摘要
目的:实施天津市疾病预防控制信息系统数字认证,实现全市网络直报单位数字认证的全覆盖,提高控制信息泄露等安全风险的能力。方法:利用全国统一的中国疾病预防控制信息系统电子认证云服务平台,按照分级管理框架搭建CA证书管理,由1个市级管理中心辐射至18个区级管理点,实现全市证书更新、证书解锁、证书补办、证书吊销的证书全生命周期安全管理,同时在天津市疾病预防控制中心部署静默服务器,用于全市数字证书年度更新。结果:完成了天津市疾病预防控制信息系统用户的数字证书的配发与国家云认证平台的集成,实现了用户访问的数字证书认证,从源头杜绝了网络报告疾病预防控制信息发生信息泄露的安全隐患和风险。结论:天津市辖区内的中国疾病预防控制信息系统全部注册授权用户实现了基于数字证书认证登录方式的工作,安全体系建设得到了整体提升。
Objective To implement the disease control and prevention information system digital certification in Tianjin, toachieve full coverage of network direct reporting unit digital certification in the city and to improve the ability to controlsecurity risks like information leakage. CA certificate management was implemented with hierarchical frameworkand electronic authentication cloud platform of national disease control and prevention information system in China. The life-cycle certificate management was realized for certificate update, unlocking, reissuance and withdrawal.A silent server wasdeployed in Tianjin Centers for Disease Control and Prevention for annual update of digital certificate. The digitalcertificate was issued to the user of Tianjin disease control and prevention information system, the integration was realizedwith national cloud authentication platform, and digital certificate authentication was implemented for user access. The risksfor information leakage were eliminated during network reporting of disease control and prevention information.All the authorized users of China's disease control and prevention information system in Tianjin area gain the authenticationfor access based on digital certificate, and the safety system is improved greatly.
出处
《医疗卫生装备》
CAS
2018年第2期56-59,共4页
Chinese Medical Equipment Journal
关键词
疾病预防控制信息系统
网络直报
数字证书
电子认证
信息安全
实施与管理
information system of disease control and prevention
network direct report
digital certificate
electronic certification
information security
implementation and management
