the present disclosurerelates generally to fluid delivery in a medical infusion pump, and management of pumps configured to deliver fluids to a patient.
- the present disclosuredescribes features of a medical infusion pump, as well as interactions that the medical infusion pump can have with users such as healthcare providers or others having physical or communicative access to the pump.
- the present disclosurerelates to safety and security features used in conjunction with a medical infusion pump to ensure that patients are treated with the correct drug or other therapeutic fluid, and receive the correct therapy using that drug/fluid. This can be accomplished, in general, by requiring multiple confirmations of each drug delivery, and by restricting access to certain settings or functionality in a medical infusion pump to those users (e.g. healthcare professionals) qualified to operate those aspects of the medical infusion pump.
- the logical operations of the various embodiments of the present disclosure described hereinare implemented as: (1) a sequence of computer implemented operations running on a computing system; and/or (2) interconnected machine modules within the computing system. Modules represent functions executed by program code such as commonly available programming languages or as the code found in a dynamic-link library (DLL).
- DLLdynamic-link library
- the implementation usedis a matter of choice dependent on the performance requirements of the medical infusion pump and the computing systems with which it interfaces. Accordingly, the logical operations making up the embodiments of the present disclosure can be referred to alternatively as operations, modules, and the like.
- FIG. 1illustrates an exemplary embodiment of an infusion pump network 100 having a medical infusion pump 102 , a computing system 104 , and a communications link 106 .
- the medical infusion pump 102is configured to deliver therapeutic fluids, such as drugs, saline, or nutrition to a patient.
- therapeutic fluidssuch as drugs, saline, or nutrition to a patient.
- Examples of medical infusion pumps 102include ambulatory pumps, stationary pumps, and pole mounted pumps.
- the computing system 104is configured to execute computer-readable instructions, such as computer software.
- the computing system 104can be located in a variety of locations such as the point of care (POC) where a patient is being treated, in a healthcare facility at a location remote from the POC, or even at an off-site location remote from the healthcare facility itself.
- the medical infusion pump 102acts as the computing system 104 .
- the computing system 104is programmed to generate and store pump protocols for execution in the context of a pump application program.
- Each pump protocolincludes a series of pump parameters.
- Pump parametersrefer to settings that define an operational aspect of a medical infusion pump. The pump parameters dictate the control of the pump.
- pump protocolsare collections of these pump parameters defining the variable operational characteristics of a medical infusion pump during application of a specific therapy, qualifier, and drug.
- the pump protocolincludes a listing of operational parameters to be included in the pump, and correlates to an index for referring to a specific protocol containing a specific set of pump parameters. The index can be associated with a therapy, qualifier, and drug, and is either contained within the protocol or associated with a specific protocol.
- the pump protocolincludes patient specific pump parameters and non-patient specific pump parameters. Patient specific pump parameters refer to those parameters which are set on a patient-by-patient basis, and for example include the basal delivery rate or bolus amount.
- Non-patient specific pump parametersrefer to those parameters which are set for the pump to perform specific tasks, and do not account for the specific patient to which they are applied. These parameters are generally related to the pump, the infusion pump network, or the medical care to be provided by the pump and/or pump network.
- Non-patient specific pump parameterscan include, for example, a range of permissible values for basal delivery, a range of values and patterns for basal delivery, a range of permissible values for boluses, a range of values and patterns for extended boluses, a starting value within a particular range of values, alarm values, protocols for data communication, and various flag settings.
- An example of a library of pump parameters accessible to a medical infusion pumpis described below in conjunction with FIG. 7 .
- a pump application programis a program having instructions (e.g., executable code, rules, and/or data) that control operation of the pump for a specific therapy or type of delivery (e.g., continuous delivery, intermittent delivery, pain control, chemotherapy, total parenteral nutrition, etc.).
- a pump application programmight contain instructions that define operation of a pump to accomplish various of the pump parameters.
- the communications link 106connects the pump 102 and computing system 104 .
- the communications link 106can include serial or parallel connections, wired or wireless connections, and a direct or networked connection to a computer.
- the pump 102 and the computing system 104can communicate using any protocol appropriate for data communication. Examples of network connections to a computer include Intranet, Internet, and LAN (e.g., Ethernet). Examples of wired connections to a computer include USB, RS-232, Firewire, and power-line modem connection. Examples of wireless connections include Bluetooth, 802.11a/b/g, infrared (IR), and radio frequency (RF).
- IRinfrared
- RFradio frequency
- FIG. 2illustrates an exemplary embodiment of an infusion pump network 200 having a server 206 networked with a plurality of computing systems 104 1 - 104 n .
- the network 200can be any wired or wireless network that enables data communication between the server, computing systems, and medical infusion pumps. Examples of networks include the Internet, Intranets, and LANs.
- Each computing system 104can communicate with a medical infusion pump 102 1 - 102 n through a communication link 106 .
- the individual computing systems 104 nexecute software for generating and managing pump application programs and sets of pump operating parameters, and store information related to the associated medical infusion pump 102 n .
- the pump application programs and sets of pump operating parameterscan be stored on the server 206 and accessed by other individual computing systems 104 n .
- the individual computing systems 104 1-nare also programmed to retrieve previously created pump application programs and sets of pump operating parameters that are stored on the server 206 for viewing, editing, and downloading to medical infusion pumps 102 1-n .
- These pump application programs and pump operating parameterscan be used to determine various fluid delivery algorithms, such as those described in greater detail herein.
- the individual computing systems 104 1-nare also programmed to communicate various information between the medical infusion pumps 102 1-n and the server 206 .
- the individual computing systems 104 1-nare programmed to communicate pump events to the server for storage and later processing, such as cost and operational history data tracked in the medical infusion pumps 102 1-n .
- the individual computing systems 104 1-nare programmed to communicate messages generated in the pumps to external computing systems, including the server 206 and other devices, for notification of third-party caregivers of certain occurrences (e.g. exceptions or alarms) in the pump.
- the medical infusion pumps 102 1-ncan directly communicate with the server to retrieve pump application programs and sets of pump operating parameters and to provide data relating to operation of the pump.
- the medical infusion pumps 102 1-ncan be loaded with client software such as a web browser and communicate directly with the network 200 , either through a wired or wireless connection as described herein.
- one or more of the computing systemsis not configured to communicate directly with one of the medical infusion pump 102 1-n , but rather provides administrative access to the server 206 for generating, viewing, and editing pump application programs and sets of pump operating parameters, and for communicating data from the pump to the server.
- servers, workstations, and other computing systems unaffiliated with the medical infusion pumps 102 1-ncan be included in the network 200 .
- the server 206functions as an application service provider that communicates user interface and other data entries in mark-up language such as HTML or some other language or protocol that allows a user to execute software from a remote location.
- the server 206can function as an application service provider in which the server provides access to the software for generating and storing pump application programs and pump protocols that a user can create and download to a medical infusion pump, as well as for managing user databases, pump histories, message and alarm distribution, and other events.
- the server 206could be located at a pump manufacture, pharmaceutical manufacture, pharmacist, or some other third party separate from the user.
- the server 206 in such an embodimentcan be accessed either from an individual computing system 104 or by a medical infusion pump 102 that has networking capabilities and client software.
- Example embodiments of a server 206 and a medical infusion pump 102 having a web browserare disclosed in U.S. patent application Ser. No. 11/066,425, which was filed on Feb. 22, 2005 and is entitled Server for Medical Device, the entire disclosure of which is hereby incorporated by reference.
- FIG. 3illustrates an exemplary architecture that can be used to implement aspects of the present disclosure, including the computing systems 104 or the server 206 .
- the computing system architectureincludes a general purpose computing device in the form of a computing system 300 .
- the computing system 300can be used, for example, as the computing system or server of FIG. 2 , and can execute program modules included in the administrative software or user software disclosed below.
- the computing system 300includes at least one processing system 302 .
- a variety of processing unitsare available from a variety of manufacturers, for example, Intel or Advanced Micro Devices.
- the computing system 300also includes a system memory 304 , and a system bus 306 that couples various system components including the system memory 304 to the processing unit 302 .
- the system bus 306may be any of a number of types of bus structures including a memory bus, or memory controller; a peripheral bus; and a local bus using any of a variety of bus architectures.
- the system memory 304can include read only memory (ROM) 308 and random access memory (RAM) 310 .
- ROMread only memory
- RAMrandom access memory
- the computing system 300can also include a secondary storage device 313 , such as a hard disk drive, for reading from and writing to a hard disk (not shown), and/or a compact flash card 314 .
- a secondary storage device 313such as a hard disk drive, for reading from and writing to a hard disk (not shown), and/or a compact flash card 314 .
- the hard disk drive 313 and compact flash card 314are connected to the system bus 306 by a hard disk drive interface 320 and a compact flash card interface 322 , respectively.
- the drives and cards and their associated computer readable mediaprovide nonvolatile storage of computer readable instructions, data structures, program modules and other data for the computing system 300 .
- exemplary environment described hereinemploys a hard disk drive 313 and a compact flash card 314
- other types of computer-readable mediacapable of storing data
- Examples of these other types of computer-readable mediumsinclude magnetic cassettes, flash memory cards, digital video disks, Bernoulli cartridges, CD ROMS, DVD ROMS, random access memories (RAMs), or read only memories (ROMs).
- a number of program modulesmay be stored on the hard disk 313 , compact flash card 314 , ROM 308 , or RAM 310 , including an operating system 326 , one or more application programs 328 , other program modules 330 , and program data 332 .
- a usermay enter commands and information into the computing system 300 through an input device 334 .
- input devicesmight include a keyboard, mouse, microphone, joystick, game pad, satellite dish, scanner, digital camera, touch screen, and a telephone.
- These and other input devicesare often connected to the processing unit 302 through an interface 340 that is coupled to the system bus 306 .
- These input devicesalso might be connected by any number of interfaces, such as a parallel port, serial port, game port, or a universal serial bus (USB).
- Wireless communication between input devices and interfaces 340is possible as well, and can include infrared, Bluetooth, 802.11a/b/g, cellular, or other radio frequency communication systems.
- a display device 342such as a monitor or touch screen LCD panel, is also connected to the system bus 306 via an interface, such as a video adapter 344 .
- the display device 342might be internal or external.
- computing systemsin general, typically include other peripheral devices (not shown), such as speakers, printers, and palm devices.
- the computing system 300When used in a LAN networking environment, the computing system 300 is connected to the local network through a network interface or adapter 352 .
- the computing system 300When used in a WAN networking environment, such as the Internet, the computing system 300 typically includes a modem 354 or other communications type, such as a direct connection, for establishing communications over the wide area network.
- the modem 354which can be internal or external, is connected to the system bus 306 via the interface 340 .
- program modules depicted relative to the computing system 300may be stored in a remote memory storage device. It will be appreciated that the network connections shown are exemplary and other methods of establishing a communications link between the computing systems may be used.
- the computing system 300might also include a recorder 360 connected to the memory 304 .
- the recorder 360includes a microphone for receiving sound input and is in communication with the memory 304 for buffering and storing the sound input.
- the recorder 360also can include a record button 361 for activating the microphone and communicating the sound input to the memory 304 .
- the computing systemcan also include a database 390 for storage of data.
- the database 390can be accessible via the memory 304 (either integrated therein or external to) and can be formed as any of a number of types of databases, such as a hierarchical or relational database.
- a computing devicesuch as computing system 300 typically includes at least some form of computer-readable media.
- Computer readable mediacan be any available media that can be accessed by the computing system 300 .
- Computer-readable mediamight comprise computer storage media and communication media.
- Computer storage mediaincludes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data.
- Computer storage mediaincludes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disks (DVD) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium that can be used to store the desired information and that can be accessed by the computing system 300 .
- Communication mediatypically embodies computer-readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media.
- modulated data signalrefers to a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal.
- communication mediaincludes wired media such as a wired network or direct-wired connection, and wireless media such as acoustic, RF, infrared, and other wireless media. Combinations of any of the above should also be included within the scope of computer-readable media.
- Computer-readable mediamay also be referred to as computer program product.
- FIG. 4illustrates the architecture of a medical infusion pump 400 that can be used to implement aspects of the present disclosure.
- the medical infusion pump 400is a programmable pump configured to deliver fluids (e.g. fluidic drugs) to patient, such as through use of an infusion set.
- the medical infusion pump 400executes one or more application programs, as described above in conjunction with FIG. 1 , to accomplish fluid delivery to a patient.
- a microprocessor 402is in electrical communication with and controls a pump motor 404 , a screen 406 , an audible alarm 408 , and a vibratory alarm 410 .
- Other embodimentscan use a microcomputer, or any other type of programmable circuit, in place of the microprocessor.
- the pump motor 404drives a drive mechanism 412 .
- the drive mechanism 412delivers the therapeutic fluid to a patient.
- the drive mechanismcan be connected to a plunger system, a peristaltic drive mechanism, or another type of fluid delivery system.
- the screen 406can have many different configurations such as an LCD screen.
- the screen 406displays a user interface that presents various items of information useful to a patient or caregiver.
- the screen 406is a touch screen display, such as a multi-touch display or other display accepting a signal based on pressure, heat, or other stimulus applied to the screen by a user.
- the screen 406can be a resistive touch screen panel, a surface acoustic wave panel, a capacitive touch screen panel, or any other types of touch-sensitive panels.
- one or more buttons or other input regionscan be displayed on the screen 406 to prompt input by a user, such as touching the screen with a finger, keycard, or other object.
- This inputcan be used for a variety of purposes, including to validate the identity of the user or to select/confirm options presented to the user.
- the screen 406can include biometric capture capabilities, such as a fingerprint reader.
- biometric capture capabilitiessuch as a fingerprint reader.
- One possible application of a display able to capture a signal from a userincludes user authentication, and is discussed below in conjunction with FIGS. 13-15 .
- An alarmprovides actual alarms, warnings, and reminders in the pump.
- the audible alarm 408can be a beeper or otherwise provide audible notifications.
- the vibratory alarm 410provides an alarm to either supplement the audio alarms or replace the audio alarm when an audible beep would be disruptive or not heard.
- a usercan selectively enable or disable the audible 408 and vibratory 410 alarms. In one possible embodiment, however, both the audible 408 and vibratory 410 alarms cannot be disabled at the same time.
- the microprocessor 402is in electrical communication with a random access memory (RAM) 416 and a read only memory (ROM) 418 , which are onboard the pump 400 but external to the microprocessor 402 itself.
- the microprocessor 402includes internal memory as well.
- the RAM 416is a static RAM stores that data that can change over time such as pump settings and a historical log of events experienced by the medical infusion pump 400 .
- the ROM 418stores code for the operating system and the application programs.
- the ROM 418can be any type of programmable ROM such as an EPROM.
- An infrared (IR) port 420is in electrical communication with the microprocessor. As explained in more detail below, the IR port 420 provides data communication with an external device such as a computer for programming an application program, programming pump settings, and downloading historical data logs.
- the medical infusion pump 400can include other types of communication ports in place of or in addition to the IR port 420 . Examples of other possible communication ports include a radio frequency (RF) port or a port that provides a hard-wired data communication link such as an RS-232 port, a USB port, or the like.
- RFradio frequency
- an additional nonvolatile memorycan be incorporated into the pump and interfaced with the microprocessor 402 , such as a flash memory.
- This additional nonvolatile memorycan be configured to store data collected by the pump, such as a history of events in the medical infusion pump, alarm and message information, user records for healthcare personnel authorized to operate the pump, and other information.
- a real-time clock 422provides a clock signal to the microprocessor 402 .
- An advantage of having a real-time clock 422is that it provides the program with the actual time in real-time so that the programs executed by the medical infusion pump can track and control the actual time of day that drug delivery and other events occur. Various durations described here are used for alerts, alarms, reminders, and other functions.
- the timersare formed by the real-time clock 422 and software executed by the microprocessor 402 .
- a keypad 424also provides input to the microprocessor 402 . Although other possible types of keypads are possible, one type of keypad has four buttons and is a membrane-type of keypad, which provides resistance to water and other environmental conditions.
- the keypad 424contains soft keys for which the function of the keys can change as a user executes different menu selections and commands.
- An audio bolus button 425optionally provides input to the microprocessor 402 .
- the audio bolus button 425can program the pump 400 to audibly administer a bolus of drugs or other therapeutic fluids without requiring visual confirmation using the pump.
- the audio bolus button 425can be pressed a series of times to trigger bolus delivery of a selected volume, based on a preprogrammed trigger granularity.
- a single button presscan represent a bolus of 5 grams, as selected by a user, and subsequent presses of the audio bolus button can represent multiples thereof.
- Other inputs into the microprocessor 402can include an occlusion sensor 426 , which is sensitive to occlusions in the therapeutic fluid delivery line; a cartridge sensor 428 , which is sensitive to the presence of a therapeutic fluid cartridge; and a motion detector 430 , which detects motion of a gear (not shown) in the drive mechanism 412 .
- the cartridge sensor 428includes one or more sensors configured to detect insertion of a therapeutic fluid cartridge.
- the pump 400can detect the type of cartridge present via a mechanical interface, and can include in the pump software instructions regarding operation in conjunction with the cartridge. Examples of cassette sensing features are described, for example, in U.S. Pat. No. 5,531,697, filed on Apr. 15, 1994, issued on Jul. 2, 1996, and entitled “Systems and Methods for Cassette Identification for Drug Pumps.”
- a peripheral interface 432allows additional systems to be added to the pump 400 , such as various communication and functional systems.
- Example systems that can be interfaced with the pumpinclude a bar code reader or a communication module, or other devices such as those devices described below in conjunction with FIG. 5 .
- FIG. 5illustrates a peripheral device 500 that can interface with the medical infusion pump described in FIG. 4 .
- the peripheral device 500generally provides extended functionality to the medical infusion pump 400 .
- the peripheral device 500provides extended communication and computation functionality to the medical infusion pump, thereby offloading a number of tasks from that system and freeing resources used for delivering fluids to the patient.
- the peripheral device 500includes a programmable circuit 502 , which is configured to execute program instructions as directed by the microprocessor 402 of the medical infusion pump 400 and also as received from external computing systems.
- the programmable circuit 502also optionally includes various additional operational logic configured to access memory, and to respond to the various interfaces to the programmable circuit.
- the programmable circuit 502includes a microcontroller.
- the microcontrollercan be programmable in any of a number of programming languages, such as assembly language, C, or other low-level language.
- the programmable circuit 502includes a programmable logic device (PLD) such as a field programmable gate array (FPGA), Complex Programmable Logic Device (CPLD), or Power ASIC (Application Specific Integrated Circuit).
- PLDprogrammable logic device
- FPGAfield programmable gate array
- CPLDComplex Programmable Logic Device
- Power ASICApplication Specific Integrated Circuit
- a hardware description languagesuch as Verilog, ABEL, or VHDL defines operation of the programmable circuit.
- the peripheral device 500also includes an electrical interface 504 communicatively interfaced with the programmable circuit.
- the electrical interface 504provides an electrical and data connection between the programmable circuit 502 and connecting circuitry of a medical infusion pump (e.g. the peripheral interface 432 of the medical infusion pump of FIG. 4 ).
- the electrical interface 502can be a serial or parallel interface, such as a USB interface, which allows the peripheral device to both (1) transmit and receive data along the interface, and (2) receive/transmit electrical power, such as to power either the medical infusion pump 400 or peripheral device 500 .
- a variety of additional interfacesalso connect to the programmable circuit 502 , including a network interface 506 , an infrared interface 508 , and a wireless interface 510 .
- Each of these interfacesprovides data communications connections with corresponding computing systems external to the medical infusion pump.
- the network interface 506provides a wired connection to a packet-based, IP-addressable network, such as the Internet or a Local Area Network.
- the infrared interface 508provides a direct device-to-device connection allowing data communication with nearby handheld or portable devices, and allowing the peripheral device 500 to receive data from such devices.
- the wireless interface 510also provides a data connection to external computing systems, and can use any of a number of wireless communication protocols or networks, such as 802.11a/b/g/n, mesh networking, or some proprietary RF communication protocol.
- Other interfacescan be integrated into the peripheral device 500 or the medical infusion pump 400 as well, depending upon the particular implementation and desired communication systems used with the medical infusion pump.
- the peripheral device 500also includes a battery 512 and power input 514 interfaced to the programmable circuit 502 .
- the battery 512provides a power source to the circuitry in the peripheral device 500 , and can also provide power to the medical infusion pump 400 via the pump interface 504 .
- the batteryis a rechargeable Lithium-ion battery pack that is rechargeable via the power input 514 .
- the power input 514receives power from an external source (e.g. an external AC plug), and converts that for use in the peripheral device (as distributed by the programmable circuit 502 ) and for recharging the battery 512 .
- an external sourcee.g. an external AC plug
- the peripheral devicealso includes various types of memory communicatively interfaced to the programmable circuit, including a RAM 516 and a ROM 518 .
- the RAM 516 and ROM 518are used to execute program instructions provided to the peripheral device, such as for managing data input/output for the medical infusion pump.
- Additional memory types, such as a flash memory,can be used as well.
- the peripheral device 500can be incorporated into the medical infusion pump 400 of FIG. 4 .
- the programmable circuit 502can be eliminated, with the various units interfaced thereto directly connecting to the microprocessor 402 of that system.
- the peripheral deviceis separate from the medical infusion pump, requiring interface circuitry 504 and 432 for forming a connection therebetween.
- Additional functionalitycan be included in the peripheral device 500 as well, based on the specific functionality desired for use with the medical infusion pump.
- Example additional functionalitycan include input/output devices, such as a bar code reader, fingerprint scanner, or other biometric reader.
- FIG. 6a possible layout of a medical care network 600 is shown in which medical infusion pumps and infusion pump networks are used, according to a possible embodiment of the present disclosure.
- the medical care network 600relates patients and healthcare professionals to each other using a variety of computing systems and medical devices, such as servers, medical infusion pumps, and other computing systems.
- the medical care networkillustrates one possible example of the network 100 illustrated in FIG. 1 .
- the medical care networkincludes one or more medical infusion pumps, one or more computing systems that can be communicatively connected to those medical infusion pumps, one or more servers managing data relating to the medical infusion pumps, and other computing systems used by patients or healthcare professionals (e.g. nurses, doctors, pharmacists, or other clinicians). Details regarding the specific network 600 shown are described below; however, the network 600 is intended as exemplary, and various additional systems and devices can be included which are not currently shown.
- the medical care network 600includes and interconnects a number of different physical entities/locations, including a home or remote location 602 , a healthcare facility 604 , and an external healthcare provider 606 .
- the home or remote location 602corresponds to a location outside of a healthcare facility at which a user may want to use a medical infusion pump, and may need to communicate data with a healthcare professional or with a server, such as for monitoring the status of the medical infusion pump.
- Each locationcan include, for example, an infusion pump network 608 , such as the network described above in conjunction with FIG. 1 .
- the healthcare facility 604corresponds generally to a hospital or clinic at which a number of patients may reside, as well as entities related to the facility (e.g. affiliated clinics or other institutions).
- the healthcare facility 604is arranged to accommodate a number of patients, by providing those patients with a medical infusion pump and a computing system for data communications with the pump.
- the various patientscan each be associated with an infusion pump network 608 such as shown in FIG. 1 .
- the infusion pump networks 608 within the healthcare facility 604can correspond to networks present in patient rooms, or computing networks surrounding a patient at the facility. Other possibilities for the configuration of the infusion pump networks 608 can exist as well.
- the healthcare facility 604further includes a healthcare data server 610 and a plurality of computing systems 612 not directly associated with the medical infusion pumps or infusion pump networks 608 .
- the healthcare data server 610 and computing systems 612are typically used by healthcare professionals for patient monitoring and care management, billing, and other purposes.
- Each of the computing systems at the healthcare facility 604are communicatively interconnected, allowing communication among the various infusion pump networks 608 and with the healthcare data server 610 and computing systems 612 .
- the systemscan be communicatively connected by any of a variety of communicative connections, including various wired and wireless Local Area Network connections.
- the external healthcare provider 606can correspond to various remote healthcare providers or healthcare-related entities, such as remote physicians, remote specialists, health insurance companies, or other entities.
- the external healthcare provider 606generally receives a certain subset of the data related to one or more patients within the network 600 , such as test information, billing information, diagnosis information, or other information.
- Each of the entities within the network 600are communicatively interconnected by a network 614 , which represents a communication network in which data can be transferred, such as the Internet or some other Wide Area Network (LAN or WAN).
- the network 614interconnects the various locations and computing systems at those locations, allowing data communication among the various locations.
- remote locationscan store or access information from other locations and/or systems.
- the external healthcare provider 606can access information stored on the healthcare data server 610 at the healthcare facility 604 .
- datacan be uploaded to the healthcare facility from one of the local (at the facility) infusion pump networks 608 , or remote infusion pump networks 608 at one of the remote locations 602 .
- Other examples of data sharing and data communicationsare possible as well.
- FIG. 7illustrates a schematic architecture of a medical infusion pump network 700 according to an exemplary embodiment.
- the medical infusion pump network 700can be implemented within the medical care network 600 of FIG. 6 , using components discussed above in FIG. 2 .
- the various aspects of the medical infusion pump network 700can be located at a healthcare facility, a remote facility, or at a patient's location (within or remote from the healthcare facility).
- the medical infusion pump network 700includes an administrator computer 702 communicatively connected to the server 206 of FIG. 2 , which includes a database 704 .
- the medical infusion pump network 700also includes one or more medical infusion pumps 102 and computing systems 104 .
- the administrator computer 702 and computing systems 104are systems such as those described above in conjunction with FIG. 3 .
- the administrator computer 702includes administrative software installed on or accessible to the computer for generating one or more libraries 708 of pump protocols 710 for use in the medical infusion pumps 102 .
- librariesrefer to collections of pump protocols generated using the administrative software described herein. Libraries can be stored in files, databases, or other data structures. Libraries contain pump protocols as well as indices pointing to the protocols, and are loaded in user software to select a specific pump protocol for operation of a medical infusion pump.
- the computing systems 104include user software for accessing one or more libraries 708 of protocols 710 and programming a medical infusion pump 102 with a protocol 710 or a library 708 .
- the computing systems 104are optional in that the user software resides directly on the medical infusion pumps 102 .
- An exemplary embodiment of the user softwareis described below in FIGS. 26-41 .
- the medical infusion pumps 102connect either to a computing system 104 or directly to the server 206 , and are described above in conjunction with FIGS. 4-5 .
- the medical infusion pumps 102are configured to accept a pump protocol from the server 206 or the computing system 104 .
- the medical infusion pumps 102are configured to accept a library 708 of pump protocols 710 directly from the server 206 or from the computing system 104 .
- the database 704contains pump protocol data 706 and log files 716 .
- the pump protocol data 706forms a plurality of libraries 708 which in turn each include a number of protocols 710 .
- Each protocol 710is stored as a data record, and includes a set of parameters, including patient specific pump parameters 712 a and non-patient specific pump parameters 712 b, as described above.
- Each library 708can contain one or more pump protocols 710 .
- the log files 716include log data regarding access and usage of the libraries 708 , and can include information related to the administrator computer 702 , the medical infusion pumps 102 , or the computing systems 104 authorized to connect to the server 206 .
- the log filesinclude access records, which record instances in which medical infusion pumps 102 access a library 708 on the server 206 .
- FIGS. 1-7describe certain aspects of medical infusion pumps and networks including medical infusion pumps, including various types of computing systems and communicative connections used in management and operation of the pumps.
- FIGS. 8-15applications of specific features incorporated into a medical infusion pump or a network including a medical infusion pump are described.
- the applications and features described hereincan be implemented, at least in part, in software, programmable hardware, and user interfaces integrated into the medical infusion pump, or a computing system interfaced with one or more medical infusion pumps.
- one or more featuresare implemented in a pump application program able to be loaded onto and execute on a medical infusion pump. These programmable features relate to confirmation of pump protocols and user authentication for accessing features in the medical infusion pump.
- FIGS. 8-9systems and methods for verifying a standing order in a medical infusion pump are described.
- caregiversadminister only those medications for which the physician has written and signed an order.
- the physician's orderdirects caregivers to provide care to a patient in accordance with the generalized instructions provided. Nurses and other caregivers providing drugs or other therapies to a patient are expected to do so accurately.
- the accuracy standardis expressed as “five rights” for patient care; that is, that the right patient receives the right drug, at the right dose, by the right route, and at the right time.
- a standing order in a medical infusion pumpcorresponds to the generally prescribed use of a medical infusion pump to delivery fluids to a user at a specified rate and in accordance with a proper therapy, qualifier and drug (as explained above in FIGS. 1 and 7 ).
- the medical infusion pumpis ensured to deliver drugs and other fluids according to the correct pump protocols and to the right patient.
- FIG. 8illustrates a flowchart of a process 800 for verifying a standing order in a medical infusion pump, according to a possible embodiment of the present disclosure.
- the processprovides additional verification of a standing order, as reflected in a programmed pump protocol, and identified by the therapy, qualifier, drug, and other patient information relevant to fluid delivery, to improve error rates and improve the “five rights” accuracy of the medical infusion pump.
- the medical infusion pumpcan require a check of the accuracy of the pump protocol (e.g. by comparing the pump protocol to the sensed cartridge inserted in the pump), and can request independent verification of the protocol (e.g. the standing order) from an external computing system.
- the process 800is instantiated at a start operation 802 , which corresponds to initializing a medical infusion pump for operation.
- the start operation 802includes, for example, associating the medical infusion pump with a patient and powering on the pump.
- the start operation 802includes communicatively connecting the medical infusion pump with computing systems in an infusion pump network.
- a protocol selection module 804selects a protocol for use in a medical infusion pump.
- the protocol selection module 804selects the protocol from among a number of protocols, such as could be found in a library of protocols, as described in conjunction with FIG. 7 , above.
- the protocol selection module 804can execute on either the medical infusion pump or a computing system communicatively connected to the medical infusion pump in an infusion pump network, such as the network 100 of FIG. 1 or the network 600 of FIG. 6 .
- the protocol selection module 804prompts a user (e.g. a nurse, a physician or other clinician) to select a protocol for use in conjunction with a prescribed therapy, or a qualifier for that therapy, or a drug to be delivered to a patient, or all three of these aspects.
- the protocol selection module 804identifies possible protocols for use in conjunction with a drug or therapy, and prompts a user for selection from among a group of possible protocols useable in the medical infusion pump.
- the protocol selection module 804results in selection of a protocol useable by the medical infusion pump to accomplish execution of the standing order in accordance with physician direction. However, additional verification of the protocol is required to ensure that a correct protocol has been selected.
- a pump verification module 806verifies that the selected protocol is appropriate based on information available at the pump.
- the pump verification module 806verifies a standing order (e.g. a particular use of a pump protocol selected via the protocol selection module 804 ) by displaying for review various aspects of the pump protocol and other information.
- the pump verification module 806allows a user to view and verify various aspects of a pump protocol, including the various parameters encompassed by the pump protocol and the therapy, qualifier, and/or drug used to select the protocol. Examples of the parameters that are verifiable by a user include a range of permissible basal delivery rates, a bolus amount, a fluid delivery amount, a range of values and patterns for extended boluses, alarm values, or protocols for data communication. Other information can be displayed for verification as well.
- the pump verification module 806also optionally requires verification that the patient with which the pump is associated is properly associated with the standing order (e.g. a child patient is not being administered an adult dosage, or vice versa), and that the cartridge installed into the medical infusion pump corresponds to the drug and fluid delivery parameters in the pump protocol. Other verification procedures can be performed as well.
- the pump verification module 806preferably requires a user, such as a healthcare professional, to verify the protocol on the pump in accordance with the standing order.
- the verificationcan be performed by visual inspection of the pump parameters, drugs used, and other aspects of the standing order displayed on the medical infusion pump, as is shown in the example display of FIG. 9 .
- one or more of the parameters incorporated into the pump protocolcan be verified by the medical infusion pump (e.g. the drug, by comparing the protocol to the cartridge inserted into the pump).
- a display module 808displays the protocol to a healthcare professional, such as the nurse, doctor, or other clinician, on a computing system separate from the medical infusion pump.
- the display module 808displays a variety of information relevant to the protocol, including various parameters and other information about the patient and manner of delivery. As described in conjunction with the pump verification module 806 , this information can optionally include the patient's name, as well as a therapy, a qualifier, and a drug to be delivered by the medical infusion pump, as well as parameters for use of that therapy qualifier and drug.
- These pump parameterscan include, in various embodiments, a delivery rate, allowed adjustments to the delivery rate (e.g.
- the display module 808displays analogous information to that displayed on the medical infusion pump by the verification module 806 .
- the display module 808causes the protocol information to be displayed on a display of a computing system communicatively connected to the medical infusion pump, such as a local computing system that is part of an infusion pump network (e.g. the infusion pump network of FIG. 1 ).
- the display module 808causes the protocol information to be displayed on a display of a computing system remotely located from the medical infusion pump, and requires independent confirmation of at least one aspect of the protocol by another clinician, nurse, doctor, or other healthcare provider (separate from the healthcare provider initializing the pump locally).
- the computing system displaying the protocol and other information related to programming the medical infusion pumpreceives a copy of the protocol from the medical infusion pump, and displays the same information as is displayed on the medical infusion pump. However, in certain embodiments, more or less information can be displayed, with sufficient consistency such that the caregiver viewing the protocol on the computing system can determine that the same protocol is referenced on both the computing system and the medical infusion pump. For example, various pump parameters in a named pump protocol could be displayed on the medical infusion pump, but only the name (and possibly a subset of those pump parameters) might be displayed on the computing system. Other arrangements are possible as well.
- a prompt module 810requests that a healthcare provider confirm the displayed elements of the protocol on the external computing system to again verify that the patient's “five rights” are followed in accordance with the standing order.
- the prompt module 810requires an analogous confirmation from a healthcare provider that the protocol programmed into the medical infusion pump is appropriate based on the planned treatment of that patient (e.g. based on the standing order).
- a confirmation receipt module 812corresponds to the medical infusion pump receiving confirmation of the protocol from the external computing system.
- the confirmation received from the external computing systemis a confirmation message indicating that the protocol is correct; in other embodiments, additional messages, amendments to the protocol, and other operations may be included in the communication to the medical infusion pump.
- An operation module 814allows the medical infusion pump to commence operation using the protocol, in accordance with the standing order.
- the operation module 814is reached only after the confirmation receipt module 812 and the pump verification module 806 . So, two independent confirmations are required of the protocol by a nurse or other caregiver prior to allowing operation of the medical infusion pump. Requiring separate, independent confirmation of pump parameters on the medical infusion pump and on separate computing systems and pumps reduces the likelihood of errors occurring in programming the medical infusion pump, thereby improving patient care. Operational flow in the process terminates at an end operation 816 , which corresponds to completion of the process 800 and allowance of the medical infusion pump to initiate or continue operation in accordance with the verified protocol (i.e. in accordance with the standing order).
- FIG. 9is a schematic view of an infusion pump network 900 configured for dual confirmation of a standing order, according to a possible embodiment of the present disclosure.
- the infusion pump network 900generally corresponds to the infusion pump network 100 of FIG. 1 , but illustrates an embodiment in which confirmation of pump protocols are required prior to operation of a medical infusion pump in accordance with the pump protocol (and associated standing order).
- the infusion pump network 900includes a medical infusion pump 902 communicatively connected to a computing system 904 via a communication link 906 .
- the medical infusion pump 902can be any of a variety of medical infusion pumps, such as the one described in conjunction with FIGS. 4-5 .
- the computing systemcan be any of a number of general or specific use computing systems, such as the system described in FIG. 3 .
- the communication link 906can be any of the communication link types described in FIG. 1 .
- the medical infusion pump 902includes a display 908 and a keypad 909
- the computing system 904also includes a display 910 and keyboard 911 . This allows each of these systems to (1) display a pump protocol selected for use in the medical infusion pump and (2) receive confirmation inputs from a user which indicate that the protocol is/is not correct in view of the standing order.
- information relating to the protocolis displayed on a display 908 of the pump 902 and a display 910 of the computing system 904 .
- the informationincludes a name of the therapy, qualifier, and drug used in selecting the protocol, as well as a duration of operation of the protocol, the name of the patient, and a confirmation prompt. Additional information can be displayed on one or both of the displays, such as information about the pump parameters included in the pump protocol.
- these pump parametersinclude, for example, a range of permissible basal delivery rates, a bolus amount, a fluid delivery amount, a range of values and patterns for extended boluses, alarm values, or protocols for data communication.
- FIGS. 10-12systems and methods are disclosed for managing access to various features that can be included in a medical infusion pump.
- the systems and methods disclosed in these figuresoperate in conjunction with a medical infusion pump such as is disclosed in FIG. 4-5 , as well as any peripheral equipment providing extended functionality to the pump (e.g. a bar code scanner or other peripheral device).
- the pumpprovides enhanced safety and security, preventing unauthorized users from altering settings of the pump or using the pump in an unauthorized or unsafe manner.
- Settings managed in the medical infusion pumpcan include, for example, settings related to pump protocols, pump therapies, qualifiers relating to pump therapies, pump communications settings, user access privileges, security settings, and history data settings. Other settings may be protected and managed using the security systems and access rights protections of the present disclosure.
- FIG. 10illustrates a flowchart of a process 1000 for managing access to features in a medical infusion pump, according to a possible embodiment of the present disclosure.
- the process 1000is instantiated at a start operation 1002 , which corresponds to initial use of a pump in an infusion pump network.
- a user association module 1004associates a user with the medical infusion pump, providing access to one or more functional aspects of the medical infusion pump for the user.
- the user association module 1004establishes the user's ability to log in to the medical infusion pump, and grants that user at least default access rights to view screens relating to the current operational status of the pump.
- the user association module 1004optionally grants additional access rights to one or more systems and settings in a medical infusion pump to the user.
- the systems and settings in the medical infusion pumpcan include to settings in a pump and the user's right to view or modify those settings; the systems and settings can also include various modular hardware or software unrelated to protocol selection.
- the user association module 1004allows the user to view or modify pump protocols or pump parameters, such as the range of acceptable basal delivery rates, drug delivery patterns, bolus delivery times or frequencies, bolus amounts, or other variables related to fluid delivery to a patient.
- the usercan also be allowed to view and modify other pump parameters.
- the access rights granted to the usercan relate to a bar code scanner, a drug cartridge, a battery compartment, or certain input keys of the pump.
- the user association module 1004operates at least in part on a computing system communicatively interconnected with a plurality of medical infusion pumps. In such embodiments, the user association module 1004 can associate the user with more than one medical infusion pump, thereby allowing the user to establish a single access rights record used by all pumps. In other embodiments, the user association module 1004 operates in each medical infusion pump, and the user is required to establish a usage rights record in each pump.
- the user association module 1004optionally associates the user with a user class, with the user class having one or more sets of predetermined access privileges.
- Each user classis configurable to have different access privileges to functionality in a medical infusion pump, and by associating a user with the user class, that user is afforded the access rights given to that class.
- user classesinclude an administrative user class, a physician user class, a nurse user class, a pharmacist user class, a patient user class, and other user classes.
- the administrative user classis granted access to all of the functionality available to the medical infusion pump.
- the other user classesare granted varying access rights, with the patient class generally provided the least access privileges. For example, while the administrative user class or the physician user class has access to modify pump protocols by modifying one or more of the pump parameters, a patient user class will generally not be given such an access right.
- the access privileges of the user classesare also optionally modifiable in the medical infusion pump (or a computing system interconnected to the medical infusion pump), such as via user access records and user class association records, for example the records of FIGS. 11-12 , below.
- a security data association module 1006associates security data with user who is associated with the medical infusion pump.
- the security data association module 1006stores security data that will be used during subsequent use of the medical infusion pump to access functionality by the user.
- the security data association module 1006can associate one or more types of security data with each user, allowing the user to gain access to functionality of the medical infusion pump by providing at least one of those types of security data.
- Security datais data associated with the user that the user can supply to prove his/her identity to the medical infusion pump.
- the security dataincludes a password, an access code, an answer to a security question, an account number, or biometric data, such as a fingerprint pattern, retina scan, or other authorization data.
- the security datais embodied on an access card useable to gain access to functionality in the medical infusion pump.
- a usercan swipe, scan, or press the access card against a portion of the pump capable of reading the security data (e.g. a magnetic card reader, a touch screen, or an optical scanner) to provide security data to the pump.
- the security datae.g. a magnetic card reader, a touch screen, or an optical scanner
- more than one type of security datais accepted.
- features of the pump requiring higher securitymay require multiple types of security data prior to granting access to functionality. For example, a user can be required to enter a password and provide a thumbprint scan to gain access to certain functionality in the medical infusion pump. Other possibilities regarding functionality or combinations of security data are possible as well.
- a security data receipt module 1008receives security data from the user on a subsequent access attempt in the medical infusion pump.
- the security data receipt module 1008receives security data of a number of forms, corresponding to the security data associated with the user by the security data association module 1006 .
- the security data receipt module 1008also compares the received security data to the stored security data associated with the user to determine whether a match exists. If a match between the security data exists, operational flow in the process 1000 proceeds to an access rights determination module 1010 . If no match exists, no access rights are afforded to the user.
- the access rights determination module 1010determines the particular functionality accessible to the user, based on the rights established in the user association module 1004 . These access rights correspond to the functionality in the medical infusion pump, relating both to mechanical or electrical systems and software settings incorporated into the pump, as previously described.
- the security data receipt module 1008 and the access rights determination module 1010can, in certain embodiments, determine access rights based on information in a user access record or user class association record, an example of which is described in conjunction with FIGS. 11-12 .
- the user access record 1100is accessed by the security data receipt module 1008 to determine a match between the one or more types of security data provided by the user and the security data previously associated with the user.
- access rightsare established by the access rights determination module 1010 , either by reviewing specific access rights granted to the user in the user access record 1100 or by reviewing access rights granted to a user class (of which the user is a part) in the user class association record 1200 .
- An access module 1012operates following the access rights determination module 1010 to allow access to a user in accordance with the access rights associated with that user.
- the access module 1012only allows access to the various systems and settings in the medical infusion pump that are associated with access rights granted to the user (e.g. through listing in a user access record or a user class association record as in FIGS. 11-12 ).
- An optional access denial module 1014denies access to the user relating to one or more software or hardware/mechanical systems with which that user's usage rights are not associated.
- a patientwill generally be afforded access rights to certain pump menus and pump settings, allowing the user to administer a bolus or to view operational status of the medical infusion pump with which that patient is associated.
- the patientcan have personalized security data (e.g. an access code or password) or can use a generalized patient login access account. That patient will not be able to access functionality related to certain aspects of the medical infusion pump, such as to edit pump protocols, to use a bar code scanner, or other systems, based on operation of the access denial module.
- These access rightsmay be afforded to other users, such as nurses, doctors, or pharmacists.
- the process 1000terminates at and end operation 1016 , which corresponds to continued operation in accordance with the determined access rights for the user of the pump.
- FIG. 11illustrates example contents of a user access record 1100 that is used to store and validate security data received from and associated with a user having an account to log in to a medical infusion pump.
- the user access record 1100includes one or more user entries 1102 , each of which corresponds to a separate individual having a right to log in to and access information on a medical infusion pump.
- Each user entry 1102includes a user name field 1104 , one or more security data fields 1106 associated with that user, and one or more access right fields 1108 associated with the user entry 1102 .
- the user name field 1104corresponds to the name of the individual logging in to the pump, while the security data fields 1106 include the various security data associated with that user, such as an access code, password, bar code, or biometric data.
- the access right fields 1108define the access rights available to a user.
- the various listed access rightsallow different levels or combinations of access rights to settings and systems in the medical infusion pump.
- various named access rightsare listed in the user access record, including an administrative access right, a program access right, a bolus access right, and other access rights.
- the administrative access right(shown as associated with a user having the name “John Doe”) provides full access to view and amend pump protocols, and access to all of the hardware and mechanical features of the medical infusion pump.
- the program access rightallows a user to view the various software features in the medical infusion pump, and to initiate use of a new pump program or protocol in the medical infusion pump.
- This rightmay be given, for example, to a nurse who will be required to program the medical infusion pump in accordance with a doctor's order.
- the program access rightmay not allow the nurse or other user to alter the parameters included in pump protocols (as would be allowed to a user having an administrative access right), but would allow the user to select a pump protocol for programming the pump.
- the bolus access levelallows a user to administer boluses of the drug or other therapeutic fluid delivered by the pump.
- This access rightcan be given, for example, to a patient for management of bolus delivery, without allowing the patient an access right to program the medical infusion pump or alter the pump protocol operating on the medical infusion pump (as would be included in the program access right and the administrative access right).
- the user entry 1102also optionally includes one or more user class fields 1110 which list the user classes to which the user entry (and corresponding user) belongs.
- the user class fields 1110provide a reference link within the user access record to a user class association record, such as the record 1200 of FIG. 12 . By associating a user with a user class, that user is afforded the access rights of the class with which they are associated.
- a usercan be associated with more than one access right or class in the user access record 1100 . If any of the access rights or classes in the user access record allow the user to perform an action (e.g. altering pump protocols, programming the pump), that user is allowed to perform that action in the medical infusion pump.
- an actione.g. altering pump protocols, programming the pump
- FIG. 12shows an example configuration of a user class association record 1200 , which includes one or more user class entries 1202 .
- Each of the user class entries 1202corresponds to a separate user class associated with one or more access rights.
- the user classes 1202 listed in the user class association record 1200allow common combinations of access rights granted to be grouped into a record for ease of use and assignment to users. For example, all doctors will typically be afforded equal access rights to medical infusion pumps. Similarly, patients will all be afforded similar access rights, but those access rights will be different from (more restrictive) than those afforded to doctors. Similar access right distinctions can be made for nurses, pharmacists, or other clinicians.
- Each user class entry 1202is associated with one or more member entries 1204 and one or more access rights entries 1206 .
- the member entries 1204correspond to users who are members of the class and are designated to receive the access rights of the class; for example, the member entries can correspond to the user entries 1102 of the user access record 1100 .
- the access rights entries 1206define the access rights associated with the user class entry 1202 , and by reference each user identified in the member entries 1204 .
- the user access record 1100 and user class association record 1200can be stored on and managed by a medical infusion pump.
- the user access record 1100 and user class association record 1200are stored on a computing system communicatively interconnected to one or more medical infusion pumps, as is described in conjunction with the networks of FIGS. 1-2 and 6 - 7 , above.
- the access rights afforded to users of the medical infusion pumpare optionally definable by editing the records 1100 , 1200 using the medical infusion pump or a computing system on which the records reside.
- the records 1100 , 1200are generally editable by users having administrative access to the pump; certain user entries may also be editable by the user identified by that entry.
- the user access record 1100 and user class association record 1200are depicted as text files that can be stored in a memory of the medical infusion pump or a computing device. However, these records can be configured in a number of alternative formats to that depicted in FIGS. 11-12 .
- one or both recordsare stored in a relational database, and can be interrelated to other user records, stored security data (e.g. fingerprint profile files), or other information relevant to access of systems and settings in a medical infusion pump.
- the recordsare stored as a text file or spreadsheet file, and maintained within a single record file. Other storage configurations are possible as well.
- the touch screen display in the medical infusion pumpcan be, for example, any display described above in conjunction with the display 406 of FIG. 4 .
- the systems described hereincan be used in conjunction with the security features of part B.2, above, to authenticate a user in conjunction with security data relating to an input signal received from the touch screen display.
- FIG. 13illustrates a flowchart of a process 1300 for authenticating a user in a medical infusion pump using a touch screen display.
- the processgenerally allows a user to touch a display of a medical infusion pump with a hand, keyed card, or other object to validate the identity of the user and allow the user access to various features in the medical infusion pump.
- the process 1300is instantiated at a start operation 1302 .
- a signal association module 1304associates a signal with a user or user class, and stores a representation of that signal for comparison and authentication of signals received from a user seeking access to features of the medical infusion pump.
- the signalis generally an analog or digital electrical signal received from a touch screen display of a medical infusion pump.
- the signalcan, in various embodiments, corresponds to a pattern or sequence of touches or motions by a user, or by an object carried by the user.
- the signalcorresponds to a digital or analog signal received from a touch-sensitive display based on contact with a keyed, shaped access card, as shown in FIG. 15 , below.
- the signalcorresponds to a signal generated in response to a biometric scan, such as a scan or capture of an image of the user, a fingerprint of the user, or other biometric scan information.
- the user or user classcan be any user or class registrable in the medical infusion pump, such as those described above in FIGS. 10-12 .
- Example users or classes of usersinclude doctors, nurses, patients, pharmacists, technicians, or and clinicians who use, program, repair, or otherwise interact with the medical infusion pump.
- the signal association module 1300associates a generalized signal, such as a known touch action on a touch screen display, with a generalized or default access account on the medical infusion pump (e.g. a default account created in user records as described above in FIGS. 10-12 ).
- a generalized or default access account on the medical infusion pumpe.g. a default account created in user records as described above in FIGS. 10-12 .
- a user touching the displaywill cause the display to generate the generalized signal and receive access to the medical infusion pump in accordance with the access rights assigned to that generalized or default access account.
- a signal receipt module 1306corresponds to receiving a signal in the medical infusion pump from a display.
- the signal receipt module 1306receives a signal from a touch screen display, such as a multi-touch display or other type of display described in conjunction with FIG. 4 .
- the signal receipt module 1306generally receives an analog signal from the display (e.g. based on contact with a touch screen display) and optionally converts that analog signal to a digital signal for comparison with a stored value associated with the user by the signal association module 1304 .
- a signal evaluation module 1308compares the signal received by the signal receipt module 1306 with a stored signal associated with a user or a generalized access account to authenticate the user.
- the signal evaluation module 1308verifies the identity of the user based on the signal. For example, the signal evaluation module 1308 can compare digital values generated based on a signal with a stored digital value based on a prior signal, as discussed in conjunction with FIGS. 14-15 . If the user is recognized by the signal evaluation module 1308 , access rights are granted to that user in accordance with the access rights and user record associated with the signal. In certain embodiments, if the user is not recognized by the signal evaluation module 1308 , access is denied to the user.
- An access module 1310grants access to a user in accordance with one or more access rights associated with a user record. Examples of access rights and user records are described above in conjunction with FIGS. 10-12 .
- the process 1300terminates at an end operation 1312 , which corresponds to generalized operation of the medical infusion pump by the user, in accordance with the authorized access rights afforded to that user.
- FIG. 14illustrates a touch screen user authentication record 1400 useable in a medical infusion pump, according to a possible embodiment of the present disclosure.
- the touch screen user authentication record 1400generally corresponds to the user access record of FIG. 11 , but includes information relating to touch screen user authentication systems useable in the medical infusion pump.
- the touch screen user authentication record 1400includes a plurality of user records 1402 , each of which includes a user field 1404 , one or more key fields 1406 , and optionally one or more association fields 1408 or one or more user rights fields 1410 .
- Each user record 1402corresponds to access methods associated with a user, for use in a medical infusion pump having a touch screen authentication system.
- the user field 1404corresponds to the name of the user, and can be used as the name of the user record as well.
- the key fields 1406correspond to the signals receivable by the system that would be recognized as a user attempting to use the medical infusion pump.
- the signalsare illustrated as being stored as two types: digitized codes and images of biometric scans. Other types of signals, such as analog signals, could be captured as well by storing certain signature characteristics of those signals.
- the digitized codes in the key fields 1406correspond to the key ridge codes of the access card.
- An example of an access card and corresponding touch screen digitized codeis shown in FIG. 15 .
- the association fields 1408generally correspond to the user class fields described above in conjunction with FIGS. 10-11 , but can also include common authentication data used by groups of users.
- the association fieldsrefer to groups of users sharing at least one common key field. Using that common key field, users in the user class can access settings and systems in the medical infusion pump according to the common access rights of that user class.
- the user rights fields 1410correspond generally to the access rights described in the records of FIGS. 10-11 , and define access rights for one or more users associated with information in the key fields of the same user record 1402 .
- the systemcan link to user rights in a user access record or user class association record, such as are described above in conjunction with FIGS. 10-11 .
- the user authentication record 1400 as described hereinis intended as an example embodiment of a data structure in which access rights and security data can be managed.
- the touch screen user authentication record 1400can include various other information, or can be embodied in a variety of other formats of databases or other data structures.
- FIG. 15illustrates a medical infusion pump 1500 having a touch screen operable for user authentication, according to a possible embodiment of the present disclosure.
- the medical infusion pump 1500generally corresponds to the medical infusion pumps described in FIGS. 1 and 4 - 5 , and includes a touch screen user interface 1502 , and soft keys 1504 a - d .
- the touch screen user interface 1502is any of a variety of types of touch-sensitive interfaces such as those described above in conjunction with the display 406 of FIG. 4 .
- the touch screen user interface 1502includes one or more regions 1506 a - b configured to accept a touch from a user, access card, or other keyed access method applied to the display, and generate a signal in response to that touch for the purposes of user authentication.
- regions 1506 a - bconfigured to accept a touch from a user, access card, or other keyed access method applied to the display, and generate a signal in response to that touch for the purposes of user authentication.
- a fingerprint region 1506 a and a keyed access contact region 1506 bSpecifically shown are a fingerprint region 1506 a and a keyed access contact region 1506 b; however, other regions can be included as well.
- the fingerprint region 1506 aacts as a fingerprint reader for the medical infusion pump, and can be integrated into the display 1502 or a separate display region.
- the fingerprint region 1506 areceives a fingerprint and generates an analog signal or captures an image of the fingerprint (based, for example, on pressure or imaging) for authentication using a key in a touch screen user authentication record, such as the record 1400 of FIG. 14 .
- the keyed access contact region 1506 baccepts contact with a keyed access card 1510 , which includes a keyed pattern 1512 on at least one edge of the card.
- the keyed pattern 1512corresponds to a digital code stored in an authentication record (e.g. the record 1400 of FIG. 14 ) to authenticate a user who is a holder of the keyed access card 1510 .
- an authentication recorde.g. the record 1400 of FIG. 14
- a signalis generated by the display representative of a code identifying the user, thereby authenticating that user's access to the systems and settings of the medical infusion pump.
- the soft keys 1504 a - dprovide an alternative method of controlling the pump, allowing a user to key in an access code or other options (e.g. confirming the touch access) during the authentication process, as required.
Landscapes
- Health & Medical Sciences (AREA)
- Engineering & Computer Science (AREA)
- Public Health (AREA)
- General Health & Medical Sciences (AREA)
- Life Sciences & Earth Sciences (AREA)
- Veterinary Medicine (AREA)
- Anesthesiology (AREA)
- Biomedical Technology (AREA)
- Heart & Thoracic Surgery (AREA)
- Hematology (AREA)
- Vascular Medicine (AREA)
- Animal Behavior & Ethology (AREA)
- Medicinal Chemistry (AREA)
- Chemical & Material Sciences (AREA)
- Bioinformatics & Cheminformatics (AREA)
- Epidemiology (AREA)
- Medical Informatics (AREA)
- Primary Health Care (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Infusion, Injection, And Reservoir Apparatuses (AREA)
Abstract
Description
- This application is a division of application Ser. No. 12/416,584 filed Apr. 1, 2009, which claims the benefit of U.S. Provisional Application No. 61/041,475 filed Apr. 1, 2008, each of which is hereby fully incorporated herein by reference.
- The present disclosure relates to use of medical infusion pumps. In particular, the present disclosure relates to security and safety features used in conjunction with medical infusion pumps.
- Patients at hospitals and other care centers regularly require controlled drug intake as a part of the patient's prescribed therapy. One form of controlled drug intake is accomplished by infusing fluidic drugs with a medical infusion pump.
- Medical infusion pumps, in general, provide regulated drug delivery to a patient. These pumps are used to deliver a selected drug or other therapeutic agent to a patient at a predetermined rate that is programmed into the pump. A doctor, nurse, or other healthcare professional typically programs each medical infusion pump in accordance with a prescribed dosage of a drug or therapeutic agent. Once the medical infusion pump is programmed, it will execute that program regardless of any human errors introduced during the programming of the pump or creation of the pump protocol. Introduction of additional redundancies in verifying the programming of pumps can reduce errors in drug delivery to a patient.
- Furthermore, medical infusion pumps can include a variety of functionality related to fluidic drug delivery. For example, medical infusion pumps can alter rates of drug delivery, can deliver boluses (additional drugs beyond the prescribed amount), and can accept reprogramming in accordance with different therapies, drugs, or patients. However, certain aspects of this functionality may be intended for use by a doctor, while other functionality may be intended for use by a nurse, and still further functionality may be intended for use by a patient. However, all of these settings and systems are generally available to all users of the medical infusion pump
- In a first aspect, a method of verifying a standing order in a medical infusion pump is disclosed. The method includes selecting a protocol for execution of a standing order in a medical infusion pump, and verifying the protocol in the medical infusion pump. The method also includes receiving confirmation of the protocol from a system external to the medical infusion pump, and, upon receiving confirmation of the protocol, allowing operation of the medical infusion pump in accordance with the protocol.
- In a second aspect, a medical infusion pump is disclosed. The medical infusion pump includes a pump mechanism, a memory, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory. The programmable circuit is programmed to select a protocol for execution of a standing order in a medical infusion pump, and verify the protocol in the medical infusion pump. The programmable circuit is also programmed to receive confirmation of the protocol from a system external to the medical infusion pump, and upon receiving confirmation of the protocol, allow operation of the medical infusion pump in accordance with the protocol.
- In a third aspect, an infusion pump network is disclosed. The infusion pump network includes a medical infusion pump and a computing system communicatively connected to the medical infusion pump. The infusion pump network is configured to execute program instructions to select a protocol for execution of a standing order in a medical infusion pump and verify the protocol in the medical infusion pump. The infusion pump network is also configured to execute program instructions to transmit confirmation of the protocol from the computing system to the medical infusion pump, and upon receiving confirmation of the protocol in the medical infusion pump, allow operation of the medical infusion pump in accordance with the protocol.
- In a fourth aspect, a medical infusion pump is disclosed. The medical infusion pump includes a pump mechanism, a memory, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory. The programmable circuit is programmed to receive security data from a user and determine one or more access rights for the user based on the security data. The programmable circuit is also programmed to allow access to the medical infusion pump in accordance with the one or more access rights.
- In a fifth aspect, a method of managing access to features in a medical infusion pump is disclosed. The method includes receiving security data from a user and determining one or more access rights for the user based on the security data. The method also includes allowing access to the medical infusion pump in accordance with the one or more access rights.
- In a sixth aspect, a method of managing access to features in a medical infusion pump is disclosed. The method includes associating a user with a user class, the user class assigned one or more access rights in a medical infusion pump. The method further includes associating security data with the user, receiving the security data from the user, and determining the one or more access rights for the user based on the security data. The method also includes allowing access to one or more systems in the medical infusion pump in accordance with the one or more access rights.
- In a seventh aspect, a medical infusion pump is disclosed. The medical infusion pump includes a pump mechanism, a memory, a display, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory and the display. The programmable circuit is programmed to receive a signal from the display, the signal corresponding to user interaction with the display of the medical infusion pump. The programmable circuit is also programmed to evaluate the signal and allow access to one or more settings incorporated into the medical infusion pump in response to evaluating the signal.
- In an eighth aspect, a method of authenticating a user to use a medical infusion pump is disclosed. The method includes receiving a signal from a display of the medical infusion pump, the signal corresponding to user interaction with the display. The method also includes evaluating the signal and allowing access to one or more settings incorporated into the medical infusion pump in response to evaluating the signal.
- In a ninth aspect, a medical infusion pump is disclosed. The medical infusion pump includes a pump mechanism, a memory, a touch screen display, and a programmable circuit arranged to control the pump mechanism and operatively connected to the memory and the display. The programmable circuit is programmed to associate a stored biometric signal with one or more user profiles stored in the medical infusion pump. The programmable circuit is also programmed to receive a biometric signal from the touch screen display, the biometric signal corresponding to user interaction with the display. The programmable circuit is further programmed to evaluate the received biometric signal based on the stored biometric signal, and upon evaluating the biometric signal, allow access to one or more settings incorporated into the medical infusion pump.
FIG. 1 illustrates a pump-computer communication system according to a possible embodiment of the present disclosure;FIG. 2 illustrates an infusion pump network according to a possible embodiment of the present disclosure;FIG. 3 illustrates the architecture of a computing system that can be used to implement aspects of the present disclosure;FIG. 4 illustrates the architecture of a pump that can be used to implement aspects of the present disclosure;FIG. 5 illustrates the architecture of a pump peripheral device that can be used to implement aspects of the present disclosure;FIG. 6 illustrates a possible layout of a medical care network incorporating medical infusion pumps, according to a possible embodiment of the present disclosure;FIG. 7 is a further example infusion pump network according to a possible embodiment of the present disclosure;FIG. 8 illustrates a flowchart of methods and systems for verifying a standing order in a medical infusion pump, according to a possible embodiment of the present disclosure;FIG. 9 is a schematic view of an infusion pump network configured for dual confirmation of a standing order, according to a possible embodiment of the present disclosure;FIG. 10 illustrates a flowchart of methods and systems for managing access to features in a medical infusion pump, according to a possible embodiment of the present disclosure;FIG. 11 illustrates a user access record for managing user rights in a medical infusion pump, according to a possible embodiment of the present disclosure;FIG. 12 illustrates a user class association record useable in a medical infusion pump, according to a possible embodiment of the present disclosure;FIG. 13 illustrates a flowchart of methods and systems for authenticating a user in a medical infusion pump, according to a possible embodiment of the present disclosure;FIG. 14 illustrates a touch screen user authentication record useable in a medical infusion pump, according to a possible embodiment of the present disclosure; andFIG. 15 illustrates a medical infusion pump having a touch screen useable for user authentication, according to a possible embodiment of the present disclosure.- Various embodiments will be described in detail with reference to the drawings, wherein like reference numerals represent like parts and assemblies throughout the several views. Reference to various embodiments does not limit the scope of the claims attached hereto. Additionally, any examples set forth in this specification are not intended to be limiting and merely set forth some of the many possible embodiments for the appended claims.
- The present disclosure relates generally to fluid delivery in a medical infusion pump, and management of pumps configured to deliver fluids to a patient. The present disclosure describes features of a medical infusion pump, as well as interactions that the medical infusion pump can have with users such as healthcare providers or others having physical or communicative access to the pump. Specifically, the present disclosure relates to safety and security features used in conjunction with a medical infusion pump to ensure that patients are treated with the correct drug or other therapeutic fluid, and receive the correct therapy using that drug/fluid. This can be accomplished, in general, by requiring multiple confirmations of each drug delivery, and by restricting access to certain settings or functionality in a medical infusion pump to those users (e.g. healthcare professionals) qualified to operate those aspects of the medical infusion pump.
- The logical operations of the various embodiments of the present disclosure described herein are implemented as: (1) a sequence of computer implemented operations running on a computing system; and/or (2) interconnected machine modules within the computing system. Modules represent functions executed by program code such as commonly available programming languages or as the code found in a dynamic-link library (DLL). The implementation used is a matter of choice dependent on the performance requirements of the medical infusion pump and the computing systems with which it interfaces. Accordingly, the logical operations making up the embodiments of the present disclosure can be referred to alternatively as operations, modules, and the like.
- The following discussion is intended to provide a brief, general description of a suitable computing environment in which the invention may be implemented. Although not required, the invention will be described in the general context of computer-executable instructions being executed by a computer, for example, a hand held computer, a personal computing system, or a medical infusion pump.
FIG. 1 illustrates an exemplary embodiment of aninfusion pump network 100 having amedical infusion pump 102, acomputing system 104, and acommunications link 106. Themedical infusion pump 102 is configured to deliver therapeutic fluids, such as drugs, saline, or nutrition to a patient. Examples of medical infusion pumps102 include ambulatory pumps, stationary pumps, and pole mounted pumps.- The
computing system 104 is configured to execute computer-readable instructions, such as computer software. Thecomputing system 104 can be located in a variety of locations such as the point of care (POC) where a patient is being treated, in a healthcare facility at a location remote from the POC, or even at an off-site location remote from the healthcare facility itself. In further embodiments, the medical infusion pump102 acts as thecomputing system 104. - In the exemplary embodiment, the
computing system 104 is programmed to generate and store pump protocols for execution in the context of a pump application program. Each pump protocol includes a series of pump parameters. Pump parameters refer to settings that define an operational aspect of a medical infusion pump. The pump parameters dictate the control of the pump. - By way of reference, pump protocols are collections of these pump parameters defining the variable operational characteristics of a medical infusion pump during application of a specific therapy, qualifier, and drug. The pump protocol includes a listing of operational parameters to be included in the pump, and correlates to an index for referring to a specific protocol containing a specific set of pump parameters. The index can be associated with a therapy, qualifier, and drug, and is either contained within the protocol or associated with a specific protocol. The pump protocol includes patient specific pump parameters and non-patient specific pump parameters. Patient specific pump parameters refer to those parameters which are set on a patient-by-patient basis, and for example include the basal delivery rate or bolus amount. Non-patient specific pump parameters refer to those parameters which are set for the pump to perform specific tasks, and do not account for the specific patient to which they are applied. These parameters are generally related to the pump, the infusion pump network, or the medical care to be provided by the pump and/or pump network. Non-patient specific pump parameters can include, for example, a range of permissible values for basal delivery, a range of values and patterns for basal delivery, a range of permissible values for boluses, a range of values and patterns for extended boluses, a starting value within a particular range of values, alarm values, protocols for data communication, and various flag settings. An example of a library of pump parameters accessible to a medical infusion pump is described below in conjunction with
FIG. 7 . - Also by way of reference, a pump application program is a program having instructions (e.g., executable code, rules, and/or data) that control operation of the pump for a specific therapy or type of delivery (e.g., continuous delivery, intermittent delivery, pain control, chemotherapy, total parenteral nutrition, etc.). For example, a pump application program might contain instructions that define operation of a pump to accomplish various of the pump parameters.
- The communications link106 connects the
pump 102 andcomputing system 104. In various embodiments, the communications link106 can include serial or parallel connections, wired or wireless connections, and a direct or networked connection to a computer. Additionally, thepump 102 and thecomputing system 104 can communicate using any protocol appropriate for data communication. Examples of network connections to a computer include Intranet, Internet, and LAN (e.g., Ethernet). Examples of wired connections to a computer include USB, RS-232, Firewire, and power-line modem connection. Examples of wireless connections include Bluetooth, 802.11a/b/g, infrared (IR), and radio frequency (RF). - Further details regarding use of pump parameters and protocols in the context of an infusion pump network are discussed in U.S. patent application Ser. Nos. 11/499,248, 11/499,240, 11/499,255, and 11/499,893, all filed Aug. 3, 2006, as well as U.S. patent application Ser. Nos. 11/702,922 and 11/702,925 filed Feb. 5, 2007. Each of these patent applications is hereby incorporated by reference in its entirety.
FIG. 2 illustrates an exemplary embodiment of aninfusion pump network 200 having aserver 206 networked with a plurality of computing systems1041-104n. Thenetwork 200 can be any wired or wireless network that enables data communication between the server, computing systems, and medical infusion pumps. Examples of networks include the Internet, Intranets, and LANs. Eachcomputing system 104 can communicate with a medical infusion pump1021-102nthrough acommunication link 106.- In the exemplary embodiment, the
individual computing systems 104nexecute software for generating and managing pump application programs and sets of pump operating parameters, and store information related to the associatedmedical infusion pump 102n. The pump application programs and sets of pump operating parameters can be stored on theserver 206 and accessed by otherindividual computing systems 104n. Theindividual computing systems 1041-nare also programmed to retrieve previously created pump application programs and sets of pump operating parameters that are stored on theserver 206 for viewing, editing, and downloading to medical infusion pumps1021-n. These pump application programs and pump operating parameters can be used to determine various fluid delivery algorithms, such as those described in greater detail herein. - The
individual computing systems 1041-n, are also programmed to communicate various information between the medical infusion pumps1021-nand theserver 206. In certain embodiments, theindividual computing systems 1041-nare programmed to communicate pump events to the server for storage and later processing, such as cost and operational history data tracked in the medical infusion pumps1021-n. In further embodiments, theindividual computing systems 1041-nare programmed to communicate messages generated in the pumps to external computing systems, including theserver 206 and other devices, for notification of third-party caregivers of certain occurrences (e.g. exceptions or alarms) in the pump. - In alternative embodiments, the medical infusion pumps1021-ncan directly communicate with the server to retrieve pump application programs and sets of pump operating parameters and to provide data relating to operation of the pump. For example, the medical infusion pumps1021-ncan be loaded with client software such as a web browser and communicate directly with the
network 200, either through a wired or wireless connection as described herein. - In other alternative embodiments, one or more of the computing systems (e.g.1041-n) is not configured to communicate directly with one of the
medical infusion pump 1021-n, but rather provides administrative access to theserver 206 for generating, viewing, and editing pump application programs and sets of pump operating parameters, and for communicating data from the pump to the server. Additionally, servers, workstations, and other computing systems unaffiliated with the medical infusion pumps1021-ncan be included in thenetwork 200. - In yet other alternative embodiments, certain aspects of the software described herein execute in the
server 206. For example, in certain embodiments the server functions as an application service provider that communicates user interface and other data entries in mark-up language such as HTML or some other language or protocol that allows a user to execute software from a remote location. In these embodiments, theserver 206 can function as an application service provider in which the server provides access to the software for generating and storing pump application programs and pump protocols that a user can create and download to a medical infusion pump, as well as for managing user databases, pump histories, message and alarm distribution, and other events. For example, theserver 206 could be located at a pump manufacture, pharmaceutical manufacture, pharmacist, or some other third party separate from the user. Theserver 206 in such an embodiment can be accessed either from anindividual computing system 104 or by amedical infusion pump 102 that has networking capabilities and client software. - Example embodiments of a
server 206 and amedical infusion pump 102 having a web browser are disclosed in U.S. patent application Ser. No. 11/066,425, which was filed on Feb. 22, 2005 and is entitled Server for Medical Device, the entire disclosure of which is hereby incorporated by reference. FIG. 3 illustrates an exemplary architecture that can be used to implement aspects of the present disclosure, including thecomputing systems 104 or theserver 206. The computing system architecture includes a general purpose computing device in the form of acomputing system 300. Thecomputing system 300 can be used, for example, as the computing system or server ofFIG. 2 , and can execute program modules included in the administrative software or user software disclosed below.- The
computing system 300 includes at least oneprocessing system 302. A variety of processing units are available from a variety of manufacturers, for example, Intel or Advanced Micro Devices. Thecomputing system 300 also includes asystem memory 304, and asystem bus 306 that couples various system components including thesystem memory 304 to theprocessing unit 302. Thesystem bus 306 may be any of a number of types of bus structures including a memory bus, or memory controller; a peripheral bus; and a local bus using any of a variety of bus architectures. - The
system memory 304 can include read only memory (ROM)308 and random access memory (RAM)310. A basic input/output system312 (BIOS), containing the basic routines that help transfer information between elements within thecomputing system 300, such as during start up, is typically stored in theROM 308. - The
computing system 300 can also include asecondary storage device 313, such as a hard disk drive, for reading from and writing to a hard disk (not shown), and/or acompact flash card 314. - The
hard disk drive 313 andcompact flash card 314 are connected to thesystem bus 306 by a harddisk drive interface 320 and a compactflash card interface 322, respectively. The drives and cards and their associated computer readable media provide nonvolatile storage of computer readable instructions, data structures, program modules and other data for thecomputing system 300. - Although the exemplary environment described herein employs a
hard disk drive 313 and acompact flash card 314, other types of computer-readable media, capable of storing data, can be used in the exemplary system. Examples of these other types of computer-readable mediums include magnetic cassettes, flash memory cards, digital video disks, Bernoulli cartridges, CD ROMS, DVD ROMS, random access memories (RAMs), or read only memories (ROMs). - A number of program modules may be stored on the
hard disk 313,compact flash card 314,ROM 308, orRAM 310, including anoperating system 326, one ormore application programs 328,other program modules 330, and program data332. A user may enter commands and information into thecomputing system 300 through aninput device 334. Examples of input devices might include a keyboard, mouse, microphone, joystick, game pad, satellite dish, scanner, digital camera, touch screen, and a telephone. These and other input devices are often connected to theprocessing unit 302 through aninterface 340 that is coupled to thesystem bus 306. These input devices also might be connected by any number of interfaces, such as a parallel port, serial port, game port, or a universal serial bus (USB). Wireless communication between input devices and interfaces340 is possible as well, and can include infrared, Bluetooth, 802.11a/b/g, cellular, or other radio frequency communication systems. Adisplay device 342, such as a monitor or touch screen LCD panel, is also connected to thesystem bus 306 via an interface, such as avideo adapter 344. Thedisplay device 342 might be internal or external. In addition to thedisplay device 342, computing systems, in general, typically include other peripheral devices (not shown), such as speakers, printers, and palm devices. - When used in a LAN networking environment, the
computing system 300 is connected to the local network through a network interface oradapter 352. When used in a WAN networking environment, such as the Internet, thecomputing system 300 typically includes amodem 354 or other communications type, such as a direct connection, for establishing communications over the wide area network. Themodem 354, which can be internal or external, is connected to thesystem bus 306 via theinterface 340. In a networked environment, program modules depicted relative to thecomputing system 300, or portions thereof, may be stored in a remote memory storage device. It will be appreciated that the network connections shown are exemplary and other methods of establishing a communications link between the computing systems may be used. - The
computing system 300 might also include arecorder 360 connected to thememory 304. Therecorder 360 includes a microphone for receiving sound input and is in communication with thememory 304 for buffering and storing the sound input. Therecorder 360 also can include arecord button 361 for activating the microphone and communicating the sound input to thememory 304. The computing system can also include adatabase 390 for storage of data. Thedatabase 390 can be accessible via the memory304 (either integrated therein or external to) and can be formed as any of a number of types of databases, such as a hierarchical or relational database. - A computing device, such as
computing system 300, typically includes at least some form of computer-readable media. Computer readable media can be any available media that can be accessed by thecomputing system 300. By way of example, and not limitation, computer-readable media might comprise computer storage media and communication media. - Computer storage media includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disks (DVD) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium that can be used to store the desired information and that can be accessed by the
computing system 300. - Communication media typically embodies computer-readable instructions, data structures, program modules or other data in a modulated data signal such as a carrier wave or other transport mechanism and includes any information delivery media. The term “modulated data signal” refers to a signal that has one or more of its characteristics set or changed in such a manner as to encode information in the signal. By way of example, and not limitation, communication media includes wired media such as a wired network or direct-wired connection, and wireless media such as acoustic, RF, infrared, and other wireless media. Combinations of any of the above should also be included within the scope of computer-readable media. Computer-readable media may also be referred to as computer program product.
FIG. 4 illustrates the architecture of amedical infusion pump 400 that can be used to implement aspects of the present disclosure. In general, themedical infusion pump 400 is a programmable pump configured to deliver fluids (e.g. fluidic drugs) to patient, such as through use of an infusion set. Themedical infusion pump 400 executes one or more application programs, as described above in conjunction withFIG. 1 , to accomplish fluid delivery to a patient.- In the
medical infusion pump 400, amicroprocessor 402 is in electrical communication with and controls apump motor 404, ascreen 406, anaudible alarm 408, and avibratory alarm 410. Other embodiments can use a microcomputer, or any other type of programmable circuit, in place of the microprocessor. - The
pump motor 404 drives adrive mechanism 412. Thedrive mechanism 412 delivers the therapeutic fluid to a patient. The drive mechanism can be connected to a plunger system, a peristaltic drive mechanism, or another type of fluid delivery system. - The
screen 406 can have many different configurations such as an LCD screen. Thescreen 406 displays a user interface that presents various items of information useful to a patient or caregiver. In certain embodiments, thescreen 406 is a touch screen display, such as a multi-touch display or other display accepting a signal based on pressure, heat, or other stimulus applied to the screen by a user. For example, thescreen 406 can be a resistive touch screen panel, a surface acoustic wave panel, a capacitive touch screen panel, or any other types of touch-sensitive panels. In such embodiments, one or more buttons or other input regions can be displayed on thescreen 406 to prompt input by a user, such as touching the screen with a finger, keycard, or other object. This input can be used for a variety of purposes, including to validate the identity of the user or to select/confirm options presented to the user. In certain embodiments, thescreen 406 can include biometric capture capabilities, such as a fingerprint reader. One possible application of a display able to capture a signal from a user includes user authentication, and is discussed below in conjunction withFIGS. 13-15 . - An alarm provides actual alarms, warnings, and reminders in the pump. The
audible alarm 408 can be a beeper or otherwise provide audible notifications. Similar to other portable electronic devices such as a cellular telephone, thevibratory alarm 410 provides an alarm to either supplement the audio alarms or replace the audio alarm when an audible beep would be disruptive or not heard. A user can selectively enable or disable the audible408 and vibratory410 alarms. In one possible embodiment, however, both the audible408 and vibratory410 alarms cannot be disabled at the same time. - The
microprocessor 402 is in electrical communication with a random access memory (RAM)416 and a read only memory (ROM)418, which are onboard thepump 400 but external to themicroprocessor 402 itself. In one possible embodiment, themicroprocessor 402 includes internal memory as well. TheRAM 416 is a static RAM stores that data that can change over time such as pump settings and a historical log of events experienced by themedical infusion pump 400. TheROM 418 stores code for the operating system and the application programs. TheROM 418 can be any type of programmable ROM such as an EPROM. - An infrared (IR)
port 420 is in electrical communication with the microprocessor. As explained in more detail below, theIR port 420 provides data communication with an external device such as a computer for programming an application program, programming pump settings, and downloading historical data logs. Themedical infusion pump 400 can include other types of communication ports in place of or in addition to theIR port 420. Examples of other possible communication ports include a radio frequency (RF) port or a port that provides a hard-wired data communication link such as an RS-232 port, a USB port, or the like. - Optionally, an additional nonvolatile memory can be incorporated into the pump and interfaced with the
microprocessor 402, such as a flash memory. This additional nonvolatile memory can be configured to store data collected by the pump, such as a history of events in the medical infusion pump, alarm and message information, user records for healthcare personnel authorized to operate the pump, and other information. - A real-
time clock 422 provides a clock signal to themicroprocessor 402. An advantage of having a real-time clock 422 is that it provides the program with the actual time in real-time so that the programs executed by the medical infusion pump can track and control the actual time of day that drug delivery and other events occur. Various durations described here are used for alerts, alarms, reminders, and other functions. In one possible embodiment, the timers are formed by the real-time clock 422 and software executed by themicroprocessor 402. - A
keypad 424 also provides input to themicroprocessor 402. Although other possible types of keypads are possible, one type of keypad has four buttons and is a membrane-type of keypad, which provides resistance to water and other environmental conditions. Thekeypad 424 contains soft keys for which the function of the keys can change as a user executes different menu selections and commands. - An audio bolus button425 optionally provides input to the
microprocessor 402. The audio bolus button425 can program thepump 400 to audibly administer a bolus of drugs or other therapeutic fluids without requiring visual confirmation using the pump. In an example embodiment, the audio bolus button425 can be pressed a series of times to trigger bolus delivery of a selected volume, based on a preprogrammed trigger granularity. A single button press can represent a bolus of 5 grams, as selected by a user, and subsequent presses of the audio bolus button can represent multiples thereof. - Other inputs into the
microprocessor 402 can include anocclusion sensor 426, which is sensitive to occlusions in the therapeutic fluid delivery line; acartridge sensor 428, which is sensitive to the presence of a therapeutic fluid cartridge; and amotion detector 430, which detects motion of a gear (not shown) in thedrive mechanism 412. In an exemplary embodiment, thecartridge sensor 428 includes one or more sensors configured to detect insertion of a therapeutic fluid cartridge. Thepump 400 can detect the type of cartridge present via a mechanical interface, and can include in the pump software instructions regarding operation in conjunction with the cartridge. Examples of cassette sensing features are described, for example, in U.S. Pat. No. 5,531,697, filed on Apr. 15, 1994, issued on Jul. 2, 1996, and entitled “Systems and Methods for Cassette Identification for Drug Pumps.” - A
peripheral interface 432 allows additional systems to be added to thepump 400, such as various communication and functional systems. Example systems that can be interfaced with the pump include a bar code reader or a communication module, or other devices such as those devices described below in conjunction withFIG. 5 . FIG. 5 illustrates aperipheral device 500 that can interface with the medical infusion pump described inFIG. 4 . Theperipheral device 500 generally provides extended functionality to themedical infusion pump 400. In the embodiment shown, theperipheral device 500 provides extended communication and computation functionality to the medical infusion pump, thereby offloading a number of tasks from that system and freeing resources used for delivering fluids to the patient.- The
peripheral device 500 includes aprogrammable circuit 502, which is configured to execute program instructions as directed by themicroprocessor 402 of themedical infusion pump 400 and also as received from external computing systems. Theprogrammable circuit 502 also optionally includes various additional operational logic configured to access memory, and to respond to the various interfaces to the programmable circuit. In one embodiment, theprogrammable circuit 502 includes a microcontroller. The microcontroller can be programmable in any of a number of programming languages, such as assembly language, C, or other low-level language. In alternate embodiments, theprogrammable circuit 502 includes a programmable logic device (PLD) such as a field programmable gate array (FPGA), Complex Programmable Logic Device (CPLD), or Power ASIC (Application Specific Integrated Circuit). In these embodiments, a hardware description language such as Verilog, ABEL, or VHDL defines operation of the programmable circuit. - The
peripheral device 500 also includes anelectrical interface 504 communicatively interfaced with the programmable circuit. Theelectrical interface 504 provides an electrical and data connection between theprogrammable circuit 502 and connecting circuitry of a medical infusion pump (e.g. theperipheral interface 432 of the medical infusion pump ofFIG. 4 ). In the embodiment shown, theelectrical interface 502 can be a serial or parallel interface, such as a USB interface, which allows the peripheral device to both (1) transmit and receive data along the interface, and (2) receive/transmit electrical power, such as to power either themedical infusion pump 400 orperipheral device 500. - A variety of additional interfaces also connect to the
programmable circuit 502, including anetwork interface 506, aninfrared interface 508, and awireless interface 510. Each of these interfaces provides data communications connections with corresponding computing systems external to the medical infusion pump. Thenetwork interface 506 provides a wired connection to a packet-based, IP-addressable network, such as the Internet or a Local Area Network. Theinfrared interface 508 provides a direct device-to-device connection allowing data communication with nearby handheld or portable devices, and allowing theperipheral device 500 to receive data from such devices. Thewireless interface 510 also provides a data connection to external computing systems, and can use any of a number of wireless communication protocols or networks, such as 802.11a/b/g/n, mesh networking, or some proprietary RF communication protocol. Other interfaces can be integrated into theperipheral device 500 or themedical infusion pump 400 as well, depending upon the particular implementation and desired communication systems used with the medical infusion pump. - The
peripheral device 500 also includes abattery 512 andpower input 514 interfaced to theprogrammable circuit 502. Thebattery 512 provides a power source to the circuitry in theperipheral device 500, and can also provide power to themedical infusion pump 400 via thepump interface 504. In certain embodiments, the battery is a rechargeable Lithium-ion battery pack that is rechargeable via thepower input 514. Thepower input 514 receives power from an external source (e.g. an external AC plug), and converts that for use in the peripheral device (as distributed by the programmable circuit502) and for recharging thebattery 512. - The peripheral device also includes various types of memory communicatively interfaced to the programmable circuit, including a
RAM 516 and aROM 518. TheRAM 516 andROM 518 are used to execute program instructions provided to the peripheral device, such as for managing data input/output for the medical infusion pump. Additional memory types, such as a flash memory, can be used as well. - In certain embodiments, the
peripheral device 500 can be incorporated into themedical infusion pump 400 ofFIG. 4 . In such embodiments, theprogrammable circuit 502 can be eliminated, with the various units interfaced thereto directly connecting to themicroprocessor 402 of that system. In other embodiments, the peripheral device is separate from the medical infusion pump, requiringinterface circuitry - Additional functionality can be included in the
peripheral device 500 as well, based on the specific functionality desired for use with the medical infusion pump. Example additional functionality can include input/output devices, such as a bar code reader, fingerprint scanner, or other biometric reader. - Referring now to
FIG. 6 , a possible layout of amedical care network 600 is shown in which medical infusion pumps and infusion pump networks are used, according to a possible embodiment of the present disclosure. Themedical care network 600 relates patients and healthcare professionals to each other using a variety of computing systems and medical devices, such as servers, medical infusion pumps, and other computing systems. As such, the medical care network illustrates one possible example of thenetwork 100 illustrated inFIG. 1 . - In the embodiment shown, the medical care network includes one or more medical infusion pumps, one or more computing systems that can be communicatively connected to those medical infusion pumps, one or more servers managing data relating to the medical infusion pumps, and other computing systems used by patients or healthcare professionals (e.g. nurses, doctors, pharmacists, or other clinicians). Details regarding the
specific network 600 shown are described below; however, thenetwork 600 is intended as exemplary, and various additional systems and devices can be included which are not currently shown. - In the embodiment shown, the
medical care network 600 includes and interconnects a number of different physical entities/locations, including a home orremote location 602, ahealthcare facility 604, and anexternal healthcare provider 606. The home orremote location 602 corresponds to a location outside of a healthcare facility at which a user may want to use a medical infusion pump, and may need to communicate data with a healthcare professional or with a server, such as for monitoring the status of the medical infusion pump. Each location can include, for example, aninfusion pump network 608, such as the network described above in conjunction withFIG. 1 . - The
healthcare facility 604 corresponds generally to a hospital or clinic at which a number of patients may reside, as well as entities related to the facility (e.g. affiliated clinics or other institutions). In the embodiment shown, thehealthcare facility 604 is arranged to accommodate a number of patients, by providing those patients with a medical infusion pump and a computing system for data communications with the pump. In the embodiment shown, the various patients can each be associated with aninfusion pump network 608 such as shown inFIG. 1 . Theinfusion pump networks 608 within thehealthcare facility 604 can correspond to networks present in patient rooms, or computing networks surrounding a patient at the facility. Other possibilities for the configuration of theinfusion pump networks 608 can exist as well. - The
healthcare facility 604 further includes ahealthcare data server 610 and a plurality ofcomputing systems 612 not directly associated with the medical infusion pumps orinfusion pump networks 608. Thehealthcare data server 610 andcomputing systems 612 are typically used by healthcare professionals for patient monitoring and care management, billing, and other purposes. - Each of the computing systems at the
healthcare facility 604, including those interfaced with medical infusion pumps, are communicatively interconnected, allowing communication among the variousinfusion pump networks 608 and with thehealthcare data server 610 andcomputing systems 612. The systems can be communicatively connected by any of a variety of communicative connections, including various wired and wireless Local Area Network connections. - The
external healthcare provider 606 can correspond to various remote healthcare providers or healthcare-related entities, such as remote physicians, remote specialists, health insurance companies, or other entities. Theexternal healthcare provider 606 generally receives a certain subset of the data related to one or more patients within thenetwork 600, such as test information, billing information, diagnosis information, or other information. - Each of the entities within the
network 600 are communicatively interconnected by a network614, which represents a communication network in which data can be transferred, such as the Internet or some other Wide Area Network (LAN or WAN). The network614 interconnects the various locations and computing systems at those locations, allowing data communication among the various locations. Through use of the network614, remote locations can store or access information from other locations and/or systems. For example, theexternal healthcare provider 606 can access information stored on thehealthcare data server 610 at thehealthcare facility 604. Or, data can be uploaded to the healthcare facility from one of the local (at the facility)infusion pump networks 608, or remoteinfusion pump networks 608 at one of theremote locations 602. Other examples of data sharing and data communications are possible as well. FIG. 7 illustrates a schematic architecture of a medicalinfusion pump network 700 according to an exemplary embodiment. In certain embodiments, the medicalinfusion pump network 700 can be implemented within themedical care network 600 ofFIG. 6 , using components discussed above inFIG. 2 . The various aspects of the medicalinfusion pump network 700 can be located at a healthcare facility, a remote facility, or at a patient's location (within or remote from the healthcare facility).- The medical
infusion pump network 700 includes anadministrator computer 702 communicatively connected to theserver 206 ofFIG. 2 , which includes adatabase 704. The medicalinfusion pump network 700 also includes one or more medical infusion pumps102 andcomputing systems 104. - The
administrator computer 702 andcomputing systems 104 are systems such as those described above in conjunction withFIG. 3 . Theadministrator computer 702 includes administrative software installed on or accessible to the computer for generating one ormore libraries 708 ofpump protocols 710 for use in the medical infusion pumps102. - In the present disclosure, libraries refer to collections of pump protocols generated using the administrative software described herein. Libraries can be stored in files, databases, or other data structures. Libraries contain pump protocols as well as indices pointing to the protocols, and are loaded in user software to select a specific pump protocol for operation of a medical infusion pump.
- The
computing systems 104 include user software for accessing one ormore libraries 708 ofprotocols 710 and programming amedical infusion pump 102 with aprotocol 710 or alibrary 708. In one possible embodiment, thecomputing systems 104 are optional in that the user software resides directly on the medical infusion pumps102. An exemplary embodiment of the user software is described below inFIGS. 26-41 . - The medical infusion pumps102 connect either to a
computing system 104 or directly to theserver 206, and are described above in conjunction withFIGS. 4-5 . In a first embodiment, the medical infusion pumps102 are configured to accept a pump protocol from theserver 206 or thecomputing system 104. In a second embodiment, the medical infusion pumps102 are configured to accept alibrary 708 ofpump protocols 710 directly from theserver 206 or from thecomputing system 104. - The
database 704 containspump protocol data 706 and log files716. Thepump protocol data 706 forms a plurality oflibraries 708 which in turn each include a number ofprotocols 710. Eachprotocol 710 is stored as a data record, and includes a set of parameters, including patientspecific pump parameters 712aand non-patientspecific pump parameters 712b,as described above. Eachlibrary 708 can contain one ormore pump protocols 710. - The log files716 include log data regarding access and usage of the
libraries 708, and can include information related to theadministrator computer 702, the medical infusion pumps102, or thecomputing systems 104 authorized to connect to theserver 206. In one possible embodiment, the log files include access records, which record instances in which medical infusion pumps102 access alibrary 708 on theserver 206. - B. Programmable Features Incorporated into a Medical Infusion Pump Network
FIGS. 1-7 , above, describe certain aspects of medical infusion pumps and networks including medical infusion pumps, including various types of computing systems and communicative connections used in management and operation of the pumps. Now referring toFIGS. 8-15 , applications of specific features incorporated into a medical infusion pump or a network including a medical infusion pump are described.- The applications and features described herein can be implemented, at least in part, in software, programmable hardware, and user interfaces integrated into the medical infusion pump, or a computing system interfaced with one or more medical infusion pumps. For example, one or more features are implemented in a pump application program able to be loaded onto and execute on a medical infusion pump. These programmable features relate to confirmation of pump protocols and user authentication for accessing features in the medical infusion pump.
- Now referring to
FIGS. 8-9 , systems and methods for verifying a standing order in a medical infusion pump are described. Generally, caregivers administer only those medications for which the physician has written and signed an order. The physician's order directs caregivers to provide care to a patient in accordance with the generalized instructions provided. Nurses and other caregivers providing drugs or other therapies to a patient are expected to do so accurately. The accuracy standard is expressed as “five rights” for patient care; that is, that the right patient receives the right drug, at the right dose, by the right route, and at the right time. - The systems and methods described are intended to improve safety in delivering fluids to a user using a medical infusion pump. Fluid delivery in a pump is likewise intended to be error-free, and consistent with a standing order. A standing order in a medical infusion pump corresponds to the generally prescribed use of a medical infusion pump to delivery fluids to a user at a specified rate and in accordance with a proper therapy, qualifier and drug (as explained above in
FIGS. 1 and 7 ). By following the standing order associated with a patient, the medical infusion pump is ensured to deliver drugs and other fluids according to the correct pump protocols and to the right patient. FIG. 8 illustrates a flowchart of aprocess 800 for verifying a standing order in a medical infusion pump, according to a possible embodiment of the present disclosure. The process provides additional verification of a standing order, as reflected in a programmed pump protocol, and identified by the therapy, qualifier, drug, and other patient information relevant to fluid delivery, to improve error rates and improve the “five rights” accuracy of the medical infusion pump. For example, the medical infusion pump can require a check of the accuracy of the pump protocol (e.g. by comparing the pump protocol to the sensed cartridge inserted in the pump), and can request independent verification of the protocol (e.g. the standing order) from an external computing system.- The
process 800 is instantiated at astart operation 802, which corresponds to initializing a medical infusion pump for operation. Thestart operation 802 includes, for example, associating the medical infusion pump with a patient and powering on the pump. In certain embodiments, thestart operation 802 includes communicatively connecting the medical infusion pump with computing systems in an infusion pump network. - A
protocol selection module 804 selects a protocol for use in a medical infusion pump. Theprotocol selection module 804 selects the protocol from among a number of protocols, such as could be found in a library of protocols, as described in conjunction withFIG. 7 , above. Theprotocol selection module 804 can execute on either the medical infusion pump or a computing system communicatively connected to the medical infusion pump in an infusion pump network, such as thenetwork 100 ofFIG. 1 or thenetwork 600 ofFIG. 6 . - In some embodiments, the
protocol selection module 804 prompts a user (e.g. a nurse, a physician or other clinician) to select a protocol for use in conjunction with a prescribed therapy, or a qualifier for that therapy, or a drug to be delivered to a patient, or all three of these aspects. In other embodiments, theprotocol selection module 804 identifies possible protocols for use in conjunction with a drug or therapy, and prompts a user for selection from among a group of possible protocols useable in the medical infusion pump. - The
protocol selection module 804 results in selection of a protocol useable by the medical infusion pump to accomplish execution of the standing order in accordance with physician direction. However, additional verification of the protocol is required to ensure that a correct protocol has been selected. - A
pump verification module 806 verifies that the selected protocol is appropriate based on information available at the pump. Thepump verification module 806 verifies a standing order (e.g. a particular use of a pump protocol selected via the protocol selection module804) by displaying for review various aspects of the pump protocol and other information. For example, thepump verification module 806 allows a user to view and verify various aspects of a pump protocol, including the various parameters encompassed by the pump protocol and the therapy, qualifier, and/or drug used to select the protocol. Examples of the parameters that are verifiable by a user include a range of permissible basal delivery rates, a bolus amount, a fluid delivery amount, a range of values and patterns for extended boluses, alarm values, or protocols for data communication. Other information can be displayed for verification as well. - The
pump verification module 806 also optionally requires verification that the patient with which the pump is associated is properly associated with the standing order (e.g. a child patient is not being administered an adult dosage, or vice versa), and that the cartridge installed into the medical infusion pump corresponds to the drug and fluid delivery parameters in the pump protocol. Other verification procedures can be performed as well. - The
pump verification module 806 preferably requires a user, such as a healthcare professional, to verify the protocol on the pump in accordance with the standing order. The verification can be performed by visual inspection of the pump parameters, drugs used, and other aspects of the standing order displayed on the medical infusion pump, as is shown in the example display ofFIG. 9 . In an alternative embodiment, one or more of the parameters incorporated into the pump protocol can be verified by the medical infusion pump (e.g. the drug, by comparing the protocol to the cartridge inserted into the pump). - A
display module 808 displays the protocol to a healthcare professional, such as the nurse, doctor, or other clinician, on a computing system separate from the medical infusion pump. Thedisplay module 808 displays a variety of information relevant to the protocol, including various parameters and other information about the patient and manner of delivery. As described in conjunction with thepump verification module 806, this information can optionally include the patient's name, as well as a therapy, a qualifier, and a drug to be delivered by the medical infusion pump, as well as parameters for use of that therapy qualifier and drug. These pump parameters can include, in various embodiments, a delivery rate, allowed adjustments to the delivery rate (e.g. hard and soft limits on the rate), allowed refills of the fluid cartridge associated with the pump, the name of the ordering doctor, and other information that is typically included within a standing order for use of a protocol. In certain embodiments, thedisplay module 808 displays analogous information to that displayed on the medical infusion pump by theverification module 806. - In a possible embodiment, the
display module 808 causes the protocol information to be displayed on a display of a computing system communicatively connected to the medical infusion pump, such as a local computing system that is part of an infusion pump network (e.g. the infusion pump network ofFIG. 1 ). In other embodiments, thedisplay module 808 causes the protocol information to be displayed on a display of a computing system remotely located from the medical infusion pump, and requires independent confirmation of at least one aspect of the protocol by another clinician, nurse, doctor, or other healthcare provider (separate from the healthcare provider initializing the pump locally). - Generally, the computing system displaying the protocol and other information related to programming the medical infusion pump receives a copy of the protocol from the medical infusion pump, and displays the same information as is displayed on the medical infusion pump. However, in certain embodiments, more or less information can be displayed, with sufficient consistency such that the caregiver viewing the protocol on the computing system can determine that the same protocol is referenced on both the computing system and the medical infusion pump. For example, various pump parameters in a named pump protocol could be displayed on the medical infusion pump, but only the name (and possibly a subset of those pump parameters) might be displayed on the computing system. Other arrangements are possible as well.
- A
prompt module 810 requests that a healthcare provider confirm the displayed elements of the protocol on the external computing system to again verify that the patient's “five rights” are followed in accordance with the standing order. Theprompt module 810 requires an analogous confirmation from a healthcare provider that the protocol programmed into the medical infusion pump is appropriate based on the planned treatment of that patient (e.g. based on the standing order). Aconfirmation receipt module 812 corresponds to the medical infusion pump receiving confirmation of the protocol from the external computing system. In one embodiment, the confirmation received from the external computing system is a confirmation message indicating that the protocol is correct; in other embodiments, additional messages, amendments to the protocol, and other operations may be included in the communication to the medical infusion pump. - An
operation module 814 allows the medical infusion pump to commence operation using the protocol, in accordance with the standing order. In theprocess 800, although various of the modules can be executed in different orders, theoperation module 814 is reached only after theconfirmation receipt module 812 and thepump verification module 806. So, two independent confirmations are required of the protocol by a nurse or other caregiver prior to allowing operation of the medical infusion pump. Requiring separate, independent confirmation of pump parameters on the medical infusion pump and on separate computing systems and pumps reduces the likelihood of errors occurring in programming the medical infusion pump, thereby improving patient care. Operational flow in the process terminates at anend operation 816, which corresponds to completion of theprocess 800 and allowance of the medical infusion pump to initiate or continue operation in accordance with the verified protocol (i.e. in accordance with the standing order). FIG. 9 is a schematic view of aninfusion pump network 900 configured for dual confirmation of a standing order, according to a possible embodiment of the present disclosure. Theinfusion pump network 900 generally corresponds to theinfusion pump network 100 ofFIG. 1 , but illustrates an embodiment in which confirmation of pump protocols are required prior to operation of a medical infusion pump in accordance with the pump protocol (and associated standing order).- The
infusion pump network 900 includes amedical infusion pump 902 communicatively connected to acomputing system 904 via acommunication link 906. Themedical infusion pump 902 can be any of a variety of medical infusion pumps, such as the one described in conjunction withFIGS. 4-5 . Likewise, the computing system can be any of a number of general or specific use computing systems, such as the system described inFIG. 3 . Thecommunication link 906 can be any of the communication link types described inFIG. 1 . - As illustrated, the
medical infusion pump 902 includes adisplay 908 and a keypad909, and thecomputing system 904 also includes adisplay 910 and keyboard911. This allows each of these systems to (1) display a pump protocol selected for use in the medical infusion pump and (2) receive confirmation inputs from a user which indicate that the protocol is/is not correct in view of the standing order. - As shown in
FIG. 9 , information relating to the protocol is displayed on adisplay 908 of thepump 902 and adisplay 910 of thecomputing system 904. The information, as shown, includes a name of the therapy, qualifier, and drug used in selecting the protocol, as well as a duration of operation of the protocol, the name of the patient, and a confirmation prompt. Additional information can be displayed on one or both of the displays, such as information about the pump parameters included in the pump protocol. As previously mentioned, these pump parameters include, for example, a range of permissible basal delivery rates, a bolus amount, a fluid delivery amount, a range of values and patterns for extended boluses, alarm values, or protocols for data communication. - Referring now to
FIGS. 10-12 , systems and methods are disclosed for managing access to various features that can be included in a medical infusion pump. The systems and methods disclosed in these figures operate in conjunction with a medical infusion pump such as is disclosed inFIG. 4-5 , as well as any peripheral equipment providing extended functionality to the pump (e.g. a bar code scanner or other peripheral device). By managing access to the various hardware and software features and settings of the medical infusion pump, the pump provides enhanced safety and security, preventing unauthorized users from altering settings of the pump or using the pump in an unauthorized or unsafe manner. Settings managed in the medical infusion pump can include, for example, settings related to pump protocols, pump therapies, qualifiers relating to pump therapies, pump communications settings, user access privileges, security settings, and history data settings. Other settings may be protected and managed using the security systems and access rights protections of the present disclosure. FIG. 10 illustrates a flowchart of aprocess 1000 for managing access to features in a medical infusion pump, according to a possible embodiment of the present disclosure. Theprocess 1000 is instantiated at astart operation 1002, which corresponds to initial use of a pump in an infusion pump network.- A
user association module 1004 associates a user with the medical infusion pump, providing access to one or more functional aspects of the medical infusion pump for the user. Theuser association module 1004 establishes the user's ability to log in to the medical infusion pump, and grants that user at least default access rights to view screens relating to the current operational status of the pump. - The
user association module 1004 optionally grants additional access rights to one or more systems and settings in a medical infusion pump to the user. The systems and settings in the medical infusion pump can include to settings in a pump and the user's right to view or modify those settings; the systems and settings can also include various modular hardware or software unrelated to protocol selection. In one possible example of settings modifiable in the pump, theuser association module 1004 allows the user to view or modify pump protocols or pump parameters, such as the range of acceptable basal delivery rates, drug delivery patterns, bolus delivery times or frequencies, bolus amounts, or other variables related to fluid delivery to a patient. The user can also be allowed to view and modify other pump parameters. In a possible example of accessible systems in the pump, the access rights granted to the user can relate to a bar code scanner, a drug cartridge, a battery compartment, or certain input keys of the pump. - In some embodiments, the
user association module 1004 operates at least in part on a computing system communicatively interconnected with a plurality of medical infusion pumps. In such embodiments, theuser association module 1004 can associate the user with more than one medical infusion pump, thereby allowing the user to establish a single access rights record used by all pumps. In other embodiments, theuser association module 1004 operates in each medical infusion pump, and the user is required to establish a usage rights record in each pump. - The
user association module 1004 optionally associates the user with a user class, with the user class having one or more sets of predetermined access privileges. Each user class is configurable to have different access privileges to functionality in a medical infusion pump, and by associating a user with the user class, that user is afforded the access rights given to that class. - In certain embodiments, user classes include an administrative user class, a physician user class, a nurse user class, a pharmacist user class, a patient user class, and other user classes. The administrative user class is granted access to all of the functionality available to the medical infusion pump. The other user classes are granted varying access rights, with the patient class generally provided the least access privileges. For example, while the administrative user class or the physician user class has access to modify pump protocols by modifying one or more of the pump parameters, a patient user class will generally not be given such an access right. The access privileges of the user classes are also optionally modifiable in the medical infusion pump (or a computing system interconnected to the medical infusion pump), such as via user access records and user class association records, for example the records of
FIGS. 11-12 , below. - A security
data association module 1006 associates security data with user who is associated with the medical infusion pump. The securitydata association module 1006 stores security data that will be used during subsequent use of the medical infusion pump to access functionality by the user. The securitydata association module 1006 can associate one or more types of security data with each user, allowing the user to gain access to functionality of the medical infusion pump by providing at least one of those types of security data. Security data is data associated with the user that the user can supply to prove his/her identity to the medical infusion pump. In various embodiments, the security data includes a password, an access code, an answer to a security question, an account number, or biometric data, such as a fingerprint pattern, retina scan, or other authorization data. - In certain embodiments, one of which is described in greater detail in part B.3, below, the security data is embodied on an access card useable to gain access to functionality in the medical infusion pump. A user can swipe, scan, or press the access card against a portion of the pump capable of reading the security data (e.g. a magnetic card reader, a touch screen, or an optical scanner) to provide security data to the pump.
- In some embodiments, more than one type of security data is accepted. In these embodiments, features of the pump requiring higher security may require multiple types of security data prior to granting access to functionality. For example, a user can be required to enter a password and provide a thumbprint scan to gain access to certain functionality in the medical infusion pump. Other possibilities regarding functionality or combinations of security data are possible as well.
- A security
data receipt module 1008 receives security data from the user on a subsequent access attempt in the medical infusion pump. The securitydata receipt module 1008 receives security data of a number of forms, corresponding to the security data associated with the user by the securitydata association module 1006. The securitydata receipt module 1008 also compares the received security data to the stored security data associated with the user to determine whether a match exists. If a match between the security data exists, operational flow in theprocess 1000 proceeds to an accessrights determination module 1010. If no match exists, no access rights are afforded to the user. - The access
rights determination module 1010 determines the particular functionality accessible to the user, based on the rights established in theuser association module 1004. These access rights correspond to the functionality in the medical infusion pump, relating both to mechanical or electrical systems and software settings incorporated into the pump, as previously described. The securitydata receipt module 1008 and the accessrights determination module 1010 can, in certain embodiments, determine access rights based on information in a user access record or user class association record, an example of which is described in conjunction withFIGS. 11-12 . In such an embodiment, theuser access record 1100 is accessed by the securitydata receipt module 1008 to determine a match between the one or more types of security data provided by the user and the security data previously associated with the user. Once that match is determined, access rights are established by the accessrights determination module 1010, either by reviewing specific access rights granted to the user in theuser access record 1100 or by reviewing access rights granted to a user class (of which the user is a part) in the userclass association record 1200. - An
access module 1012 operates following the accessrights determination module 1010 to allow access to a user in accordance with the access rights associated with that user. Theaccess module 1012 only allows access to the various systems and settings in the medical infusion pump that are associated with access rights granted to the user (e.g. through listing in a user access record or a user class association record as inFIGS. 11-12 ). An optionalaccess denial module 1014 denies access to the user relating to one or more software or hardware/mechanical systems with which that user's usage rights are not associated. - In an example of operation of the
access module 1012 and theaccess denial module 1014, a patient will generally be afforded access rights to certain pump menus and pump settings, allowing the user to administer a bolus or to view operational status of the medical infusion pump with which that patient is associated. The patient can have personalized security data (e.g. an access code or password) or can use a generalized patient login access account. That patient will not be able to access functionality related to certain aspects of the medical infusion pump, such as to edit pump protocols, to use a bar code scanner, or other systems, based on operation of the access denial module. These access rights, however, may be afforded to other users, such as nurses, doctors, or pharmacists. Theprocess 1000 terminates at andend operation 1016, which corresponds to continued operation in accordance with the determined access rights for the user of the pump. - Now referring to
FIGS. 11-12 , additional details regarding the contents of theuser access record 1100 and userclass association record 1200 are described, in accordance with an example embodiment of the present disclosure.FIG. 11 illustrates example contents of auser access record 1100 that is used to store and validate security data received from and associated with a user having an account to log in to a medical infusion pump. - The
user access record 1100 includes one ormore user entries 1102, each of which corresponds to a separate individual having a right to log in to and access information on a medical infusion pump. Eachuser entry 1102 includes auser name field 1104, one or more security data fields1106 associated with that user, and one or more accessright fields 1108 associated with theuser entry 1102. Theuser name field 1104 corresponds to the name of the individual logging in to the pump, while thesecurity data fields 1106 include the various security data associated with that user, such as an access code, password, bar code, or biometric data. - The access
right fields 1108 define the access rights available to a user. The various listed access rights allow different levels or combinations of access rights to settings and systems in the medical infusion pump. In the example shown, various named access rights are listed in the user access record, including an administrative access right, a program access right, a bolus access right, and other access rights. The administrative access right (shown as associated with a user having the name “John Doe”) provides full access to view and amend pump protocols, and access to all of the hardware and mechanical features of the medical infusion pump. The program access right allows a user to view the various software features in the medical infusion pump, and to initiate use of a new pump program or protocol in the medical infusion pump. This right may be given, for example, to a nurse who will be required to program the medical infusion pump in accordance with a doctor's order. The program access right may not allow the nurse or other user to alter the parameters included in pump protocols (as would be allowed to a user having an administrative access right), but would allow the user to select a pump protocol for programming the pump. The bolus access level allows a user to administer boluses of the drug or other therapeutic fluid delivered by the pump. This access right can be given, for example, to a patient for management of bolus delivery, without allowing the patient an access right to program the medical infusion pump or alter the pump protocol operating on the medical infusion pump (as would be included in the program access right and the administrative access right). - The
user entry 1102 also optionally includes one or moreuser class fields 1110 which list the user classes to which the user entry (and corresponding user) belongs. Theuser class fields 1110 provide a reference link within the user access record to a user class association record, such as therecord 1200 ofFIG. 12 . By associating a user with a user class, that user is afforded the access rights of the class with which they are associated. - A user can be associated with more than one access right or class in the
user access record 1100. If any of the access rights or classes in the user access record allow the user to perform an action (e.g. altering pump protocols, programming the pump), that user is allowed to perform that action in the medical infusion pump. FIG. 12 shows an example configuration of a userclass association record 1200, which includes one or moreuser class entries 1202. Each of theuser class entries 1202 corresponds to a separate user class associated with one or more access rights. Theuser classes 1202 listed in the userclass association record 1200 allow common combinations of access rights granted to be grouped into a record for ease of use and assignment to users. For example, all doctors will typically be afforded equal access rights to medical infusion pumps. Similarly, patients will all be afforded similar access rights, but those access rights will be different from (more restrictive) than those afforded to doctors. Similar access right distinctions can be made for nurses, pharmacists, or other clinicians.- Each
user class entry 1202 is associated with one or more member entries1204 and one or moreaccess rights entries 1206. The member entries1204 correspond to users who are members of the class and are designated to receive the access rights of the class; for example, the member entries can correspond to theuser entries 1102 of theuser access record 1100. Theaccess rights entries 1206 define the access rights associated with theuser class entry 1202, and by reference each user identified in the member entries1204. - Referring now to
FIGS. 11-12 generally, in one embodiment, theuser access record 1100 and userclass association record 1200 can be stored on and managed by a medical infusion pump. In a further embodiment, theuser access record 1100 and userclass association record 1200 are stored on a computing system communicatively interconnected to one or more medical infusion pumps, as is described in conjunction with the networks ofFIGS. 1-2 and6-7, above. - The access rights afforded to users of the medical infusion pump are optionally definable by editing the
records records - The
user access record 1100 and userclass association record 1200 are depicted as text files that can be stored in a memory of the medical infusion pump or a computing device. However, these records can be configured in a number of alternative formats to that depicted inFIGS. 11-12 . In one alternative embodiment, one or both records are stored in a relational database, and can be interrelated to other user records, stored security data (e.g. fingerprint profile files), or other information relevant to access of systems and settings in a medical infusion pump. In a further embodiment, the records are stored as a text file or spreadsheet file, and maintained within a single record file. Other storage configurations are possible as well. - Referring now to
FIGS. 13-15 , a system for user authentication is described, using a touch screen display integrated into the medical infusion pump. The touch screen display in the medical infusion pump can be, for example, any display described above in conjunction with thedisplay 406 ofFIG. 4 . The systems described herein can be used in conjunction with the security features of part B.2, above, to authenticate a user in conjunction with security data relating to an input signal received from the touch screen display. FIG. 13 illustrates a flowchart of aprocess 1300 for authenticating a user in a medical infusion pump using a touch screen display. The process generally allows a user to touch a display of a medical infusion pump with a hand, keyed card, or other object to validate the identity of the user and allow the user access to various features in the medical infusion pump. Theprocess 1300 is instantiated at astart operation 1302.- A
signal association module 1304 associates a signal with a user or user class, and stores a representation of that signal for comparison and authentication of signals received from a user seeking access to features of the medical infusion pump. The signal is generally an analog or digital electrical signal received from a touch screen display of a medical infusion pump. The signal can, in various embodiments, corresponds to a pattern or sequence of touches or motions by a user, or by an object carried by the user. In one example embodiment, the signal corresponds to a digital or analog signal received from a touch-sensitive display based on contact with a keyed, shaped access card, as shown inFIG. 15 , below. In a further example embodiment, the signal corresponds to a signal generated in response to a biometric scan, such as a scan or capture of an image of the user, a fingerprint of the user, or other biometric scan information. - The user or user class can be any user or class registrable in the medical infusion pump, such as those described above in
FIGS. 10-12 . Example users or classes of users include doctors, nurses, patients, pharmacists, technicians, or and clinicians who use, program, repair, or otherwise interact with the medical infusion pump. - In a possible embodiment, the
signal association module 1300 associates a generalized signal, such as a known touch action on a touch screen display, with a generalized or default access account on the medical infusion pump (e.g. a default account created in user records as described above inFIGS. 10-12 ). In such an embodiment, a user touching the display will cause the display to generate the generalized signal and receive access to the medical infusion pump in accordance with the access rights assigned to that generalized or default access account. - A
signal receipt module 1306 corresponds to receiving a signal in the medical infusion pump from a display. In some embodiments of the present disclosure, thesignal receipt module 1306 receives a signal from a touch screen display, such as a multi-touch display or other type of display described in conjunction withFIG. 4 . Thesignal receipt module 1306 generally receives an analog signal from the display (e.g. based on contact with a touch screen display) and optionally converts that analog signal to a digital signal for comparison with a stored value associated with the user by thesignal association module 1304. - A
signal evaluation module 1308 compares the signal received by thesignal receipt module 1306 with a stored signal associated with a user or a generalized access account to authenticate the user. Thesignal evaluation module 1308 verifies the identity of the user based on the signal. For example, thesignal evaluation module 1308 can compare digital values generated based on a signal with a stored digital value based on a prior signal, as discussed in conjunction withFIGS. 14-15 . If the user is recognized by thesignal evaluation module 1308, access rights are granted to that user in accordance with the access rights and user record associated with the signal. In certain embodiments, if the user is not recognized by thesignal evaluation module 1308, access is denied to the user. - An
access module 1310 grants access to a user in accordance with one or more access rights associated with a user record. Examples of access rights and user records are described above in conjunction withFIGS. 10-12 . Theprocess 1300 terminates at an end operation1312, which corresponds to generalized operation of the medical infusion pump by the user, in accordance with the authorized access rights afforded to that user. FIG. 14 illustrates a touch screenuser authentication record 1400 useable in a medical infusion pump, according to a possible embodiment of the present disclosure. The touch screenuser authentication record 1400 generally corresponds to the user access record ofFIG. 11 , but includes information relating to touch screen user authentication systems useable in the medical infusion pump. The touch screenuser authentication record 1400 includes a plurality ofuser records 1402, each of which includes auser field 1404, one or morekey fields 1406, and optionally one ormore association fields 1408 or one or more user rights fields1410. Eachuser record 1402 corresponds to access methods associated with a user, for use in a medical infusion pump having a touch screen authentication system.- The
user field 1404 corresponds to the name of the user, and can be used as the name of the user record as well. Thekey fields 1406 correspond to the signals receivable by the system that would be recognized as a user attempting to use the medical infusion pump. In the embodiment shown, the signals are illustrated as being stored as two types: digitized codes and images of biometric scans. Other types of signals, such as analog signals, could be captured as well by storing certain signature characteristics of those signals. In a possible embodiment of a medical infusion pump using a keyed access card pressed against the touch screen for user validation (e.g. the system ofFIG. 15 ), the digitized codes in thekey fields 1406 correspond to the key ridge codes of the access card. An example of an access card and corresponding touch screen digitized code is shown inFIG. 15 . - The association fields1408 generally correspond to the user class fields described above in conjunction with
FIGS. 10-11 , but can also include common authentication data used by groups of users. In certain embodiments, the association fields refer to groups of users sharing at least one common key field. Using that common key field, users in the user class can access settings and systems in the medical infusion pump according to the common access rights of that user class. - The
user rights fields 1410 correspond generally to the access rights described in the records ofFIGS. 10-11 , and define access rights for one or more users associated with information in the key fields of thesame user record 1402. Alternatively to including theuser rights fields 1410 in the touch screenuser authentication record 1400, the system can link to user rights in a user access record or user class association record, such as are described above in conjunction withFIGS. 10-11 . - The
user authentication record 1400 as described herein is intended as an example embodiment of a data structure in which access rights and security data can be managed. As with therecords user authentication record 1400 can include various other information, or can be embodied in a variety of other formats of databases or other data structures. FIG. 15 illustrates amedical infusion pump 1500 having a touch screen operable for user authentication, according to a possible embodiment of the present disclosure. Themedical infusion pump 1500 generally corresponds to the medical infusion pumps described in FIGS.1 and4-5, and includes a touchscreen user interface 1502, and soft keys1504a-d. The touchscreen user interface 1502 is any of a variety of types of touch-sensitive interfaces such as those described above in conjunction with thedisplay 406 ofFIG. 4 .- In the embodiment shown, the touch
screen user interface 1502 includes one or more regions1506a-bconfigured to accept a touch from a user, access card, or other keyed access method applied to the display, and generate a signal in response to that touch for the purposes of user authentication. Specifically shown are afingerprint region 1506aand a keyedaccess contact region 1506b;however, other regions can be included as well. Thefingerprint region 1506aacts as a fingerprint reader for the medical infusion pump, and can be integrated into thedisplay 1502 or a separate display region. Thefingerprint region 1506areceives a fingerprint and generates an analog signal or captures an image of the fingerprint (based, for example, on pressure or imaging) for authentication using a key in a touch screen user authentication record, such as therecord 1400 ofFIG. 14 . The keyedaccess contact region 1506baccepts contact with akeyed access card 1510, which includes akeyed pattern 1512 on at least one edge of the card. Thekeyed pattern 1512 corresponds to a digital code stored in an authentication record (e.g. therecord 1400 ofFIG. 14 ) to authenticate a user who is a holder of thekeyed access card 1510. When thekeyed pattern 1512 is depressed against the keyedaccess contact region 1506b,a signal is generated by the display representative of a code identifying the user, thereby authenticating that user's access to the systems and settings of the medical infusion pump. - The soft keys1504a-dprovide an alternative method of controlling the pump, allowing a user to key in an access code or other options (e.g. confirming the touch access) during the authentication process, as required.
- The above specification, examples and data provide a complete description of the manufacture and use of the composition of the invention. Since many embodiments of the invention can be made without departing from the spirit and scope of the invention, the invention resides in the claims hereinafter appended.
Claims (25)
1. A method of verifying a standing order in a medical infusion pump, the method comprising:
selecting a protocol for execution of a standing order in a medical infusion pump;
verifying the protocol in the medical infusion pump;
receiving confirmation of the protocol from a system external to the medical infusion pump; and
upon receiving confirmation of the protocol, allowing operation of the medical infusion pump in accordance with the protocol.
2. The method ofclaim 1 , wherein the protocol includes one or more pump parameters selected from the group consisting of:
a range of permissible basal delivery rates;
a bolus amount;
a fluid delivery amount;
a range of values and patterns for extended boluses;
alarm values; and
protocols for data communication.
3. The method ofclaim 1 , wherein selecting the protocol further comprises selecting a therapy.
4. The method ofclaim 1 , wherein selecting the protocol further comprises selecting a qualifier.
5. The method ofclaim 1 , wherein selecting the protocol further comprises selecting a drug.
6. The method ofclaim 1 , further comprising displaying one or more parameters associated with the protocol on a display separate from the medical infusion pump.
7. The method ofclaim 1 , wherein verifying the protocol in the medical infusion pump includes receiving confirmation of the protocol from a healthcare provider.
8. The method ofclaim 1 , wherein receiving confirmation of the protocol includes receiving confirmation of at least one patient-specific parameter selected from a group of parameters consisting of:
patient identity;
drug identity;
time of drug application;
dosage; and
route.
9. The method ofclaim 1 , further comprising prompting a user for confirmation of the standing order on a display of the system external to the medical infusion pump.
10. A medical infusion pump comprising:
a pump mechanism;
a memory;
a programmable circuit arranged to control the pump mechanism and operatively connected to the memory, the programmable circuit programmed to:
select a protocol for execution of a standing order in a medical infusion pump;
verify the protocol in the medical infusion pump;
receive confirmation of the protocol from a system external to the medical infusion pump; and
upon receiving confirmation of the protocol, allow operation of the medical infusion pump in accordance with the protocol.
11. The medical infusion pump ofclaim 10 , wherein the protocol includes one or more pump parameters selected from the group consisting of:
a range of permissible basal delivery rates;
a bolus amount;
a fluid delivery amount;
a range of values and patterns for extended boluses
alarm values; and
protocols for data communication.
12. The medical infusion pump ofclaim 10 , wherein allowing operation of the medical infusion pump in accordance with the protocol comprises initiating delivery of fluids to a patient in accordance with a standing order.
13. The medical infusion pump ofclaim 10 , wherein the programmable circuit is further programmed to prompt a user for confirmation of the protocol.
14. The medical infusion pump ofclaim 10 , wherein the programmable circuit is programmed to receive the protocol from a computing system external to the medical infusion pump.
15. The medical infusion pump ofclaim 14 , wherein the programmable circuit is programmed to request the protocol from a protocol library stored on a server.
16. The medical infusion pump ofclaim 10 , wherein receiving confirmation of the protocol includes receiving confirmation of at least one aspect of the pump protocol, the at least one aspect selected from a group of aspects consisting of
patient identity;
drug identity;
time of drug application;
dosage; and
route.
17. The medical infusion pump ofclaim 10 , wherein the protocol is selected using protocol selection categories consisting of:
therapies;
qualifiers; and
drugs.
18. An infusion pump network comprising:
a medical infusion pump;
a computing system communicatively connected to the medical infusion pump;
wherein the infusion pump network is configured to execute program instructions to:
select a protocol for execution of a standing order in a medical infusion pump;
verify the protocol in the medical infusion pump;
transmit confirmation of the protocol from the computing system to the medical infusion pump; and
upon receiving confirmation of the protocol in the medical infusion pump, allow operation of the medical infusion pump in accordance with the protocol.
19. The infusion pump network ofclaim 18 , wherein the protocol is selected using protocol selection categories consisting of:
therapies;
qualifiers; and
drugs.
20. The infusion pump network ofclaim 18 , wherein the protocol includes one or more pump parameters selected from the group consisting of:
a range of permissible basal delivery rates;
a bolus amount;
a fluid delivery amount;
a range of values and patterns for extended boluses;
alarm values; and
protocols for data communication.
21. The infusion pump network ofclaim 18 , wherein the computing system is configured to prompt a user for confirmation of the standing order.
22. The infusion pump network ofclaim 18 , wherein medical infusion pump includes:
a pump mechanism;
a memory;
a programmable circuit arranged to control the pump mechanism and operatively connected to the memory, the programmable circuit programmed to, upon receiving confirmation of the protocol, deliver fluids to a patient via the pump mechanism according to the protocol.
23. The infusion pump network ofclaim 22 , wherein the programmable circuit is further programmed to prompt a user for confirmation of the protocol.
24. The infusion pump network ofclaim 18 , wherein the computing system is directly linked to the medical infusion pump.
25. The infusion pump network ofclaim 18 , wherein receiving confirmation of the protocol includes receiving confirmation of at least one aspect of the pump protocol, the at least one aspect selected from a group of aspects consisting of:
patient identity;
drug identity;
time of drug application;
dosage; and
route.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US13/619,575US20130012877A1 (en) | 2008-04-01 | 2012-09-14 | Security features for a medical infusion pump |
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US4147508P | 2008-04-01 | 2008-04-01 | |
| US12/416,584US9192712B2 (en) | 2008-04-01 | 2009-04-01 | Security features for a medical infusion pump |
| US13/619,575US20130012877A1 (en) | 2008-04-01 | 2012-09-14 | Security features for a medical infusion pump |
Related Parent Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US12/416,584DivisionUS9192712B2 (en) | 2008-04-01 | 2009-04-01 | Security features for a medical infusion pump |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| US20130012877A1true US20130012877A1 (en) | 2013-01-10 |
Family
ID=40903965
Family Applications (3)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US12/416,584Expired - Fee RelatedUS9192712B2 (en) | 2008-04-01 | 2009-04-01 | Security features for a medical infusion pump |
| US13/619,575AbandonedUS20130012877A1 (en) | 2008-04-01 | 2012-09-14 | Security features for a medical infusion pump |
| US13/619,481AbandonedUS20130012876A1 (en) | 2008-04-01 | 2012-09-14 | Security features for a medical infusion pump |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US12/416,584Expired - Fee RelatedUS9192712B2 (en) | 2008-04-01 | 2009-04-01 | Security features for a medical infusion pump |
Family Applications After (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| US13/619,481AbandonedUS20130012876A1 (en) | 2008-04-01 | 2012-09-14 | Security features for a medical infusion pump |
Country Status (6)
| Country | Link |
|---|---|
| US (3) | US9192712B2 (en) |
| EP (4) | EP3343567A1 (en) |
| KR (3) | KR20100126598A (en) |
| CN (3) | CN102172419A (en) |
| CA (1) | CA2723444C (en) |
| WO (1) | WO2009124133A2 (en) |
Cited By (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090270810A1 (en)* | 2008-04-01 | 2009-10-29 | Debelser David | Security Features for a Medical Infusion Pump |
| WO2016010778A1 (en)* | 2014-07-16 | 2016-01-21 | Smiths Medical Asd, Inc. | Infusion pump line identification |
| US9555186B2 (en) | 2012-06-05 | 2017-01-31 | Tandem Diabetes Care, Inc. | Infusion pump system with disposable cartridge having pressure venting and pressure feedback |
| US9962486B2 (en) | 2013-03-14 | 2018-05-08 | Tandem Diabetes Care, Inc. | System and method for detecting occlusions in an infusion pump |
| US10061899B2 (en) | 2008-07-09 | 2018-08-28 | Baxter International Inc. | Home therapy machine |
| US10258736B2 (en) | 2012-05-17 | 2019-04-16 | Tandem Diabetes Care, Inc. | Systems including vial adapter for fluid transfer |
| US10692595B2 (en) | 2018-07-26 | 2020-06-23 | Icu Medical, Inc. | Drug library dynamic version management |
| US10741280B2 (en) | 2018-07-17 | 2020-08-11 | Icu Medical, Inc. | Tagging pump messages with identifiers that facilitate restructuring |
| US10861592B2 (en) | 2018-07-17 | 2020-12-08 | Icu Medical, Inc. | Reducing infusion pump network congestion by staggering updates |
| US10881784B2 (en) | 2013-01-28 | 2021-01-05 | Smiths Medical Asd, Inc. | Medication safety devices and methods |
| US10898641B2 (en) | 2014-04-30 | 2021-01-26 | Icu Medical, Inc. | Patient care system with conditional alarm forwarding |
| US11052193B2 (en) | 2014-06-16 | 2021-07-06 | Icu Medical Inc. | System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy |
| US11194810B2 (en) | 2006-10-16 | 2021-12-07 | Icu Medical, Inc. | System and method for comparing and utilizing activity information and configuration information from multiple device management systems |
| US11235100B2 (en) | 2003-11-13 | 2022-02-01 | Icu Medical, Inc. | System for maintaining drug information and communicating with medication delivery devices |
| US11289183B2 (en) | 2014-09-15 | 2022-03-29 | Icu Medical, Inc. | Matching delayed infusion auto-programs with manually entered infusion programs |
| US11309070B2 (en) | 2018-07-26 | 2022-04-19 | Icu Medical, Inc. | Drug library manager with customized worksheets |
| US11328804B2 (en) | 2018-07-17 | 2022-05-10 | Icu Medical, Inc. | Health checks for infusion pump communications systems |
| US11470000B2 (en) | 2013-03-06 | 2022-10-11 | Icu Medical, Inc. | Medical device communication method |
| US11501877B2 (en) | 2013-11-11 | 2022-11-15 | Icu Medical, Inc. | Medical device system performance index |
| US11574737B2 (en) | 2016-07-14 | 2023-02-07 | Icu Medical, Inc. | Multi-communication path selection and security system for a medical device |
| US11571508B2 (en) | 2013-08-30 | 2023-02-07 | Icu Medical, Inc. | System and method of monitoring and managing a remote infusion regimen |
| US11587669B2 (en) | 2018-07-17 | 2023-02-21 | Icu Medical, Inc. | Passing authentication token to authorize access to rest calls via web sockets |
| US11605468B2 (en) | 2015-05-26 | 2023-03-14 | Icu Medical, Inc. | Infusion pump system and method with multiple drug library editor source capability |
| US11626205B2 (en) | 2011-10-21 | 2023-04-11 | Icu Medical, Inc. | Medical device update system |
| US11654237B2 (en) | 2009-04-17 | 2023-05-23 | Icu Medical, Inc. | System and method for configuring a rule set for medical event management and responses |
| US11763927B2 (en) | 2013-11-19 | 2023-09-19 | Icu Medical, Inc. | Infusion pump automation system and method |
| US12097351B2 (en) | 2013-09-20 | 2024-09-24 | Icu Medical, Inc. | Fail-safe drug infusion therapy system |
| US12130910B2 (en) | 2019-05-08 | 2024-10-29 | Icu Medical, Inc. | Threshold signature based medical device management |
| US12303464B2 (en) | 2020-04-03 | 2025-05-20 | Icu Medical, Inc. | Systems, methods, and components for transferring medical fluids |
| US12431238B2 (en) | 2020-09-05 | 2025-09-30 | Icu Medical, Inc. | Identity-based secure medical device communications |
Families Citing this family (105)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10353856B2 (en) | 2011-03-17 | 2019-07-16 | Carefusion 303, Inc. | Scalable communication system |
| US9427520B2 (en) | 2005-02-11 | 2016-08-30 | Carefusion 303, Inc. | Management of pending medication orders |
| US20080172026A1 (en) | 2006-10-17 | 2008-07-17 | Blomquist Michael L | Insulin pump having a suspension bolus |
| US6852104B2 (en) | 2002-02-28 | 2005-02-08 | Smiths Medical Md, Inc. | Programmable insulin pump |
| US6749582B2 (en) | 2002-04-30 | 2004-06-15 | The First Years Inc. | Pumping breast milk |
| US9123077B2 (en) | 2003-10-07 | 2015-09-01 | Hospira, Inc. | Medication management system |
| IL165365A0 (en) | 2004-11-24 | 2006-01-15 | Q Core Ltd | Finger-type peristaltic pump |
| US8308457B2 (en) | 2004-11-24 | 2012-11-13 | Q-Core Medical Ltd. | Peristaltic infusion pump with locking mechanism |
| IL179234A0 (en) | 2006-11-13 | 2007-03-08 | Q Core Ltd | An anti-free flow mechanism |
| IL179231A0 (en) | 2006-11-13 | 2007-03-08 | Q Core Ltd | A finger-type peristaltic pump comprising a ribbed anvil |
| US8535025B2 (en) | 2006-11-13 | 2013-09-17 | Q-Core Medical Ltd. | Magnetically balanced finger-type peristaltic pump |
| US20080228056A1 (en) | 2007-03-13 | 2008-09-18 | Michael Blomquist | Basal rate testing using frequent blood glucose input |
| US7751907B2 (en) | 2007-05-24 | 2010-07-06 | Smiths Medical Asd, Inc. | Expert system for insulin pump therapy |
| US8221345B2 (en) | 2007-05-30 | 2012-07-17 | Smiths Medical Asd, Inc. | Insulin pump based expert system |
| US9026370B2 (en) | 2007-12-18 | 2015-05-05 | Hospira, Inc. | User interface improvements for medical devices |
| US8986253B2 (en) | 2008-01-25 | 2015-03-24 | Tandem Diabetes Care, Inc. | Two chamber pumps and related methods |
| US8913991B2 (en)* | 2008-08-15 | 2014-12-16 | At&T Intellectual Property I, L.P. | User identification in cell phones based on skin contact |
| US8398584B2 (en) | 2009-01-16 | 2013-03-19 | Learning Curve Brands, Inc. | Breast pump and method of use |
| EP2724739B1 (en) | 2009-07-30 | 2015-07-01 | Tandem Diabetes Care, Inc. | Portable infusion pump system |
| US8882701B2 (en) | 2009-12-04 | 2014-11-11 | Smiths Medical Asd, Inc. | Advanced step therapy delivery for an ambulatory infusion pump and system |
| US11164672B2 (en) | 2010-01-22 | 2021-11-02 | Deka Products Limited Partnership | System and apparatus for electronic patient care |
| US9295778B2 (en) | 2011-12-21 | 2016-03-29 | Deka Products Limited Partnership | Syringe pump |
| US11244745B2 (en) | 2010-01-22 | 2022-02-08 | Deka Products Limited Partnership | Computer-implemented method, system, and apparatus for electronic patient care |
| US11210611B2 (en) | 2011-12-21 | 2021-12-28 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
| US9789247B2 (en) | 2011-12-21 | 2017-10-17 | Deka Products Limited Partnership | Syringe pump, and related method and system |
| US9677555B2 (en) | 2011-12-21 | 2017-06-13 | Deka Products Limited Partnership | System, method, and apparatus for infusing fluid |
| US11881307B2 (en) | 2012-05-24 | 2024-01-23 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
| US20110313789A1 (en) | 2010-01-22 | 2011-12-22 | Deka Products Limited Partnership | Electronic patient monitoring system |
| US20210365849A1 (en)* | 2010-01-22 | 2021-11-25 | Deka Products Limited Partnership | Computer-implemented method, system, and apparatus for electronic patient care |
| US9744300B2 (en) | 2011-12-21 | 2017-08-29 | Deka Products Limited Partnership | Syringe pump and related method |
| US10911515B2 (en) | 2012-05-24 | 2021-02-02 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
| US10453157B2 (en) | 2010-01-22 | 2019-10-22 | Deka Products Limited Partnership | System, method, and apparatus for electronic patient care |
| US9457158B2 (en) | 2010-04-12 | 2016-10-04 | Q-Core Medical Ltd. | Air trap for intravenous pump |
| KR20120008655A (en)* | 2010-07-19 | 2012-02-01 | 삼성전자주식회사 | Apparatus and method for improving security in a portable terminal |
| US8603033B2 (en) | 2010-10-15 | 2013-12-10 | Medtronic Minimed, Inc. | Medical device and related assembly having an offset element for a piezoelectric speaker |
| US8603032B2 (en)* | 2010-10-15 | 2013-12-10 | Medtronic Minimed, Inc. | Medical device with membrane keypad sealing element, and related manufacturing method |
| US8562565B2 (en) | 2010-10-15 | 2013-10-22 | Medtronic Minimed, Inc. | Battery shock absorber for a portable medical device |
| US8021322B1 (en) | 2010-11-29 | 2011-09-20 | Francis Nathania A | Enteral feeding apparatus |
| US9674811B2 (en) | 2011-01-16 | 2017-06-06 | Q-Core Medical Ltd. | Methods, apparatus and systems for medical device communication, control and localization |
| US9726167B2 (en) | 2011-06-27 | 2017-08-08 | Q-Core Medical Ltd. | Methods, circuits, devices, apparatuses, encasements and systems for identifying if a medical infusion system is decalibrated |
| AU2012299169B2 (en) | 2011-08-19 | 2017-08-24 | Icu Medical, Inc. | Systems and methods for a graphical interface including a graphical representation of medical data |
| US10022498B2 (en) | 2011-12-16 | 2018-07-17 | Icu Medical, Inc. | System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy |
| US10722645B2 (en) | 2011-12-21 | 2020-07-28 | Deka Products Limited Partnership | Syringe pump, and related method and system |
| US9675756B2 (en) | 2011-12-21 | 2017-06-13 | Deka Products Limited Partnership | Apparatus for infusing fluid |
| US11217340B2 (en) | 2011-12-21 | 2022-01-04 | Deka Products Limited Partnership | Syringe pump having a pressure sensor assembly |
| US10563681B2 (en) | 2011-12-21 | 2020-02-18 | Deka Products Limited Partnership | System, method, and apparatus for clamping |
| US11295846B2 (en) | 2011-12-21 | 2022-04-05 | Deka Products Limited Partnership | System, method, and apparatus for infusing fluid |
| US12131826B2 (en) | 2011-12-21 | 2024-10-29 | Deka Products Limited Partnership | Syringe pump and related method |
| JP6306566B2 (en) | 2012-03-30 | 2018-04-04 | アイシーユー・メディカル・インコーポレーテッド | Air detection system and method for detecting air in an infusion system pump |
| AU2013296555B2 (en) | 2012-07-31 | 2017-10-19 | Icu Medical, Inc. | Patient care system for critical medications |
| AU2013201566B2 (en) | 2012-08-31 | 2014-11-27 | Gambro Lundia Ab | Dialysis apparatus with versatile user interface and method and computer program therefor |
| KR20150093197A (en) | 2012-12-07 | 2015-08-17 | 스미스 메디칼 에이에스디, 인크. | Syringe characterization |
| US10434254B2 (en) | 2012-12-26 | 2019-10-08 | Roche Diabetes Care, Inc. | Method for configuring an insulin pump with configuring device |
| US9855110B2 (en) | 2013-02-05 | 2018-01-02 | Q-Core Medical Ltd. | Methods, apparatus and systems for operating a medical device including an accelerometer |
| EP2973370A4 (en)* | 2013-03-13 | 2016-08-17 | Carefusion 303 Inc | PREDICTIVE MEDICATION SECURITY |
| JP6660288B2 (en) | 2013-03-13 | 2020-03-11 | ケアフュージョン 303、インコーポレイテッド | Patient-specific medication management system |
| US20140276564A1 (en)* | 2013-03-14 | 2014-09-18 | Baxter Healthcare Sa | Pump controller and pump for individualized healthcare use |
| US9492608B2 (en) | 2013-03-15 | 2016-11-15 | Tandem Diabetes Care, Inc. | Method and device utilizing insulin delivery protocols |
| AU2014268355B2 (en) | 2013-05-24 | 2018-06-14 | Icu Medical, Inc. | Multi-sensor infusion system for detecting air or an occlusion in the infusion system |
| WO2014194065A1 (en) | 2013-05-29 | 2014-12-04 | Hospira, Inc. | Infusion system and method of use which prevents over-saturation of an analog-to-digital converter |
| US10166328B2 (en) | 2013-05-29 | 2019-01-01 | Icu Medical, Inc. | Infusion system which utilizes one or more sensors and additional information to make an air determination regarding the infusion system |
| EP4250313A3 (en) | 2013-12-26 | 2023-11-22 | Tandem Diabetes Care, Inc. | Integration of infusion pump with remote electronic device |
| US20150230760A1 (en)* | 2014-02-19 | 2015-08-20 | Q-Core Medical Ltd. | Methods, circuits, devices, systems and computer executable code for operating a medical device using a hybrid communication path |
| WO2015127189A1 (en) | 2014-02-21 | 2015-08-27 | Deka Products Limited Partnership | Syringe pump having a pressure sensor assembly |
| EP3110474B1 (en) | 2014-02-28 | 2019-12-18 | ICU Medical, Inc. | Infusion system and method which utilizes dual wavelength optical air-in-line detection |
| EP3113809A4 (en)* | 2014-03-07 | 2017-12-06 | Smiths Medical ASD, Inc. | Infusion pump drug delivery profiles, systems, and methods |
| US10832495B2 (en)* | 2014-04-18 | 2020-11-10 | Carefusion 303, Inc. | Remote maintenance of medical devices |
| US11344673B2 (en) | 2014-05-29 | 2022-05-31 | Icu Medical, Inc. | Infusion system and pump with configurable closed loop delivery rate catch-up |
| US10137246B2 (en) | 2014-08-06 | 2018-11-27 | Bigfoot Biomedical, Inc. | Infusion pump assembly and method |
| DK3191809T3 (en)* | 2014-09-08 | 2021-09-13 | Becton Dickinson Co | SYSTEM AND METHOD FOR MAKING A PHARMACEUTICAL COMPOUND |
| EP3193975B1 (en) | 2014-09-18 | 2022-07-06 | DEKA Products Limited Partnership | Apparatus and method for infusing fluid through a tube by appropriately heating the tube |
| US11344668B2 (en) | 2014-12-19 | 2022-05-31 | Icu Medical, Inc. | Infusion system with concurrent TPN/insulin infusion |
| US10850024B2 (en) | 2015-03-02 | 2020-12-01 | Icu Medical, Inc. | Infusion system, device, and method having advanced infusion features |
| FR3034600A1 (en)* | 2015-03-31 | 2016-10-07 | Orange | REMOTE ADMINISTRATION TECHNIQUE |
| US9993595B2 (en) | 2015-05-18 | 2018-06-12 | Tandem Diabetes Care, Inc. | Patch pump cartridge attachment |
| CN105107048B (en)* | 2015-08-12 | 2019-01-29 | 江苏怡龙医疗科技有限公司 | A kind of digital control type gynecological washer |
| CN105031767A (en)* | 2015-08-25 | 2015-11-11 | 吴旭武 | Intermittent liquid supplying method and device |
| KR102387568B1 (en)* | 2015-08-31 | 2022-04-18 | 삼성전자주식회사 | Method and apparatus for authentication based on fingerprint recognition |
| US10740436B2 (en) | 2015-11-25 | 2020-08-11 | Fenwal, Inc. | Data set distribution during medical device operation |
| US20170147771A1 (en)* | 2015-11-25 | 2017-05-25 | Fenwal, Inc. | Medical device location authorization |
| US10569016B2 (en) | 2015-12-29 | 2020-02-25 | Tandem Diabetes Care, Inc. | System and method for switching between closed loop and open loop control of an ambulatory infusion pump |
| US10541987B2 (en) | 2016-02-26 | 2020-01-21 | Tandem Diabetes Care, Inc. | Web browser-based device communication workflow |
| CA3023658C (en) | 2016-05-13 | 2023-03-07 | Icu Medical, Inc. | Infusion pump system and method with common line auto flush |
| WO2017214441A1 (en) | 2016-06-10 | 2017-12-14 | Icu Medical, Inc. | Acoustic flow sensor for continuous medication flow measurements and feedback control of infusion |
| CN106375333B (en)* | 2016-09-27 | 2019-10-22 | 上海移宇科技股份有限公司 | A method for ensuring infusion safety and a wearable medical device using the method |
| DE102016015368A1 (en)* | 2016-12-22 | 2018-06-28 | Drägerwerk AG & Co. KGaA | Medical device and method for operating a medical device |
| CN107890594A (en)* | 2017-10-11 | 2018-04-10 | 江苏人先医疗科技有限公司 | The method of Remote configuration infusion pump, storage medium, electronic equipment, infusion pump |
| US10089055B1 (en) | 2017-12-27 | 2018-10-02 | Icu Medical, Inc. | Synchronized display of screen content on networked devices |
| JP7062483B2 (en) | 2018-03-27 | 2022-05-06 | 大研医器株式会社 | Chemical injection system |
| EP3591662A1 (en)* | 2018-07-05 | 2020-01-08 | Advanced Microfluidics SA | Medical device and secure control system |
| JP7047185B2 (en) | 2018-08-16 | 2022-04-04 | デカ・プロダクツ・リミテッド・パートナーシップ | Medical pump |
| EP3956903A4 (en) | 2019-04-17 | 2023-01-11 | ICU Medical, Inc. | System for onboard electronic encoding of the contents and administration parameters of iv containers and the secure use and disposal thereof |
| CN110368097A (en)* | 2019-07-18 | 2019-10-25 | 上海联影医疗科技有限公司 | A kind of Medical Devices and its control method |
| JP6885997B2 (en)* | 2019-10-24 | 2021-06-16 | デカ・プロダクツ・リミテッド・パートナーシップ | Systems, methods, and equipment for electronic patient care |
| CN118658637A (en) | 2019-11-08 | 2024-09-17 | 百时美施贵宝公司 | System for verifying accuracy of serially connected drug modules in a combination drug delivery device |
| ES2933693T3 (en) | 2019-11-18 | 2023-02-13 | Eitan Medical Ltd | Rapid test for medical pump |
| US11278671B2 (en) | 2019-12-04 | 2022-03-22 | Icu Medical, Inc. | Infusion pump with safety sequence keypad |
| CA3189781A1 (en) | 2020-07-21 | 2022-01-27 | Icu Medical, Inc. | Fluid transfer devices and methods of use |
| CN111744075A (en)* | 2020-08-04 | 2020-10-09 | 中国银行股份有限公司 | Infusion monitoring alarm method, system, computer equipment and readable storage medium |
| BR112023006315A2 (en)* | 2020-10-06 | 2023-05-09 | Bayer Healthcare Llc | COMPUTER PROGRAM SYSTEM, METHOD AND PRODUCT TO PROVIDE ACCESS TO FLUID INJECTION SYSTEMS |
| US11135360B1 (en) | 2020-12-07 | 2021-10-05 | Icu Medical, Inc. | Concurrent infusion with common line auto flush |
| WO2022271879A1 (en)* | 2021-06-24 | 2022-12-29 | Icu Medical, Inc. | Infusion pump touchscreen with false touch rejection |
| USD1091564S1 (en) | 2021-10-13 | 2025-09-02 | Icu Medical, Inc. | Display screen or portion thereof with graphical user interface for a medical device |
| CA3241894A1 (en) | 2021-12-10 | 2023-06-15 | Icu Medical, Inc. | Medical fluid compounding systems with coordinated flow control |
| KR102833909B1 (en)* | 2022-11-03 | 2025-07-16 | 이오플로우(주) | Controlling method of drug injection device |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040193453A1 (en)* | 2003-03-28 | 2004-09-30 | Butterfield Robert D. | Infusion data communication system |
| US20050144043A1 (en)* | 2003-10-07 | 2005-06-30 | Holland Geoffrey N. | Medication management system |
| US20060047538A1 (en)* | 2004-08-25 | 2006-03-02 | Joseph Condurso | System and method for dynamically adjusting patient therapy |
Family Cites Families (23)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6241704B1 (en) | 1901-11-22 | 2001-06-05 | Sims Deltec, Inc. | Drug pump systems and methods |
| US5531697A (en) | 1994-04-15 | 1996-07-02 | Sims Deltec, Inc. | Systems and methods for cassette identification for drug pumps |
| KR100595922B1 (en)* | 1998-01-26 | 2006-07-05 | 웨인 웨스터만 | Method and apparatus for integrating manual input |
| JP2001033306A (en) | 1999-07-16 | 2001-02-09 | Seiko Precision Inc | Reflection type optical sensor |
| US7933780B2 (en)* | 1999-10-22 | 2011-04-26 | Telaric, Llc | Method and apparatus for controlling an infusion pump or the like |
| US7317967B2 (en)* | 2001-12-31 | 2008-01-08 | B. Braun Medical Inc. | Apparatus and method for transferring data to a pharmaceutical compounding system |
| US20050055242A1 (en)* | 2002-04-30 | 2005-03-10 | Bryan Bello | System and method for medical data tracking, analysis and reporting for healthcare system |
| CN1669036A (en)* | 2002-05-16 | 2005-09-14 | 斯科特实验室公司 | User authorization system and method for a sedation and analgesia system |
| US6915962B2 (en) | 2002-05-20 | 2005-07-12 | Aerogen, Inc. | Apparatus for providing aerosol for medical treatment and methods |
| US7835927B2 (en) | 2002-12-27 | 2010-11-16 | Carefusion 303, Inc. | Medication management system |
| US8954336B2 (en)* | 2004-02-23 | 2015-02-10 | Smiths Medical Asd, Inc. | Server for medical device |
| EP3432181B1 (en)* | 2004-11-12 | 2019-10-02 | Koninklijke Philips N.V. | Distinctive user identification and authentication for multiple user access to display devices |
| US20060247606A1 (en)* | 2005-03-09 | 2006-11-02 | Batch Richard M | System and method for controlling access to features of a medical instrument |
| US20080033360A1 (en)* | 2006-08-03 | 2008-02-07 | Smiths Medical Md, Inc. | Interface for medical infusion pump |
| US8858526B2 (en)* | 2006-08-03 | 2014-10-14 | Smiths Medical Asd, Inc. | Interface for medical infusion pump |
| US20080126969A1 (en)* | 2006-08-03 | 2008-05-29 | Blomquist Michael L | Interface for medical infusion pump |
| US8965707B2 (en)* | 2006-08-03 | 2015-02-24 | Smiths Medical Asd, Inc. | Interface for medical infusion pump |
| US8149131B2 (en)* | 2006-08-03 | 2012-04-03 | Smiths Medical Asd, Inc. | Interface for medical infusion pump |
| US8435206B2 (en)* | 2006-08-03 | 2013-05-07 | Smiths Medical Asd, Inc. | Interface for medical infusion pump |
| US8229562B2 (en)* | 2006-10-25 | 2012-07-24 | Codman NeuroSciences Sárl | Universal external control device for use by multiple conditional access users with varying access to functionality of an implantable medical device |
| US8425469B2 (en) | 2007-04-23 | 2013-04-23 | Jacobson Technologies, Llc | Systems and methods for controlled substance delivery network |
| US20090165121A1 (en)* | 2007-12-21 | 2009-06-25 | Nvidia Corporation | Touch Pad based Authentication of Users |
| CN102172419A (en)* | 2008-04-01 | 2011-09-07 | 史密斯医疗Asd公司 | Security features for a medical infusion pump |
- 2009
- 2009-04-01CNCN2011100928721Apatent/CN102172419A/enactivePending
- 2009-04-01EPEP18156261.2Apatent/EP3343567A1/ennot_activeWithdrawn
- 2009-04-01KRKR1020107024820Apatent/KR20100126598A/ennot_activeCeased
- 2009-04-01EPEP09726945Apatent/EP2274700A2/ennot_activeWithdrawn
- 2009-04-01EPEP10189447Apatent/EP2317453A3/ennot_activeCeased
- 2009-04-01EPEP10189449Apatent/EP2323054A3/ennot_activeCeased
- 2009-04-01CACA2723444Apatent/CA2723444C/ennot_activeExpired - Fee Related
- 2009-04-01KRKR1020107024610Apatent/KR20110008072A/ennot_activeCeased
- 2009-04-01KRKR1020107024819Apatent/KR101587301B1/ennot_activeExpired - Fee Related
- 2009-04-01CNCN2009801212048Apatent/CN102084367A/enactivePending
- 2009-04-01USUS12/416,584patent/US9192712B2/ennot_activeExpired - Fee Related
- 2009-04-01CNCN2011100928878Apatent/CN102247631A/enactivePending
- 2009-04-01WOPCT/US2009/039178patent/WO2009124133A2/enactiveApplication Filing
- 2012
- 2012-09-14USUS13/619,575patent/US20130012877A1/ennot_activeAbandoned
- 2012-09-14USUS13/619,481patent/US20130012876A1/ennot_activeAbandoned
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040193453A1 (en)* | 2003-03-28 | 2004-09-30 | Butterfield Robert D. | Infusion data communication system |
| US20050144043A1 (en)* | 2003-10-07 | 2005-06-30 | Holland Geoffrey N. | Medication management system |
| US20060047538A1 (en)* | 2004-08-25 | 2006-03-02 | Joseph Condurso | System and method for dynamically adjusting patient therapy |
Cited By (70)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11235100B2 (en) | 2003-11-13 | 2022-02-01 | Icu Medical, Inc. | System for maintaining drug information and communicating with medication delivery devices |
| US11194810B2 (en) | 2006-10-16 | 2021-12-07 | Icu Medical, Inc. | System and method for comparing and utilizing activity information and configuration information from multiple device management systems |
| US20090270810A1 (en)* | 2008-04-01 | 2009-10-29 | Debelser David | Security Features for a Medical Infusion Pump |
| US9192712B2 (en) | 2008-04-01 | 2015-11-24 | Smiths Medical Asd, Inc. | Security features for a medical infusion pump |
| US10095840B2 (en) | 2008-07-09 | 2018-10-09 | Baxter International Inc. | System and method for performing renal therapy at a home or dwelling of a patient |
| US10068061B2 (en) | 2008-07-09 | 2018-09-04 | Baxter International Inc. | Home therapy entry, modification, and reporting system |
| US10061899B2 (en) | 2008-07-09 | 2018-08-28 | Baxter International Inc. | Home therapy machine |
| US10224117B2 (en) | 2008-07-09 | 2019-03-05 | Baxter International Inc. | Home therapy machine allowing patient device program selection |
| US11654237B2 (en) | 2009-04-17 | 2023-05-23 | Icu Medical, Inc. | System and method for configuring a rule set for medical event management and responses |
| US12036390B2 (en) | 2009-04-17 | 2024-07-16 | Icu Medical, Inc. | System and method for configuring a rule set for medical event management and responses |
| US12337142B2 (en) | 2009-04-17 | 2025-06-24 | Icu Medical, Inc. | System and method for configuring a rule set for medical event management and responses |
| US12380997B2 (en) | 2011-10-21 | 2025-08-05 | Icu Medical, Inc. | Medical device update system |
| US11996188B2 (en) | 2011-10-21 | 2024-05-28 | Icu Medical, Inc. | Medical device update system |
| US11626205B2 (en) | 2011-10-21 | 2023-04-11 | Icu Medical, Inc. | Medical device update system |
| US10089443B2 (en) | 2012-05-15 | 2018-10-02 | Baxter International Inc. | Home medical device systems and methods for therapy prescription and tracking, servicing and inventory |
| US10258736B2 (en) | 2012-05-17 | 2019-04-16 | Tandem Diabetes Care, Inc. | Systems including vial adapter for fluid transfer |
| US9555186B2 (en) | 2012-06-05 | 2017-01-31 | Tandem Diabetes Care, Inc. | Infusion pump system with disposable cartridge having pressure venting and pressure feedback |
| US10881784B2 (en) | 2013-01-28 | 2021-01-05 | Smiths Medical Asd, Inc. | Medication safety devices and methods |
| US12047292B2 (en) | 2013-03-06 | 2024-07-23 | Icu Medical, Inc. | Medical device communication method |
| US12395429B2 (en) | 2013-03-06 | 2025-08-19 | Icu Medical, Inc. | Medical device communication method |
| US11470000B2 (en) | 2013-03-06 | 2022-10-11 | Icu Medical, Inc. | Medical device communication method |
| US9962486B2 (en) | 2013-03-14 | 2018-05-08 | Tandem Diabetes Care, Inc. | System and method for detecting occlusions in an infusion pump |
| US11571508B2 (en) | 2013-08-30 | 2023-02-07 | Icu Medical, Inc. | System and method of monitoring and managing a remote infusion regimen |
| US11986623B2 (en) | 2013-08-30 | 2024-05-21 | Icu Medical, Inc. | System and method of monitoring and managing a remote infusion regimen |
| US12097351B2 (en) | 2013-09-20 | 2024-09-24 | Icu Medical, Inc. | Fail-safe drug infusion therapy system |
| US11501877B2 (en) | 2013-11-11 | 2022-11-15 | Icu Medical, Inc. | Medical device system performance index |
| US11763927B2 (en) | 2013-11-19 | 2023-09-19 | Icu Medical, Inc. | Infusion pump automation system and method |
| US12420009B2 (en) | 2014-04-30 | 2025-09-23 | Icu Medical, Inc. | Patient care system with conditional alarm forwarding |
| US10898641B2 (en) | 2014-04-30 | 2021-01-26 | Icu Medical, Inc. | Patient care system with conditional alarm forwarding |
| US11628246B2 (en) | 2014-04-30 | 2023-04-18 | Icu Medical, Inc. | Patient care system with conditional alarm forwarding |
| US12042623B2 (en) | 2014-04-30 | 2024-07-23 | Icu Medical, Inc. | Patient care system with conditional alarm forwarding |
| US11052193B2 (en) | 2014-06-16 | 2021-07-06 | Icu Medical Inc. | System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy |
| US12042631B2 (en) | 2014-06-16 | 2024-07-23 | Icu Medical, Inc. | System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy |
| US11628254B2 (en) | 2014-06-16 | 2023-04-18 | Icu Medical, Inc. | System for monitoring and delivering medication to a patient and method of using the same to minimize the risks associated with automated therapy |
| WO2016010778A1 (en)* | 2014-07-16 | 2016-01-21 | Smiths Medical Asd, Inc. | Infusion pump line identification |
| US11289183B2 (en) | 2014-09-15 | 2022-03-29 | Icu Medical, Inc. | Matching delayed infusion auto-programs with manually entered infusion programs |
| US12002562B2 (en) | 2014-09-15 | 2024-06-04 | Icu Medical, Inc. | Matching delayed infusion auto-programs with manually entered infusion programs |
| US12380982B2 (en) | 2014-09-15 | 2025-08-05 | Icu Medical, Inc. | Matching delayed infusion auto-programs with manually entered infusion programs |
| US11574721B2 (en) | 2014-09-15 | 2023-02-07 | Icu Medical, Inc. | Matching delayed infusion auto-programs with manually entered infusion programs |
| US11605468B2 (en) | 2015-05-26 | 2023-03-14 | Icu Medical, Inc. | Infusion pump system and method with multiple drug library editor source capability |
| US11574737B2 (en) | 2016-07-14 | 2023-02-07 | Icu Medical, Inc. | Multi-communication path selection and security system for a medical device |
| US12046361B2 (en) | 2018-07-17 | 2024-07-23 | Icu Medical, Inc. | Tagging pump messages with identifiers that facilitate restructuring |
| US12040068B2 (en) | 2018-07-17 | 2024-07-16 | Icu Medical, Inc. | Reducing file transfer between cloud environment and infusion pumps |
| US11483402B2 (en) | 2018-07-17 | 2022-10-25 | Icu Medical, Inc. | Maintaining clinical messaging during an internet outage |
| US11483403B2 (en) | 2018-07-17 | 2022-10-25 | Icu Medical, Inc. | Maintaining clinical messaging during network instability |
| US11670416B2 (en) | 2018-07-17 | 2023-06-06 | Icu Medical, Inc. | Tagging pump messages with identifiers that facilitate restructuring |
| US10861592B2 (en) | 2018-07-17 | 2020-12-08 | Icu Medical, Inc. | Reducing infusion pump network congestion by staggering updates |
| US11783935B2 (en) | 2018-07-17 | 2023-10-10 | Icu Medical, Inc. | Health checks for infusion pump communications systems |
| US11881297B2 (en) | 2018-07-17 | 2024-01-23 | Icu Medical, Inc. | Reducing infusion pump network congestion by staggering updates |
| US11923076B2 (en) | 2018-07-17 | 2024-03-05 | Icu Medical, Inc. | Converting pump messages in new pump protocol to standardized dataset messages |
| US11373753B2 (en) | 2018-07-17 | 2022-06-28 | Icu Medical, Inc. | Converting pump messages in new pump protocol to standardized dataset messages |
| US11328805B2 (en) | 2018-07-17 | 2022-05-10 | Icu Medical, Inc. | Reducing infusion pump network congestion by staggering updates |
| US11328804B2 (en) | 2018-07-17 | 2022-05-10 | Icu Medical, Inc. | Health checks for infusion pump communications systems |
| US10950339B2 (en) | 2018-07-17 | 2021-03-16 | Icu Medical, Inc. | Converting pump messages in new pump protocol to standardized dataset messages |
| US10741280B2 (en) | 2018-07-17 | 2020-08-11 | Icu Medical, Inc. | Tagging pump messages with identifiers that facilitate restructuring |
| US11587669B2 (en) | 2018-07-17 | 2023-02-21 | Icu Medical, Inc. | Passing authentication token to authorize access to rest calls via web sockets |
| US11152110B2 (en) | 2018-07-17 | 2021-10-19 | Icu Medical, Inc. | Tagging pump messages with identifiers that facilitate restructuring |
| US11594326B2 (en) | 2018-07-17 | 2023-02-28 | Icu Medical, Inc. | Detecting missing messages from clinical environment |
| US11152108B2 (en) | 2018-07-17 | 2021-10-19 | Icu Medical, Inc. | Passing authentication token to authorize access to rest calls via web sockets |
| US11139058B2 (en) | 2018-07-17 | 2021-10-05 | Icu Medical, Inc. | Reducing file transfer between cloud environment and infusion pumps |
| US11152109B2 (en) | 2018-07-17 | 2021-10-19 | Icu Medical, Inc. | Detecting missing messages from clinical environment |
| US12142370B2 (en) | 2018-07-17 | 2024-11-12 | Icu Medical, Inc. | Passing authentication token to authorize access to rest calls via web sockets |
| US12205702B2 (en) | 2018-07-17 | 2025-01-21 | Icu Medical, Inc. | Health checks for infusion pump communications systems |
| US10964428B2 (en) | 2018-07-17 | 2021-03-30 | Icu Medical, Inc. | Merging messages into cache and generating user interface using the cache |
| US10692595B2 (en) | 2018-07-26 | 2020-06-23 | Icu Medical, Inc. | Drug library dynamic version management |
| US11309070B2 (en) | 2018-07-26 | 2022-04-19 | Icu Medical, Inc. | Drug library manager with customized worksheets |
| US11437132B2 (en) | 2018-07-26 | 2022-09-06 | Icu Medical, Inc. | Drug library dynamic version management |
| US12130910B2 (en) | 2019-05-08 | 2024-10-29 | Icu Medical, Inc. | Threshold signature based medical device management |
| US12303464B2 (en) | 2020-04-03 | 2025-05-20 | Icu Medical, Inc. | Systems, methods, and components for transferring medical fluids |
| US12431238B2 (en) | 2020-09-05 | 2025-09-30 | Icu Medical, Inc. | Identity-based secure medical device communications |
Also Published As
| Publication number | Publication date |
|---|---|
| KR20110008072A (en) | 2011-01-25 |
| CN102247631A (en) | 2011-11-23 |
| CA2723444C (en) | 2017-04-25 |
| US20130012876A1 (en) | 2013-01-10 |
| WO2009124133A3 (en) | 2010-01-14 |
| WO2009124133A2 (en) | 2009-10-08 |
| EP3343567A1 (en) | 2018-07-04 |
| US20090270810A1 (en) | 2009-10-29 |
| EP2323054A2 (en) | 2011-05-18 |
| CN102084367A (en) | 2011-06-01 |
| CN102172419A (en) | 2011-09-07 |
| KR20100126598A (en) | 2010-12-01 |
| EP2317453A3 (en) | 2011-06-08 |
| CA2723444A1 (en) | 2009-10-08 |
| EP2317453A2 (en) | 2011-05-04 |
| EP2323054A3 (en) | 2011-06-01 |
| KR101587301B1 (en) | 2016-01-21 |
| KR20100127314A (en) | 2010-12-03 |
| EP2274700A2 (en) | 2011-01-19 |
| US9192712B2 (en) | 2015-11-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9192712B2 (en) | Security features for a medical infusion pump | |
| JP7126396B2 (en) | Method and apparatus for electronic drug order transfer and processing | |
| AU2004209115B2 (en) | Medical data communication notification and messaging system and method | |
| CA2484547C (en) | Medical treatment verification system and method | |
| JP4999687B2 (en) | Medical data management system and method | |
| JP2020064646A (en) | Wireless medical data communication system and method | |
| JP2006520037A (en) | Operating parameter checking system and method | |
| EP1512106A2 (en) | User authorization system and method for a sedation and analgesia system | |
| NZ541474A (en) | Method and system for medical device connectivity | |
| AU2010236097B2 (en) | Security features for a medical infusion pump | |
| JP2010049698A (en) | System and method for verifying operational parameter | |
| US20250205424A1 (en) | Intelligently controlling patient-controlled drug delivery |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| AS | Assignment | Owner name:SMITHS MEDICAL MD, INC., MINNESOTA Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:DEBELSER, DAVID;BLOMQUIST, MICHAEL L.;SIGNING DATES FROM 20090615 TO 20090624;REEL/FRAME:029002/0188 | |
| AS | Assignment | Owner name:SMITHS MEDICAL ASD, INC., MASSACHUSETTS Free format text:MERGER;ASSIGNOR:SMITHS MEDICAL MD, INC.;REEL/FRAME:029090/0391 Effective date:20090731 | |
| STCB | Information on status: application discontinuation | Free format text:ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION |