基于云存儲(chǔ)的電子病歷訪問控制策略研究
發(fā)布時(shí)間:2019-03-06 20:53
【摘要】:人類已步入信息時(shí)代,現(xiàn)代醫(yī)療發(fā)展趨勢(shì)正逐步偏向電子化,電子病歷(EMR,Electronic Medical Record),作為醫(yī)療活動(dòng)信息的主要載體,在現(xiàn)代醫(yī)療中占據(jù)舉足輕重的位置。關(guān)于患者就診的各方面綜合信息,醫(yī)院一般用EMR來記錄。目前于局域網(wǎng)基礎(chǔ)上建立的EMR系統(tǒng)在我國(guó)大部分醫(yī)院信息系統(tǒng)中被廣泛應(yīng)用,這種系統(tǒng)不能支持EMR廣泛信息的共享,對(duì)醫(yī)療服務(wù)和病理研究也沒有太多的貢獻(xiàn),因而不能滿足醫(yī)療發(fā)展的需要。而且EMR中包含眾多患者隱私信息,在實(shí)現(xiàn)信息共享過程中極有可能面臨諸多安全問題,所以EMR在我國(guó)還未普遍應(yīng)用。針對(duì)上述存在的問題,如果構(gòu)建一種基于云存儲(chǔ)的EMR系統(tǒng),從系統(tǒng)的安全性和適用性方面對(duì)現(xiàn)有系統(tǒng)進(jìn)行改善,使得EMR系統(tǒng)能夠?yàn)獒t(yī)院和患者提供方便安全的服務(wù),將會(huì)在我國(guó)信息化醫(yī)療方面做出巨大貢獻(xiàn)。我們構(gòu)建的EMR系統(tǒng)主要由EMR存儲(chǔ)云和可信屬性機(jī)構(gòu)組成。我們采用云存儲(chǔ)技術(shù)對(duì)數(shù)據(jù)進(jìn)行存儲(chǔ)和管理,具有易于維護(hù)和擴(kuò)展的特點(diǎn);谠拼鎯(chǔ)的EMR系統(tǒng)有四個(gè)層面,分別為資源存儲(chǔ)層、基礎(chǔ)管理層、訪問控制層和EMR服務(wù)層。訪問控制層用來實(shí)現(xiàn)屬性認(rèn)證功能,只有當(dāng)用戶的屬性滿足一定的條件才能獲取真實(shí)明文信息。EMR服務(wù)層主要對(duì)醫(yī)院和患者提供統(tǒng)一的EMR?尚艑傩詸C(jī)構(gòu)存儲(chǔ)不同醫(yī)師的屬性特征,為訪問控制奠定基礎(chǔ)。本文根據(jù)EMR在現(xiàn)實(shí)中的安全需求,在現(xiàn)有研究成果的基礎(chǔ)上,應(yīng)用基于密文策略的屬性加密(Ciphertext-Policy Attribute-Based Encryption,CP-ABE)方法詳細(xì)設(shè)計(jì)了對(duì)云存儲(chǔ)中數(shù)據(jù)的訪問和控制模型,只有那些具有與加密策略相匹配的用戶才能把密文翻譯成明文,這樣就可以強(qiáng)有力地保證云空間中EMR數(shù)據(jù)的安全。而且為了方便地進(jìn)行用戶權(quán)限撤銷操作,為每個(gè)屬性隨機(jī)選擇了一個(gè)屬性版本號(hào)。引進(jìn)轉(zhuǎn)移密鑰,轉(zhuǎn)移密鑰可以使用戶把自己的大量計(jì)算轉(zhuǎn)移給云服務(wù)器,極大地減輕了用戶計(jì)算量。
[Abstract]:Human has entered the information age, the development trend of modern medical care is gradually inclined to electronic, electronic medical records (EMR,Electronic Medical Record),) as the main carrier of medical activities, occupies an important position in modern medical care. Hospitals generally use EMR to record comprehensive information on all aspects of a patient's visit. At present, the EMR system based on LAN is widely used in most hospital information systems in our country. This kind of system can not support the sharing of extensive information of EMR, and has little contribution to medical service and pathology research. Therefore, it can not meet the needs of medical development. Moreover, EMR contains many patients' privacy information, so it is possible to face many security problems in the process of information sharing. Therefore, EMR has not been widely used in China. In order to solve the above problems, if we build a EMR system based on cloud storage, improve the existing system from the security and applicability of the system, so that the EMR system can provide convenient and secure services for hospitals and patients. It will make a great contribution in the field of information-based medical treatment in our country. The EMR system we build mainly consists of EMR storage cloud and trusted attribute organization. We use cloud storage technology to store and manage data, which is easy to maintain and expand. The EMR system based on cloud storage has four layers: resource storage layer, basic management layer, access control layer and EMR service layer. The access control layer is used to realize the attribute authentication function, and only when the user's attributes satisfy certain conditions can the real plaintext information be obtained. EMR service layer mainly provides a unified EMR. for hospitals and patients. Trusted attribute mechanism stores the attribute characteristics of different physicians and lays the foundation for access control. According to the security requirement of EMR in reality, this paper designs the data access and control model of cloud storage in detail by using attribute encryption (Ciphertext-Policy Attribute-Based Encryption,CP-ABE) method based on ciphertext policy, based on the existing research results. Only those users who have matching encryption policies can translate ciphertext into plain text, which can guarantee the security of EMR data in cloud space. And for the convenience of user rights revocation, a random attribute version number is selected for each attribute. The introduction of transfer key enables users to transfer a large number of their calculations to the cloud server, which greatly reduces the user's calculation.
【學(xué)位授予單位】:北方工業(yè)大學(xué)
【學(xué)位級(jí)別】:碩士
【學(xué)位授予年份】:2017
【分類號(hào)】:R197.3;TP333
本文編號(hào):2435887
[Abstract]:Human has entered the information age, the development trend of modern medical care is gradually inclined to electronic, electronic medical records (EMR,Electronic Medical Record),) as the main carrier of medical activities, occupies an important position in modern medical care. Hospitals generally use EMR to record comprehensive information on all aspects of a patient's visit. At present, the EMR system based on LAN is widely used in most hospital information systems in our country. This kind of system can not support the sharing of extensive information of EMR, and has little contribution to medical service and pathology research. Therefore, it can not meet the needs of medical development. Moreover, EMR contains many patients' privacy information, so it is possible to face many security problems in the process of information sharing. Therefore, EMR has not been widely used in China. In order to solve the above problems, if we build a EMR system based on cloud storage, improve the existing system from the security and applicability of the system, so that the EMR system can provide convenient and secure services for hospitals and patients. It will make a great contribution in the field of information-based medical treatment in our country. The EMR system we build mainly consists of EMR storage cloud and trusted attribute organization. We use cloud storage technology to store and manage data, which is easy to maintain and expand. The EMR system based on cloud storage has four layers: resource storage layer, basic management layer, access control layer and EMR service layer. The access control layer is used to realize the attribute authentication function, and only when the user's attributes satisfy certain conditions can the real plaintext information be obtained. EMR service layer mainly provides a unified EMR. for hospitals and patients. Trusted attribute mechanism stores the attribute characteristics of different physicians and lays the foundation for access control. According to the security requirement of EMR in reality, this paper designs the data access and control model of cloud storage in detail by using attribute encryption (Ciphertext-Policy Attribute-Based Encryption,CP-ABE) method based on ciphertext policy, based on the existing research results. Only those users who have matching encryption policies can translate ciphertext into plain text, which can guarantee the security of EMR data in cloud space. And for the convenience of user rights revocation, a random attribute version number is selected for each attribute. The introduction of transfer key enables users to transfer a large number of their calculations to the cloud server, which greatly reduces the user's calculation.
【學(xué)位授予單位】:北方工業(yè)大學(xué)
【學(xué)位級(jí)別】:碩士
【學(xué)位授予年份】:2017
【分類號(hào)】:R197.3;TP333
【參考文獻(xiàn)】
相關(guān)期刊論文 前5條
1 周可;王樺;李春花;;云存儲(chǔ)技術(shù)及其應(yīng)用[J];中興通訊技術(shù);2010年04期
2 趙鋒;曹文杰;;醫(yī)院信息系統(tǒng)訪問控制策略設(shè)計(jì)分析[J];計(jì)算機(jī)技術(shù)與發(fā)展;2010年06期
3 徐金建;王煒;;剖析電子病歷系統(tǒng)應(yīng)用體系架構(gòu)[J];當(dāng)代醫(yī)學(xué);2010年15期
4 張國(guó)榮;鐘初雷;黎海源;;電子病歷系統(tǒng)的建立及臨床信息整合[J];中華醫(yī)院管理雜志;2005年12期
5 黃素華;我國(guó)電子病案發(fā)展概況[J];廣西醫(yī)學(xué);2004年06期
相關(guān)博士學(xué)位論文 前1條
1 曹雪菲;基于身份的認(rèn)證協(xié)議的理論及應(yīng)用研究[D];西安電子科技大學(xué);2008年
相關(guān)碩士學(xué)位論文 前6條
1 甄偉娜;車載自組網(wǎng)的認(rèn)證和隱私保護(hù)研究[D];北方工業(yè)大學(xué);2016年
2 王鑫;基于雙線性對(duì)的部分盲簽名研究[D];合肥工業(yè)大學(xué);2013年
3 周凱;基于云存儲(chǔ)的電子病歷系統(tǒng)及訪問控制策略研究[D];上海交通大學(xué);2011年
4 錢寧;基于云計(jì)算平臺(tái)的電信業(yè)務(wù)支撐系統(tǒng)中調(diào)度技術(shù)的研究[D];南京郵電大學(xué);2011年
5 孔楠;基于云計(jì)算平臺(tái)的商業(yè)服務(wù)模式研究[D];上海外國(guó)語大學(xué);2010年
6 胡江紅;特殊代理簽名體制的研究與設(shè)計(jì)[D];陜西師范大學(xué);2008年
,本文編號(hào):2435887
本文鏈接:http://sikaile.net/kejilunwen/jisuanjikexuelunwen/2435887.html
最近更新
教材專著
