Abstract: A method for providing a digital certificate to a device, comprises: receiving a device identification dataset, uniquely identifying the device; determining a key creation dataset including a certificate identifier, the certificate identifier being based on the device identification dataset; sending the key creation dataset to the device; receiving a certificate creation request related to a first domain name based on the key creation dataset from the device, the first domain name including the certificate identifier; sending the certificate creation request or a modified certificate creation request to a certificate authority; and providing the digital certificate to the device, the digital certificate being a wildcard certificate based on the first domain name signed by the certificate authority.

Abstract: A computer-implemented method is for providing a digital certificate to a device. In an embodiment, the method is based on receiving, from the device, authentication data via a secure communication channel. Furthermore, the method is based on receiving, from the device, or determining, by the server, a first certificate identifier. In particular, the first certificate identifier is a hash value. Further aspects of the method are verifying the authentication data and receiving, from the device, a first public key created by the device. In an embodiment, the method is furthermore based on sending a first certificate signing request related to a first domain name based on the first public key to a certificate authority. Herein, the first domain name comprises the certificate identifier, and a domain related to the first domain name is controlled by the server. In particular, the first domain name is a wildcard domain.

Abstract: A computer-implemented method is for providing a digital certificate to a device. In an embodiment, the method is based on receiving, from the device, authentication data via a secure communication channel. Furthermore, the method is based on receiving, from the device, or determining, by the server, a first certificate identifier. In particular, the first certificate identifier is a hash value. Further aspects of the method are verifying the authentication data and receiving, from the device, a first public key created by the device. In an embodiment, the method is furthermore based on sending a first certificate signing request related to a first domain name based on the first public key to a certificate authority. Herein, the first domain name comprises the certificate identifier, and a domain related to the first domain name is controlled by the server. In particular, the first domain name is a wildcard domain.

Abstract: A method for providing a digital certificate to a device, comprises: receiving a device identification dataset, uniquely identifying the device; determining a key creation dataset including a certificate identifier, the certificate identifier being based on the device identification dataset; sending the key creation dataset to the device; receiving a certificate creation request related to a first domain name based on the key creation dataset from the device, the first domain name including the certificate identifier; sending the certificate creation request or a modified certificate creation request to a certificate authority; and providing the digital certificate to the device, the digital certificate being a wildcard certificate based on the first domain name signed by the certificate authority.

Abstract: A computer-implemented method is for providing a digital certificate to a device. In an embodiment, the method is based on receiving, from the device, authentication data via a secure communication channel. Furthermore, the method is based on receiving, from the device, or determining, by the server, a first certificate identifier. In particular, the first certificate identifier is a hash value. Further aspects of the method are verifying the authentication data and receiving, from the device, a first public key created by the device. In an embodiment, the method is furthermore based on sending a first certificate signing request related to a first domain name based on the first public key to a certificate authority. Herein, the first domain name comprises the certificate identifier, and a domain related to the first domain name is controlled by the server. In particular, the first domain name is a wildcard domain.

Abstract: A computer-implemented method is for providing a digital certificate to a device. In an embodiment, the method is based on receiving, from the device, authentication data via a secure communication channel. Furthermore, the method is based on receiving, from the device, or determining, by the server, a first certificate identifier. In particular, the first certificate identifier is a hash value. Further aspects of the method are verifying the authentication data and receiving, from the device, a first public key created by the device. In an embodiment, the method is furthermore based on sending a first certificate signing request related to a first domain name based on the first public key to a certificate authority. Herein, the first domain name comprises the certificate identifier, and a domain related to the first domain name is controlled by the server. In particular, the first domain name is a wildcard domain.

Abstract: A computer-implemented method is for providing a digital certificate to a device. In an embodiment, the method is based on receiving, from the device, authentication data via a secure communication channel. Furthermore, the method is based on receiving, from the device, or determining, by the server, a first certificate identifier. In particular, the first certificate identifier is a hash value. Further aspects of the method are verifying the authentication data and receiving, from the device, a first public key created by the device. In an embodiment, the method is furthermore based on sending a first certificate signing request related to a first domain name based on the first public key to a certificate authority. Herein, the first domain name comprises the certificate identifier, and a domain related to the first domain name is controlled by the server. In particular, the first domain name is a wildcard domain.

Abstract: A method is for operating a medical imaging system including at least two executable application programs. An embodiment includes: a) a computing device of the imaging system detecting at least one display device by its properties relevant to visual display; b) the computing device retrieving at least one particular application-specific requirement made of a display device, using the at least two application programs, for visual display of corresponding application program information on a display device; c) comparing the properties detected for each at least one display device and the retrieved requirement; and d) according to a result of the comparison, the computing device either assigning the application programs respectively to the at least one display device or activating an assignment facility for a user, to increase efficiency when operating the medical imaging system having the at least two executable application programs in a manner convenient to a user.

Abstract: A method is for operating a medical imaging system including at least two executable application programs. An embodiment includes: a) a computing device of the imaging system detecting at least one display device by its properties relevant to visual display; b) the computing device retrieving at least one particular application-specific requirement made of a display device, using the at least two application programs, for visual display of corresponding application program information on a display device; c) comparing the properties detected for each at least one display device and the retrieved requirement; and d) according to a result of the comparison, the computing device either assigning the application programs respectively to the at least one display device or activating an assignment facility for a user, to increase efficiency when operating the medical imaging system having the at least two executable application programs in a manner convenient to a user.

Abstract: A system, method and computer program product are disclosed for integrating a user interface of external or foreign applications, running on second physical machines, into a user interface of a first application running on a first physical machine. In an embodiment, the generated integrated user interface is displayed on a monitor of the first physical machine. The applications refer to MR-scanning and post-processing applications. The user is only working with one single, common and integrated user interface although he controls two different sets of applications on different machines.

Abstract: A method, computer readable medium and system are disclosed. An embodiment of the method includes obtaining, by a single client, a request for data from a patient browser; querying, by the single client, at least one of a plurality of servers for the requested data, each of the plurality of servers hosting a different imaging application, the imaging applications being independent of each other, receiving, by the single client, an indication, the indication indicating that a first server of the plurality of servers contains the requested data and retrieving, by the single client, the requested data such that the associated server is transparent to the user. The different imaging applications may be different versions of the same imaging application, different applications or different imaging applications being based on different versions of the same product-line code.

Abstract: A system, method and computer program product are disclosed for integrating a user interface of external or foreign applications, running on second physical machines, into a user interface of a first application running on a first physical machine. In an embodiment, the generated integrated user interface is displayed on a monitor of the first physical machine. The applications refer to MR-scanning and post-processing applications. The user is only working with one single, common and integrated user interface although he controls two different sets of applications on different machines.

Abstract: A scalable system and method thereof may improve scalability and Quality of Service. The scalable system may include a first scalability adapter (scaldapter) configured to manage resource consumption of at least one component based on measured data received from the at least one component, where the component is configured to run an application, and a scalability manager (scalator) configured to modify strategies of the first scaldapter for managing the resource consumption based on measured data received from a plurality of processes, each of the plurality of processes including the first scaldapter.

Abstract: A subsystem architecture is described that provides support services for software applications of a system. The subsystem architecture includes local infrastructure components, which provide infrastructure services to the software applications. Each local infrastructure component corresponds to a single software application and is independent from another of the local infrastructure components. The subsystem architecture may further include a central service component providing central services to at least one of the local infrastructure components. The central service component is independent and unaware of the local infrastructure components. Still further, the subsystem architecture may include an administrative component for monitoring and maintaining the local infrastructure components providing infrastructure services to the software applications. The administrative component is independent and unaware of the plurality of local infrastructure components.

Abstract: A method, computer readable medium and system are disclosed. An embodiment of the method includes obtaining, by a single client, a request for data from a patient browser; querying, by the single client, at least one of a plurality of servers for the requested data, each of the plurality of servers hosting a different imaging application, the imaging applications being independent of each other, receiving, by the single client, an indication, the indication indicating that a first server of the plurality of servers contains the requested data and retrieving, by the single client, the requested data such that the associated server is transparent to the user. The different imaging applications may be different versions of the same imaging application, different applications or different imaging applications being based on different versions of the same product-line code.

Abstract: A method for processing data is proposed, particularly image data in a medical system, in which a plurality of imaging modalities for capturing the data and their associated apparatus for locally processing and storing the data are connected to one another via a data transmission unit for the purpose of data interchange. Common data for all modalities are respectively stored locally and are coordinated with one another such that the respective modality remains active regardless of the state of the data transmission unit.

Abstract: The invention concerns a method and a data processing system to protect an electronic data object from unauthorized access. Via a method, a) in a first step, an electronic data object identifier is generated dependent on the content of the data object, b) in a further step, an access right is determined dependent on the data object identifier, and c) in a last step, an access to the data object is allowed dependent of the access right. The data processing system comprises a data processing device and an access control module. Via the access control module, an electronic data object identifier can be generated dependent on the content of a data object, and an access right can be determined dependent on the data object identifier. The access right can comprises standard rights such as “Read” or “Write” and an “Execute” right to execute specific functionalities.

Abstract: A scalable system and method thereof may improve scalability and Quality of Service. The scalable system may include a first scalability adapter (scaldapter) configured to manage resource consumption of at least one component based on measured data received from the at least one component, where the component is configured to run an application, and a scalability manager (scalator) configured to modify strategies of the first scaldapter for managing the resource consumption based on measured data received from a plurality of processes, each of the plurality of processes including the first scaldapter.

Abstract: A subsystem architecture is described that provides support services for software applications of a system. The subsystem architecture includes local infrastructure components, which provide infrastructure services to the software applications. Each local infrastructure component corresponds to a single software application and is independent from another of the local infrastructure components. The subsystem architecture may further include a central service component providing central services to at least one of the local infrastructure components. The central service component is independent and unaware of the local infrastructure components. Still further, the subsystem architecture may include an administrative component for monitoring and maintaining the local infrastructure components providing infrastructure services to the software applications. The administrative component is independent and unaware of the plurality of local infrastructure components.

Abstract: An apparatus, a method and a system arrangement are disclosed for executing an order from a user, in which it is necessary to check authorization to execute the order from the user. The authorization to execute the order is defined in a rights context. When the order is given by a user, the rights context for the order is recorded, checked and frozen for the duration of the order so that it is possible to ensure that the order can be executed fully even when the rights context is changed at the time of execution.