CN114121197A - Medical data safety management and control system - Google Patents

Medical data safety management and control system Download PDF

Info

Publication number
CN114121197A
CN114121197A CN202111406243.1A CN202111406243A CN114121197A CN 114121197 A CN114121197 A CN 114121197A CN 202111406243 A CN202111406243 A CN 202111406243A CN 114121197 A CN114121197 A CN 114121197A
Authority
CN
China
Prior art keywords
information
module
data
encryption
level
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111406243.1A
Other languages
Chinese (zh)
Inventor
范蓉杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ping Fu Yin Health Technology Shanghai Co ltd
Original Assignee
Ping Fu Yin Health Technology Shanghai Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ping Fu Yin Health Technology Shanghai Co ltd filed Critical Ping Fu Yin Health Technology Shanghai Co ltd
Priority to CN202111406243.1A priority Critical patent/CN114121197A/en
Publication of CN114121197A publication Critical patent/CN114121197A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H40/00ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices
    • G16H40/20ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the management or administration of healthcare resources or facilities, e.g. managing hospital staff or surgery rooms

Landscapes

  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Theoretical Computer Science (AREA)
  • Bioethics (AREA)
  • Medical Informatics (AREA)
  • Primary Health Care (AREA)
  • Computer Security & Cryptography (AREA)
  • General Business, Economics & Management (AREA)
  • Epidemiology (AREA)
  • Public Health (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • Biomedical Technology (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

The invention discloses a medical data safety management and control system, which comprises: the data input module is used for inputting the medical information of the patient to be encrypted; the level setting module is used for carrying out encryption level setting on the input patient medical information; the encryption configuration module is used for configuring information encryption rules corresponding to different encryption levels; the data encryption module is used for acquiring a corresponding information encryption rule from the level setting module according to the encryption level set by the level setting module to encrypt the input medical information of the patient; and the data storage module is used for storing the encrypted medical data of the user. The medical data security management and control system can perform hierarchical encryption on the medical information of the patient, and improves the security of the medical information of the patient.

Description

Medical data safety management and control system
Technical Field
The invention belongs to the technical field of data processing, and particularly relates to a medical data safety management and control system.
Background
In the medical system, with the development of informatization, more and more medical data are saved in a database in an electronic data mode, and the office efficiency of the medical system is greatly improved. However, the colleagues who adopt the electronic information also bring the risk of information leakage. Patient data in the form of electronic data can be viewed, downloaded and transferred in large batches, resulting in leakage of patient privacy.
Disclosure of Invention
The invention provides a medical data safety management and control system, which adopts the following technical scheme:
a medical data security management and control system comprises:
the data input module is used for inputting the medical information of the patient to be encrypted;
the level setting module is used for carrying out encryption level setting on the input patient medical information;
the encryption configuration module is used for configuring information encryption rules corresponding to different encryption levels;
the data encryption module is used for acquiring a corresponding information encryption rule from the level setting module according to the encryption level set by the level setting module to encrypt the input medical information of the patient;
and the data storage module is used for storing the encrypted medical data of the user.
Further, the patient medical information input through the data input module comprises a plurality of information dimensions;
the encryption levels set by the level setting module comprise a high level, a middle level and a low level;
the information encryption rule configured by the encryption configuration module aiming at the patient medical information with low encryption level is used for encrypting the information of a first dimension in the patient medical information, and the first dimension comprises a plurality of information dimensions;
encrypting second dimension information in the patient medical information by an encryption configuration module according to an information encryption rule configured for the patient medical information with the middle encryption level, wherein the second dimension comprises a plurality of information dimensions;
the information encryption rule configured for advanced patient medical information by the encryption configuration module is used for encrypting information of a third dimension in the patient medical information, and the third dimension comprises a plurality of information dimensions;
wherein the second dimension is greater than and completely encompasses the first dimension and the third dimension is greater than and completely encompasses the second dimension;
the data encryption module encrypts the corresponding information dimension in the patient medical information according to the encryption level of the patient medical information.
Further, the medical data security management and control system further comprises:
the identity setting module is used for setting the identity level of the user, and the identity level comprises a high level, a middle level and a low level corresponding to the encryption level;
the data query module is used for a user to query and call the encrypted patient medical information from the data storage module;
the data decryption module is used for decrypting the patient medical information inquired by the user;
the data decryption module is used for completely decrypting the medical information of the patient when the identity level of the user is judged to be larger than or equal to the encryption level of the medical information of the patient inquired by the user;
and the data display module is used for displaying the decrypted data to the inquired user.
Further, the decryption module decrypts the encrypted information corresponding to the user identity level in the patient medical information when the identity level of the user is judged to be smaller than the encryption level of the patient medical information inquired by the decryption module.
Further, the medical data security management and control system further comprises:
the position acquisition module is used for positioning the current first position information of the data encryption module;
the position configuration module is used for configuring a safe decryption area capable of decrypting;
and the data decryption module carries out decryption operation after recognizing that the first position information is contained in the secure decryption area.
Further, the medical data security management and control system further comprises:
the auxiliary decryption module is used for accessing the mobile authorization equipment to decrypt the medical information of the patient with the advanced encryption level by the auxiliary data decryption module, and the authorization information is stored in the mobile authorization equipment and is kept and operated by management personnel;
when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information inquired by the user are both high, the data decryption module also acquires the authorization information in the mobile authorization equipment connected to the data decryption module through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifying the authorization information.
Furthermore, a locator used for locating second position information of the mobile authorization equipment is arranged in the mobile authorization equipment;
when the data decryption module judges that the identity level of the user and the encryption level of the medical information of the patient are both high, the data decryption module also acquires the authorization information and the second position information in the mobile authorization equipment through the auxiliary decryption module, and decrypts the medical information of the patient after recognizing that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information.
Further, the medical data security management and control system further comprises:
the authorization request module is used for sending authorization request information to a patient corresponding to the patient medical information and receiving confirmation information fed back by the patient when the encryption level of the patient medical information inquired by the user is high;
the data decryption module is used for acquiring the confirmation information received by the authorization request module when judging that the identity level of the user and the encryption level of the patient medical information are both high, and decrypting the patient medical information after identifying that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information and the confirmation information.
Further, the medical data security management and control system further comprises:
the device unlocking module is used for unlocking the position limitation of the mobile authorization device;
when the position limitation of the mobile authorization equipment is removed through the equipment unlocking module, the data decryption module obtains the authorization information in the mobile authorization equipment through the auxiliary decryption module when the data decryption module judges that the identity level of the user and the encryption level of the medical information of the patient are both high, and decrypts the medical information of the patient after recognizing that the first position information is contained in the security decryption area and verifying the authorization information and the confirmation information.
Furthermore, the auxiliary decryption module is simultaneously accessed to a plurality of mobile authorization devices, different authorization information is stored in each mobile authorization device, and different managers take care of and operate the mobile authorization devices;
when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information are both high, the data decryption module also acquires the authorization information in the plurality of mobile authorization devices through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifies the authorization information.
Further, the medical data security management and control system further comprises:
and the administrator configuration module is used for setting the administrator corresponding to the advanced patient medical information.
Further, the medical data security management and control system further comprises:
and the administrator random configuration module is used for randomly selecting a plurality of administrators from a plurality of administrators as corresponding administrators when the patient medical information with the high encryption level is stored in the data storage module, and is also used for randomly redistributing all the patient medical information with the high encryption level in the data storage module at preset time intervals.
The medical data security management and control system has the advantages that the medical data security management and control system can carry out hierarchical encryption on the medical information of the patient, and the security performance of the medical information of the patient is improved.
The medical data security management and control system has the advantages that when the medical information of the patient is decrypted, different decryption means are adopted according to the medical information of the patient with different grades, and the confidentiality of the medical information of the patient is further improved.
Drawings
Fig. 1 is a schematic diagram of a medical data security management and control system according to the present invention.
Detailed Description
The invention is described in detail below with reference to the figures and the embodiments.
Fig. 1 shows a medical data security management and control system according to the present invention, which is used for performing security management on medical data of a patient in the medical system. The medical data safety management and control system comprises: the device comprises a data input module, a level setting module, an encryption configuration module, a data encryption module and a data storage module.
The data input module is used for inputting medical information of a patient to be encrypted. After a doctor treats a patient, medical information of the patient is input into the medical data safety management and control system through the data input module for encrypted storage.
The level setting module is used for setting encryption levels of the input medical information of the patient, and the encryption configuration module is used for configuring information encryption rules corresponding to different encryption levels. It can be understood that the medical data of the patient is private information, and the medical information of the patient can be divided into different security levels according to the symptoms of the patient and the medical means adopted in the treatment process, the different security levels also correspond to different encryption levels, and the medical data security management and control system adopts different encryption means according to the corresponding encryption. The encryption configuration module is used to set the matching encryption rules for different encryption levels. Furthermore, the data encryption module acquires the corresponding information encryption rule from the level setting module according to the encryption level set by the level setting module to encrypt the input patient medical information. The data storage module is used to store encrypted user medical data, which is typically a database.
As a preferred embodiment, the patient medical information entered via the data entry module comprises a plurality of information dimensions. It will be appreciated that the patient medical information may include information in multiple dimensions, such as patient name, age, blood type, identification number, home address, marital status, allergy history, and medical procedure, and that privacy measures may be different for different dimensions of information. Specifically, according to the actual situation of the patient, the doctor sets the corresponding medical information of the patient to three different encryption levels, namely a high level, a middle level and a low level, through the level setting module. For different grades of patient medical information, the following settings are performed by the encryption configuration module. The information encryption rule configured for the patient medical information with the low encryption level through the encryption configuration module is used for encrypting the information of a first dimension in the patient medical information, the information encryption rule configured for the patient medical information with the medium encryption level is used for encrypting the information of a second dimension in the patient medical information, and the information encryption rule configured for the patient medical information with the high encryption level is used for encrypting the information of a third dimension in the patient medical information. Wherein, the first dimension, the second dimension and the third dimension all contain a plurality of information dimensions. And the second dimension is greater than and completely encompasses the first dimension and the third dimension is greater than and completely encompasses the second dimension. For example, assuming that the patient medical information contains A, B, C, D, E, F, G, H, I, J information in eight dimensions, the first dimension may be A, B, C, D, the second dimension may be A, B, C, D, E, F, and the third dimension may be A, B, C, D, E, F, H, I. It can be seen that the higher the encryption level, the more dimensionality of the information that needs to be encrypted for the patient medical information. The encryption dimensions corresponding to different levels can be set and adjusted according to actual conditions. The data encryption module encrypts the corresponding information dimension in the patient medical information according to the encryption level of the patient medical information. For example, if the level of the patient medical information that needs to be encrypted currently is medium, A, B, C, D, E, F dimensions of information in the patient medical information are encrypted.
As a preferred embodiment, the medical data security management and control system further includes: the device comprises an identity setting module, a data query module, a data decryption module and a data display module.
The identity setting module is used for setting the identity level of the user. The user is a doctor of the medical system and the identity level comprises a high level, a medium level and a low level corresponding to the encryption level of the patient's medical information. And the data query module is used for a user to query and call the encrypted patient medical information from the data storage module. The doctor inquires and calls the relevant patient medical information from the data storage module by inputting key words, patient numbers and the like. The searched patient medical data cannot be directly checked, and the patient medical information inquired by the user needs to be decrypted through the data decryption module. And the data display module is used for displaying the decrypted data to the inquired user.
The data decryption module is used for completely decrypting the medical information of the patient when judging that the identity level of the user is greater than or equal to the encryption level of the medical information of the patient inquired by the user, and decrypting the encrypted information corresponding to the identity level of the user in the medical information of the patient when judging that the identity level of the user is less than the encryption level of the medical information of the patient inquired by the user. It will be appreciated that the higher the level of physician identity, the more comprehensive the patient medical data can be viewed. As long as the identity level of the user is greater than or equal to the encryption level of the patient medical information inquired by the user, the data decryption module completely decrypts the patient medical information, so that a doctor can see all the decrypted patient medical information of the patient. When the doctor's rating is less than the encryption rating of the patient's medical information, the data decryption module decrypts only the portion that the doctor can view. For example, the doctor's identity level is medium, while the patient's medical information that he wants to view is high. A, B, C, D, E, F, H, I in the medical information of the patient in the data storage module are all in an encrypted state, and the data decryption module decrypts only A, B, C, D, E, F in the medical information of the patient and keeps the encrypted state of H, I. Thus, H, I in the patient medical information ultimately available to the physician is not viewable.
As a preferred embodiment, the medical data security management and control system further includes: the device comprises a position acquisition module and a position configuration module. The position acquisition module is used for positioning the current first position information of the data encryption module. The position configuration module is used for configuring a secure decryption area capable of decrypting. And the data decryption module performs decryption operation after recognizing that the first location information is included in the secure decryption area.
It will be appreciated that the database is typically stored at a designated location. In order to prevent the database of the medical system from being stolen, thereby causing the loss of private data, in the application, a security decryption area is set for the place where the database is located. The 200m range around the database may be set as the secure decryption area in consideration of the positioning accuracy. Before calling and decrypting the data each time, the data decryption module judges whether the database is in the safe decryption area. The confidential operation is performed only if the first location information is contained within the secure decryption area.
As a preferred embodiment, the medical data security management and control system further includes: and an auxiliary decryption module. The auxiliary decryption module is used for accessing the mobile authorization equipment to decrypt the medical information of the patient with the advanced encryption level by the auxiliary data decryption module, and the authorization information is stored in the mobile authorization equipment and is kept and operated by management personnel. When the data decryption module judges that the identity level of the user and the encryption level of the patient medical information inquired by the user are both high, the data decryption module also acquires the authorization information in the mobile authorization equipment connected to the data decryption module through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifying the authorization information.
It will be appreciated that for advanced patient medical information, to further improve its security, a mobile authorization device held by the hospital administrator is provided to assist in the decryption. When advanced patient medical information needs to be unlocked, a manager is required to connect the mobile authorization device to the auxiliary decryption module. In this way, the data decryption module can acquire the authorization information in the mobile authorization device connected thereto through the auxiliary decryption module. And then, the data decryption module decrypts the medical information of the patient after recognizing that the first position information is contained in the security decryption area and verifying the authorization information. In the application, the manager can connect the mobile authorization device to the auxiliary decryption module directly or through network transmission.
In a preferred embodiment, the mobile authorization apparatus is provided with a locator for locating the second location information of the mobile authorization apparatus. When the data decryption module judges that the identity level of the user and the encryption level of the medical information of the patient are both high, the data decryption module also acquires the authorization information and the second position information in the mobile authorization equipment through the auxiliary decryption module, and decrypts the medical information of the patient after recognizing that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information.
It is to be understood that in order to avoid theft of the mobile authorization apparatus, the scope of use of the mobile authorization apparatus may be defined in the present application. Specifically, a localizer capable of being located is arranged in the mobile authorization device. In this way, each time the mobile authorization device is connected to the auxiliary decryption module, the authorization information in the mobile authorization device is sent to the system, and the second position information located by the locator is also sent to the system. The data decryption module decrypts the medical information of the patient after recognizing that the first position information and the second position information are both contained in the security decryption area and the authorization information is verified.
As a preferred embodiment, the medical data security management and control system further includes: and an authorization request module. The authorization request module is used for sending authorization request information to a patient corresponding to the patient medical information and receiving confirmation information fed back by the patient when the encryption level of the patient medical information inquired by the user is high. The data decryption module is used for acquiring the confirmation information received by the authorization request module when judging that the identity level of the user and the encryption level of the patient medical information are both high, and decrypting the patient medical information after identifying that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information and the confirmation information.
It will be appreciated that some VIP client patients do not wish their own medical information to be abused. For the client with the requirement, when the corresponding patient medical information needs to be checked, the medical data security management and control system sends authorization request information to the client (such as a mobile phone) through the authorization request module, and if the patient agrees to call the information, confirmation information is returned. Thus, the decryption module decrypts the medical information of the patient after recognizing that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information and the confirmation information.
As a preferred embodiment, the medical data security management and control system further includes: and the equipment unlocking module. The device unlocking module is used for releasing the position limit of the mobile authorization device. When the position limitation of the mobile authorization equipment is removed through the equipment unlocking module, the data decryption module obtains the authorization information in the mobile authorization equipment through the auxiliary decryption module when the data decryption module judges that the identity level of the user and the encryption level of the medical information of the patient are both high, and decrypts the medical information of the patient after recognizing that the first position information is contained in the security decryption area and verifying the authorization information and the confirmation information.
It is understood that there is a case where a manager holding the mobile authorization apparatus is out of the secure decryption area, for example, on business. In order to not affect the normal operation of the medical data security management and control system, when a manager holding the mobile authorization equipment needs to go on a business trip, the position limitation of the mobile authorization equipment held by the manager can be released through the equipment unlocking module. Thus, the data decryption module will not verify the second location information of the mobile authorization device when decrypting within the period defined by the contact location.
In a preferred embodiment, the auxiliary decryption module accesses a plurality of mobile authorization devices at the same time, and each mobile authorization device stores different authorization information and is kept and operated by different managers. When the data decryption module judges that the identity level of the user and the encryption level of the patient medical information are both high, the data decryption module also acquires the authorization information in the plurality of mobile authorization devices through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifies the authorization information.
It is understood that the administrator in the medical system may be set up as a plurality of persons. Thus, each manager is required to connect the mobile authorization device it holds to the auxiliary decryption module each time a decryption operation is performed. Only if each mobile authorization device is authenticated, the unlocking operation is executed.
As an optional implementation, the medical data security management and control system further includes: an administrator configuration module. The administrator configuration module is used for setting an administrator corresponding to advanced patient medical information. It will be appreciated that the manager may not be the stationary person or persons. The medical system is divided into different departments, and the corresponding managers of each department can be different and the number of the managers is also not fixed. When a doctor uploads patient medical information, if the patient medical information is high-grade, a manager corresponding to the patient medical information needs to be set according to actual conditions. Thus, when the medical information of the patient is viewed in the future, the management personnel needing to be set up can assist in decrypting the data through the held mobile authorization equipment.
As an optional implementation, the medical data security management and control system further includes: the administrator randomly configures the module. The administrator random configuration module randomly selects a plurality of administrators as administrators corresponding to the stored advanced patient medical information from the plurality of administrators when the patient medical data of which the encryption level is advanced is stored in the data storage module. And the administrator random configuration module also carries out random reassignment on all the patient medical information with high encryption levels in the data storage module at intervals.
Compared with the method for configuring the corresponding administrator by the doctor, the processing method of the embodiment further improves the confidentiality and prevents the administrators in the same department from getting through and jointly stealing the patient data. For example, the medical system has a total of 10 management personnel, and when the patient medical information with a high encryption level is stored in the data storage module for the first time, the administrator randomly configures the module to randomly allocate three management personnel for the patient medical information. At regular intervals, such as half a month, the administrator randomly configures the module to reassign three administrators for all encryption levels in the data storage module for advanced patient medical information. Thus, the administrator to which the patient medical information originally corresponds will no longer be the administrator of the patient medical information. Therefore, certain managers can not manage fixed patient medical information for a long time, and the condition of guarding against self-theft is avoided.
The foregoing illustrates and describes the principles, general features, and advantages of the present invention. It should be understood by those skilled in the art that the above embodiments do not limit the present invention in any way, and all technical solutions obtained by using equivalent alternatives or equivalent variations fall within the scope of the present invention.

Claims (10)

1. A medical data safety management and control system is characterized by comprising:
the data input module is used for inputting the medical information of the patient to be encrypted;
the level setting module is used for carrying out encryption level setting on the input medical information of the patient;
the encryption configuration module is used for configuring information encryption rules corresponding to different encryption levels;
the data encryption module is used for acquiring a corresponding information encryption rule from the level setting module according to the encryption level set by the level setting module to encrypt the input medical information of the patient;
and the data storage module is used for storing the encrypted medical data of the user.
2. The medical data security management and control system according to claim 1,
the patient medical information entered by the data entry module comprises a plurality of information dimensions;
the encryption levels set by the level setting module comprise a high level, a middle level and a low level;
encrypting information of a first dimension in the patient medical information by using an information encryption rule configured by the encryption configuration module aiming at the patient medical information with a low encryption level, wherein the first dimension comprises a plurality of information dimensions;
encrypting information of a second dimension in the patient medical information by an information encryption rule configured by the encryption configuration module aiming at the patient medical information with a middle encryption level, wherein the second dimension comprises a plurality of information dimensions;
encrypting information of a third dimension in the patient medical information by an information encryption rule configured by the encryption configuration module aiming at the patient medical information with an advanced encryption level, wherein the third dimension comprises a plurality of information dimensions;
wherein the second dimension is greater than and entirely encompasses the first dimension and the third dimension is greater than and entirely encompasses the second dimension;
and the data encryption module encrypts the corresponding information dimension in the patient medical information according to the encryption grade of the patient medical information.
3. The medical data security management and control system according to claim 2,
the medical data safety management and control system further comprises:
the identity setting module is used for setting the identity level of the user, and the identity level comprises a high level, a middle level and a low level corresponding to the encryption level;
the data query module is used for a user to query and call the encrypted patient medical information from the data storage module;
the data decryption module is used for decrypting the patient medical information inquired by the user;
the data decryption module is used for completely decrypting the patient medical information when the identity level of the user is judged to be larger than or equal to the encryption level of the patient medical information inquired by the user;
and the data display module is used for displaying the decrypted data to the inquired user.
4. The medical data security management and control system according to claim 3,
and the decryption module decrypts the encrypted information corresponding to the identity level of the user in the patient medical information when the identity level of the user is judged to be smaller than the encryption level of the patient medical information inquired by the decryption module.
5. The medical data security management and control system according to claim 4,
the medical data safety management and control system further comprises:
the position acquisition module is used for positioning the current first position information of the data encryption module;
the position configuration module is used for configuring a safe decryption area capable of decrypting;
and the data decryption module carries out decryption operation after recognizing that the first position information is contained in the secure decryption area.
6. The medical data security management and control system according to claim 5,
the medical data safety management and control system further comprises:
the auxiliary decryption module is used for accessing mobile authorization equipment to assist the data decryption module in decrypting the patient medical information with the advanced encryption level, and authorization information is stored in the mobile authorization equipment and is kept and operated by management personnel;
when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information inquired by the data decryption module are both high, the data decryption module also acquires the authorization information in the mobile authorization equipment connected to the data decryption module through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifying the authorization information.
7. The medical data security management and control system according to claim 6,
the mobile authorization equipment is provided with a locator used for locating second position information of the mobile authorization equipment;
when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information are both high, the data decryption module also acquires the authorization information and the second position information in the mobile authorization device through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information.
8. The medical data security management system according to claim 7,
the medical data safety management and control system further comprises:
the authorization request module is used for sending authorization request information to a patient corresponding to the patient medical information and receiving confirmation information fed back by the patient when the encryption level of the patient medical information inquired by the user is high;
the data decryption module further acquires the confirmation information received by the authorization request module when the identity level of the user and the encryption level of the patient medical information are judged to be high, and decrypts the patient medical information after recognizing that the first position information and the second position information are both contained in the security decryption area and verifying the authorization information and the confirmation information.
9. The medical data security management and control system according to claim 8,
the medical data safety management and control system further comprises:
a device unlocking module for releasing the position restriction of the mobile authorization device;
when the position limitation of the mobile authorization equipment is removed through the equipment unlocking module, the data decryption module obtains the authorization information in the mobile authorization equipment through the auxiliary decryption module when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information are both high, and decrypts the patient medical information after recognizing that the first position information is contained in the safety decryption area and verifying the authorization information and the confirmation information.
10. The medical data security management and control system according to claim 6,
the auxiliary decryption module is simultaneously accessed to a plurality of mobile authorization devices, different authorization information is stored in each mobile authorization device, and different managers keep and operate the mobile authorization devices;
when the data decryption module judges that the identity level of the user and the encryption level of the patient medical information are both high, the data decryption module also acquires authorization information in the plurality of mobile authorization devices through the auxiliary decryption module, and decrypts the patient medical information after recognizing that the first position information is contained in the security decryption area and verifying the authorization information.
CN202111406243.1A 2021-11-24 2021-11-24 Medical data safety management and control system Pending CN114121197A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111406243.1A CN114121197A (en) 2021-11-24 2021-11-24 Medical data safety management and control system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111406243.1A CN114121197A (en) 2021-11-24 2021-11-24 Medical data safety management and control system

Publications (1)

Publication Number Publication Date
CN114121197A true CN114121197A (en) 2022-03-01

Family

ID=80372099

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111406243.1A Pending CN114121197A (en) 2021-11-24 2021-11-24 Medical data safety management and control system

Country Status (1)

Country Link
CN (1) CN114121197A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116383861A (en) * 2023-06-07 2023-07-04 上海飞斯信息科技有限公司 Computer security processing system based on user data protection
CN116910828A (en) * 2023-09-13 2023-10-20 合肥工业大学 Intelligent medical picture information security processing method and system

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116383861A (en) * 2023-06-07 2023-07-04 上海飞斯信息科技有限公司 Computer security processing system based on user data protection
CN116383861B (en) * 2023-06-07 2023-08-18 上海飞斯信息科技有限公司 Computer security processing system based on user data protection
CN116910828A (en) * 2023-09-13 2023-10-20 合肥工业大学 Intelligent medical picture information security processing method and system
CN116910828B (en) * 2023-09-13 2023-12-19 合肥工业大学 Intelligent medical picture information security processing method and system

Similar Documents

Publication Publication Date Title
EP2731042B1 (en) Computer system for storing and retrieval of encrypted data items using a tablet computer and computer-implemented method
US20210246824A1 (en) Method and apparatus for securing communications using multiple encryption keys
US6789195B1 (en) Secure data processing method
US6360322B1 (en) Automatic recovery of forgotten passwords
CN110049016B (en) Data query method, device, system, equipment and storage medium of block chain
CN103458382B (en) Hardware encryption transmission and storage method and system for mobile phone private short message
EP2671181B1 (en) Secure access to personal health records in emergency situations
US9165149B2 (en) Use of a mobile telecommunication device as an electronic health insurance card
CN109243553A (en) Medical data processing method, system, computer equipment and readable storage medium storing program for executing
CN114121197A (en) Medical data safety management and control system
WO2002006948A1 (en) Method for protecting the privacy, security, and integrity of sensitive data
US20140156988A1 (en) Medical emergency-response data management mechanism on wide-area distributed medical information network
CN111222167A (en) Private data access method based on block chain and explicit authorization mechanism
JPH09282393A (en) Cooperation method for health insurance medical care card and on-line data base
EP2988291B1 (en) Method, system and computer program for personal data sharing
CN115547441B (en) Safety acquisition method and system based on personal health medical data
JPH09139735A (en) Ciphering data communication system
CN108564989B (en) Medical data comparison system
KR101047140B1 (en) Unmanned Medical Reception and Information Service System Using Fingerprint Recognition and Its Methods
Nagamani et al. A mobile cloud-based approach for secure m-health prediction application
CN109979555A (en) A kind of medical record data managing method
WO2009153974A1 (en) Data management system, data management method, and computer program
EP1290531A2 (en) Network agent password storage and retrieval scheme
JP2004102524A (en) Security system and security method for database
JP2009181551A (en) Information management system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination