Authentication and Access Control in CGM Devices

13 patents in this list

Updated: August 14, 2024

Continuous Glucose Monitoring (CGM) systems transmit sensitive health data between sensors, displays, and insulin delivery devices, processing up to 288 readings per day per patient. These systems must maintain data integrity and access control while operating within strict power and latency constraints—typically requiring sensor readings every 5 minutes with transmission ranges of 3-10 meters.

The fundamental challenge lies in balancing robust security protocols against the need for immediate, reliable data access in potentially life-critical situations.

This page brings together solutions from recent research—including password-authenticated key exchange (PAKE) protocols, proximity-based authentication systems, selective data transmission strategies, and configurable partner interfaces. These and other approaches demonstrate how CGM systems can maintain security while ensuring timely, power-efficient data delivery to authorized devices.

1. Diabetes Management System with Configurable Partner Interface for Device Interoperability

Dexcom, Inc., 2023

A diabetes management system that improves the flexibility and adaptability of connected devices like continuous glucose monitors, insulin pumps, and displays to work better together. The system uses a diabetes management partner interface to configure devices like sensors and pumps for wireless communication with partners like displays and alerts. It allows partner devices to request access to the sensor's configuration parameters via the interface. The sensor can then modify its settings to accommodate partner requirements. This enables customized communication and coordination between devices from different manufacturers.

2. Wireless Analyte Monitoring System with Periodic Advertisement Signal Transmission and Code-Based Authentication

Dexcom, Inc., 2023

Continuous monitoring of analyte values using wireless communication between an analyte sensor system and display devices. The method involves pairing the sensor system with a display device by entering an identification code in the device's app. Once paired, the sensor system periodically transmits advertisement signals. The display device searches for these signals authenticates the sensor system using the stored code and requests a data connection. The sensor system grants the connection and transmits analyte values. This allows continuous monitoring without constant connection overhead. The display device can also switch between sensor systems by re-entering the code.

3. Device Pairing and Synchronization System with Secure Display Authentication and Key Exchange Mechanism

Dexcom, Inc., 2023

Securely pairing and synchronizing multiple displays like smartphones and dedicated glucose monitors to transmit and display glucose levels. The transmitter limits the number of connected displays and exchanges an application key with each device periodically. This prevents unauthorized devices from connecting. The displays authenticate with the transmitter using a hash of their ID. The transmitter allows only matched devices. This allows consistent display across devices while preventing unauthorized access.

4. Glucose Monitoring Data Retrieval System Using Access Code-Based Web Requests

ABBOTT DIABETES CARE INC., 2023

Retrieving glucose data from a glucose monitoring system without requiring a wired connection to a user device or an account login. The system uses access codes associated with users to enable others like EMR systems or patients' devices to request and receive glucose reports without direct system access. When a user's device sends a web request with their access code, the monitoring system retrieves their report and sends it back. This allows external systems and users to access glucose data without needing system connectivity or login credentials.

5. Glucose Sensor with NFC-Activated Transceiver and Intermittent Data Transmission Mechanism

Dexcom, Inc., 2023

Efficiently transmitting glucose sensor data to display devices like smartphones and computers while minimizing power consumption. The sensor can be woken up using near-field communication (NFC) from a nearby device like a phone. This forces the sensor to activate its transceiver. The sensor can then establish a two-way communication channel with the device. After sending sensor data, the sensor deactivates and goes back to sleep. This avoids continuous transmission. The NFC initiation can be done manually by the user or by software. It enables remote sensor access without an always-on power drain.

6. RF Communication Method for Medical Devices Utilizing Proximity-Triggered Command Segmentation

ABBOTT DIABETES CARE INC., 2023

Optimizing RF communication in medical devices like glucose monitors to improve reliability and reduce constraints on transmission time. The method involves using proximity commands to trigger specific functions on the device without sending full data packets. The proximity commands are sent when the device is physically near the receiver. This allows separating urgent versus non-urgent data and transmitting them separately. Non-urgent data is broken into segments and sent over multiple packets, while urgent data is sent in full. This reduces the transmission time burden. The proximity commands can also trigger specific functions like sensor disconnect detection. This helps conserve power and avoid unnecessary data transmission.

7. Method for Secure Pairing of Medical Devices Using Password-Authenticated Key Exchange Without Input/Output Dependency

Dexcom, Inc., 2023

Securely pair medical devices like sensors and displays in healthcare facilities without requiring input/output capabilities on both devices. The method involves using password-authenticated key exchange (PAKE) to generate an authentication key at the application layer. Each device derives a passkey from that key for verifying pairing. This allows devices without I/O to authenticate without requiring devices with I/O to enter a passkey. The derived passkeys are then used to establish encrypted connections.

8. Biometric Data Transmission System with Interval-Based Non-Receipt Verification and Selective Retrieval

I-SENS, INC., 2023

Transmitting and receiving biometric information between a sensor and a device in a continuous monitoring system reduces the load of determining whether biometric information was received at every regular interval. Instead, it checks for unreceived data only at longer non-receipt intervals and selectively requests missing data if needed. This reduces processing and energy waste compared to constant checking.

9. Medical Device with Configurable Alert, Alarm, and Reminder System for Analyte Level Monitoring

Abbott Diabetes Care Inc., 2023

Medical devices like glucometers, insulin pumps, and drug infusion devices with features to alert, alarm, and remind users to maintain proper analyte levels. Alerts indicate when a test result falls outside the ideal range. Alarms provide urgent warnings for critical levels. Reminders prompt retesting if a level is outside range. The device can be configured with customizable ranges and reminders set by healthcare providers or caregivers.

10. Diabetes Management System with Configurable Wireless Communication and Device Interface

Dexcom, Inc., 2022

A diabetes management system that allows flexible and configurable wireless communication between an implantable glucose sensor, display devices, and other diabetes management devices like insulin pumps. The system uses a diabetes management partner interface to enable devices like insulin pumps to access and modify sensor configuration parameters. This allows customization of sensor behavior to accommodate specific requirements of devices like pumps. The interface also facilitates configurable connections between devices to balance features like alerts vs battery life.

11. Access Control System for In Vivo Analyte Sensors with User Application Authentication and Data Expiration Mechanism

ABBOTT DIABETES CARE INC., 2022

Controlling access to data from in vivo analyte sensors to prevent unauthorized use. It involves authenticating user interface applications to operate with sensor interface applications, restricting access to real-time sensor data, and expiring displayed analyte levels after a set time. This ensures accurate and secure analyte monitoring when multiple apps interact with sensors. It prevents apps from accessing sensor data without approval and prevents displaying outdated levels.

12. System for Controlled Secure Transmission and Verification of Medical Data Across Devices

DexCom, Inc., 2021

Controlling and protecting the retransmission of patient medical data like glucose levels to prevent compromising confidentiality and ensure proper use. The controls limit access and redistribution of medical data between apps and devices. Techniques include delaying the transmission of sensitive data, encrypting it, or separating less sensitive data. Apps are verified to accurately store received medical data. This allows using medical apps on devices like smartphones while mitigating risks of compromised data, incorrect recommendations, or missed alarms.

13. Handheld Device Integrating Blood Glucose Testing and Insulin Pump Control with Real-Time Monitoring of External Medical Devices

Roche Diagnostics Operations, Inc., 2016

Handheld diabetes manager device that integrates blood glucose testing and insulin pump control with real-time monitoring of external medical devices like continuous glucose monitors. The handheld device has a user interface that displays both local glucose measurements and remote device status simultaneously when connected to the external device. This allows users to see coordinated data from both devices for more comprehensive diabetes management.