CN112185535A - Medical information safety management system based on block chain - Google Patents
Medical information safety management system based on block chain Download PDFInfo
- Publication number
- CN112185535A CN112185535A CN202011167988.2A CN202011167988A CN112185535A CN 112185535 A CN112185535 A CN 112185535A CN 202011167988 A CN202011167988 A CN 202011167988A CN 112185535 A CN112185535 A CN 112185535A
- Authority
- CN
- China
- Prior art keywords
- information
- module
- medical information
- patient
- medical
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H40/00—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices
- G16H40/20—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the management or administration of healthcare resources or facilities, e.g. managing hospital staff or surgery rooms
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Abstract
The invention discloses a medical information safety management system based on a block chain, which comprises a patient information management module, a medical information management module, a monitoring alarm module and a storage module; the patient information management module comprises a user name generation module and an encryption module; the medical information management module comprises an information recording module for recording the blockchain information of a plurality of medical information recording nodes, an information operation module for recording encrypted medical and user name information of a patient to the corresponding medical information recording nodes on the blockchain, and an information distribution module for distributing the access authority of the corresponding medical information recording nodes in the blockchain according to the medical information of the patient; and the public query module calls out the medical information of the patient corresponding to the patient in the blockchain according to the included patient user name information. The medical information safety management system provided by the invention ensures the safety in the data transmission process, realizes the information interaction of each department and each department, and improves the diagnosis and treatment efficiency of doctors.
Description
Technical Field
The invention relates to the technical field of data security management, in particular to a medical information security management system based on a block chain.
Background
At present, with the increasing level of informatization of medical institutions, many hospitals have established medical information management systems to protect medical data of patients, hospital research projects and the like. However, the existing medical information management system often has the following security problems:
firstly, the confidentiality of personal basic information of a patient is incomplete, and the privacy of the patient is easy to leak and influence the patient and family members of the patient due to the fact that massive medical information is easy to steal and spread in the transmission or storage process;
secondly, the standards and protocols followed by each hospital and different departments in the same hospital are different, so that good interaction and fusion cannot be realized, when a patient changes the hospital for treatment, the current treatment doctor is difficult to comprehensively decide by combining medical information such as the previous medical history of the patient, the doctor cannot accurately judge the state of the disease, and the treatment time is delayed.
Disclosure of Invention
The invention aims to provide a medical information safety management system based on a block chain, which ensures the safety in the data transmission process, reduces the safety risk and improves the capability of protecting the privacy information of a patient by encrypting medical data for the second time during data transmission; meanwhile, the system realizes the information interaction of each department and each department, and improves the diagnosis and treatment efficiency of doctors.
In order to overcome the defects in the prior art, an embodiment of the present invention provides a block chain-based medical information security management system, including: the system comprises a patient information management module, a medical information management module, a monitoring alarm module and a storage module;
the patient information management module comprises a user name generation module and an encryption module; the user name generation module is used for generating a user name of the patient according to the recorded patient medical information; the encryption module is used for encrypting the user name information and feeding back the user name information to the patient;
the medical information management module comprises an information recording module, an information operation module, an information distribution module and a public query module;
the information recording module is used for recording block chain information comprising a plurality of medical information recording nodes;
the information operation module is used for recording the encrypted medical information and the user name information of the patient into corresponding medical information recording nodes on the block chain;
the information distribution module is used for distributing the access authority of the medical information recording nodes in the corresponding block chain to the patient according to the medical information of the patient;
the public query module is used for calling out the medical information of the patient corresponding to the user name of the patient in the block chain according to the recorded patient user name information;
the monitoring alarm module is used for monitoring and recording the execution of the access process, triggering alarm and performing remote operation interruption according to abnormal conditions, and performing data recovery after the abnormal conditions are eliminated;
the storage module is used for storing the files transmitted by the medical information management module, the files transmitted by the patient information management module and the monitoring information transmitted by the monitoring alarm module.
Furthermore, the encryption module also comprises a pre-encryption unit, an aggregation unit and an abnormal checking unit;
the pre-encryption unit is used for pre-encrypting the medical information with the 0 value or the negative value, and replacing the 0 value or the negative value with a preset replacement value;
the clustering unit is used for clustering and encrypting the pre-encrypted medical information;
the abnormal checking unit is used for performing abnormal checking encryption on the grouped medical information, marking the abnormal medical information, and recording all the encrypted medical information and the corresponding user names of the patients into the corresponding medical information recording nodes on the block chain.
Further, the patient information management module is also used for editing, modifying and saving the privacy policy to control the data access authority, viewing the access monitoring information and responding to the access request of the medical staff to the personal information of the patient.
Further, the plurality of medical information listing nodes include: the medical information recording system comprises a first medical information recording node user name, a second medical information recording node user name connected with the first medical information recording node, a hash function and a time stamp.
Further, the information recording module is further configured to integrate the recorded information according to a preset format and transmit the integrated information to the information operation module.
Further, the user name generation module records the user name of the patient by adopting a mapping table mode.
Further, the information recorded by the medical information recording node comprises patient electronic medical records, doctor record information, charging record information and pharmacy record information;
the doctor record information comprises the time of the visit, the diagnosis process and the prescription;
the charging record information comprises payment time, charging items, charging amount and charging personnel;
the pharmacy record information comprises the medicine taking time, the medicine name and the medicine taking personnel.
Further, the monitoring information recorded by the monitoring alarm module comprises access personnel, access time and access content.
Further, the patient information management module and the medical information management module feed back an approval access request by sending an access verification code.
Further, the access verification code is sent to the access requester through a network or a mobile phone.
Compared with the prior art, the embodiment of the invention has the advantages that the medical data is secondarily encrypted during data transmission, so that the safety in the data transmission process is ensured, the safety risk is reduced, and the capability of protecting the privacy information of a patient is improved; meanwhile, the system realizes the information interaction of each department and each department, and improves the diagnosis and treatment efficiency of doctors.
Drawings
Fig. 1 is a block diagram of a block chain-based medical information security management system according to an embodiment of the present invention;
fig. 2 is a block diagram of an encryption module according to an embodiment of the present invention.
Detailed Description
The following detailed description of embodiments of the present invention is provided in connection with the accompanying drawings and examples. The following examples are intended to illustrate the invention but are not intended to limit the scope of the invention. All other embodiments obtained by a person of ordinary skill in the art without any inventive step based on the embodiments of the present invention shall fall within the scope of protection of the present invention.
Referring to fig. 1, an embodiment of the present invention provides a block chain-based medical information security management system 100, including: the system comprises a patient information management module 10, a medical information management module 20, a monitoring alarm module 30 and a storage module 40;
the patient information management module 10 includes a user name generation module 101 and an encryption module 102;
the information operation module 202 is configured to receive the encrypted medical information and the user name information of the patient into corresponding medical information receiving and recording nodes on the blockchain;
the information distribution module 203 is configured to distribute access rights of medical information recording nodes in a corresponding blockchain to a patient according to medical information of the patient;
the public query module 204 is configured to call out medical information of a patient corresponding to the user name of the patient in the blockchain according to the received and recorded patient user name information;
the user name generation module 101 is configured to generate a user name of a patient according to the recorded patient medical information; the encryption module 102 is used for encrypting the user name information and feeding back the user name information to the patient;
it should be noted that secure communication, computer keys, copy-protected floppy disks, and the like all belong to information encryption technologies. The encryption in the communication process mainly adopts a password, and a computer can be used in digital communication to change the digital structure of the load information by adopting an encryption method. The computer information protection is mainly software encryption. The most popular encryption systems and encryption algorithms in the world currently include: RSA algorithm and CCEP algorithm, etc. To prevent the password from being broken, the encryption software also often adopts hardware encryption and an encryption floppy disk. Some software goods often have a small hard card, which is a hardware encryption measure. The laser punching is used to punch holes on the floppy disk, so that the software memory area has unknown local damage, and illegal copying can be prevented. Such encrypted floppy disks may be used by persons who do not possess encryption technology to protect the software. In the embodiment, the user name information is mainly encrypted, so that the user name is prevented from being decrypted to reveal important medical information;
in this embodiment, the patient information management module 10 is further configured to edit, modify, and store a privacy policy to control data access permissions, view access monitoring information, and respond to an access request of a medical staff for personal information of a patient, and in practical applications, in order to protect data security, data access permissions are generally set, for example, a family of the patient who agrees to refer to diagnosis and treatment information of the patient is consulted, or a relevant medical staff agrees to the patient may also authorize access, and before access, verification of a relevant identity must be performed, and the verification is performed to access the patient.
In this embodiment, the user name generation module 101 records the user name of the patient by using a mapping table, where the mapping table is a mapping technique that uses a table containing the mapping relationship between addresses in two address spaces to perform mapping. If two address spaces are mapped through a table, mathematical calculation is not needed when the address of one of the two spaces is mapped to the other space, and the method is simple and convenient to operate and can improve the efficiency when the user name is included.
In this embodiment, the medical information management module 20 includes an information recording module 201, an information operation module 202, an information distribution module 203, and a public query module 204;
the information recording module 201 is configured to record blockchain information including a plurality of medical information recording nodes; the block chain is essentially a shared database, and the data or information stored in the database has the characteristics of unforgeability, whole-course trace, traceability, public transparency, collective maintenance and the like. Based on the characteristics, the block chain technology lays a solid 'trust' foundation, creates a reliable 'cooperation' mechanism and has wide application prospect. As the block chain has the characteristic of being not falsifiable, once the medical data information is input, the medical data information cannot be deleted or modified, and the cost for information embezzlement by lawbreakers is greatly increased.
Further, the plurality of medical information listing nodes include: the medical information recording system comprises a first medical information recording node user name, a second medical information recording node user name connected with the first medical information recording node, a hash function and a time stamp.
It can be understood that, based on the information management in the blockchain mode, a plurality of medical information recording nodes are provided, and each medical information recording node is provided with an upstream or downstream medical information recording node associated with the medical information recording node; when acquiring a group of node information, it is usually necessary to acquire their user names, hash functions and timestamps; the hash function refers to a general linear table, and the relative position of the record in the structure is random, i.e. there is no definite relationship with the key of the record, so a series of comparisons with the key are needed when looking up the record in the structure. This type of search method is based on "comparison", and the efficiency of the search depends on the number of comparisons performed during the search. Ideally, the required record can be found directly, so a definite corresponding relation f must be established between the storage location of the record and its key word, so that each key word corresponds to a unique storage location in the structure, the time stamp is data generated by using a digital signature technology, and the signature object includes information such as original file information, signature parameters, signature time and the like. The time stamp system is used for generating and managing time stamps, and the time stamps are generated by digitally signing signature objects so as to prove that original files exist before the signature time. The information can be well associated and sorted as long as the user name, the hash function and the timestamp information of each group of medical information recording nodes are obtained, and the checking speed can be increased once the information of a certain link goes wrong.
In this embodiment, the information recording module 201 is further configured to integrate the recorded information according to a preset format and transmit the integrated information to the information operation module.
In this embodiment, the information recorded by the medical information recording node includes electronic medical records of patients, doctor record information, charging record information, and pharmacy record information; the doctor record information comprises the time of the visit, the diagnosis process and the prescription; the charging record information comprises payment time, charging items, charging amount and charging personnel; the pharmacy record information comprises the medicine taking time, the medicine name and the medicine taking personnel.
In this embodiment, the monitoring alarm module 30 is configured to monitor and record execution of an access process, trigger an alarm and perform remote operation interruption according to an abnormal condition, and perform data recovery after the abnormal condition is eliminated; further, the monitoring information recorded by the monitoring alarm module 30 includes the visit personnel, the visit time and the visit content.
In this embodiment, the storage module 40 is configured to store the file transmitted by the medical information management module, the file transmitted by the patient information management module, and the monitoring information transmitted by the monitoring alarm module.
According to the embodiment of the invention, the medical data is encrypted for the second time during data transmission, so that the safety in the data transmission process is ensured, the safety risk is reduced, and the capability of protecting the privacy information of a patient is improved; meanwhile, the system realizes the information interaction of each department and each department, and improves the diagnosis and treatment efficiency of doctors.
In one embodiment of the present invention, the encryption module 102 further includes a pre-encryption unit 121, an aggregation unit 122, and an extraordinary checking unit 123;
the pre-encryption unit 121 is configured to pre-encrypt the medical information having a value of 0 or a negative value, and replace the value of 0 or the negative value with a preset substitute value;
the clustering unit 122 is used for clustering and encrypting the pre-encrypted medical information;
the supernormal checking unit 123 is configured to perform supernormal checking encryption on the grouped medical information, mark the supernormal medical information, and record all encrypted medical information and the user names of corresponding patients in corresponding medical information recording nodes on the blockchain.
It should be noted that, in the embodiment of the present invention, data is mainly preprocessed for information to be encrypted, and the information is encrypted in steps through data identification, first, a value 0 or a negative value is marked for the data, which indicates that such data needs to be pre-encrypted, the pre-encryption clustering unit 122 performs clustering encryption for the pre-encrypted medical information, that is, information with the same data characteristics is classified, and then, data encryption is performed by using different keys, for example, the pre-encrypted information includes identity information and diagnosis and treatment information of a plurality of patients, and the identity information can be encrypted as the same type of information; the diagnosis and treatment information can be divided according to the types of the disease states, and the diagnosis and treatment information can be uniformly encrypted after being divided into the same type; the category-based rule is usually set by a manager according to a conventional method of information management, and can also be established by the manager according to the rule habit of the hospital. The abnormal check means that, when abnormal medical information appears in the data, the data is marked and then recorded in the medical information recording node.
In an embodiment of the present invention, the patient information management module 10 and the medical information management module 20 feed back an access grant request by sending an access verification code; and the access verification code is sent to the access requester through a network or a mobile phone.
While the invention has been described with reference to a preferred embodiment, it will be understood by those skilled in the art that various changes in form and detail may be made therein without departing from the spirit and scope of the invention.
Claims (10)
1. A block chain-based medical information security management system, comprising: the system comprises a patient information management module, a medical information management module, a monitoring alarm module and a storage module;
the patient information management module comprises a user name generation module and an encryption module; the user name generation module is used for generating a user name of the patient according to the recorded patient medical information; the encryption module is used for encrypting the user name information and feeding back the user name information to the patient;
the medical information management module comprises an information recording module, an information operation module, an information distribution module and a public query module;
the information recording module is used for recording block chain information comprising a plurality of medical information recording nodes;
the information operation module is used for recording the encrypted medical information and the user name information of the patient into corresponding medical information recording nodes on the block chain;
the information distribution module is used for distributing the access authority of the medical information recording nodes in the corresponding block chain to the patient according to the medical information of the patient;
the public query module is used for calling out the medical information of the patient corresponding to the user name of the patient in the block chain according to the recorded patient user name information;
the monitoring alarm module is used for monitoring and recording the execution of the access process, triggering alarm and performing remote operation interruption according to abnormal conditions, and performing data recovery after the abnormal conditions are eliminated;
the storage module is used for storing the files transmitted by the medical information management module, the files transmitted by the patient information management module and the monitoring information transmitted by the monitoring alarm module.
2. The system for block chain-based medical information security management according to claim 1, wherein the encryption module further comprises a pre-encryption unit, an aggregation unit and a supernormal checking unit;
the pre-encryption unit is used for pre-encrypting the medical information with the 0 value or the negative value, and replacing the 0 value or the negative value with a preset replacement value;
the clustering unit is used for clustering and encrypting the pre-encrypted medical information;
the abnormal checking unit is used for performing abnormal checking encryption on the grouped medical information, marking the abnormal medical information, and recording all the encrypted medical information and the corresponding user names of the patients into the corresponding medical information recording nodes on the block chain.
3. The blockchain-based medical information security management system according to claim 1, wherein the patient information management module is further configured to edit, modify and maintain privacy policies to control data access rights, view access monitoring information and respond to requests for access to personal information of patients by medical staff.
4. The blockchain-based medical information security management system according to claim 1, wherein the plurality of medical information listing nodes include: the medical information recording system comprises a first medical information recording node user name, a second medical information recording node user name connected with the first medical information recording node, a hash function and a time stamp.
5. The system according to claim 1, wherein the information recording module is further configured to integrate the recorded information according to a preset format and transmit the integrated information to the information operation module.
6. The blockchain-based medical information security management system according to claim 1, wherein the user name generation module includes a user name of the patient by using a mapping table.
7. The blockchain-based medical information security management system according to claim 1, wherein the information included by the medical information including nodes includes patient electronic medical records, doctor record information, charging record information, and pharmacy record information;
the doctor record information comprises the time of the visit, the diagnosis process and the prescription;
the charging record information comprises payment time, charging items, charging amount and charging personnel;
the pharmacy record information comprises the medicine taking time, the medicine name and the medicine taking personnel.
8. The blockchain-based medical information security management system according to claim 1, wherein the monitoring information recorded by the monitoring alarm module includes access personnel, access time, and access contents.
9. The system for block chain-based security management of medical information according to claim 1, wherein the patient information management module and the medical information management module feed back an approval access request by sending an access verification code.
10. The blockchain-based medical information security management system according to claim 9, wherein the access verification code is transmitted to the access requester through a network or a mobile phone.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011167988.2A CN112185535A (en) | 2020-10-27 | 2020-10-27 | Medical information safety management system based on block chain |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011167988.2A CN112185535A (en) | 2020-10-27 | 2020-10-27 | Medical information safety management system based on block chain |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112185535A true CN112185535A (en) | 2021-01-05 |
Family
ID=73922836
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011167988.2A Pending CN112185535A (en) | 2020-10-27 | 2020-10-27 | Medical information safety management system based on block chain |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112185535A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116484398A (en) * | 2023-03-15 | 2023-07-25 | 香港理工大学深圳研究院 | Encryption verification method and system based on chameleon hash |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104318178A (en) * | 2014-10-29 | 2015-01-28 | 无锡中盛医疗设备有限公司 | Medical treatment information security system |
| CN109817313A (en) * | 2019-01-08 | 2019-05-28 | 睿亚区块链科技(深圳)有限公司 | A kind of medical information safety management system based on block chain technology |
-
2020
- 2020-10-27 CN CN202011167988.2A patent/CN112185535A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104318178A (en) * | 2014-10-29 | 2015-01-28 | 无锡中盛医疗设备有限公司 | Medical treatment information security system |
| CN109817313A (en) * | 2019-01-08 | 2019-05-28 | 睿亚区块链科技(深圳)有限公司 | A kind of medical information safety management system based on block chain technology |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116484398A (en) * | 2023-03-15 | 2023-07-25 | 香港理工大学深圳研究院 | Encryption verification method and system based on chameleon hash |
| CN116484398B (en) * | 2023-03-15 | 2024-04-02 | 香港理工大学深圳研究院 | Encryption verification method and system based on chameleon hash |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11552935B2 (en) | Distributed key secret for rewritable blockchain | |
| US9390228B2 (en) | System and method for securely storing and sharing information | |
| CN112863629B (en) | Block chain-based medical electronic medical record distributed management system and preparation method thereof | |
| US7921020B2 (en) | Method for generating medical intelligence from patient-specific data | |
| CA2618135C (en) | Data archiving system | |
| US9202078B2 (en) | Data perturbation and anonymization using one way hash | |
| US20200090795A1 (en) | Method and system for sharing privacy data based on smart contracts | |
| CN110929293B (en) | Beautifying data storage system based on block chain | |
| US8744868B2 (en) | Method for storing and reporting pharmacy data | |
| US10152608B2 (en) | Healthcare privacy violation detection and investigation system and method | |
| CN112530531B (en) | Electronic medical record storage and sharing method based on double-block chain | |
| CA2642080A1 (en) | System and method for privacy managemen | |
| CN112951356B (en) | Cross-modal medical data joint sharing method based on alliance chain | |
| CN111125776A (en) | Operation data tamper-proofing method based on block chain | |
| CN112926082A (en) | Information processing method and device based on block chain | |
| CN112185535A (en) | Medical information safety management system based on block chain | |
| Thimmaiah et al. | Decentralized electronic medical records | |
| WO2016077219A1 (en) | System and method for securely storing and sharing information | |
| Hicks et al. | Vams: Verifiable auditing of access to confidential data | |
| CN115019920A (en) | Medical archive management system based on intelligent identification technology | |
| Habibi | Consent based privacy for eHealth systems | |
| CN112883028B (en) | Medical data trusted memory management system based on blockchain | |
| CN111404662B (en) | Data processing method and device | |
| Hamilton | Application layer security requirements of a medical information system | |
| US20190392925A1 (en) | Self-aware data storage, retrieval, and notification |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |