摘要
随着移动互联网的发展,医院服务的互联网化是大势所趋,但是由于医疗行业的特殊性,其对安全性和专业性都提出了更高的要求。本文针对目前移动互联网医院面临的主要安全问题进行详细分析,提出建立一个统一的安全与监管平台,用以解决移动互联网医院的身份认证、机密性、抗抵赖、可审计等安全问题。平台使用成熟的数字证书体系以及SSL VPN协议作为技术基础,结合医院应用现状,设计新的安全保障体系和移动互联网医院安全流程,使用安全中间件和客户端控件相结合的方式打造安全环境,并辅以数据收集和监控体系,成功解决目前移动互联网医院的安全问题和监管诉求,从而促使移动互联网医院向着有序、安全、健康的方向发展。
With the development of mobile Internet, Internet of hospital services is the trend of The times, yet because of the particularity of the medical industry, higher requirements for the security and expertise are put forward. This paper focuses on the present main security problems of the mobile Internet hospital, puts forward to establish a unifi ed platform for the security and regulation and to solve the problem of identity authentication, confi dentiality, nonrepudiation, auditing, etc. for mobile Internet hospital. By using the mature technology of digital certifi cates and SSL VPN Protocol as the foundation and combining with hospital application situation, the platform designed a new security system, used the security middleware and the client active X, all contributes to build a secure environment. Supplemented by data collection and regulatory system, it can successfully solve the security problems in the mobile Internet hospital and meet the regulatory demands, and promotes the orderly, safe and healthy development of hospitals.
出处
《中国卫生信息管理杂志》
2015年第1期14-19,共6页
Chinese Journal of Health Informatics and Management
基金
国家高技术研究发展计划(863计划)课题
医疗信息化体系与信息标准研究(课题编号:2012AA02A617)
关键词
数据安全
移动互联网医院
CA系统
SSL
VPN
数据监管
Information security,Mobile internet hospital,Certifi cate authority System,SSL VPN protocol,Data regulatory
