摘要
智慧医院的平稳运行离不开网络安全的保驾护航。在国家《网络安全法》的指导下,作者在充分理解《网络安全等级保护条例(征求意见稿)》(以下简称“条例”)等国家标准的基础上,结合医疗机构的实际情况和《全国医院信息化建设标准与规范(试行)》等医疗行业信息化相关标准规范,对新、旧两个版本的条例进行了对比解读和剖析,提出了医疗行业网络安全面临的挑战和存在的问题。阐述了要想做好网络安全保护工作,就需要通过加强管理制度和人员合规化管理等对策,以及加强技术层面的优化防御手段和方法,提高安全性。并且给出了规范的医院网络架构图,系统化的说明了相应解决方案。
The smooth operation of intelligent hospital is inseparable from the protection of network security.Under the guidance of the“Cybersecurity Law of China”and on the basis of a full understanding of national standards such as the“Regulations on Levels of Cyber Security Protection(Draft for Solicitation of Comments)”(hereinafter referred to as"Regulations"),combining the actual situation of medical institutions and the relevant standards and norms of medical industry informatization such as the National Hospital Informatization Construction Standards and Norms(trial),the author makes a comparative interpretation and analysis of the new and old versions of the Regulations and proposed the challenges and existing problems of network security in medical industry.It is stated that in order to do a good job in network security protection,it is necessary to strengthen the management system and personnel compliance management,as well as strengthen the optimization of defensive means and methods at the technical level to improve security.A standard hospital network architecture diagram is given,and the corresponding solution are explained systematically.
作者
刘阳
俞准
LIU Yang;YU Zhun(Division of Information Management,Haikou Affiliated Hospital of Central South University Xiangya School of Medicine,Haikou 570208,Hainan,CHINA;Office of Hainan Medical Association,Haikou 570200,Hainan,CHINA)
出处
《海南医学》
CAS
2022年第4期535-537,共3页
Hainan Medical Journal
关键词
网络安全管理
网络安全等级保护2.0
方法与对策
网络安全三同步
Network security management
Network security level protection 2.0
Methods and countermeasures
Network security three synchronization
