TWM569002U - Medical record sharing system - Google Patents

Medical record sharing system Download PDF

Info

Publication number
TWM569002U
TWM569002U TW107207562U TW107207562U TWM569002U TW M569002 U TWM569002 U TW M569002U TW 107207562 U TW107207562 U TW 107207562U TW 107207562 U TW107207562 U TW 107207562U TW M569002 U TWM569002 U TW M569002U
Authority
TW
Taiwan
Prior art keywords
medical record
information
key
reading
sharing system
Prior art date
Application number
TW107207562U
Other languages
Chinese (zh)
Inventor
葉肇元
Original Assignee
雲象科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 雲象科技有限公司 filed Critical 雲象科技有限公司
Priority to TW107207562U priority Critical patent/TWM569002U/en
Publication of TWM569002U publication Critical patent/TWM569002U/en

Links

Landscapes

  • Medical Treatment And Welfare Office Work (AREA)
  • Storage Device Security (AREA)

Abstract

一種病歷共享系統,所述的系統與一區塊鏈網路形成連結,病歷共享系統主要包含數個讀取端資訊裝置以及一病歷中心伺服器,其中,數個讀取端資訊裝置可分別建立一電子病歷資訊,並分別寫入至區塊鏈網路後傳送至病歷中心伺服器進行儲存,而病歷中心伺服器完成儲存後,會傳送一相對應的金鑰資訊至讀取端資訊裝置供以儲存,讀取端資訊裝置在對病歷中心伺服器提出讀取電子病歷資訊的時候,病歷中心伺服器係會對讀取端資訊裝置進行一身份驗證程序,而讀取端資訊裝置可以金鑰資訊完成身份驗證程式後,進一步取得電子病歷資訊。 A medical record sharing system, the system is connected with a blockchain network, and the medical record sharing system mainly comprises a plurality of reading end information devices and a medical record center server, wherein the plurality of reading end information devices can be respectively established An electronic medical record information is written to the blockchain network and sent to the medical record center server for storage. After the medical record center server completes the storage, a corresponding key information is transmitted to the reading end information device. When the information device of the reading end reads the electronic medical record information to the medical record center server, the medical record center server performs an identity verification program on the reading end information device, and the reading end information device can be a key. After the information completes the authentication program, the electronic medical record information is further obtained.

Description

病歷共享系統 Medical record sharing system

一種病歷共享系統,本創作尤指一種可保護病人隱私,並可共享電子病歷資訊的病歷共享系統。 A medical record sharing system, especially a medical record sharing system that can protect patient privacy and share electronic medical record information.

電子病歷是用電子設備(電腦、健康卡等)保存、管理、傳輸和重現的數位化的病人的醫療記錄,取代手寫紙張病歷,它的內容包括紙張病歷的所有資訊,美國國立醫學研究所將定義為:EMR是基於一個特定系統的電子化病人記錄,該系統提供使用者訪問完整準確的資料、警示、提示和臨床決策支援系統的能力。電子病歷是隨著醫院電腦管理網路化、資訊存儲介質、光碟和IC卡等的應用及Internet的全球化而產生的。電子病歷是資訊技術和網路技術在醫療領域的必然產物,是醫院病歷現代化管理的必然趨勢,其在臨床的初步應用,極大地提高了醫院的工作效率和醫療品質,但這還僅僅是電子病歷應用的起步。電子病歷(Electronic Medical Record,簡稱EMR)據國家衛生部頒發的《電子病歷基本架構與資料標準電子病歷》中定義為:電子病歷是醫療機構對門診、住院患者(或保健物件)臨床診 療和指導干預的、數位化的醫療服務工作記錄,是居民個人在醫療機構歷次就診過程中產生和被記錄的完整、詳細的臨床資訊資源。但是目前電子病歷主要存儲在醫院的病歷系統中,除了少數的專職醫生擁有許可權進入,一般的病人是無法進入電子病歷系統的,這也就限制電子病歷的共用性,而一些可以共用的資料如診斷方法、治療手段、處方等外人均無法獲知,導致整個社會的醫療成本增加,然而移動互聯網技術的出現,可以提供無邊界的、無所不在的醫療衛生服務,形成高效、資源分享的醫療衛生服務體系,在緩解醫療資源緊張的問題同時,可以通過用戶的自願分享形成一個世界性的電子病歷分享系統,為成千上萬的使用者提供參考資料,從而降低整個社會的醫療成本。 Electronic medical records are medical records of digitalized patients that are stored, managed, transmitted, and reproduced using electronic devices (computers, health cards, etc.), replacing handwritten paper medical records, which include all information on paper medical records, National Institute of Medical Research. It will be defined as: EMR is an electronic patient record based on a specific system that provides users with access to complete and accurate data, alerts, prompts, and clinical decision support systems. Electronic medical records are generated by the network management of hospital computers, information storage media, optical discs and IC cards, and the globalization of the Internet. Electronic medical records are the inevitable outcome of information technology and network technology in the medical field. It is an inevitable trend in the modern management of hospital medical records. Its preliminary application in the clinic has greatly improved the hospital's work efficiency and medical quality, but this is only electronic. The beginning of the medical record application. Electronic Medical Record (EMR) is defined in the "Electronic Medical Record Basic Structure and Data Standard Electronic Medical Record" issued by the Ministry of Health. The electronic medical record is the clinical diagnosis of outpatients, inpatients (or health care items) by medical institutions. The digital medical service work record of treatment and guidance intervention is a complete and detailed clinical information resource generated and recorded by residents in the medical institution. However, the current electronic medical records are mainly stored in the hospital's medical record system. Except for a few full-time doctors who have permission to enter, the general patients cannot enter the electronic medical record system, which limits the sharing of electronic medical records, and some materials that can be shared. For example, diagnostic methods, treatment methods, prescriptions, etc. are not known, resulting in an increase in medical costs for the entire society. However, the emergence of mobile Internet technology can provide borderless and ubiquitous medical and health services, and form an efficient and resource-sharing medical and health service. The system, while alleviating the problem of medical resources, can form a worldwide electronic medical record sharing system through voluntary sharing of users, providing reference materials for thousands of users, thereby reducing the medical cost of the whole society.

有鑑於上述的問題,本創作人係依據多年來從事相關行業的經驗,針對電子病歷建立及讀取的流程進行研究及分析,期能研發出解決上述問題的方法;緣此,本創作之主要目的在於提供一種可保護病人隱私,並可保護病歷的完整性,以達到病歷共享的病歷共享系統。 In view of the above problems, the creator is based on years of experience in related industries, researching and analyzing the process of establishing and reading electronic medical records, and is able to develop methods to solve the above problems; The purpose is to provide a medical record sharing system that can protect patient privacy and protect the integrity of medical records to achieve medical record sharing.

為達上述的目的,本創作主要係具有數個讀取端資訊裝置及一病歷中心伺服器組成,其分別與一區塊鏈網路形成連結,各讀取端資訊裝置可在建立一電子病歷資訊後,進一步傳送至病歷中心伺服器儲存,而電子病歷中心 伺服器在接收到電子病歷資訊後,則會產生一組相對應的金鑰資訊並傳送至讀取端資訊裝置,當讀取端資訊裝置對病歷中心伺服器提起一病歷讀取要求時,可透過金鑰資訊將病歷讀取要求進行加密,以供病歷中心伺服器進行一身份驗證程序,待讀取端資訊裝置完成身份驗證程序後,即可傳送電子病歷資訊至讀取端資訊裝置,以供讀取端資訊裝置檢視或進行修改。 In order to achieve the above objectives, the present invention mainly comprises a plurality of reading end information devices and a medical record center server, which are respectively connected with a blockchain network, and each reading end information device can establish an electronic medical record. After the information is further transmitted to the medical record center server for storage, and the electronic medical record center After receiving the electronic medical record information, the server generates a corresponding set of key information and transmits it to the reading end information device. When the reading end information device requests a medical record reading from the medical record center server, The medical record reading request is encrypted by the key information for the medical record center server to perform an identity verification process, and after the information device of the reading end completes the identity verification process, the electronic medical record information can be transmitted to the reading end information device, For reading or modifying the information device at the reading end.

為使 貴審查委員得以清楚了解本創作之目的、技術特徵及其實施後之功效,茲以下列說明搭配圖示進行說明,敬請參閱。 In order for your review board to have a clear understanding of the purpose, technical features and effectiveness of this work, please refer to the following instructions for illustration.

10‧‧‧病歷共享系統 10‧‧‧ medical record sharing system

101‧‧‧讀取端資訊裝置 101‧‧‧Reader information device

102‧‧‧病歷中心伺服器 102‧‧‧ medical record center server

101’‧‧‧讀取端資訊裝置 101’‧‧‧Reader information device

1021‧‧‧處理模組 1021‧‧‧Processing module

101”‧‧‧讀取端資訊裝置 101”‧‧‧Reader information device

1022‧‧‧金鑰產生模組 1022‧‧‧Key Generation Module

20‧‧‧區塊鏈網路 20‧‧‧blockchain network

1023‧‧‧病歷資料庫 1023‧‧‧ medical record database

A‧‧‧驗證資訊 A‧‧‧ verification information

10231‧‧‧金鑰資訊單元 10231‧‧‧Key Information Unit

A’‧‧‧驗證資訊 A’‧‧‧Verification information

1024‧‧‧身份驗證模組 1024‧‧‧Authentication Module

E‧‧‧電子病歷資訊 E‧‧‧Electronic medical record information

10241‧‧‧金鑰比對單元 10241‧‧‧Key Comparison Unit

M‧‧‧金鑰資訊 M‧‧‧ Key Information

10242‧‧‧資訊加密單元 10242‧‧‧Information Encryption Unit

M1‧‧‧公開金鑰 M1‧‧‧ public key

M2‧‧‧私密金鑰 M2‧‧‧ Private Key

M3‧‧‧對稱加密金鑰 M3‧‧‧symmetric encryption key

R‧‧‧病歷讀取要求 R‧‧‧ medical record reading requirements

S‧‧‧身份驗證程序 S‧‧‧Authentication Procedure

ST1‧‧‧建立電子病歷資訊步驟 ST1‧‧‧ Establish electronic medical record information steps

ST11‧‧‧接收電子病歷資訊步驟 ST11‧‧‧ Receiving electronic medical record information steps

ST2‧‧‧產生金鑰資訊步驟 ST2‧‧‧Key Key Information Steps

ST21‧‧‧接收金鑰資訊步驟 ST21‧‧‧Receive key information steps

ST3‧‧‧傳送病歷讀取要求訊息步驟 ST3‧‧‧Transfer medical record reading request message steps

ST31‧‧‧進行身份驗證程序步驟 ST31‧‧‧Steps in the authentication process

ST32‧‧‧發送加密的電子病歷資訊步驟 ST32‧‧‧Send encrypted electronic medical record information steps

ST4‧‧‧修改電子病歷資訊步驟 ST4‧‧‧Modify electronic medical record information steps

ST41‧‧‧附加電子病歷資訊步驟 ST41‧‧‧Additional electronic medical record information steps

ST51‧‧‧建立電子病歷資訊步驟 ST51‧‧‧ Establish electronic medical record information steps

ST52‧‧‧產生金鑰資訊步驟 ST52‧‧‧Generation Key Steps

ST53‧‧‧傳送病歷讀取要求訊息步驟 ST53‧‧‧Transfer medical record reading request message steps

ST54‧‧‧進行身份驗證程序步驟 ST54‧‧‧Steps in the authentication process

ST55‧‧‧發送加密的電子病歷資訊步驟 ST55‧‧‧Send encrypted electronic medical record information steps

第1圖,為本創作之系統架構圖。 Figure 1 is a system architecture diagram of the creation.

第2圖,為本創作之病歷中心伺服器之架構示意圖。 Figure 2 is a schematic diagram of the architecture of the medical record center server of the creation.

第3圖,為本創作之電子病歷資訊建立流程圖。 Figure 3 is a flow chart for the creation of electronic medical record information for the creation.

第4圖,為本創作之金鑰資訊傳送流程圖。 Figure 4 is a flow chart of the key information transmission of the creation.

第5圖,為本創作之病歷資料讀取流程圖。 Figure 5 is a flow chart for reading the medical records of the creation.

第6圖,為本創作之附加病歷資料流程圖。 Figure 6 is a flow chart of additional medical records for this creation.

第7圖,為本創作之實施流程步驟圖示意圖。 Figure 7 is a schematic diagram of the steps of the implementation process of the creation.

請參閱「第1圖」,圖中所示為本創作之系統架構 圖,如圖中所示的病歷共享系統10,其主要包括:數個讀取端資訊裝置(101、101’、101”..)以及一病歷中心伺服器102,數個讀取端資訊裝置(101、101’、101”..)以及病歷中心伺服器102以點對點方式(peer-to-peer)組成一區塊鏈網路20,以供數個讀取端資訊裝置(101、101’、101”..)或是病歷中心伺服器102可分別將資訊寫入區塊鏈網路20,且數個讀取端資訊裝置(101、101’、101”..)係分別與病歷中心伺服器102形成資訊連結,且讀取端資訊裝置101主要為醫療機構或是病患本身所使用之資訊裝置,其可為一個人電腦(PC)、一筆記型電腦(NB)、一智慧型手機、一平板電腦之其中一種或其組合,但較佳的情況下主要為醫療機構所使用的資訊裝置,而區塊鏈網路20可為一網際網路、一私有網路、一虛擬私有網路之其中一種,又,讀取端資訊裝置101可產生一電子病歷資訊E(所述的電子病歷資訊可包括病患的個人資料、病況評估、處置計畫、醫囑紀錄、病程紀錄、護理計畫、紀錄、生命徵象紀錄、藥物使用記錄,以及相關的醫療實驗室檢驗資料與報告,相關的檢查資料與報告(含影像診斷學報告、X光片等),過去病史,家族史,預防接種等等),並傳送至病歷中心伺服器102儲存,並可同時接收到病歷中心伺服器102相對發送的一金鑰資訊M,所述的金鑰資訊M係包含一包含一公開金鑰M1、一私密金鑰M2以及一對稱加密金鑰M3,其主要由病患或是醫療機構分別保管,而金鑰資訊M的持有者後續亦可透過讀取端資訊裝置101對病歷中心伺服器102發出一病 歷讀取要求訊息R(所述的金鑰資訊M的持有者,主要為病患本身以及醫療機構相關人員,亦可為病患的家屬或其他關係人,藉此,病患本身可將金鑰資訊M授權給家屬或關係人使用,使電子病歷可經過病患本人的授權後進行調閱申請)使病歷中心伺服器102接收到病歷讀取要求訊息R後,相對於讀取端資訊裝置101進行一身份驗證程序S,當讀取端資訊裝置101通過身份驗證程序S後,病歷中心伺服器102即可將相對應於讀取端資訊裝置101的電子病歷資訊E(意即當初讀取端資訊裝置101傳送至病歷中心伺服器102的同一份電子病歷資訊E),進一步發送至讀取端資訊裝置101供以讀取及修改,藉此,即使病患到另一醫療機構就診時,亦可透過持有的金鑰資訊M取得上一間醫療機構所建立的電子病歷資訊E,以達到共享病歷的目的。 Please refer to "Figure 1", which shows the system architecture of the creation. The medical record sharing system 10 shown in the figure mainly comprises: a plurality of reading end information devices (101, 101', 101"..) and a medical record center server 102, and a plurality of reading end information devices. (101, 101', 101"..) and the medical record center server 102 form a blockchain network 20 in a peer-to-peer manner for a plurality of read-end information devices (101, 101' , 101"..) or the medical record center server 102 can respectively write information into the blockchain network 20, and the plurality of read-end information devices (101, 101', 101"..) are respectively associated with the medical record center. The server 102 forms an information link, and the reading end information device 101 is mainly a medical device or an information device used by the patient itself, and can be a personal computer (PC), a notebook computer (NB), a smart phone. One of the tablet computers or a combination thereof, but preferably the information device used by the medical institution, and the blockchain network 20 can be an internet network, a private network, and a virtual private network. One of the roads, in turn, the reading end information device 101 can generate an electronic medical record information E (the said electric The medical record information may include the patient's personal data, condition assessment, treatment plan, medical record, disease record, care plan, record, vital signs record, drug use record, and related medical laboratory test data and reports. Check data and reports (including diagnostic imaging reports, X-rays, etc.), past medical history, family history, vaccination, etc.), and send them to the medical record center server 102 for storage, and simultaneously receive the medical record center server 102 A key information M is sent, and the key information M includes a public key M1, a private key M2, and a symmetric encryption key M3, which are mainly kept by the patient or the medical institution. The holder of the key information M can also issue a disease to the medical record center server 102 through the reading end information device 101. The reading request message R (the holder of the key information M, mainly the patient itself and the relevant personnel of the medical institution, may also be the family member of the patient or other related persons, whereby the patient itself may The key information M is authorized to be used by the family or the related person, so that the electronic medical record can be read by the patient's own authorization, and the medical record center server 102 receives the medical record reading request message R, relative to the reading end information. The device 101 performs an identity verification procedure S. After the reader-side information device 101 passes the identity verification program S, the medical record center server 102 can output the electronic medical record information E corresponding to the reading-end information device 101 (ie, the original reading) The same electronic medical record information E) transmitted from the medical information device 101 to the medical record center server 102 is further sent to the reading end information device 101 for reading and modification, thereby allowing the patient to go to another medical institution for treatment. It is also possible to obtain the electronic medical record information E established by the previous medical institution through the key information M held to achieve the purpose of sharing medical records.

請參閱「第2圖」,圖中所示為本創作之病歷中心伺服器之架構示意圖,請搭配參閱「第1圖」,如本圖中所示的病歷中心伺服器102,其係具有一處理模組1021,一金鑰產生模組1022、一病歷資料庫1023以及一身份驗證模組1024分別與處理模組1021形成資訊連結,其中,處理模組1021可為一中央處理器(CPU),並具備邏輯運算、暫存運算結果、保存執行指令位置等功能,其用以運行病歷中心伺服器102;金鑰產生模組1022,可產生金鑰資訊M,所述的金鑰資訊包含公開金鑰M1、私密金鑰M2以及對稱加密金鑰M3;病歷資料庫1023,可供以儲存各讀取端資訊裝置 (101、101’、101”..)所產生的電子病歷資訊E,且病歷資料庫1023係進一步設有一金鑰資訊單元10231,所述的金鑰資訊單元10231與金鑰產生模組1022形成資訊連結,當病歷資料庫1023儲存一筆電子病歷資訊E時,金鑰資訊單元10231可供以儲存金鑰產生模組1022所產生的金鑰資訊M,且所述的金鑰資訊M係相對於該筆電子病歷資訊E,意即每一筆電子病歷資訊E均相對應一組不同的金鑰資訊M;身份驗證模組1024可對發出病歷讀取要求訊息R的讀取端資訊裝置101進行身份驗證程序S,而身份驗證模組1024係具有一金鑰比對單元10241及一資訊加密單元10242,所述的金鑰比對單元10241以及資訊加密單元10242,分別與金鑰資訊單元10231形成資訊連線,金鑰比對單元10241可受到處理模組1021的驅動後,依據收到的病歷讀取要求訊息R來比對金鑰資訊單元10231內所儲存的金鑰資訊M,而資訊加密單元10242可受到處理模組1021的驅動後,對病歷資料庫1023中所儲存的電子病歷資訊E進行加密,及輔助身份驗證程序S中的資訊加密需求。 Please refer to "Figure 2". The figure shows the architecture of the medical record center server of the creation. Please refer to "Figure 1". The medical record center server 102 shown in the figure has a The processing module 1021, a key generation module 1022, a medical record database 1023, and an identity verification module 1024 respectively form an information link with the processing module 1021. The processing module 1021 can be a central processing unit (CPU). And having the functions of logic operation, temporary storage operation result, saving execution instruction position, etc., for running the medical record center server 102; the key generation module 1022 can generate the key information M, and the key information includes public Key M1, private key M2 and symmetric encryption key M3; medical record database 1023, for storing information devices of each reading end (101, 101', 101"..) generated electronic medical record information E, and the medical record database 1023 is further provided with a key information unit 10231, and the key information unit 10231 is formed with the key generation module 1022. The information link, when the medical record database 1023 stores an electronic medical record information E, the key information unit 10231 can be used to store the key information M generated by the key generation module 1022, and the key information M is relative to The electronic medical record information E means that each electronic medical record information E corresponds to a different set of key information M; the identity verification module 1024 can identify the reading information device 101 that issues the medical record reading request message R. Verification program S, and the authentication module 1024 has a key matching unit 10241 and an information encryption unit 1042, and the key comparison unit 10241 and the information encryption unit 1042 respectively form information with the key information unit 10231. After the connection, the key matching unit 10241 can be driven by the processing module 1021 to read the request message R according to the received medical record to compare the key information M stored in the key information unit 10231, and the information is encrypted. After yuan 10242 can be driven processing module 1021, in 1023 for medical records database stored in electronic medical record information E were encrypted information needs encryption, authentication procedures and assist in S.

請參閱「第3圖」,圖中所示為本創作之電子病歷資訊建立流程圖,請搭配參照「第1圖」及「第2圖」,其建立電子病歷資訊建立的流程包括:(1)一建立電子病歷資訊步驟ST1:讀取端資訊裝置101可產生電子病歷資訊E,並寫入區塊鏈網路20中;(2)一接收電子病歷資訊步驟ST11:病歷中心伺服器102 可透過區塊鏈網路20接收電子病歷資訊E,並進一步儲存於病歷資料庫1023中。 Please refer to "Figure 3", which shows the flow chart for the creation of electronic medical record information. Please refer to "Figure 1" and "Figure 2" together. The process for establishing electronic medical record information includes: (1) The electronic medical record information step ST1: the reading end information device 101 can generate the electronic medical record information E and write it into the blockchain network 20; (2) receive the electronic medical record information step ST11: the medical record center server 102 The electronic medical record information E can be received through the blockchain network 20 and further stored in the medical record database 1023.

請參閱「第4圖」,圖中所示為本創作之金鑰資訊傳送流程圖,請搭配參照「第1圖」及「第2圖」,其包括:(1)一產生金鑰資訊步驟ST2:病歷中心伺服器102透過金鑰產生模組1022產生一組不包含對稱加密金鑰M3的金鑰資訊M,並寫入區塊鏈網路20後,進一步發送至讀取端資訊裝置101;(2)一接收金鑰資訊步驟ST21:讀取端資訊裝置101則會透過區塊鏈網路20接收到金鑰資訊M。 Please refer to "Figure 4". The figure shows the flow chart of the key information transmission for this creation. Please refer to "Figure 1" and "Figure 2" together with the following: (1) Step of generating key information ST2: The medical record center server 102 generates a set of key information M that does not include the symmetric encryption key M3 through the key generation module 1022, and writes it to the blockchain network 20, and then sends it to the reading end information device 101. (2) Receive Key Information Step ST21: The read-side information device 101 receives the key information M through the blockchain network 20.

請參閱「第5圖」,圖中所示為本創作之病歷資料讀取流程圖,請搭配參照「第1圖」及「第2圖」,其包括:(1)一傳送病歷讀取要求訊息步驟ST3:讀取端資訊裝置101以金鑰資訊M中的公開金鑰M1將病歷讀取要求訊息R加密後,進一步發送至病歷中心伺服器102;(2)一進行身份驗證程序步驟ST31:公開金鑰M1可用以做為讀取端資訊裝置101的UID(unique identifier),避免病患的隱私曝光,而病歷中心伺服器102可以接收到的公開金鑰M1做為編號索引,透過金鑰比對單元10241在金鑰資訊單元10231中擷取可解密公開金鑰M1的私密金鑰M2並進行解密,若病歷中心伺服器102可以其私密金鑰M2解密以公開金鑰M1加密的病 歷讀取要求訊息R時,則表示此則病歷讀取要求訊息R確實為出自病患本人意願所發出請求讀取病患本身的電子病歷資訊E,病歷中心伺服器102則以身份驗證模組1024對發出病歷讀取要求訊息R的讀取端資訊裝置101進行身份驗證程序S,並以接收到的公開金鑰M1,透過資訊加密單元10242將對稱加密金鑰M3以公開金鑰M1加密後,以形成一驗證資訊A,並進一步將驗證資訊A傳送至讀取端資訊裝置101以進行身份確認;(3)一發送加密的電子病歷資訊步驟ST32:讀取端資訊裝置101接收到驗證資訊A時,可以其私密金鑰M2將驗證資訊A解密以取得對稱加密金鑰M3,讀取端資訊裝置101再以取得的對稱加密金鑰M3加密驗證資訊A後以形成一驗證資訊A’,並進一步將驗證資訊A’回傳至病歷中心伺服器102,若是病歷中心伺服器102可以對稱加密金鑰M3將驗證資訊A’進行解密,則確定病歷讀取要求訊息R為病患本人所發出,病歷中心伺服器102則將相對應病患的電子病歷資訊E以任一加密(對稱或非對稱加密)的方式傳送至讀取端資訊裝置101,以供讀取端資訊裝置101解密後讀取電子病歷資訊E。 Please refer to "Figure 5". The figure shows the flow chart of reading the medical records of the creation. Please refer to "Figure 1" and "Figure 2" together with the following: (1) A medical record reading requirement Message step ST3: The reading end information device 101 encrypts the medical record reading request message R with the public key M1 in the key information M, and further transmits it to the medical record center server 102; (2) performs an authentication process step ST31. The public key M1 can be used as the UID (unique identifier) of the reading end information device 101 to avoid the privacy exposure of the patient, and the public key M1 that the medical record center server 102 can receive is used as the number index. The key matching unit 10241 retrieves and decrypts the private key M2 of the public key M1 in the key information unit 10231, and if the medical record center server 102 can decrypt the secret key M2 to encrypt the public key M1. When the request message R is read, it indicates that the medical record reading request message R is indeed the electronic medical record information E from the patient's own request to read the patient's own request, and the medical record center server 102 is the authentication module. 1024, the reading end information device 101 that issues the medical record reading request message R performs an authentication procedure S, and encrypts the symmetric encryption key M3 with the public key M1 through the information encryption unit 1042 by using the received public key M1. To form a verification information A, and further transmit the verification information A to the reading end information device 101 for identity confirmation; (3) to send the encrypted electronic medical record information step ST32: the reading end information device 101 receives the verification information A, the authentication key A can be decrypted by the private key M2 to obtain the symmetric encryption key M3, and the reading end information device 101 encrypts the verification information A with the obtained symmetric encryption key M3 to form a verification information A'. And further, the verification information A' is returned to the medical record center server 102, and if the medical record center server 102 can decrypt the verification information A' by the symmetric encryption key M3, the medical record is determined to be read. The request message R is sent by the patient himself, and the medical record center server 102 transmits the electronic medical record information E of the corresponding patient to the reading end information device 101 in any encrypted (symmetric or asymmetric encryption) manner. The read end information device 101 decrypts and reads the electronic medical record information E.

請參閱「第6圖」,圖中所示為本創作之附加病歷資料流程圖,請搭配參照「第1圖」及「第2圖」,其包括: (1)一修改電子病歷資訊步驟ST4:讀取端資訊裝置101接收到電子病歷資訊E後,可進一步針對電子病歷資訊E以附加內容的方式進行修改,而完成修改之後的電子病歷資訊E可進一步以公開金鑰M1加密後寫入區塊鏈網路20中,並進一步傳送至病歷中心伺服器102;(2)一附加電子病歷資訊步驟ST41:病歷中心伺服器102收到完成修改之後的電子病歷資訊E,係以附加的方式儲存於病歷中心伺服器102的病歷資料庫1023中。 Please refer to "Figure 6". The figure shows the additional medical record data flow chart for this creation. Please refer to "Figure 1" and "Figure 2" together with: (1) A modified electronic medical record information step ST4: after receiving the electronic medical record information E, the reading end information device 101 can further modify the electronic medical record information E by adding content, and the electronic medical record information E after the modification can be completed. Further encrypted by the public key M1, written into the blockchain network 20, and further transmitted to the medical record center server 102; (2) an additional electronic medical record information step ST41: after the medical record center server 102 receives the modification The electronic medical record information E is stored in an additional manner in the medical record database 1023 of the medical record center server 102.

請參閱「第7圖」,圖中所示為本創作之實施流程步驟圖示意圖,請搭配參閱「第1圖」~「第6圖」,其包括:(1)建立電子病歷資訊步驟ST51:讀取端資訊裝置101可產生電子病歷資訊E,並寫入區塊鏈網路20中,病歷中心伺服器102可透過區塊鏈網路20接收電子病歷資訊E,並進一步儲存於病歷資料庫1023中;(2)產生金鑰資訊步驟ST52:病歷中心伺服器102透過金鑰產生模組1022產生一組不包含對稱加密金鑰M3的金鑰資訊M,並寫入區塊鏈網路20後,進一步發送至讀取端資訊裝置101,讀取端資訊裝置101則會透過區塊鏈網路20接收到金鑰資訊M;(3)傳送病歷讀取要求訊息步驟ST53:讀取端資訊裝置101以金鑰資訊M中的公開金鑰M1將病歷讀取要求訊息R加密後,進一步發送至病歷中心伺服器102; (4)進行身份驗證程序步驟ST54:公開金鑰M1可用以做為讀取端資訊裝置101的UID(unique identifier),避免病患的隱私曝光,而病歷中心伺服器102可以接收到的公開金鑰M1做為編號索引,在金鑰資訊單元10231擷取可解密公開金鑰M1的私密金鑰M2並進行解密,若病歷中心伺服器102可以其私密金鑰M2解密以公開金鑰M1加密的病歷讀取要求訊息R時,則表示此則病歷讀取要求訊息R確實為出自病患本人意願所發出請求讀取病患本身的電子病歷資訊E,病歷中心伺服器102再以接收到的公開金鑰M1將對稱加密金鑰M3以公開金鑰M1加密後,以形成一驗證資訊A,並進一步將驗證資訊A傳送至讀取端資訊裝置101以進行身份確認;(5)發送加密的電子病歷資訊步驟ST55:讀取端資訊裝置101接收到驗證資訊A時,可以其私密金鑰M2將驗證資訊A解密以取得對稱加密金鑰M3,讀取端資訊裝置101再以取得的對稱加密金鑰M3加密驗證資訊A後以形成一驗證資訊A’,並進一步將驗證資訊A’回傳至病歷中心伺服器102,若是病歷中心伺服器102可以對稱加密金鑰M3將驗證資訊A’進行解密,則確定病歷讀取要求訊息R為病患本人所發出,病歷中心伺服器102則將相對應病患的電子病歷資訊E以對稱密鑰加密(Symmetric-key algorithm)的方式進行加密後發送至讀取端資訊裝置101,以供讀取端資訊裝置101 解密後讀取電子病歷資訊E。 Please refer to "Figure 7". The figure shows the steps of the implementation process of the creation. Please refer to "Figure 1" to "Figure 6". It includes: (1) Establish electronic medical record information step ST51: The reading end information device 101 can generate the electronic medical record information E and write it into the blockchain network 20. The medical record center server 102 can receive the electronic medical record information E through the blockchain network 20 and further store the medical record information database. 1023; (2) generating key information step ST52: the medical record center server 102 generates a set of key information M not including the symmetric encryption key M3 through the key generation module 1022, and writes it to the blockchain network 20 Then, it is further sent to the reading end information device 101, and the reading end information device 101 receives the key information M through the blockchain network 20; (3) transmits the medical record reading request message step ST53: the reading end information The device 101 encrypts the medical record reading request message R by the public key M1 in the key information M, and then sends it to the medical record center server 102; (4) Performing the authentication procedure Step ST54: The public key M1 can be used as the UID (unique identifier) of the reading end information device 101 to avoid the patient's privacy exposure, and the medical record center 102 can receive the public gold. The key M1 is used as the number index, and the private key M2 of the public key M1 can be decrypted and decrypted in the key information unit 10231. If the medical record center server 102 can decrypt the private key M2, the public key M1 is encrypted. When the medical record reading request message R indicates that the medical record reading request message R is indeed a request for reading the electronic medical record information E of the patient itself from the patient's will, the medical record center server 102 receives the public information again. The key M1 encrypts the symmetric encryption key M3 with the public key M1 to form a verification information A, and further transmits the verification information A to the reading end information device 101 for identity confirmation; and (5) transmits the encrypted electronic The medical record information step ST55: when the reading end information device 101 receives the verification information A, the authentication information A can be decrypted by the private key M2 to obtain the symmetric encryption key M3, and the reading end information device 101 obtains The symmetric encryption key M3 encrypts the verification information A to form a verification information A', and further transmits the verification information A' back to the medical record center server 102. If the medical record center server 102 can symmetrically encrypt the key M3, the verification information is verified. If the A' is decrypted, it is determined that the medical record reading request message R is sent by the patient himself, and the medical record center server 102 performs the electronic medical record information E of the corresponding patient in a symmetric key algorithm (Symmetric-key algorithm). After being encrypted, it is sent to the reading end information device 101 for reading the information device 101. After decryption, the electronic medical record information E is read.

由上所述可知,本創作病歷共享系統,其主要透過金鑰加密的方式防止電子病歷資訊被病患本人以外的不法份子盜取或修改,且以公開金鑰做為UID的方式可保護病患隱私;依此,本創作其據以實施後,確實可達到提供一種可保護病人隱私,並可保護病歷的完整性,以達到病歷共享的病歷共享系統之目的。 It can be seen from the above that the creation of the medical record sharing system mainly prevents the electronic medical record information from being stolen or modified by the illegal person other than the patient himself by using the key encryption method, and the public key can be used as the UID to protect the disease. Suffering from privacy; according to this, after the implementation of this creation, it can indeed achieve the purpose of providing a medical record sharing system that can protect the privacy of patients and protect the integrity of medical records to achieve medical records sharing.

唯,以上所述者,僅為本創作之較佳之實施例而已,並非用以限定本創作實施之範圍;任何熟習此技藝者,在不脫離本創作之精神與範圍下所作之均等變化與修飾,皆應涵蓋於本創作之專利範圍內。 The above description is only for the preferred embodiment of the present invention, and is not intended to limit the scope of the present invention; any person skilled in the art can make equal changes and modifications without departing from the spirit and scope of the present invention. , should be covered by the scope of this creation patent.

綜上所述,本創作之功效,係具有發明之「產業可利用性」、「新穎性」與「進步性」等專利要件;申請人爰依專利法之規定,向 鈞局提起新型專利之申請。 To sum up, the effectiveness of this creation is in the possession of patents such as “industry availability”, “novelty” and “progressiveness” of the invention; the applicant filed a new patent with the bureau in accordance with the provisions of the Patent Law. Application.

Claims (8)

一種病歷共享系統,其包含:數個讀取端資訊裝置,分別與一區塊鏈網路形成連結,數個該讀取端資訊裝置可分別將產生的一電子病歷資訊寫入該區塊鏈;一病歷中心伺服器,連結該區塊鏈網路,具有一分別與一金鑰產生模組、一身份驗證模組以及一病歷資料庫形成資訊連結的處理模組,該病歷資料庫可接收各該讀取端資訊裝置所發送的各該電子病歷資訊,並儲存至該病歷資料庫,再透過該金鑰產生模組產生一相對應的金鑰資訊,並分別儲存於該病歷資料庫,及發送至各該讀取端資訊裝置;該讀取端資訊裝置可透過該區塊鏈網路發送一病歷讀取要求訊息至該病歷中心伺服器請求讀取該電子病歷資訊,而該病歷中心伺服器會透過該身份驗證模組,對發出該病歷讀取要求訊息的該讀取端裝置進行一身份驗證程序;以及該讀取端資訊裝置通過該身份驗證程序後,該病歷中心伺服器即會透過該區塊鏈網路發送該電子病歷資訊至該讀取端資訊裝置。 A medical record sharing system includes: a plurality of reading end information devices respectively connected to a blockchain network, and the plurality of reading end information devices respectively write the generated electronic medical record information into the blockchain a medical record center server, connected to the blockchain network, having a processing module respectively forming a information link with a key generation module, an identity verification module, and a medical record database, the medical record database can receive Each of the electronic medical record information sent by each of the reading end information devices is stored in the medical record database, and a corresponding key information is generated by the key generation module, and stored in the medical record database. And sending to each of the reading end information devices; the reading end information device can send a medical record reading request message to the medical record center server to request to read the electronic medical record information through the blockchain network, and the medical record center The server performs an identity verification procedure on the read end device that sends the medical record read request message through the identity verification module; and the read end information device passes the identity verification After the sequence, i.e., the server center records the electronic medical record information will be sent to the information reading means through the end of the block chain network. 如申請專利範圍第1項所述之病歷共享系統,其中,該病歷資料庫具有一金鑰資訊單元,該金鑰產生模組與該金鑰資訊單元形成資訊連結,該金鑰資訊單元可供以儲存該金鑰產生模組所產生的該金鑰資訊。 The medical record sharing system of claim 1, wherein the medical record database has a key information unit, and the key generation module forms an information link with the key information unit, and the key information unit is available. The key information generated by the key generation module is stored. 如申請專利範圍第2項所述之病歷共享系統,其中,該身份驗證模組具有一金鑰比對單元,與該金鑰資訊單元形成資訊連結,可受到該處理模組的驅動後,依據該病歷讀取要求訊息來比對該金鑰資訊單元內儲存的金鑰資訊。 The medical record sharing system of claim 2, wherein the identity verification module has a key comparison unit, and forms an information link with the key information unit, which can be driven by the processing module. The medical record reads the request message to compare the key information stored in the key information unit. 如申請專利範圍第1項所述之病歷共享系統,其中,該身份驗證模組具有一資訊加密單元。 The medical record sharing system of claim 1, wherein the identity verification module has an information encryption unit. 如申請專利範圍第4項所述之病歷共享系統,其中,該病歷中心伺服器可透過該資訊加密單元加密該電子病歷資訊後,透過該區塊鏈網路發送至該讀取端資訊裝置。 The medical record sharing system of claim 4, wherein the medical record center server can encrypt the electronic medical record information through the information encryption unit, and then send the information to the read end information device through the blockchain network. 如申請專利範圍第1項所述之病歷共享系統,其中,該讀取端資訊裝置可以該金鑰資訊將該病歷讀取要求訊息進行加密後進行傳送。 The medical record sharing system according to claim 1, wherein the reading end information device can encrypt the medical record reading request message by the key information and transmit the information. 如申請專利範圍第1項所述之病歷共享系統,其中,該金鑰資訊包含一公開金鑰、一私密金鑰以及一對稱加密金鑰。 The medical record sharing system of claim 1, wherein the key information comprises a public key, a private key, and a symmetric encryption key. 如申請專利範圍第7項所述之病歷共享系統,其中,發送至各該讀取端資訊裝置的各該金鑰資訊不包含該對稱加密金鑰。 The medical record sharing system of claim 7, wherein each of the key information transmitted to each of the reading end information devices does not include the symmetric encryption key.
TW107207562U 2018-06-06 2018-06-06 Medical record sharing system TWM569002U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW107207562U TWM569002U (en) 2018-06-06 2018-06-06 Medical record sharing system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW107207562U TWM569002U (en) 2018-06-06 2018-06-06 Medical record sharing system

Publications (1)

Publication Number Publication Date
TWM569002U true TWM569002U (en) 2018-10-21

Family

ID=64871979

Family Applications (1)

Application Number Title Priority Date Filing Date
TW107207562U TWM569002U (en) 2018-06-06 2018-06-06 Medical record sharing system

Country Status (1)

Country Link
TW (1) TWM569002U (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI674513B (en) * 2018-12-06 2019-10-11 財團法人工業技術研究院 System, apparatus and methods for accessing health information
TWI683275B (en) * 2018-06-06 2020-01-21 雲象科技有限公司 Medical record sharing system and implementing method thereof
TWI784092B (en) * 2018-11-28 2022-11-21 臺北醫學大學 Method and system for sharing electronic medical and health records

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI683275B (en) * 2018-06-06 2020-01-21 雲象科技有限公司 Medical record sharing system and implementing method thereof
TWI784092B (en) * 2018-11-28 2022-11-21 臺北醫學大學 Method and system for sharing electronic medical and health records
TWI674513B (en) * 2018-12-06 2019-10-11 財團法人工業技術研究院 System, apparatus and methods for accessing health information
US11157647B2 (en) 2018-12-06 2021-10-26 Industrial Technology Research Institute Access system, access device and access method for accessing health information

Similar Documents

Publication Publication Date Title
Lee et al. An architecture and management platform for blockchain-based personal health record exchange: development and usability study
US11144660B2 (en) Secure data sharing
Ramzan et al. Healthcare applications using blockchain technology: Motivations and challenges
US10885170B1 (en) Methods, systems, and storage media for managing patient information using a blockchain network
Chen et al. A secure EHR system based on hybrid clouds
US10249386B2 (en) Electronic health records
CN111933292B (en) Block chain-based hospital body and medical data interaction method and storage medium
TW201346824A (en) Systems and methods for generating, managing, and sharing digital scripts
KR20130045902A (en) Anonymous healthcare and records system
TW200907736A (en) Electronic medical record system, method for storing medical record data in the system, and portable electronic device loading the system
US20190327311A1 (en) Secure access to individual information
TWM569002U (en) Medical record sharing system
KR102279377B1 (en) Medical information providing system with enhanced personal authority using blockchain
JP2002024385A (en) System and method for managing gene information
Sethia et al. Smart health record management with secure NFC-enabled mobile devices
KR102140472B1 (en) Diamond transaction history management system using blockchain
WO2014201599A1 (en) Method and system for information authentication authorization and secure use
US10929509B2 (en) Accessing an interoperable medical code
US20210005293A1 (en) System and method for providing access of a user's health information to third parties
JP2002279062A (en) System and method for managing personal information
US9129099B1 (en) Portable health record system and method
TWI683275B (en) Medical record sharing system and implementing method thereof
Kouam Kamdem et al. Data Security in Health Systems: Case of Cameroon
Rai Security Issues and Solutions for Healthcare Informatics
KR102662521B1 (en) System for providing medical information using mutual correspondence of cdm id