CN106339597A - Intelligent medical remote monitor system based on cloud computing - Google Patents
Intelligent medical remote monitor system based on cloud computing Download PDFInfo
- Publication number
- CN106339597A CN106339597A CN201610795721.5A CN201610795721A CN106339597A CN 106339597 A CN106339597 A CN 106339597A CN 201610795721 A CN201610795721 A CN 201610795721A CN 106339597 A CN106339597 A CN 106339597A
- Authority
- CN
- China
- Prior art keywords
- cloud
- patient
- service
- private clound
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Landscapes
- Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Medical Treatment And Welfare Office Work (AREA)
Abstract
The invention provides an intelligent medical remote monitor system based on cloud computing. The intelligent medical remote monitor system comprises a real-time monitor system, a user terminal, a remote cloud platform and a server client, wherein the real-time monitor system is used for collecting the disease situation and the physical condition of a patient through nodes to monitor all important physical indexes of the body of the patient in real time, the patient can transmit data collected by the real-time monitor system to the remote cloud platform through the user terminal and a wireless network, and a doctor can login the remote cloud platform through the server client to obtain the physical condition of the monitored patient and can inform the patient to go to a doctor according to a diagnosis result. According to the intelligent medical remote monitor system, potential pathopoiesia factors of the patient can be found in time through the user terminal, the patient can be informed in time, remote diagnosis can be achieved, the time and the cost for the patient to line up and register are reduced, and the effects of early prevention and early treatment are achieved; furthermore, medical workers can share resources on the platform, and the medical level and the work efficiency are improved.
Description
Technical field
The present invention relates to field of medical technology is and in particular to a kind of intelligent medical remote monitoring system based on cloud computing.
Background technology
The existing medical support system achieves phasic results at present, but " high cost of getting medical treatment, the difficulty and high cost of getting medical " this livelihood issues is also
Unresolved, lead to city rural health resource configuration imbalance, state of an illness duplicate detection, a patient to worry costly to delay disease
Feelings etc..
With the development of internet, network technology all creates significant impact, cloud to social, economic and cultural various aspects
Calculating also begins to step into every field.
Content of the invention
For solving the above problems, the present invention provides a kind of intelligent medical remote monitoring system based on cloud computing.
The purpose of the present invention employs the following technical solutions to realize:
A kind of intelligent medical remote monitoring system based on cloud computing, including real-time monitoring system, user terminal, long-distance cloud
Platform, server client;Described real-time monitoring system is used for gathering the state of an illness and the physical condition of patient by node, right
The every important physical signs of patient body carries out real-time monitoring;Patient passes through user terminal, and real-time monitoring system is gathered
Data, is sent to long-range cloud platform by wireless network;Doctor logs in long-range cloud platform by server client, obtains and is supervised
Survey the health status of patient, and notify patient to seek medical advice according to diagnostic result.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal, and can be subtracted with remote diagnosis
Lack the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be total on platform simultaneously
Enjoying resource, improving medical level and operating efficiency, thus solving above-mentioned technical problem.
Brief description
Using accompanying drawing, the invention will be further described, but the embodiment in accompanying drawing does not constitute any limit to the present invention
System, for those of ordinary skill in the art, on the premise of not paying creative work, can also obtain according to the following drawings
Other accompanying drawings.
Fig. 1 is present configuration connection diagram.
During Fig. 2, the present invention is across the structure connection diagram of cloud customer certification system.
Reference:
Real-time monitoring system 1, user terminal 2, long-range cloud platform 3, across cloud customer certification system 4, server client 5,
Service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, access monitoring system 44, information storage system
45th, mixed cloud identity management module 421, mixed cloud differentiated control module 422, across cloud authentication module 431, alarm module 432.
Specific embodiment
The invention will be further described with the following Examples.
Application scenarios 1
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene,
Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to
Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body;
Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor
The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result
Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis,
Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously
Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided
Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform
Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries
High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes
Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system
System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information
Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422;
Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and
Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound
Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould
Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across
The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds
Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined
Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message
Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user
Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close
Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if
Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm
Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module
432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and
Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately
Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound
Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management
The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private
There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration
Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued
Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification
The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database,
Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports
ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound
Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs
Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection
Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit
Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible
Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety
On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level
And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it
On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need
Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester
Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes
Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message
Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation
Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes
Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution
Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other
Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service
Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent
A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message
When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3
Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit
Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison
Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 11, and certification speed improves 10%, and security improves
12%.
Application scenarios 2
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene,
Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to
Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body;
Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor
The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result
Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis,
Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously
Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided
Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform
Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries
High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes
Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system
System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information
Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422;
Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and
Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound
Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould
Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across
The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds
Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined
Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message
Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user
Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close
Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if
Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm
Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module
432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and
Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately
Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound
Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management
The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private
There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration
Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued
Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification
The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database,
Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports
ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound
Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs
Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection
Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit
Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible
Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety
On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level
And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it
On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need
Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester
Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes
Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message
Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation
Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes
Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution
Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other
Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service
Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent
A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message
When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3
Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit
Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison
Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 10, and certification speed improves 11%, and security improves
11%.
Application scenarios 3
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene,
Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to
Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body;
Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor
The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result
Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis,
Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously
Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided
Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform
Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries
High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes
Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system
System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information
Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422;
Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and
Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound
Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould
Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across
The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds
Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined
Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message
Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user
Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close
Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if
Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm
Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module
432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and
Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately
Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound
Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management
The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private
There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration
Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued
Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification
The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database,
Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports
ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound
Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs
Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection
Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit
Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible
Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety
On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level
And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it
On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need
Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester
Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes
Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message
Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation
Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes
Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution
Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other
Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service
Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent
A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message
When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3
Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit
Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison
Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 9, and certification speed improves 12%, and security improves
10%.
Application scenarios 4
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene,
Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to
Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body;
Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor
The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result
Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis,
Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously
Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided
Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform
Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries
High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes
Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system
System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information
Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422;
Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and
Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound
Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould
Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across
The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds
Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined
Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message
Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user
Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close
Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if
Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm
Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module
432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and
Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately
Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound
Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management
The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private
There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration
Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued
Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification
The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database,
Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports
ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound
Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs
Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection
Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit
Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible
Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety
On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level
And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it
On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need
Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester
Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes
Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message
Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation
Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes
Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution
Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other
Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service
Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent
A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message
When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3
Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit
Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison
Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 8, and certification speed improves 13%, and security improves
9%.
Application scenarios 5
Referring to Fig. 1, Fig. 2, the intelligent medical remote monitoring system based on cloud computing of an embodiment of this application scene,
Including real-time monitoring system 1, user terminal 2, long-range cloud platform 3, server client 5;Described real-time monitoring system 1 is used for leading to
Cross the state of an illness and the physical condition that node gathers patient, every important physical signs carries out real-time monitoring to patient body;
Patient passes through user terminal 2, the data that real-time monitoring system 1 is gathered, and is sent to long-range cloud platform 3 by wireless network;Doctor
The raw health status long-range cloud platform 3 being logged in by server client 5, obtaining monitored patient, and led to according to diagnostic result
Know that patient seeks medical advice.
Preferably, described user terminal 2 is mobile phone or computer.
The invention has the benefit that by designing intelligent medical remote monitoring system, using the advantage of cloud computing, setting up
Resource-sharing between medical and health organization, realizes the optimum integration of medical services resources, and propulsion medical information is built
Development;Find that patient potentially cures the disease factor give to remind in time in time by user terminal 2, and can with remote diagnosis,
Decrease the time cost that queuing of patients registers, reach the effect of early prevention, early treatment;Medical personnel can be on platform simultaneously
Shared resource, improves medical level and operating efficiency, thus solving above-mentioned technical problem.
Preferably, described server client 5 adopts c/s framework, the data message receiving patient is preserved and is divided
Class, and under security information, realize the network share of data and the state of an illness of patient is judged, then by long-range cloud platform
Result is returned to patient by 3.
This preferred embodiment server client 5 adopts c/s framework, is easy to medical personnel's shared resource on platform, carries
High medical level and operating efficiency.
Preferably, described long-range cloud platform 3 includes multiple mixed clouds for storage resource.
This preferred embodiment carries out resource storage by mixed cloud, has not only saved money but also safety.
Preferably, described intelligent medical remote monitoring system also includes across cloud customer certification system 4, and described across cloud user recognizes
Card system 4 is used for managing across the cloud checking between each private clound in the mixed cloud of long-range cloud platform 3, described across cloud user authentication system
System 4 includes service request terminal 41, mixed cloud management system 42, across cloud authentication administrative system 43, accesses monitoring system 44 and information
Storage system 45;
The privately owned cloud service that described service request terminal 41 is used for accessing for service requester in mixed cloud provides access interface;
Described mixed cloud management system 42 includes mixed cloud identity management module 421, mixed cloud differentiated control module 422;
Described mixed cloud identity management module 421 is used for based on Certificate Authentication Mechanism, the private clound adding mixed cloud being managed, and
Set up the trusting relationship between each private clound;Described mixed cloud differentiated control module 422 is used for the security classification according to private clound
Private clound is divided into open level, confidential and confidential, and takes different security strategies to be managed for different brackets;
Described across cloud authentication administrative system 43 includes across cloud authentication module 431 and alarm module 432;Described across cloud certification mould
Block 431 be used for when service requester carries out across cloud accesss obtain service requester attribute token, and be based on self-defining across
The service requester that cloud authentication protocol realizes local private clound carries out recognizing across cloud during across cloud access to the service of other private clounds
Card;Described alarm module 432 is used for the alert when obtaining attribute token failure or deciphering unsuccessfully;
The described monitoring system 44 that accesses is monitored for the process that service requester is accessed across cloud;
Described information storage system 45 is used for access information and the warning message of storage service requestor.
Preferably, the described attribute token obtaining service requester when service requester carries out across cloud access, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined password, and described self-defined password digit have to be larger than 6, and will be self-defined
Password and its identity send jointly to the certification of private clound after encrypted signature together with described attribute request as message
Agency, authentication proxy is decrypted checking by the private key of oneself and the public key of user to message, after being verified, according to user
Attribute request dependence memory module in extract attribute corresponding with attribute request sign and issue attribute token, generation session is close
Key, is sent to user after encrypted signature together with described attribute token and self-defined password;
(4), after user receives message, using the private key of oneself and the public key certificate of authentication proxy, message is decrypted, if
Contain self-defined password in information, then have authenticated the identity of described authentication proxy, also obtain attribute token simultaneously.
Preferably, the described alert when obtaining attribute token failure or deciphering unsuccessfully, comprising:
(1) service requester sends access service request to the service s of other private clounds that will access across cloud;
(2), after service s response access service request, send attribute request to service requester;
(3) service requester inputs self-defined code error, obtains attribute token failure, and alarm module 432 sends alarm
Information, attribute token obtains after being sent to user, and user cannot be decrypted it is impossible to complete authentication to information, alarm module
432 also alerts.
The above embodiment of the present invention devises the acquisition modes of attribute token, improve attribute token acquisition security and
Efficiency;Construct across the cloud Verification System towards mixed cloud, user under mixing cloud environment can be met and adhere to different private clounds separately
Authenticated domain, service access frequently demand.
Preferably, described mixed cloud identity management module 421 includes:
(1) certificate issuance unit: for adding or when exiting mixed cloud being that the authentication proxy of this private clound is signed in private clound
Send out or revoked public key certificate, and the public key certificate signed and issued in mixed cloud is managed collectively;
(2) Yun Jian authentication proxy unit: for receiving the registration of the private clound of new addition, the new private clound adding of management
The log-on message of authentication proxy, thus set up itself trusting relationship and private clound between.
Preferably, the authentication proxy of described private clound supports ID authentication mechanism and Certificate Authentication Mechanism, for managing private
There is signing and issuing of the authentication in cloud and attribute token, and when across cloud authentication module 431 carries out across cloud certification, by described registration
Information is submitted to mixed cloud identity management module 421 and is registered, and receives the public key card that mixed cloud identity management module 421 is signed and issued
Book;The log-on message of the authentication proxy of private clound that described management newly adds, comprising: the certification generation of the new private clound adding of examination & verification
The log-on message of reason, receive the new log-on message of the authentication proxy of private clound adding, log-on message is stored in safety database,
Delete the log-on message of the private clound exiting when private clound exits mixed cloud.
Above-mentioned two preferred embodiment achieves the management to the private clound in mixed cloud, and the authentication proxy of private clound supports
ID authentication mechanism and Certificate Authentication Mechanism, make the management more science to the private clound in mixed cloud, safe.
Preferably, private clound is divided into open level, confidential and confidential, bag by the described security classification according to private clound
Include:
(1) if certain private clound only allows this private clound founder itself to access, this private clound is confidential;
(2) if certain private clound allows the user that this private clound founder authorizes to access, this private clound is confidential;
(3) if certain private clound allows all users setting up trusting relationship with this private clound to access, this private clound is public affairs
Open level.
Preferably, described security strategy includes:
(1) for confidential private clound, it is encrypted using elliptic curve cipher system, visitor needs to carry out fingerprint inspection
Card could send access request;
(2) for confidential private clound, it is encrypted using rsa AES, visitor needs to authorize u shield could visit
Ask;
(3) for open level private clound, it is encrypted using des AES, the visitor setting up trusting relationship is permissible
Directly transmit access request.
This preferred embodiment divides security classification to different private clounds and designs corresponding security strategy, is ensureing safety
On the premise of different private clounds can be conducted interviews.
Preferably, described information storage system 45 is stored to information using multilayered model, including accumulation layer, management level
And interface layer, described accumulation layer is in the bottom of memory module, is made up of different equipment, described management level be located at accumulation layer it
On, by various softwares, storage device is managed, described interface layer user oriented provides service, can be according to client's need
Ask, different service interfaces are provided.
This preferred embodiment is easy to be easy to manager's queried access information and warning message, is easy to subsequent examination.
Preferably, described self-defining across cloud authentication protocol is:
(1) service requester randomly selects self-defined numeral as fresh number, the attribute token obtaining with service requester
Return to the random number of service requester together as message with carrying out service s during across cloud access, after encrypted signature, be sent to clothes
Business s;
(2) after service s receives message, close to message solution label with the private key of oneself and the public key of service requester, if message
Return to the random number of service requester containing described service s, then service requester authentication is passed through, service s and then generation
Another random number, carries out encrypted signature to described another random number and described self-defined numeral, forms feedback information, is sent to clothes
Business requestor;
(3) after service requester receives described feedback information, with the public key of the private key of oneself and service s to feedback information solution
Sign close, if feedback information contains described self-defined numeral, have authenticated the identity of service s, it is achieved thereby that both sides' mutually recognizes each other
Card.
This preferred embodiment devises self-defining across cloud authentication protocol it is achieved that two-way between service requester and service
Certification, improves security and the efficiency across cloud certification of system.
Preferably, described access monitoring system 44 is by access process vector x=(a1、a2、a3) be indicated, a1Represent
A situation arises for warning message, a2Represent user accesses whether meet security strategy, a3Represent running situation;Work as warning message
When not occurring, a1Take 1, otherwise take 0;User accesses when meeting security strategy, a2Take 1, otherwise take 0;The a when system operation is normal3
Take 1, otherwise take 0;Only when x=(1,1,1), monitoring system identification accesses successfully;Access monitoring system 44 at work to visit
Ask that unsuccessful time and number of times are recorded, reach set point number when accessing unsuccessful number of times in setting time section, access prison
Examining system 44 sends warning information.
This preferred embodiment achieves the monitoring to user's access process, improves the security of system.
In this application scenarios, described self-defined password digit is 7, and certification speed improves 14%, and security improves
8%.
Finally it should be noted that above example is only in order to illustrating technical scheme, rather than the present invention is protected
The restriction of shield scope, although having made to explain to the present invention with reference to preferred embodiment, those of ordinary skill in the art should
Work as understanding, technical scheme can be modified or equivalent, without deviating from the reality of technical solution of the present invention
Matter and scope.
Claims (3)
1. a kind of intelligent medical remote monitoring system based on cloud computing is it is characterised in that include real-time monitoring system, user eventually
End, long-range cloud platform, server client;Described real-time monitoring system is used for gathering the state of an illness of patient by node and body is good for
Health situation, to patient body, every important physical signs carries out real-time monitoring;Patient passes through user terminal, by real-time monitoring system
The data of system collection, is sent to long-range cloud platform by wireless network;Doctor logs in long-range cloud platform by server client,
Obtain the health status of monitored patient, and notify patient to seek medical advice according to diagnostic result.
2. a kind of intelligent medical remote monitoring system based on cloud computing according to claim 1 is it is characterised in that described
User terminal is computer.
3. a kind of intelligent medical remote monitoring system based on cloud computing according to claim 2 is it is characterised in that described
Server client adopts c/s framework, the data message receiving patient is preserved and classifies, and under security information, real
The network share of existing data simultaneously judges to the state of an illness of patient, then by long-range cloud platform, result is returned to trouble
Person.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610795721.5A CN106339597A (en) | 2016-08-31 | 2016-08-31 | Intelligent medical remote monitor system based on cloud computing |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610795721.5A CN106339597A (en) | 2016-08-31 | 2016-08-31 | Intelligent medical remote monitor system based on cloud computing |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106339597A true CN106339597A (en) | 2017-01-18 |
Family
ID=57823706
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610795721.5A Pending CN106339597A (en) | 2016-08-31 | 2016-08-31 | Intelligent medical remote monitor system based on cloud computing |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106339597A (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107147632A (en) * | 2017-04-28 | 2017-09-08 | 泰康保险集团股份有限公司 | Mutual authentication method and device, storage medium, electronic equipment |
CN107330832A (en) * | 2017-07-10 | 2017-11-07 | 山东朗朗智能科技发展有限公司 | The method for remote management and system of auscultation platform |
CN110739067A (en) * | 2019-10-21 | 2020-01-31 | 深圳市迪比科电子科技有限公司 | Personal health data acquisition management system based on smart home |
CN111131906A (en) * | 2020-01-13 | 2020-05-08 | 贵服通网络科技有限责任公司 | Service system for realizing trusted security authentication on intelligent set top box based on CLA technology |
CN112116997A (en) * | 2020-08-20 | 2020-12-22 | 北京奇艺世纪科技有限公司 | Method, device and system for remote diagnosis, electronic equipment and computer readable storage medium |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103490899A (en) * | 2013-09-27 | 2014-01-01 | 浪潮齐鲁软件产业有限公司 | Application cloud safety certification method based on third-party service |
US20140050317A1 (en) * | 2012-08-16 | 2014-02-20 | Digicert, Inc. | Cloud Key Management System |
CN104123472A (en) * | 2014-07-30 | 2014-10-29 | 浪潮集团有限公司 | Intelligent medical remote monitoring platform based on cloud computing |
-
2016
- 2016-08-31 CN CN201610795721.5A patent/CN106339597A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140050317A1 (en) * | 2012-08-16 | 2014-02-20 | Digicert, Inc. | Cloud Key Management System |
CN103490899A (en) * | 2013-09-27 | 2014-01-01 | 浪潮齐鲁软件产业有限公司 | Application cloud safety certification method based on third-party service |
CN104123472A (en) * | 2014-07-30 | 2014-10-29 | 浪潮集团有限公司 | Intelligent medical remote monitoring platform based on cloud computing |
Non-Patent Citations (1)
Title |
---|
朱智强: "混合云服务安全若干理论与关键技术研究", 《中国博士学位论文全文数据库-信息科技辑》 * |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107147632A (en) * | 2017-04-28 | 2017-09-08 | 泰康保险集团股份有限公司 | Mutual authentication method and device, storage medium, electronic equipment |
CN107330832A (en) * | 2017-07-10 | 2017-11-07 | 山东朗朗智能科技发展有限公司 | The method for remote management and system of auscultation platform |
CN110739067A (en) * | 2019-10-21 | 2020-01-31 | 深圳市迪比科电子科技有限公司 | Personal health data acquisition management system based on smart home |
CN111131906A (en) * | 2020-01-13 | 2020-05-08 | 贵服通网络科技有限责任公司 | Service system for realizing trusted security authentication on intelligent set top box based on CLA technology |
CN112116997A (en) * | 2020-08-20 | 2020-12-22 | 北京奇艺世纪科技有限公司 | Method, device and system for remote diagnosis, electronic equipment and computer readable storage medium |
CN112116997B (en) * | 2020-08-20 | 2023-08-15 | 北京奇艺世纪科技有限公司 | Remote diagnosis method, device and system, electronic equipment and computer readable storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
Ghazal | Internet of things with artificial intelligence for health care security | |
Guo et al. | Access control for electronic health records with hybrid blockchain-edge architecture | |
CN106339597A (en) | Intelligent medical remote monitor system based on cloud computing | |
US20230010452A1 (en) | Zero-Knowledge Environment Based Networking Engine | |
US20230344832A1 (en) | Systems and methods for online third-party authentication of credentials | |
CN103747036B (en) | Trusted security enhancement method in desktop virtualization environment | |
CN107277079A (en) | A kind of across cloud customer certification system towards mixed cloud | |
CN109509518A (en) | Management method, server and the computer storage medium of electronic health record | |
CN106846577A (en) | Personnel's discrepancy authority control method and device based on recognition of face | |
Alomar et al. | Social authentication applications, attacks, defense strategies and future research directions: a systematic review | |
CN108880822A (en) | A kind of identity identifying method, device, system and a kind of intelligent wireless device | |
CN103795702A (en) | Transit control for data | |
Li et al. | ChainSDI: a software-defined infrastructure for regulation-compliant home-based healthcare services secured by blockchains | |
Wang et al. | Cyber security during the COVID-19 pandemic | |
CN1938708A (en) | System supporting exchange of medical data and images between different executable applications | |
CN108111473A (en) | Mixed cloud Explore of Unified Management Ideas, device and system | |
CN109741800A (en) | The method for security protection of medical data intranet and extranet interaction based on block chain technology | |
CN113901499A (en) | Zero-trust access authority control system and method based on trusted computing | |
CN109583232A (en) | Medical archive management method, device, equipment and storage medium based on CP-ABE | |
CN106295290A (en) | The method of authentication information, Apparatus and system is generated based on finger print information | |
CN114268508A (en) | Internet of things equipment secure access method, device, equipment and medium | |
Chaudhry et al. | Data security through zero-knowledge proof and statistical fingerprinting in vehicle-to-healthcare everything (V2HX) communications | |
Gill et al. | Taxonomy of security attacks on cloud environment: a case study on telemedicine | |
KR101754659B1 (en) | The secure automatic permission delegation method at emergency | |
CN110536118A (en) | A kind of data capture method, device and computer storage medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170118 |
|
RJ01 | Rejection of invention patent application after publication |