摘要
电子病历作为电子医疗信息的重要组成部分,其推广应用的主要问题之一是如何方便快捷的共享各种电子病历信息,同时又保护好患者的隐私.首先分析了当前电子病历信息共享所面临的各种安全问题,介绍了动态口令技术的基本原理和技术模式,研究和开发了一种基于动态口令的访问控制体系.动态口令(或称一次性密码)根据用户的安全级别和实用性要求,可以分别用软件,手机或者电子令牌产生.该身份认证技术可以与现存的各种医院信息系统无缝融合,这样一来既保证了电子病历信息安全、快捷和方便地共享,又能保护患者的隐私不被非法用户和黑客所窃取.
Computer-based patient record is the most important part of electronic medical information. The main problem for applying computer-based patient record is how to share patient information safely and protect patient privacy in the meantime. In this article, the safe sharing issues of computer-based patient record are described. The principle of dynamic password is described and an access control system based on dynamic password is designed. Dynamic password (one time password) can be produced by software, mobile phone and electric token according to the user safety level and different request of user. This identity authentication system based on dynamic password can be easily merged into most of hospital information systems. By using this technology, computer-based patient record can be shared by different organizations safely, quickly and conveniently. In the meantime, the patient privacy can be protected very well also.
出处
《计算机系统应用》
2012年第12期12-16,共5页
Computer Systems & Applications
基金
浙江省大学生科技创新计划(新苗人才计划)项目(2012R413026)
浙江省教育厅科技项目(Y201222952)
温州市科技局科技项目(Y20100301)
关键词
电子病历
安全共享
动态口令
手机令牌
computer-based patient record
safe sharing
dynamic password
mobile phone token
