Abstract: A computer-implemented method includes generating a matching rule defined by a user, where the matching rule is a clear text rule, and receiving a transaction message that includes patient data from one or more health care facilities, where the patient data includes one or more patient health care events. A custom extension to a relational database is generated based on the received patient data, and the generated matching rules is applied to the received patient data at the custom extension to the relational database. Related patient event records within the custom extension to the relational database are identified and the related patient event records are configured based on the applied matching rule.

Abstract: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for linking a first electronic data set to a second set of data fields in a second electronic data set. Automatically identifying a prescribing physician identifier based on the linked first and second electronic data sets. Determining a relationship between a physician associated with the prescribing physician identifier and at least one of the approved entities based on comparing the prescribing physician identifier and identifiers of the one or more approved entities to a fourth set of data fields from a fourth electronic data set. Automatically generating an electronic notification indicating that a product sold by the merchant is eligible for the discount in response to determining a relationship between a physician and the at least one of the approved entities.

Abstract: A method includes accessing data related to a series of patient events, and determining whether the data accessed is related to a specific condition. Care pathway data for the condition is generated in response to determining that the accessed data is related to the specific condition. The care pathways data for the condition is stored at a custom extension to a relational database.

Abstract: A method and system to retrieve data dynamically from one or more datasets are disclosed. The method comprises receiving at least one query in a first query language. Thereafter, splitting the at least one query in the first query language into a plurality of sub-queries and transforming the plurality of sub-queries into one or more second query languages, wherein the one or more second query languages correspond to the one or more datasets. Other embodiments include a method that comprises processing the one or more transformed queries to retrieve one or more query results from the one or more datasets, and processing the one or more query results to generate a data presentation.

Abstract: System and method to produce a virtual trusted database record, the method including receiving, by a processor coupled to a user-facing communication interface and to a memory, a request for the virtual trusted database record, the virtual trusted database record including a plurality of record data fields. Then identifying a business context of the request and assigning a respective priority to each of the record data fields, based upon the business context. Mapping each of the record data fields to a respective database source for data to populate the respective data field, the respective database source having a predetermined level of authoritativeness based upon the assigned priority. Retrieving data for each data field from the database source mapped to the respective data field, and assembling the retrieved data for each data field to produce the virtual trusted database record.

Abstract: System and a method to dynamically authenticate and optionally dynamically authorize a user at a user device or at a server, the method including: receiving a request from the user to access a service; determining contextual data associated with the user; determining, based on at least the contextual data, at least one rule from a rules database to authenticate the user; and authenticating the user based on the determined at least one rule, wherein the user is authorized to access the service based on the authentication.

Abstract: System and method to provide access to protected data for a communication terminal, the system including: a publisher database configured to store protected data in encrypted form; a first server coupled to the publisher database; a second server coupled to the first server, the second server configured to provide a cryptographically strong authentication of access to the protected data; an interface to a first secure channel, between the first server and the communication terminal; and an interface to a second secure channel, between the first server and a customer application, wherein the first server is configured to exchange protected data with the communication terminal via the first secure channel, and to exchange protected data with the customer application via the second secure channel.

Abstract: System and method to digitally validate a document, the method including: receiving, by a secure development platform (SDP), a security information from an end user, the SDP comprising an SDP processor coupled to a secure SDP memory; exchanging a security token with a user device based upon the security information; receiving, from the user device, a request for a digital certificate; managing and storing public/private key pairs; transmitting, to the PKI service processor, the request for a digital certificate; if information in the request for a digital certificate is correct: creating the digital certificate; and receiving the digital certificate from the PKI service processor; and storing the digital certificate in the secure SDP memory, the secure SDP memory not directly accessible by the user device, the SDP processor configured to request a signature generation by use of the private key associated with the digital certificate, the SDP processor configured to request a validation by use of the digital c

Abstract: A system and method for recovering a security credential is provided. A security credential stored in the storage of a computing device is encrypted using a first encryption key generated by a server. A first decryption key for decrypting the security credential and a second encryption key for re-encrypting the security credential are received. The first decryption key and the second encryption key are generated by the server. The security credential is decrypted using the first decryption key. The security credential is communicated to a user of the computing device. The security credential is re-encrypted in the storage of the computing device using the second encryption key.

Abstract: The disclosure generally describes computer-implemented methods, software, and systems for ranking healthcare professionals, including: receiving healthcare information submitted by a user; launching search delegators to search respective channels of social media based on the healthcare information; receiving meta search records from the search delegators; scoring the meta search records based on the healthcare information as well as the channel of social media where the meta search record was found; filtering the meta search records based on the corresponding scores; and providing the filtered meta search records to the user.

Abstract: Provided is a data management system, computer-readable medium and method including extensions to SHAREPOINT™. The system includes a computer processor operatively associated with a computer memory and one or more I/O device, in which the processor and memory are configured to operate one or more SHAREPOINT™ process. The method includes using a sequencing mechanism to allow users to navigate items stored within SHAREPOINT™. The sequencing mechanism further includes the steps of allowing a user to select a specific content type to create a link to, and allowing the user to select a specific list and or folder in which to look for items.

Abstract: The disclosure generally describes computer-implemented methods, software, and systems for receiving and aggregating anonymized data reports about when prescribers provide wireless device applications to patients. The disclosure discusses ways of analyzing the data reports in combination with other electronic medical information to generate useful conclusions about scenarios in the health care process.

Abstract: A method and system for delivering a command to a mobile device is provided. A one-time password is generated using a token shared with a mobile device and one of a challenge and an input string. The one-time password and a command are transmitted, along with the challenge or the input string, to the mobile device for execution thereon.

Abstract: Provided is a system, computer-readable medium controller, and methods for operating Microsoft Windows SHAREPOINT Services and its supportive operating system, network interface and related software and extending the SHAREPOINT Services to comprise combination fields.

Abstract: A system and method for authorizing transactions via mobile devices is provided. The system includes a mobile device executing a transaction authorization application. The transaction authorization application generates a transaction code for a transaction upon request by a user. The transaction authorization application includes a presentation module for presentation of the transaction code on the mobile device, and a communication module for communicating at least a part of the transaction code over a first channel. A server is in communication with the mobile device over the first channel for receiving the at least partial transaction code. The server is also in communication with a merchant system over a second channel for receiving a transaction request for the transaction. The transaction request includes the transaction code.

Abstract: A method of authenticating and encrypting a client-server communication is provided. Two one-time passwords (OTP1 and OTP2) are generated from a cryptographic token. An encryption key (K_ENC) and a MAC key (K_MAC) are generated based on OTP2. The client data are prepared and protected using K_ENC and K_MAC. A request message is sent from the client to the server, and contains the protected client data, a cryptographic token identifier and OTP1. OTP1 is validated at the server, and OTP2 is generated at the server upon successful validation. K_ENC and K_MAC are derived from OTP2 at the server. The request message is processed and result data is generated. The result data is encrypted using K_ENC and a digest is created using K_MAC. The encrypted result data is sent to the client, and is decrypted using K_ENC and the authenticity of the result data is verified using K_MAC.

Abstract: System and method to provide access to protected data for a communication terminal, the system including: a publisher database configured to store protected data in encrypted form; a first server coupled to the publisher database; a second server coupled to the first server, the second server configured to provide a cryptographically strong authentication of access to the protected data; an interface to a first secure channel, between the first server and the communication terminal; and an interface to a second secure channel, between the first server and a customer application, wherein the first server is configured to exchange protected data with the communication terminal via the first secure channel, and to exchange protected data with the customer application via the second secure channel.

Abstract: A system, apparatus and method for enabling interaction between a mobile device and a dynamic list of remotely hosted applications. A mobile device is provided with a removable module implementing a virtual machine defined by a set of instructions. The mobile device requests an initial application from an application server. The application server generates a message, including a set of commands and any parametric information, such as text to be displayed, which is then compiled into executable code. The executable code is then forwarded to the mobile device for execution. The mobile device interprets the executable code and runs it, possibly causing text or a menu to be displayed. In a first embodiment, the mobile device requests a list of currently available applications and is provided with such a list by a first application server. The user is then able to select from the list of applications, some which can be located on other servers.

Abstract: The present invention relates to a method and a system for collecting and providing reports of activities of medical service providers, while encrypting confidential information. Specifically, the present invention provides systems and methods for collecting and providing information from medical claim transactions without information for specifically identifying the particular medical service provider. The present invention also allows for correlation of medical claim transactions with providers' information without using information that can be used to specifically identify the particular medical service provider (provider identifier).

Abstract: Some implementations may provide a method implemented on a processor, the method includes: receiving, on a computer host, an electronic document representing a pharmaceutical prescription; identifying constituent regions that include at least a first portion and a second portion within the electronic document; identifying first spatial frequencies for the first portion within the electronic document; identifying second spatial frequencies for the second portion within the electronic document; identifying a header based upon the first spatial frequencies; using the header to identify a prescriber; retrieving a profile for the prescriber; analyzing the second spatial frequencies using the profile for the prescriber; and creating, based upon analyzing the second spatial frequencies using the profile for the prescriber, a transaction record on the computer host for a medical transaction associated with the pharmaceutical prescription.