CN104917769A - Electronic medical record signature method and device - Google Patents
Electronic medical record signature method and device Download PDFInfo
- Publication number
- CN104917769A CN104917769A CN201510320661.7A CN201510320661A CN104917769A CN 104917769 A CN104917769 A CN 104917769A CN 201510320661 A CN201510320661 A CN 201510320661A CN 104917769 A CN104917769 A CN 104917769A
- Authority
- CN
- China
- Prior art keywords
- biological information
- user name
- file
- information
- signature
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3231—Biological data, e.g. fingerprint, voice or retina
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Abstract
The embodiment of the invention discloses an electronic medical record signature method. The method is applied to a client. The method comprises the following steps: acquiring the user name and the biological feature information of a user in response to an electronic signature loading request; encrypting the user name and the biological feature information of the user, transmitting the encrypted user name and biological feature information to a server for verification, and receiving authentication pass information transmitted by the server; inquiring an electronic signature corresponding to the user name according to the user name; and loading the electronic signature to a signature part of an electronic medical record. The embodiment of the invention also provides an electronic medical record signature method applied to the server, and an electronic medical record signature device applied to the client and the server respectively. The identity of the user is verified with the biological feature information of the user in order to ensure the security and reliability of an electronic medical record signature. Moreover, the user does not need to remember a password or carrying a USB stick; great convenience is brought to use; and high operability is achieved.
Description
Technical field
The present invention relates to electronic signature field, particularly relate to a kind of electronic health record endorsement method and device.
Background technology
Along with domestic " digital hospital " build flourish, the demand of each medical institutions to electronic medical record system also increases rapidly.Electronic medical record system (Electronic Medical Record System, be called for short EMRS) be medical science special-purpose software, the information that doctor is gone to a doctor with the mode record patient of electronization by electronic health record, comprises homepage, progress note, inspection assay, doctor's advice, operation record, NN etc.Because electronic health record is the valid medical record of tool, for medical-accident appraisal, medical tangle dispute provide the law documented evidence of the medical act fact, therefore how to make that electronic health record is safe and reliable becomes a very important research topic.
Electronic Signature Law specifies, the electronic signature on electronic health record need be " signing electronically reliably ".In order to reach the object of " reliably ", prior art has two kinds of modes to verify the user signed electronically:
One, user ID and password authentification mode.For system, this verification mode arranges simply; And for user, need manually to input username and password, and conveniently remember, it is too simple that password often arranges by user, or stored in clear is hereof, is easy to be cracked by people or steal, and security performance is lower.
Two, digital authenticating mode.Client produces a random number, and issue CA server after utilizing the public key encryption at third party's ca authentication center and verify, if be proved to be successful, then the patient file with signature is sent to CA server by client, the patient file being stamped timestamp stores by CA server, and sends a to client.When needs are to verification electronic health record, client will need the electronic health record of verification and should compare with the electronic health record of timestamp, if the two is identical, then proves that the electronic health record that these needs verify is correct; If the two is different, then illustrate that the electronic health record that these needs verify forges or pass through to distort.Because digital authenticating issues certificate by third party's ca authentication center, therefore safer, reliable.But the certificate of digital authenticating is generally a U shield, needs user to carry with, very inconvenient, also easily loses or damage.Once U shield is forgotten on PC in user's use procedure, the password on U shield is just easily got by others, causes electronic health record to there is the risk being tampered or forging.In addition, the technical scheme at different ca authentication center is also not quite similar, and the certificate at effective third party's ca authentication center may be changed once every year, therefore can produce higher cost.
Summary of the invention
In order to solve the defect that prior art causes inconvenience, fail safe not high to the user authentication signed electronically in electronic health record to user, the invention provides a kind of electronic health record endorsement method and device, achieve the object facilitating user to carry out safe and reliable signature on electronic health record.
Embodiments provide a kind of electronic health record endorsement method, described method is applied to client, and described method comprises:
Response loads electronic signature request, obtains user name and the biological information of user;
Verifying being sent to server after the user name of user and biological information encryption, store the corresponding relation of described user name and described biological information in described server, and information is passed through in the certification that reception server sends;
The electronic signature corresponding with described user name according to described user name inquiry;
Described electronic signature is loaded on the signature section of electronic health record.
Preferably, describedly carry out checking comprise being sent to server after the user name of user and biological information encryption:
Described biological information is converted to character string;
The file including described user name and described character string is carried out compressing and encrypting, and described file is sent to described server verifies.
Preferably, described character string is Base64 form, and described file is XML file.
Preferably, after getting described biological information, described method also comprises:
Judge that whether described biological information is qualified, if so, then perform and be sent to after the user name of user and biological information encryption the step that server carries out verifying.
Preferably, described biological information comprises:
Finger print information, palmprint information, facial information, acoustic information, iris information and/or retinal information.
Preferably, described electronic signature comprises: handwritten signature picture and/or word signature.
The invention provides a kind of electronic health record endorsement method, described method is applied to server, and described method comprises:
Receive the file of the encryption that client sends, described file comprises user name and the first biological information;
Described file is decrypted, and from database, inquires about second biological information corresponding with described user name according to described user name;
Judge that whether described first biological information is identical with described second biological information;
If, then send certification to described client and pass through message, so that client receive described certification by information after, the electronic signature corresponding with described user name according to the inquiry of described user name, and described electronic signature is loaded on the signature section of electronic health record.
Preferably, described file compresses, and the first biological information in described file is character string forms, and described second biological information is picture format;
After being decrypted by described file, described method also comprises:
Described file is decompressed, and the first biological information of described character string forms is reduced to picture format.
Preferably, described file is XML file, and described character string is Base64 form;
Described the first biological information by described character string forms is reduced to picture format and comprises:
To the text string extracting of described first biological information be represented out from described XML file, and the character string of described Base64 form is reduced to picture format.
Preferably, after by described XML file deciphering and decompression, described method also comprises:
Judge that whether described XML file is qualified, if so, then perform the step that described the first biological information by described character string forms is reduced to picture format.
Preferably, described first biological information is identical with described second biological information type, and described type comprises:
Finger print information, palmprint information, facial information, acoustic information, iris information and/or retinal information.
The embodiment of the present invention additionally provides a kind of electronic health record signature apparatus, and described application of installation is in client, and described device comprises: acquiring unit, transmitting element, query unit and loading unit;
Described acquiring unit is connected with described transmitting element, and described transmitting element is connected with described query unit, and described query unit is connected with described loading unit;
Wherein, described acquiring unit, loading electronic signature request for responding, obtaining user name and the biological information of user;
Described transmitting element, for verifying being sent to server after the user name of user and biological information encryption, store the corresponding relation of described user name and described biological information in described server, and information is passed through in the certification that reception server sends;
Described query unit, for the electronic signature corresponding with described user name according to described user name inquiry;
Described loading unit, for being loaded on the signature section of electronic health record by described electronic signature.
Preferably, described transmitting element comprises: converting unit and compression unit;
Described acquiring unit is connected with described converting unit, and described converting unit is connected with described compression unit, and described compression unit is connected with described transmitting element;
Described converting unit, for being converted to character string by described biological information;
Described compression unit, for being carried out compressing and encrypting by the file including described user name and described character string, and is sent to described server by described file and verifies.
The embodiment of the present invention additionally provides a kind of electronic health record signature apparatus, and described application of installation is in server, and described device comprises: receiving element, query unit, judging unit and transmitting element;
Described receiving element is connected with described query unit, and described query unit is connected with described judging unit, and described judging unit is connected with described transmitting element;
Wherein, described receiving element, for receiving the file of the encryption that client sends, described file comprises user name and the first biological information;
Described query unit, for being decrypted by described file, and inquires about second biological information corresponding with described user name according to described user name from database;
Described judging unit, for judging that whether described first biological information is identical with described second biological information, if so, then activates described transmitting element;
Described transmitting element, message is passed through for sending certification to described client, so that client receive described certification by information after, the electronic signature corresponding with described user name according to the inquiry of described user name, and described electronic signature is loaded on the signature section of electronic health record.
Preferably, described file compresses, and the first biological information in described file is character string forms, and described second biological information is picture format;
Described query unit, also for decompressing to described file, and is reduced to picture format by the first biological information of described character string forms.
Relative to prior art, the invention has the advantages that:
The present invention utilizes the identity of the biological information of user to user to verify, guarantees the safety and reliability that electronic health record is signed, and for user, does not need memory cipher, also do not carry U shield, very convenient, strong operability.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present application or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, the accompanying drawing that the following describes is only some embodiments recorded in the application, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the flow chart of a kind of electronic health record endorsement method embodiment one provided by the invention;
Fig. 2 is the flow chart of a kind of electronic health record endorsement method embodiment two provided by the invention;
Fig. 3 is the structured flowchart of a kind of electronic health record signature apparatus embodiment one provided by the invention;
Fig. 4 is the structured flowchart of a kind of electronic health record signature apparatus embodiment two provided by the invention.
Embodiment
The present invention program is understood better in order to make those skilled in the art person, below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
Embodiment of the method one:
See Fig. 1, this figure is the flow chart of a kind of electronic health record endorsement method embodiment one provided by the invention.
The electronic health record endorsement method that the present embodiment provides is applied to client, and the method comprises the steps:
Step S101: response loads electronic signature request, obtains user name and the biological information of user.
In actual applications, when user terminates editing electronic case history, need to click the electronic signature load button in electronic health record, to load electronic signature.Client, after the loading electronic signature request receiving user's transmission, obtains user name and the biological information of user.User needs before opening electronic health record to log in electronic medical record system, if user adopts user name to log in, then directly can extract described user name from system, and point out user to input biological information.
Wherein, described user name can be made up of word, numeral or symbol etc., and in actual applications, described user name can be the title of user oneself definition, also can be user ID etc.
Described biological characteristic refers to that everyone has, unique physiological characteristic, such as fingerprint, palmmprint, face, sound, iris, retina etc.Utilize described biological characteristic to carry out certification not only to facilitate, user does not need memory cipher as prior art one, does not need to carry U shield as prior art two yet, and safe, reliable, is not easy to be stolen, more can not loses.
In actual applications, described biological information can be gathered by corresponding collector, such as finger print information can be gathered by fingerprint capturer, and fingerprint capturer comprises optical fingerprint collector, heat-sensitive type transducer, biological RF fingerprint sensor.Biological information, after collecting the biological characteristic of user, is sent to client by physical characteristics collecting device.Client can judge that after receiving described biological information whether described biological information is qualified, performs step S102 again if qualified; If defective, then send collecting biological feature information request to collecting biological feature information device.In order to save system resource, the described step judging that whether described biological information is qualified can also perform at collecting biological feature information device, if namely the biological information of collecting biological feature information device collection is qualified, then sends biological information to client; If the biological information gathered is defective, then continue reminding user input, until collect qualified biological information.
Step S102: verify being sent to server after the user name of user and biological information encryption, and information is passed through in the certification that reception server sends.
In order to prevent described biological information from being intercepted and captured by other people in the process being sent to server, in the present embodiment, the user name of described user and biological information are encrypted, and then are sent to server and verify.The corresponding relation of described user name and described biological information is stored in described server, when described server receive client send user name and described biological information after, the biological information corresponding with described user name is inquired about in a database according to described user name, and the biological information of the biological information received and database purchase is compared, if consistent, then send certification to client and pass through information; If inconsistent, then to the information that client transmission certification is not passed through.
In actual applications, user name can be mated with one or more biological information, if multiple, so after server gets the biological information of client transmission, the biological information of client transmission whether is comprised according to user name inquiry multiple biological informations corresponding with user name, if comprised, then send certification to client and pass through information; If do not comprised, then to the information that client transmission certification is not passed through.Certainly, be understandable that, if the biological information obtained is multiple different biological informations, the such as fingerprint image of multiple finger, or the fingerprint image of a finger adds the face-image of user, so can arrange server unanimously just thinks by verifying when these biological informations are all corresponding with the biological information mated with user of server stores, otherwise does not pass through.
In addition, the space that the image due to described biological information takies is larger, if directly send described biological information, for often there is large hospital network concurrent in a large number, may cause network blockage, cause transmission speed to slow down.In order to address this problem, in the present embodiment, described biological information can be converted to the less character string of occupying system resources, then the file including user name and described character string be compressed, the efficiency of transmission of file can be improved like this, reduce the pressure that system is caused.In actual applications, described character string can be Base64 coded format, and this form is one of mode of transmission 8Bit syllabified code, and have not readable, namely the data of its coding with the naked eye directly can not be seen by people.The described file including user name and described character string can be XML file, namely adopts the file that expandable mark language XML is write, is applicable to the transmission of network data.For example, be the XML file content of character string including user ID, user name and changed by fingerprint image as follows, wherein, because length limit, described character string is partial character string.
<FINGER_INFO>
<USER_ID>1001</USER_ID>
<USER_NAME> Zhang San </USER_NAME>
<FINGER_CONTENT>
H4sIAC4HY1UA/1ScyZayShaFHygGofQMTVR6AVERZoCg9BBACDx9Hf+qSd217r9IE2kiztn72yHm7aEfDufheDgohfM+HP7g///9F/7+wZJ7+PDmje
……
</FINGER_CONTENT>
</FINGER_INFO>
Step S103: the electronic signature corresponding with described user name according to described user name inquiry.
Described electronic signature can be handwritten signature picture, also can be the signature of computer writing version, or both combinations etc.
Step S104: the signature section described electronic signature being loaded on electronic health record.
In the application scenarios of reality, user needed to open electronic health record load electronic signature on electronic health record before, if user does not log in electronic medical record system when opening electronic health record, then needed prompting user to log in.When user logs in electronic medical record system, user can be pointed out to input user name and point out user to input biological information, after getting described user name and biological information, verify being sent to server after described user name and biological information compress-encrypt, if the verification passes, then send to client and be verified information, user just can Successful login electronic medical record system, opens electronic health record.If continuous three authentication faileds of same user, then interface of logging off.After user terminates editing electronic case history, the electronic signature button in electronic health record can be clicked, load electronic signature with requesting client.After client receives the loading electronic signature request of user's transmission, in order to confirm to send the user that the user loading electronic signature request is login system, need again to point out user to input biological information, and be sent to server after compress-encrypt and verify, after being verified, again according to the electronic signature that inquiry is corresponding with user in the database stored of described user name, and electronic signature is loaded on the position of signing electronically in electronic health record.
The present embodiment, when user carries out electronic health record signature, utilizes the identity of the biological information of user to user to verify, guarantees the safety and reliability that electronic health record is signed, and for user, do not need memory cipher, do not carry U shield yet, very convenient, strong operability.
Embodiment of the method two
See Fig. 2, this figure is the flow chart of a kind of electronic health record endorsement method embodiment two provided by the invention.
The electronic health record endorsement method that the present embodiment provides is applied to server, and the method comprises the steps:
Step S201: the file receiving the encryption that client sends, described file comprises user name and the first biological information.
In the present embodiment, described biological characteristic refers to that everyone has, unique physiological characteristic, such as fingerprint, palmmprint, face, sound, iris, retina etc.Utilize described biological characteristic to carry out certification not only to facilitate, user does not need memory cipher as prior art one, does not need to carry U shield as prior art two yet, and safe, reliable, is not easy to be stolen, more can not loses.In various biological information, because everyone fingerprint is relatively fixing, can not change along with the change of the growth at the age of people or healthy degree, sample fingerprint is convenient to obtain simultaneously, be easy to develop recognition system, practical, can described first biological information be preferably therefore finger print information.
In order to prevent client from being intercepted and captured by other people being sent to by described first biological information in the process of server, in the present embodiment, the file of what described server received include user name and described first biological information is through the file of encryption.
Step S202: described file is decrypted, and from database, inquire about second biological information corresponding with described user name according to described user name.
Because described first biological information is generally picture format, transmitting procedure needs comparatively multiple resource, for often there is large hospital network concurrent in a large number, may cause network blockage, cause transmission speed to slow down.In order to address this problem, in the present embodiment, described first biological information can be converted to the less character string of occupying system resources by picture format by client, then the file including user name and described character string is compressed, the efficiency of transmission of file can be improved like this, reduce the pressure that system is caused.In actual applications, described character string can be Base64 coded format, and this form is one of mode of transmission 8Bit syllabified code, and have not readable, namely the data of its coding with the naked eye directly can not be seen by people.The described file including user name and described character string can be XML file, namely adopts the file that expandable mark language XML is write, is applicable to the transmission of network data.
Server to be encrypted and after the file compressed receiving, file is decrypted and decompresses, if described file is XML file, so from described XML file, extract the text string extracting of expression first biological information out, and the first biological information of described character string forms is reduced to picture format, to compare with the second biological information being similarly picture format.In order to ensure the validity of described XML file, can after deciphering and decompressing, judge that whether described XML file is qualified, namely whether its form meets default form, if met, then prove that described XML file is qualified file, can continue to perform the step the first biological information of described character string forms being reduced to picture format; If do not met, then send the message of authentication failed to client.
Because server stores has the user name of user and the corresponding relation of the second biological information, after getting described first biological information, second biological information corresponding with described user name is searched from the database of described server, judge that whether described first biological information is identical with described second biological information, if so, then send certification to client and pass through message; If not, then send certification to client and do not pass through message.
Step S203: judge that whether described first biological information is identical with described second biological information, if so, then performs step S204.
Step S204: send certification to described client and pass through message, so that client receive described certification by information after, the electronic signature corresponding with described user name according to described user name inquiry, and described electronic signature is loaded on the signature section of electronic health record.
Second biological information of the first biological information that the present embodiment is sent by comparison client and server stores, verify the identity of user, due to the uniqueness of biological characteristic, it is reliable that profit carries out authenticating security in this way.And user does not need memory cipher, do not need to carry the signature that U shield just can carry out electronic health record yet, only need to input user name and biological information, convenient especially.
In addition, in order to reduce the situation causing system crash because concurrency is large, server can arrange the highest checking number of requests sent by client that synchronization can receive, and the highest checking number of requests described in exceeding then is postponed till and received the time of reception next time; The maximum of file size also can be set, if exceed this maximum, not receive; Or the longest connect hours with client can also be set, if exceed this longest connect hours, then automatic release connection and resource, thus improve the handling capacity of server.
Based on a kind of electronic health record endorsement method that embodiment of the method one provides, the embodiment of the present invention additionally provides a kind of electronic health record signature apparatus, and this application of installation, in client, describes its operation principle in detail below in conjunction with accompanying drawing.
Device embodiment one
See Fig. 3, this figure is the structured flowchart of a kind of electronic health record signature apparatus embodiment one provided by the invention.
The electronic health record signature apparatus that the present embodiment provides comprises:
Electronic health record signature apparatus, is characterized in that, described application of installation is in client, and described device comprises: acquiring unit 301, transmitting element 302, query unit 303 and loading unit 304;
Described acquiring unit 301 is connected with described transmitting element 302, and described transmitting element 302 is connected with described query unit 303, and described query unit 303 is connected with described loading unit 304;
Wherein, described acquiring unit 301, loading electronic signature request for responding, obtaining user name and the biological information of user;
Described transmitting element 302, for verifying being sent to server after the user name of user and biological information encryption, store the corresponding relation of described user name and described biological information in described server, and information is passed through in the certification that reception server sends;
Described query unit 303, for the electronic signature corresponding with described user name according to described user name inquiry;
Described loading unit 304, for being loaded on the signature section of electronic health record by described electronic signature.
The present embodiment utilizes the identity of the biological information of user to user to verify, guarantees the safety and reliability that electronic health record is signed, and for user, does not need memory cipher, also do not carry U shield, very convenient, strong operability.
In addition, in order to improve transmission speed, described transmitting element 302 comprises (not shown in Fig. 3): converting unit and compression unit;
Described acquiring unit 301 is connected with described converting unit, and described converting unit is connected with described compression unit, and described compression unit is connected with described transmitting element 302;
Described converting unit, for being converted to character string by described biological information;
Described compression unit, for being carried out compressing and encrypting by the file including described user name and described character string, and is sent to described server by described file and verifies.
Based on a kind of electronic health record endorsement method that embodiment of the method two provides, the embodiment of the present invention additionally provides a kind of electronic health record signature apparatus, and this application of installation, in server, describes its operation principle in detail below in conjunction with accompanying drawing.
Device embodiment two
See Fig. 4, this figure is the structured flowchart of a kind of electronic health record signature apparatus embodiment two provided by the invention.
The electronic health record signature apparatus that the present embodiment provides comprises: receiving element 401, query unit 402, judging unit 403 and transmitting element 404;
Described receiving element 401 is connected with described query unit 402, and described query unit 402 is connected with described judging unit 403, and described judging unit 403 is connected with described transmitting element 404;
Wherein, described receiving element 401, for receiving the file of the encryption that client sends, described file comprises user name and the first biological information;
Described query unit 402, for being decrypted by described file, and inquires about second biological information corresponding with described user name according to described user name from database;
Described judging unit 403, for judging that whether described first biological information is identical with described second biological information, if so, then activates described transmitting element;
Described transmitting element 404, message is passed through for sending certification to described client, so that client receive described certification by information after, the electronic signature corresponding with described user name according to the inquiry of described user name, and described electronic signature is loaded on the signature section of electronic health record.
In order to improve file transmission efficiency, preferably, this enforcement is also compressed described file, and the first biological information in described file is character string forms, and described second biological information is picture format;
Described query unit 402, also for decompressing to described file, and is reduced to picture format by the first biological information of described character string forms.
Second biological information of the first biological information that the present embodiment is sent by comparison client and server stores, verify the identity of user, due to the uniqueness of biological characteristic, it is reliable that profit carries out authenticating security in this way.And user does not need memory cipher, do not need to carry the signature that U shield just can carry out electronic health record yet, only need to input user name and biological information, convenient especially.
It should be noted that, one of ordinary skill in the art will appreciate that all or part of flow process realized in said method embodiment, that the hardware that can carry out instruction relevant by computer program has come, described program can be stored in a computer read/write memory medium, this program, when performing, can comprise the flow process as above-mentioned each side method embodiment.Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, ROM) or random store-memory body (Random Access Memory, RAM) etc.
Each embodiment in this specification all adopts the mode of going forward one by one to describe, between each embodiment identical similar part mutually see, what each embodiment stressed is the difference with other embodiments.Especially, for device embodiment, because it is substantially similar to embodiment of the method, so describe fairly simple, relevant part illustrates see the part of embodiment of the method.Device embodiment described above is only schematic, and the wherein said unit that illustrates as separating component and module can or may not be physically separates.In addition, some or all of unit wherein and module can also be selected according to the actual needs to realize the object of the present embodiment scheme.Those of ordinary skill in the art, when not paying creative work, are namely appreciated that and implement.
The above is only the specific embodiment of the present invention; it should be pointed out that for those skilled in the art, under the premise without departing from the principles of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.
Claims (15)
1. an electronic health record endorsement method, is characterized in that, described method is applied to client, and described method comprises:
Response loads electronic signature request, obtains user name and the biological information of user;
Verifying being sent to server after the user name of user and biological information encryption, store the corresponding relation of described user name and described biological information in described server, and information is passed through in the certification that reception server sends;
The electronic signature corresponding with described user name according to described user name inquiry;
Described electronic signature is loaded on the signature section of electronic health record.
2. electronic health record endorsement method according to claim 1, is characterized in that, describedly carries out checking comprise being sent to server after the user name of user and biological information encryption:
Described biological information is converted to character string;
The file including described user name and described character string is carried out compressing and encrypting, and described file is sent to described server verifies.
3. electronic health record endorsement method according to claim 2, is characterized in that, described character string is Base64 form, and described file is XML file.
4. the electronic health record endorsement method according to claim 1-3 any one, is characterized in that, after getting described biological information, described method also comprises:
Judge that whether described biological information is qualified, if so, then perform and be sent to after the user name of user and biological information encryption the step that server carries out verifying.
5. electronic health record endorsement method according to claim 1, is characterized in that, described biological information comprises:
Finger print information, palmprint information, facial information, acoustic information, iris information and/or retinal information.
6. electronic health record endorsement method according to claim 1, is characterized in that, described electronic signature comprises: handwritten signature picture and/or word signature.
7. an electronic health record endorsement method, is characterized in that, described method is applied to server, and described method comprises:
Receive the file of the encryption that client sends, described file comprises user name and the first biological information;
Described file is decrypted, and from database, inquires about second biological information corresponding with described user name according to described user name;
Judge that whether described first biological information is identical with described second biological information;
If, then send certification to described client and pass through message, so that client receive described certification by information after, the electronic signature corresponding with described user name according to the inquiry of described user name, and described electronic signature is loaded on the signature section of electronic health record.
8. electronic health record endorsement method according to claim 6, is characterized in that, described file compresses, and the first biological information in described file is character string forms, and described second biological information is picture format;
After being decrypted by described file, described method also comprises:
Described file is decompressed, and the first biological information of described character string forms is reduced to picture format.
9. electronic health record endorsement method according to claim 7, is characterized in that, described file is XML file, and described character string is Base64 form;
Described the first biological information by described character string forms is reduced to picture format and comprises:
To the text string extracting of described first biological information be represented out from described XML file, and the character string of described Base64 form is reduced to picture format.
10. electronic health record endorsement method according to claim 9, is characterized in that, after by described XML file deciphering and decompression, described method also comprises:
Judge that whether described XML file is qualified, if so, then perform the step that described the first biological information by described character string forms is reduced to picture format.
11. electronic health record endorsement methods according to claim 6, is characterized in that, described first biological information is identical with described second biological information type, and described type comprises:
Finger print information, palmprint information, facial information, acoustic information, iris information and/or retinal information.
12. 1 kinds of electronic health record signature apparatus, is characterized in that, described application of installation is in client, and described device comprises: acquiring unit, transmitting element, query unit and loading unit;
Described acquiring unit is connected with described transmitting element, and described transmitting element is connected with described query unit, and described query unit is connected with described loading unit;
Wherein, described acquiring unit, loading electronic signature request for responding, obtaining user name and the biological information of user;
Described transmitting element, for verifying being sent to server after the user name of user and biological information encryption, store the corresponding relation of described user name and described biological information in described server, and information is passed through in the certification that reception server sends;
Described query unit, for the electronic signature corresponding with described user name according to described user name inquiry;
Described loading unit, for being loaded on the signature section of electronic health record by described electronic signature.
13. electronic health record signature apparatus according to claim 12, it is characterized in that, described transmitting element comprises: converting unit and compression unit;
Described acquiring unit is connected with described converting unit, and described converting unit is connected with described compression unit, and described compression unit is connected with described transmitting element;
Described converting unit, for being converted to character string by described biological information;
Described compression unit, for being carried out compressing and encrypting by the file including described user name and described character string, and is sent to described server by described file and verifies.
14. 1 kinds of electronic health record signature apparatus, is characterized in that, described application of installation is in server, and described device comprises: receiving element, query unit, judging unit and transmitting element;
Described receiving element is connected with described query unit, and described query unit is connected with described judging unit, and described judging unit is connected with described transmitting element;
Wherein, described receiving element, for receiving the file of the encryption that client sends, described file comprises user name and the first biological information;
Described query unit, for being decrypted by described file, and inquires about second biological information corresponding with described user name according to described user name from database;
Described judging unit, for judging that whether described first biological information is identical with described second biological information, if so, then activates described transmitting element;
Described transmitting element, message is passed through for sending certification to described client, so that client receive described certification by information after, the electronic signature corresponding with described user name according to the inquiry of described user name, and described electronic signature is loaded on the signature section of electronic health record.
15. electronic health record signature apparatus according to claim 14, it is characterized in that, described file compresses, and the first biological information in described file is character string forms, and described second biological information is picture format;
Described query unit, also for decompressing to described file, and is reduced to picture format by the first biological information of described character string forms.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510320661.7A CN104917769B (en) | 2015-06-11 | 2015-06-11 | A kind of electronic health record endorsement method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510320661.7A CN104917769B (en) | 2015-06-11 | 2015-06-11 | A kind of electronic health record endorsement method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104917769A true CN104917769A (en) | 2015-09-16 |
| CN104917769B CN104917769B (en) | 2018-10-16 |
Family
ID=54086475
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510320661.7A Active CN104917769B (en) | 2015-06-11 | 2015-06-11 | A kind of electronic health record endorsement method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104917769B (en) |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105681035A (en) * | 2016-03-04 | 2016-06-15 | 河北腾翔软件科技有限公司 | Security authorization method which solves problem that certificate private key is reused by multiple users |
| CN106202897A (en) * | 2016-06-30 | 2016-12-07 | 安徽易联众信息技术有限公司 | A kind of medical information intelligent-sharing system |
| CN106503527A (en) * | 2016-10-28 | 2017-03-15 | 上海创功通讯技术有限公司 | A kind of method and apparatus of electronic document fingerprint signature |
| CN106651686A (en) * | 2016-12-27 | 2017-05-10 | 深圳市金立通信设备有限公司 | Electronic contract signing method and terminal |
| CN107748841A (en) * | 2017-10-27 | 2018-03-02 | 上海京颐科技股份有限公司 | Intelligent terminal and its user's signature information input method, device, storage medium |
| CN107862192A (en) * | 2017-11-02 | 2018-03-30 | 平安科技(深圳)有限公司 | Login interface unlocking method, device, computer equipment and storage medium |
| CN110046524A (en) * | 2019-04-16 | 2019-07-23 | 昆山丘钛微电子科技有限公司 | A kind of processing method of data, device, electronic equipment and medium |
| CN110532796A (en) * | 2019-07-23 | 2019-12-03 | 深圳壹账通智能科技有限公司 | File encryption management method, system and computer readable storage medium |
| CN110619269A (en) * | 2019-08-08 | 2019-12-27 | 浙江中控技术股份有限公司 | Fingerprint remote management and verification system and method thereof |
| CN111859335A (en) * | 2020-06-30 | 2020-10-30 | 湖南科技学院 | Electronic medical record access method and device and electronic equipment |
| CN112102908A (en) * | 2020-09-22 | 2020-12-18 | 合肥易康达医疗卫生信息科技有限公司 | Credible cloud signature method for electronic medical record |
| CN112487249A (en) * | 2020-11-27 | 2021-03-12 | 郑朗 | Extensible markup language XML document compression and decompression method and device |
| CN113986845A (en) * | 2021-12-27 | 2022-01-28 | 南京大学 | Method and system for issuing unconditional trusted timestamp |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080027865A1 (en) * | 2006-07-31 | 2008-01-31 | Oki Electric Industry Co., Ltd. | Individual identifying/attribute authenticating system and individual identifying/attribute authenticating method |
| CN101226568A (en) * | 2007-09-14 | 2008-07-23 | 何中 | Juggling-proof electric medical record system |
| JP2009140057A (en) * | 2007-12-04 | 2009-06-25 | Fujitsu Ltd | Medical care record management system, medical care record management program and medical care record management method |
| CN101727534A (en) * | 2008-10-30 | 2010-06-09 | 北大方正集团有限公司 | Patient document retrieval authorization control method and system |
| WO2011039743A1 (en) * | 2009-10-01 | 2011-04-07 | Michael Feldbau | System and method for electronic signature via proxy |
| CN102457508A (en) * | 2010-11-02 | 2012-05-16 | 江苏大学 | Digital signature method of electronic medical record based on XML (Extensive Makeup Language) |
| CN202453954U (en) * | 2011-11-16 | 2012-09-26 | 深圳宝嘉电子设备有限公司 | Digital watermarking electronic medical record supporting system and digital watermarking electronic medical record |
| CN103116869A (en) * | 2012-12-12 | 2013-05-22 | 江苏省人民医院 | Identity authentication system and method of electronic medical record system |
| CN103578070A (en) * | 2012-07-25 | 2014-02-12 | 深圳市蓝韵网络有限公司 | Method and system for electronic medical record management based on mobile communication terminal |
| CN103888442A (en) * | 2014-01-13 | 2014-06-25 | 黄晓芳 | System with integration of visualization biological characteristics and one-time digital signature and method thereof |
-
2015
- 2015-06-11 CN CN201510320661.7A patent/CN104917769B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080027865A1 (en) * | 2006-07-31 | 2008-01-31 | Oki Electric Industry Co., Ltd. | Individual identifying/attribute authenticating system and individual identifying/attribute authenticating method |
| CN101226568A (en) * | 2007-09-14 | 2008-07-23 | 何中 | Juggling-proof electric medical record system |
| JP2009140057A (en) * | 2007-12-04 | 2009-06-25 | Fujitsu Ltd | Medical care record management system, medical care record management program and medical care record management method |
| CN101727534A (en) * | 2008-10-30 | 2010-06-09 | 北大方正集团有限公司 | Patient document retrieval authorization control method and system |
| WO2011039743A1 (en) * | 2009-10-01 | 2011-04-07 | Michael Feldbau | System and method for electronic signature via proxy |
| CN102457508A (en) * | 2010-11-02 | 2012-05-16 | 江苏大学 | Digital signature method of electronic medical record based on XML (Extensive Makeup Language) |
| CN202453954U (en) * | 2011-11-16 | 2012-09-26 | 深圳宝嘉电子设备有限公司 | Digital watermarking electronic medical record supporting system and digital watermarking electronic medical record |
| CN103578070A (en) * | 2012-07-25 | 2014-02-12 | 深圳市蓝韵网络有限公司 | Method and system for electronic medical record management based on mobile communication terminal |
| CN103116869A (en) * | 2012-12-12 | 2013-05-22 | 江苏省人民医院 | Identity authentication system and method of electronic medical record system |
| CN103888442A (en) * | 2014-01-13 | 2014-06-25 | 黄晓芳 | System with integration of visualization biological characteristics and one-time digital signature and method thereof |
Cited By (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105681035A (en) * | 2016-03-04 | 2016-06-15 | 河北腾翔软件科技有限公司 | Security authorization method which solves problem that certificate private key is reused by multiple users |
| CN106202897A (en) * | 2016-06-30 | 2016-12-07 | 安徽易联众信息技术有限公司 | A kind of medical information intelligent-sharing system |
| CN106503527A (en) * | 2016-10-28 | 2017-03-15 | 上海创功通讯技术有限公司 | A kind of method and apparatus of electronic document fingerprint signature |
| CN106651686A (en) * | 2016-12-27 | 2017-05-10 | 深圳市金立通信设备有限公司 | Electronic contract signing method and terminal |
| CN107748841A (en) * | 2017-10-27 | 2018-03-02 | 上海京颐科技股份有限公司 | Intelligent terminal and its user's signature information input method, device, storage medium |
| CN107862192B (en) * | 2017-11-02 | 2020-10-27 | 平安科技(深圳)有限公司 | Login interface unlocking method and device, computer equipment and storage medium |
| CN107862192A (en) * | 2017-11-02 | 2018-03-30 | 平安科技(深圳)有限公司 | Login interface unlocking method, device, computer equipment and storage medium |
| CN110046524A (en) * | 2019-04-16 | 2019-07-23 | 昆山丘钛微电子科技有限公司 | A kind of processing method of data, device, electronic equipment and medium |
| WO2021012563A1 (en) * | 2019-07-23 | 2021-01-28 | 深圳壹账通智能科技有限公司 | File encryption management method and system, and computer readable storage medium |
| CN110532796A (en) * | 2019-07-23 | 2019-12-03 | 深圳壹账通智能科技有限公司 | File encryption management method, system and computer readable storage medium |
| CN110619269A (en) * | 2019-08-08 | 2019-12-27 | 浙江中控技术股份有限公司 | Fingerprint remote management and verification system and method thereof |
| CN111859335A (en) * | 2020-06-30 | 2020-10-30 | 湖南科技学院 | Electronic medical record access method and device and electronic equipment |
| CN112102908A (en) * | 2020-09-22 | 2020-12-18 | 合肥易康达医疗卫生信息科技有限公司 | Credible cloud signature method for electronic medical record |
| CN112487249A (en) * | 2020-11-27 | 2021-03-12 | 郑朗 | Extensible markup language XML document compression and decompression method and device |
| CN112487249B (en) * | 2020-11-27 | 2024-03-01 | 郑朗 | XML document compression and decompression method and device |
| CN113986845A (en) * | 2021-12-27 | 2022-01-28 | 南京大学 | Method and system for issuing unconditional trusted timestamp |
| CN113986845B (en) * | 2021-12-27 | 2022-03-29 | 南京大学 | Method and system for issuing unconditional trusted timestamp |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104917769B (en) | 2018-10-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104917769A (en) | Electronic medical record signature method and device | |
| US11803665B2 (en) | System and method for validating authorship of an electronic signature session | |
| CN105100108B (en) | A kind of login authentication method based on recognition of face, apparatus and system | |
| JP2019083536A5 (en) | ||
| CN105373924B (en) | System for providing safe payment function for terminal equipment | |
| AU2017388754A1 (en) | Trusted mobile biometric enrollment | |
| US10635887B2 (en) | Manual signature authentication system and method | |
| KR101301268B1 (en) | Method for providing digital signature on the basis of biometrics and method for verifying the digitally signed electronic document, and terminal, server, and computer-readable recording medium using the same | |
| US20180288040A1 (en) | System and Method for Biometric Authentication-Based Electronic Notary Public | |
| CN103957105A (en) | Use identity authentication method and SIM card | |
| RU2725182C2 (en) | System for biometric authentication based on venous networks, as well as unique and non-coded coding of tree structures and corresponding method | |
| CN103368736B (en) | Business information encryption, decryption method and device | |
| CN106469269B (en) | A kind of method, apparatus and terminal of Password Management | |
| KR101303961B1 (en) | Method for providing digital signature on the basis of biometrics and method for verifying the digitally signed electronic document, and terminal, server, and computer-readable recording medium using the same | |
| WO2018148900A1 (en) | Fingerprint identification-based authentication method and device, and transaction system | |
| US20200382300A1 (en) | Method of registration and access control of identity for third-party certification | |
| GB2609878A (en) | Systems and methods for centralized authentication of financial transactions | |
| CN110619228B (en) | File decryption method, file encryption method, file management system and storage medium | |
| WO2023004491A2 (en) | Methods and systems for generating and validating uses of digital credentials and other documents | |
| CN205427857U (en) | Identity identification system based on many biological characteristics combine equipment fingerprint | |
| Li et al. | USign—A security enhanced electronic consent model | |
| CN114238909A (en) | Virtual asset storage method and device and virtual asset query method and device | |
| US11128620B2 (en) | Online verification method and system for verifying the identity of a subject | |
| CN200986707Y (en) | PDA for realizing user identification using fingerprint identification technique | |
| US11764970B2 (en) | Method of verifying partial data based on collective certificate |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |