CN106339597A - Intelligent medical remote monitor system based on cloud computing - Google Patents

Intelligent medical remote monitor system based on cloud computing Download PDF

Info

Publication number
CN106339597A
CN106339597A CN201610795721.5A CN201610795721A CN106339597A CN 106339597 A CN106339597 A CN 106339597A CN 201610795721 A CN201610795721 A CN 201610795721A CN 106339597 A CN106339597 A CN 106339597A
Authority
CN
China
Prior art keywords
cloud
patient
service
private clound
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610795721.5A
Other languages
Chinese (zh)
Inventor
不公告发明人
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to CN201610795721.5A priority Critical patent/CN106339597A/en
Publication of CN106339597A publication Critical patent/CN106339597A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

The invention provides an intelligent medical remote monitor system based on cloud computing. The intelligent medical remote monitor system comprises a real-time monitor system, a user terminal, a remote cloud platform and a server client, wherein the real-time monitor system is used for collecting the disease situation and the physical condition of a patient through nodes to monitor all important physical indexes of the body of the patient in real time, the patient can transmit data collected by the real-time monitor system to the remote cloud platform through the user terminal and a wireless network, and a doctor can login the remote cloud platform through the server client to obtain the physical condition of the monitored patient and can inform the patient to go to a doctor according to a diagnosis result. According to the intelligent medical remote monitor system, potential pathopoiesia factors of the patient can be found in time through the user terminal, the patient can be informed in time, remote diagnosis can be achieved, the time and the cost for the patient to line up and register are reduced, and the effects of early prevention and early treatment are achieved; furthermore, medical workers can share resources on the platform, and the medical level and the work efficiency are improved.

Description

A kind of intelligent medical remote monitoring system based on cloud computing
Technical field
The present invention relates to field of medical technology is and in particular to a kind of intelligent medical remote monitoring system based on cloud computing.
Background technology
The existing medical support system achieves phasic results at present, but " high cost of getting medical treatment, the difficulty and high cost of getting medical " this livelihood issues is also Unresolved, lead to city rural health resource configuration imbalance, state of an illness duplicate detection, a patient to worry costly to delay disease Feelings etc..
With the development of internet, network technology all creates significant impact, cloud to social, economic and cultural various aspects Calculating also begins to step into every field.
Content of the invention
For solving the above problems, the present invention provides a kind of intelligent medical remote monitoring system based on cloud computing.
The purpose of the present invention employs the following technical solutions to realize:
A kind of intelligent medical remote monitoring system based on cloud computing, including real-time monitoring system, user terminal, long-distance cloud Platform, server client;Described real-time monitoring system is used for gathering the state of an illness and the physical condition of patient by node, right The every important physical signs of patient body carries out real-time monitoring;Patient passes through user terminal, and real-time monitoring system is gathered Data, is sent to long-range cloud platform by wireless network;Doctor logs in long-range cloud platform by server client, obtains and is supervised Survey the health status of patient, and notify patient to seek medical advice according to diagnostic result.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal, and can be subtracted with remote diagnosis Lack the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be total on platform simultaneously Enjoying resource, improving medical level and operating efficiency, thus solving above-mentioned technical problem.
Brief description
Using accompanying drawing, the invention will be further described, but the embodiment in accompanying drawing does not constitute any limit to the present invention System, for those of ordinary skill in the art, on the premise of not paying creative work, can also obtain according to the following drawings Other accompanying drawings.
Fig. 1 is present configuration connection diagram.
During Fig. 2, the present invention is across the structure connection diagram of cloud customer certification system.
Reference:
Real-time monitoring system 1, user terminal 2, long-range cloud platform 3, across cloud customer certification system 4, server client 5, Service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, access monitoring system 44, information storage system 45th, mixed cloud identity management module 421, mixed cloud differentiated control module 422, across cloud authentication module 431, alarm module 432.
Specific embodiment
The invention will be further described with the following Examples.
Application scenarios 1
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene, Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body; Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis, Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422; Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module 432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database, Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3 Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 11, and certification speed improves 10%, and security improves 12%.
Application scenarios 2
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene, Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body; Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis, Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422; Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module 432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database, Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3 Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 10, and certification speed improves 11%, and security improves 11%.
Application scenarios 3
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene, Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body; Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis, Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422; Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module 432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database, Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3 Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 9, and certification speed improves 12%, and security improves 10%.
Application scenarios 4
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene, Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body; Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis, Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422; Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module 432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database, Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3 Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 8, and certification speed improves 13%, and security improves 9%.
Application scenarios 5
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene, Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body; Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis, Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422; Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module 432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database, Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3 Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 7, and certification speed improves 14%, and security improves 8%.
Finally it should be noted that above example is only in order to illustrating technical scheme, rather than the present invention is protected The restriction of shield scope, although having made to explain to the present invention with reference to preferred embodiment, those of ordinary skill in the art should Work as understanding, technical scheme can be modified or equivalent, without deviating from the reality of technical solution of the present invention Matter and scope.

Claims (3)

1. a kind of intelligent medical remote monitoring system based on cloud computing is it is characterised in that include real-time monitoring system, user eventually End, long-range cloud platform, server client;Described real-time monitoring system is used for gathering the state of an illness of patient by node and body is good for Health situation, to patient body, every important physical signs carries out real-time monitoring;Patient passes through user terminal, by real-time monitoring system The data of system collection, is sent to long-range cloud platform by wireless network;Doctor logs in long-range cloud platform by server client, Obtain the health status of monitored patient, and notify patient to seek medical advice according to diagnostic result.
2. a kind of intelligent medical remote monitoring system based on cloud computing according to claim 1 is it is characterised in that described User terminal is computer.
3. a kind of intelligent medical remote monitoring system based on cloud computing according to claim 2 is it is characterised in that described Server client adopts c/s framework, the data message receiving patient is preserved and classifies, and under security information, real The network share of existing data simultaneously judges to the state of an illness of patient, then by long-range cloud platform, result is returned to trouble Person.
CN201610795721.5A 2016-08-31 2016-08-31 Intelligent medical remote monitor system based on cloud computing Pending CN106339597A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610795721.5A CN106339597A (en) 2016-08-31 2016-08-31 Intelligent medical remote monitor system based on cloud computing

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610795721.5A CN106339597A (en) 2016-08-31 2016-08-31 Intelligent medical remote monitor system based on cloud computing

Publications (1)

Publication Number Publication Date
CN106339597A true CN106339597A (en) 2017-01-18

Family

ID=57823706

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610795721.5A Pending CN106339597A (en) 2016-08-31 2016-08-31 Intelligent medical remote monitor system based on cloud computing

Country Status (1)

Country Link
CN (1) CN106339597A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107147632A (en) * 2017-04-28 2017-09-08 泰康保险集团股份有限公司 Mutual authentication method and device, storage medium, electronic equipment
CN107330832A (en) * 2017-07-10 2017-11-07 山东朗朗智能科技发展有限公司 The method for remote management and system of auscultation platform
CN110739067A (en) * 2019-10-21 2020-01-31 深圳市迪比科电子科技有限公司 Personal health data acquisition management system based on smart home
CN111131906A (en) * 2020-01-13 2020-05-08 贵服通网络科技有限责任公司 Service system for realizing trusted security authentication on intelligent set top box based on CLA technology
CN112116997A (en) * 2020-08-20 2020-12-22 北京奇艺世纪科技有限公司 Method, device and system for remote diagnosis, electronic equipment and computer readable storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103490899A (en) * 2013-09-27 2014-01-01 浪潮齐鲁软件产业有限公司 Application cloud safety certification method based on third-party service
US20140050317A1 (en) * 2012-08-16 2014-02-20 Digicert, Inc. Cloud Key Management System
CN104123472A (en) * 2014-07-30 2014-10-29 浪潮集团有限公司 Intelligent medical remote monitoring platform based on cloud computing

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140050317A1 (en) * 2012-08-16 2014-02-20 Digicert, Inc. Cloud Key Management System
CN103490899A (en) * 2013-09-27 2014-01-01 浪潮齐鲁软件产业有限公司 Application cloud safety certification method based on third-party service
CN104123472A (en) * 2014-07-30 2014-10-29 浪潮集团有限公司 Intelligent medical remote monitoring platform based on cloud computing

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
朱智强: "混合云服务安全若干理论与关键技术研究", 《中国博士学位论文全文数据库-信息科技辑》 *

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107147632A (en) * 2017-04-28 2017-09-08 泰康保险集团股份有限公司 Mutual authentication method and device, storage medium, electronic equipment
CN107330832A (en) * 2017-07-10 2017-11-07 山东朗朗智能科技发展有限公司 The method for remote management and system of auscultation platform
CN110739067A (en) * 2019-10-21 2020-01-31 深圳市迪比科电子科技有限公司 Personal health data acquisition management system based on smart home
CN111131906A (en) * 2020-01-13 2020-05-08 贵服通网络科技有限责任公司 Service system for realizing trusted security authentication on intelligent set top box based on CLA technology
CN112116997A (en) * 2020-08-20 2020-12-22 北京奇艺世纪科技有限公司 Method, device and system for remote diagnosis, electronic equipment and computer readable storage medium
CN112116997B (en) * 2020-08-20 2023-08-15 北京奇艺世纪科技有限公司 Remote diagnosis method, device and system, electronic equipment and computer readable storage medium

Similar Documents

Publication Publication Date Title
Ghazal Internet of things with artificial intelligence for health care security
Guo et al. Access control for electronic health records with hybrid blockchain-edge architecture
CN106339597A (en) Intelligent medical remote monitor system based on cloud computing
US20230010452A1 (en) Zero-Knowledge Environment Based Networking Engine
US20230344832A1 (en) Systems and methods for online third-party authentication of credentials
CN103747036B (en) Trusted security enhancement method in desktop virtualization environment
CN107277079A (en) A kind of across cloud customer certification system towards mixed cloud
CN109509518A (en) Management method, server and the computer storage medium of electronic health record
CN106846577A (en) Personnel's discrepancy authority control method and device based on recognition of face
Alomar et al. Social authentication applications, attacks, defense strategies and future research directions: a systematic review
CN108880822A (en) A kind of identity identifying method, device, system and a kind of intelligent wireless device
CN103795702A (en) Transit control for data
Li et al. ChainSDI: a software-defined infrastructure for regulation-compliant home-based healthcare services secured by blockchains
Wang et al. Cyber security during the COVID-19 pandemic
CN1938708A (en) System supporting exchange of medical data and images between different executable applications
CN108111473A (en) Mixed cloud Explore of Unified Management Ideas, device and system
CN109741800A (en) The method for security protection of medical data intranet and extranet interaction based on block chain technology
CN113901499A (en) Zero-trust access authority control system and method based on trusted computing
CN109583232A (en) Medical archive management method, device, equipment and storage medium based on CP-ABE
CN106295290A (en) The method of authentication information, Apparatus and system is generated based on finger print information
CN114268508A (en) Internet of things equipment secure access method, device, equipment and medium
Chaudhry et al. Data security through zero-knowledge proof and statistical fingerprinting in vehicle-to-healthcare everything (V2HX) communications
Gill et al. Taxonomy of security attacks on cloud environment: a case study on telemedicine
KR101754659B1 (en) The secure automatic permission delegation method at emergency
CN110536118A (en) A kind of data capture method, device and computer storage medium

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170118

RJ01 Rejection of invention patent application after publication