CN117914813A - Medical sensitive information processing method and system - Google Patents
Medical sensitive information processing method and system Download PDFInfo
- Publication number
- CN117914813A CN117914813A CN202311851719.1A CN202311851719A CN117914813A CN 117914813 A CN117914813 A CN 117914813A CN 202311851719 A CN202311851719 A CN 202311851719A CN 117914813 A CN117914813 A CN 117914813A
- Authority
- CN
- China
- Prior art keywords
- data
- transmitted
- medical
- sensitive
- sensitive information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 230000010365 information processing Effects 0.000 title claims abstract description 23
- 238000003672 processing method Methods 0.000 title claims abstract description 18
- 238000012545 processing Methods 0.000 claims abstract description 26
- 238000000034 method Methods 0.000 claims abstract description 24
- 238000012546 transfer Methods 0.000 claims abstract description 23
- 230000006798 recombination Effects 0.000 claims abstract description 8
- 238000005215 recombination Methods 0.000 claims abstract description 8
- 230000008521 reorganization Effects 0.000 claims description 24
- 230000000903 blocking effect Effects 0.000 claims description 13
- 238000005192 partition Methods 0.000 claims description 6
- 238000000586 desensitisation Methods 0.000 claims description 4
- 230000008520 organization Effects 0.000 claims description 4
- 238000004364 calculation method Methods 0.000 abstract description 6
- 230000007246 mechanism Effects 0.000 abstract description 5
- 238000004590 computer program Methods 0.000 description 11
- 238000010586 diagram Methods 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 7
- 230000005540 biological transmission Effects 0.000 description 6
- 230000008569 process Effects 0.000 description 5
- 238000004891 communication Methods 0.000 description 4
- 230000006870 function Effects 0.000 description 4
- 230000035945 sensitivity Effects 0.000 description 4
- 230000008901 benefit Effects 0.000 description 2
- 238000007405 data analysis Methods 0.000 description 2
- 230000008030 elimination Effects 0.000 description 2
- 238000003379 elimination reaction Methods 0.000 description 2
- 230000036541 health Effects 0.000 description 2
- 238000013515 script Methods 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000013473 artificial intelligence Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000013079 data visualisation Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 239000003814 drug Substances 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000009545 invasion Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000001575 pathological effect Effects 0.000 description 1
- 230000000630 rising effect Effects 0.000 description 1
- 238000000638 solvent extraction Methods 0.000 description 1
- 230000036642 wellbeing Effects 0.000 description 1
Landscapes
- Medical Treatment And Welfare Office Work (AREA)
Abstract
The invention relates to a medical sensitive information processing method and a system, wherein the method comprises the steps of finding first sensitive information in medical data to be transmitted; the medical data to be transmitted are segmented and reorganized to obtain a plurality of reorganized data; the target server performs inverse recombination and recombination block on the recombined data to obtain the current medical data to be transmitted; the invention combines the first sensitive information discovery mechanism positioned on the user terminal and the second sensitive information discovery mode positioned on the transfer equipment under the condition that the processing capacity of the user terminal is limited and the transfer equipment has certain conventional processing capacity, fully utilizes the data characteristics of medical data, increases the processing capacity of the medical sensitive information in a transparent mode on the basis of basically not increasing the calculation cost, has strong compatibility and is simple to realize.
Description
[ Field of technology ]
The invention belongs to the technical field of intelligent medical treatment, and particularly relates to a medical sensitive information processing method and system.
[ Background Art ]
The intelligent medical treatment is a medical service mode which integrates technologies such as Internet of things and cloud computing and takes patient data as a center. The novel sensor, the Internet of things, the communication and other technologies are combined with modern medical ideas in intelligent medical treatment, an area medical information platform centering on the electronic health files is constructed, business processes among hospitals are integrated, area medical resources are optimized, on-line appointment and two-way transfer of cross medical institutions are realized, patient treatment processes are shortened, relevant procedures are reduced, medical resources are reasonably distributed, and intelligent medical treatment centering on patients is truly achieved. In the near future, the medical industry will incorporate more artificial intelligence, sensing technology and other high technologies, so that the medical service is truly intelligent, and the prosperous development of medical industry is promoted. Smart medicine is moving into the lives of ordinary people. The intelligent hospital data processing method has the advantages that a whole set of medical big data solution is provided, a hospital data center is built, report automation, data visualization, data real-time sharing, self-service data analysis and the like are achieved, the intelligent hospital is assisted in fine operation, and the intelligent hospital is realized. Aiming at the problems of health, well-being, community medical treatment and the like of the old, the intelligent medical treatment utilizes the organic combination of information and medical treatment to realize the interaction between the patient and medical staff, medical institutions and medical equipment, and provides technical support for effectively improving the medical quality, improving the medical service flow and preventing the rising of medical cost.
It can be seen that the implementation of intelligent medical treatment is not separated from a big data platform, big data transmission and big data analysis; the use of new technologies entails new security risks. In addition, the high value nature of medical data attracts a large number of attackers to attempt to gain advantage by acquiring medical sensitive data. The emerging online medical service platform has more prominent business security risk, which may cause a large amount of sensitive medical data to be leaked, and especially, the online medical service platform has various logic loopholes generally, which may cause sensitive data such as patient identity, information of treatment and the like to be leaked. The medical internet asset sensitive ports are more open, and the core business assets are directly exposed to the outside, so that the risks of invasion and attack are present. How to fully utilize the advanced technology of intelligent medical treatment and ensure the safety of data, especially the safety of sensitive medical data is important.
The invention combines the first sensitive information discovery mechanism on the user terminal and the second sensitive information discovery mode on the transfer equipment under the condition of considering the limited processing capacity of the user terminal, fully utilizes the data characteristics of medical data, increases the processing capacity of the medical sensitive information in a transparent mode on the basis of basically not increasing the calculation cost, has strong compatibility and is simple to realize.
[ Invention ]
In order to solve the above-mentioned problems in the prior art, the present invention proposes a medical sensitive information processing method and system, the method comprising:
Step S1: the user terminal acquires current medical data to be transmitted; comparing the current medical data to be transmitted with a locally stored sensitive label combination set to find out first sensitive information in the medical data to be transmitted; wherein: the sensitive label combination set comprises one or more sensitive label combinations; specific: configuring a sensitive label combination set on a user terminal; acquiring all label types of medical data to be transmitted; judging whether a label type set formed by all label types is matched with any sensitive label combination in a sensitive label combination set, if so, determining that first sensitive information exists in medical data to be transmitted, dividing the medical data to be transmitted into a plurality of blocks based on the matched sensitive label combination, and putting the blocks into a division completion set, so that the matched sensitive label combination does not exist in the corresponding sensitive label type set for any block in the division completion set; otherwise, determining that the first sensitive information does not exist and putting the medical data to be transmitted into the division completion set as a block;
Judging whether the label type set formed by all the label types is matched with any sensitive label combination in the sensitive label combination set or not, specifically: if the label type set contains all the sensitive labels in one sensitive label combination, the label type set is considered to be matched with the sensitive label combination;
Step S2: the user terminal reorganizes each piece of block data in the partition completion set according to the label type set of each block to obtain a plurality of reorganized data, so that each block is in different reorganized data; organizing and transmitting each recombined data by using unused data packets to be transmitted to the transfer equipment;
The user terminal collects reorganization of the cooperative data according to the label type of each block to obtain a plurality of reorganized data, specifically: reorganizing current blocks of medical data to be transmitted and non-current blocks of medical data to be transmitted to form data packets to be transmitted; the reorganized current blocks of the medical data to be transmitted are respectively positioned in different data packets to be transmitted;
Step S3: after receiving the data packet to be transmitted, the transfer equipment encrypts, checks or desensitizes the local data of the data packet to be transmitted, and then sends the data packet to the destination server in the original organization mode of the data packet to be transmitted; the method comprises the following steps: after verifying the reconstruction data, the transfer equipment analyzes the content of the reconstruction data to find second sensitive information in the reconstruction data; data encryption is carried out on the second sensitive information or the whole reorganized data; the sensitive data in the data are subjected to desensitization and then still sent to a destination server in a data packet to be transmitted;
Step S4: after receiving the data packet to be transmitted, the destination server performs inverse recombination on the recombined data in the data packet to obtain blocks aiming at different medical data to be transmitted; after all the blocks corresponding to the current medical data to be transmitted are received, re-blocking the blocks obtained after the inverse recombination to obtain the current medical data to be transmitted; specific: the destination server obtains the recombined data in the data packet after receiving the data packet to be transmitted; performing inverse reorganization according to reorganization mode of reorganization data to obtain one or more current blocks of medical data to be transmitted; the method comprises the steps of performing a block combination mode opposite to a block division mode on blocks to obtain current to-be-transmitted medical data;
The blocking is carried out in a blocking combination mode opposite to the blocking division so as to obtain the current data to be transmitted; the method comprises the following steps: the block identification comprises the medical data identification to be transmitted and the block number thereof; and acquiring all the blocks aiming at the same medical data identifier to be transmitted according to the block identifier, deleting the data parts corresponding to the repeated labels among all the blocks in the divided set, and reorganizing the data to obtain the medical data to be transmitted.
Further, the tag includes one of a data dimension, an attribute, a field, a type, or a combination thereof.
Further, for a tag type set, there are one or more matching sensitive tag combinations.
Further, the update of the sensitive label combination set is performed periodically.
Further, the user includes doctors, patients, and medical institution management personnel.
A medical sensitive information processing system, comprising: the system comprises a user terminal, transfer equipment and a destination server; the system is used for realizing the medical sensitive information processing method.
Further, the relay device is a portal of a local area network of the medical institution.
A big data server for running a program, wherein the program runs to execute the medical sensitive information processing method.
A computer-readable storage medium comprising a program which, when run on a computer, causes the computer to perform the medical sensitive information processing method.
A cloud server configured to perform the medical sensitive information processing method.
The beneficial effects of the invention include:
(1) Under the condition that the processing capacity of the user terminal is limited and the transfer equipment has certain conventional processing capacity, a first sensitive information discovery mechanism positioned on the user terminal is combined with a second sensitive information discovery mode positioned on the transfer equipment, so that the data characteristics of medical data are fully utilized, and the processing capacity of the medical sensitive information is increased in a transparent mode on the basis of basically not increasing the calculation cost;
Furthermore, by combining the blocking and reorganizing of the medical data to be transmitted, the communication overhead is not increased while the calculation overhead is not increased, and a basis for efficient implementation is provided for the discovery and elimination of the first sensitive information combined with the second sensitive information;
(2) The first sensitive information is found by setting the sensitive label combination set, the setting mode is simple and convenient to update, and the sensitive label combination set can be organically combined with medical service providing software; and further, based on the minimum cost division of the label type set by the sensitive label combination, an optimal division mode capable of eliminating the first sensitive information is found under the guidance of the target value, so that the division of the medical data to be transmitted is completed efficiently.
[ Description of the drawings ]
The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this specification, illustrate and together with the description serve to explain the application, if necessary:
fig. 1 is a schematic diagram of a medical sensitive information processing method provided by the invention.
[ Detailed description ] of the invention
The present invention will now be described in detail with reference to the drawings and the specific embodiments thereof, wherein the exemplary embodiments and the description are for the purpose of illustrating the invention only and are not to be construed as limiting the invention.
Based on the same inventive concept, as shown in fig. 1, the invention provides a medical sensitive information processing method, which comprises the following steps:
Step S1: the user terminal acquires current medical data to be transmitted; comparing the current medical data to be transmitted with a locally stored sensitive label combination set to find out first sensitive information in the medical data to be transmitted; wherein: the sensitive label combination set comprises one or more sensitive label combinations; specific: configuring a sensitive label combination set on a user terminal; acquiring all label types of medical data to be transmitted; judging whether a label type set formed by all label types is matched with any sensitive label combination in a sensitive label combination set, if so, determining that first sensitive information exists in medical data to be transmitted, dividing the medical data to be transmitted into a plurality of blocks based on the matched sensitive label combination, and putting the blocks into a division completion set, so that the matched sensitive label combination does not exist in the corresponding sensitive label type set for any block in the division completion set; otherwise, determining that the first sensitive information does not exist and putting the medical data to be transmitted into the division completion set as a block; wherein: the tag includes one of a data dimension, attribute, field, type, or a combination thereof; for medical data, if only name or mobile phone number is related to information sensitivity in one transmission, the information is not afraid of losing and tampering, but when the name or mobile phone number and the information are positioned in the same data packet, the information has sensitivity, and space for use and action is provided when the name or mobile phone number is lost at the same time; under the condition that the current information is seriously divulged, the name and the mobile phone number are acquired to a certain extent, but when the name, the mobile phone, the case and even the pathological image are acquired at the same time, the information is sensitive to the user, and the first sensitive information is formed; but when name and mobile phone are used as a block and name and case are used as a block to be sent separately, the first sensitive information disappears; the sensitivity of the first sensitive information is broken through a simple blocking process; of course, the block mode needs to consider the original organization mode of the medical data to be transmitted, and when the last name is a key value, the medical data may need to be divided into different blocks, so that the information has the space and convenience of anti-block operation;
Judging whether the label type set formed by all the label types is matched with any sensitive label combination in the sensitive label combination set or not, specifically: if the label type set contains all the sensitive labels in one sensitive label combination, the label type set is considered to be matched with the sensitive label combination; obviously, for a tag type set, the matched sensitive tag combinations can be one or more;
The matching-based sensitive tag combination divides medical data to be transmitted into a plurality of blocks and puts the blocks into a division completion set, and specifically comprises the following steps:
Step S1A1: acquiring an unprocessed to-be-processed block with matched sensitive label combination from the to-be-processed block set; setting a to-be-processed partition set comprising to-be-processed partitions formed by medical data to be transmitted under an initial condition; if the unprocessed to-be-processed block does not exist, ending;
Step S1A2: attempting to divide medical data to be transmitted into J sub-blocks according to an ith dividing mode aiming at the sub-blocks to be processed; such that there is at least one difference label between the plurality of sub-blocks, the difference label not occurring in all sub-blocks or only occurring in any sub-block; wherein: i is the division number; for example: under the condition that the number of the sub-blocks is 2, the first sub-block is provided with a contact way label after the sub-blocks are divided, and the second sub-block is not provided with the contact way label; wherein: the first sub-block and the second sub-block are overlapped with or without data;
preferably: presetting a dividing mode corresponding to all label type sets contained in each to-be-processed block;
Step S1A3: determining the matching number N i,j of the sensitive label combinations matched with the label type set of the j sub-block and the sensitive label combination set and the block size Sz i,j of the j sub-block; wherein: j is from 1 to J;
Step S1A4: calculating a target value of the ith division mode; determining a partitioning mode with the minimum target value, and obtaining a corresponding sub-partition; if any sub-block in the sub-blocks still has the matched sensitive label combination, the sub-block is put into a to-be-processed block set, otherwise, the sub-block is put into a division completion set to be used as the obtained block; returning to the step S1A1;
The calculating the target value O i of the ith division mode specifically includes: calculating a target value according to the matching number N i,j and the block size Sz i,j; further: calculating a target value O i by adopting a formula (1); wherein: alpha is the average coefficient;
Oi=α×∑jNi,j×∑jSzi,j (1);
alternatively, the following is used: calculating a target value Oi by adopting a formula (2);
Preferably: the configuration information of the medical data transmission software comprises a sensitive label combination set; when the medical data transmission software is configured, the configuration of the sensitive label combination set is performed; further, the medical data transmission software is medical service platform software, medical service information inquiry software and the like;
preferably: periodically updating the sensitive label combination set;
preferably: the users comprise doctors, patients, medical institution management personnel and the like;
It can be seen that the first sensitive information is discovered by setting the sensitive label combination set, the setting mode is simple and convenient to update, and the first sensitive information can be organically combined with medical service providing software; further, based on the minimum cost division of the label type set by the sensitive label combination, an optimal division mode capable of eliminating the first sensitive information is found under the guidance of the target value, so that the division of the medical data to be transmitted is completed efficiently;
Step S2: the user terminal reorganizes each piece of block data in the partition completion set according to the label type set of each block to obtain a plurality of reorganized data, so that each block is in different reorganized data; organizing the recombined data by using a data packet to be transmitted and sending the recombined data to transfer equipment; obviously, if there is only one chunk for one medical data to be transmitted, it may not or does not participate in reorganization;
Alternatively, the following is used: the user terminal collects reorganization of the data according to the label type of each block to obtain a plurality of reorganized data, so that the label type set corresponding to the reorganized data obtained through reorganization does not increase or the reorganized data obtained after reorganization does not change the first sensitive information;
The user terminal collects reorganization of the cooperative data according to the label type of each block to obtain a plurality of reorganized data, specifically: reorganizing current blocks of medical data to be transmitted and non-current blocks of medical data to be transmitted to form data packets to be transmitted; the reorganized current blocks of the medical data to be transmitted are respectively positioned in different data packets to be transmitted;
Preferably: if the non-current medical data to be transmitted is not segmented, the current medical data to be transmitted is segmented into a buffer area to be transmitted to wait according with waiting conditions; waiting for non-current segments of medical data to be transmitted; wherein: the waiting condition is a waiting time length or the like;
Alternatively, the following is used: if the non-current sub-block of the medical data to be transmitted does not exist, filling default data in a specific position of the sub-block to form a data packet to be transmitted; specific locations are for example at the end of a block;
Step S3: after receiving the data packet to be transmitted, the transfer equipment encrypts, checks or desensitizes the local data of the data packet to be transmitted, and then sends the data packet to the destination server in the original organization mode of the data packet to be transmitted; the method comprises the following steps: after verifying the reconstruction data, the transfer equipment analyzes the content of the reconstruction data to find second sensitive information in the reconstruction data; data encryption is carried out on the second sensitive information or the whole reorganized data; optionally desensitizing sensitive data therein; then still send to the destination server in the form of waiting to transmit the data packet;
wherein: the transfer equipment is a medical institution gateway, a platform server to which medical data transmission software belongs, a big data server and the like; the destination server is a big data server, a database server and the like; the destination server can provide processing, inquiring, analyzing and the like of the medical data; the encryption of the data is a conventional encryption mode matched with the security level requirement of the data or matched with the sensitivity degree of the sensitive data; the operation of this step is a conventional sensitive data processing mode;
preferably: the desensitization is to delete, modify, blur sensitive data;
It can be seen that the data blocking and the reorganization thereof are inseparable, and by combining the medical data blocking and the reorganization to be transmitted, the communication overhead is not increased while the calculation overhead is not increased, and a high-efficiency implementation basis is provided for the discovery and elimination of the first sensitive information combined with the second sensitive information;
Step S4: after receiving the data packet to be transmitted, the destination server performs inverse recombination on the recombined data in the data packet to obtain blocks aiming at different medical data to be transmitted; after all the blocks corresponding to the current medical data to be transmitted are received, re-blocking the blocks obtained after the inverse recombination to obtain the current medical data to be transmitted; specific: the destination server obtains the recombined data in the data packet after receiving the data packet to be transmitted; performing inverse reorganization according to reorganization mode of reorganization data to obtain one or more current blocks of medical data to be transmitted; the method comprises the steps of performing a block combination mode opposite to a block division mode on blocks to obtain current to-be-transmitted medical data;
Preferably: each data packet to be transmitted also comprises a record of the reorganization mode of the data to be transmitted; performing a reorganization according to the reorganization mode of the record;
Performing inverse reorganization according to the reorganization mode of reorganization data to obtain blocks aiming at one or more current medical data to be transmitted; the method comprises the following steps: recording the medical data identification to be transmitted and the block number thereof in one piece of recombined data; organizing the blocks belonging to the same medical data to be transmitted together according to the medical data identification to be transmitted and the block numbers thereof to form all the blocks in the division completion set obtained in the step S1;
The blocking is carried out in a blocking combination mode opposite to the blocking division so as to obtain the current data to be transmitted; the method comprises the following steps: the block identification comprises the medical data identification to be transmitted and the block number thereof; acquiring all the blocks aiming at the same medical data identifier to be transmitted according to the block identifier, deleting the data parts corresponding to the repeated labels among all the blocks in the divided set, and reorganizing the data to obtain the medical data to be transmitted; for example: three tiles a.1 (L1, L2), a.2 (L1, L3), a.3 (L1, L4), wherein a is the medical data identification to be transmitted and 1,2,3 is the tile number; l1 to L4 are labels in the data; after the three blocks are obtained, deleting the repeated label L1 and reorganizing to obtain medical data to be transmitted, wherein the medical data comprises complete labels L1-L4; of course, an inverse division mode corresponding to the ith division mode can be preset, and the complete medical data to be transmitted can be obtained according to the inverse division mode;
Based on the same inventive concept, the present invention also provides a medical sensitive information processing system, the system comprising: the system comprises a user terminal, transfer equipment and a destination server; wherein: the user terminal is used for receiving the medical data to be transmitted; the processing capacity of the user equipment is quite limited, the processing capacity and the processing mode updating capacity of the user equipment for sensitive information are weak, and complex sensitive data processing is not always carried out directly; the transfer equipment is used for performing conventional encryption, checksum desensitization processing on the medical data to be transmitted so as to further transmit the medical data; the transfer equipment is often a portal of a safer local area network and has certain data processing capacity, the data is relatively safe in the local area network, and the safety is not guaranteed after the data is sent out, so that the transfer equipment is usually provided with a corresponding processing mechanism; the destination server can comprehensively process and use the medical data after receiving the medical data, and the destination server also comprises a high-level sensitive information processing mode; because the processing capability of the destination server is necessarily strongest, the medical data collected by the user terminal always finally goes to the destination server;
According to the invention, under the condition that the processing capacity of the user terminal is limited, the first sensitive information discovery mechanism positioned on the user terminal is combined with the second sensitive information discovery mode positioned on the transfer equipment, so that the data characteristics of medical data are fully utilized, and the processing capacity of the medical sensitive information is increased in a transparent mode on the basis of basically not increasing the calculation cost;
The terms "user terminal," "relay device," "destination server" encompass all kinds of apparatus, devices, and machines for processing data, including by way of example a programmable processor, a computer, a system-on-a-chip, or a plurality of or a combination of the foregoing. The apparatus can comprise dedicated logic circuits, such AS an FPGA (field programmable gate array) or an AS IC (application specific integrated circuit). In addition to hardware, the apparatus may include code to create an execution environment for the computer program, e.g., code that constitutes processor firmware, a protocol stack, a database management system, an operating system, a cross-platform runtime environment, a virtual machine, or a combination of one or more of the foregoing. The apparatus and execution environment may implement a variety of different computing model infrastructures, such as web services, distributed computing, and grid computing infrastructures.
A computer program (also known as a program, software application, script, or code) can be written in any form of programming language, including compiled or interpreted languages, declarative or procedural languages, and it can be deployed in any form, including as a stand-alone program or as a module, component, subroutine, object or other unit suitable for use in a computing environment. The computer program may, but need not, correspond to a file in a file system. A program can be stored in a portion of a file that holds other programs or data (e.g., one or more scripts stored in a markup language document), in a single file dedicated to the program, or in multiple coordinated files (e.g., files that store one or more modules, subroutines, or portions of code). A computer program can be deployed to be executed on one computer or on multiple computers at one site or distributed across multiple sites and interconnected by a communication network.
It will be appreciated by those skilled in the art that embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flowchart illustrations and/or block diagrams, and combinations of flows and/or blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Finally, it should be noted that: the above embodiments are only for illustrating the technical aspects of the present invention and not for limiting the same, and although the present invention has been described in detail with reference to the above embodiments, it should be understood by those of ordinary skill in the art that: modifications and equivalents may be made to the specific embodiments of the invention without departing from the spirit and scope of the invention, which is intended to be covered by the claims.
Claims (10)
1. A method of processing medical sensitive information, the method comprising:
Step S1: the user terminal acquires current medical data to be transmitted; comparing the current medical data to be transmitted with a locally stored sensitive label combination set to find out first sensitive information in the medical data to be transmitted; wherein: the sensitive label combination set comprises one or more sensitive label combinations; specific: configuring a sensitive label combination set on a user terminal; acquiring all label types of medical data to be transmitted; judging whether a label type set formed by all label types is matched with any sensitive label combination in a sensitive label combination set, if so, determining that first sensitive information exists in medical data to be transmitted, dividing the medical data to be transmitted into a plurality of blocks based on the matched sensitive label combination, and putting the blocks into a division completion set, so that the matched sensitive label combination does not exist in the corresponding sensitive label type set for any block in the division completion set; otherwise, determining that the first sensitive information does not exist and putting the medical data to be transmitted into the division completion set as a block;
Judging whether the label type set formed by all the label types is matched with any sensitive label combination in the sensitive label combination set or not, specifically: if the label type set contains all the sensitive labels in one sensitive label combination, the label type set is considered to be matched with the sensitive label combination;
Step S2: the user terminal reorganizes each piece of block data in the partition completion set according to the label type set of each block to obtain a plurality of reorganized data, so that each block is in different reorganized data; organizing and transmitting each recombined data by using unused data packets to be transmitted to the transfer equipment;
The user terminal collects reorganization of the cooperative data according to the label type of each block to obtain a plurality of reorganized data, specifically: reorganizing current blocks of medical data to be transmitted and non-current blocks of medical data to be transmitted to form data packets to be transmitted; the reorganized current blocks of the medical data to be transmitted are respectively positioned in different data packets to be transmitted;
Step S3: after receiving the data packet to be transmitted, the transfer equipment encrypts, checks or desensitizes the local data of the data packet to be transmitted, and then sends the data packet to the destination server in the original organization mode of the data packet to be transmitted; the method comprises the following steps: after verifying the reconstruction data, the transfer equipment analyzes the content of the reconstruction data to find second sensitive information in the reconstruction data; data encryption is carried out on the second sensitive information or the whole reorganized data; the sensitive data in the data are subjected to desensitization and then still sent to a destination server in a data packet to be transmitted;
Step S4: after receiving the data packet to be transmitted, the destination server performs inverse recombination on the recombined data in the data packet to obtain blocks aiming at different medical data to be transmitted; after all the blocks corresponding to the current medical data to be transmitted are received, re-blocking the blocks obtained after the inverse recombination to obtain the current medical data to be transmitted; specific: the destination server obtains the recombined data in the data packet after receiving the data packet to be transmitted; performing inverse reorganization according to reorganization mode of reorganization data to obtain one or more current blocks of medical data to be transmitted; the method comprises the steps of performing a block combination mode opposite to a block division mode on blocks to obtain current to-be-transmitted medical data;
The blocking is carried out in a blocking combination mode opposite to the blocking division so as to obtain the current data to be transmitted; the method comprises the following steps: the block identification comprises the medical data identification to be transmitted and the block number thereof; and acquiring all the blocks aiming at the same medical data identifier to be transmitted according to the block identifier, deleting the data parts corresponding to the repeated labels among all the blocks in the divided set, and reorganizing the data to obtain the medical data to be transmitted.
2. The medical sensitive information processing method of claim 1, wherein the tag comprises one of a data dimension, an attribute, a field, a type, or a combination thereof.
3. The medical sensitive information processing method according to claim 2, wherein for a tag type set, there are one or more matched sensitive tag combinations.
4. A method of medical sensitive information processing according to claim 3, wherein the updating of the set of sensitive tag combinations is done periodically.
5. The method of claim 4, wherein the user comprises a doctor, a patient, a medical facility manager.
6. A medical sensitive information processing system, comprising: the system comprises a user terminal, transfer equipment and a destination server; the system is for implementing the medical sensitive information processing method of any one of claims 1-5.
7. The medical sensitive information processing system of claim 6, wherein the relay device is a portal of a local area network of a medical facility.
8. A big data server for running a program, wherein the program is run to execute the medical sensitive information processing method according to any one of claims 1 to 5.
9. A computer-readable storage medium, comprising a program which, when run on a computer, causes the computer to perform the medical sensitive information processing method according to any one of claims 1 to 5.
10. A cloud server, characterized in that the cloud server is configured to perform the medical sensitive information processing method according to any one of claims 1-5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311851719.1A CN117914813A (en) | 2023-12-28 | 2023-12-28 | Medical sensitive information processing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311851719.1A CN117914813A (en) | 2023-12-28 | 2023-12-28 | Medical sensitive information processing method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117914813A true CN117914813A (en) | 2024-04-19 |
Family
ID=90689073
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311851719.1A Pending CN117914813A (en) | 2023-12-28 | 2023-12-28 | Medical sensitive information processing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117914813A (en) |
-
2023
- 2023-12-28 CN CN202311851719.1A patent/CN117914813A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109639652B (en) | Method and system for accessing internetwork data based on security isolation | |
| KR100750071B1 (en) | Method and system for sharing medical infomation | |
| CN108885899A (en) | Processing method, device and the electronic equipment of medical image transmission data | |
| CN106936793A (en) | A kind of information intercepting processing method and terminal | |
| US20130086247A1 (en) | Web page script management | |
| NZ793485A (en) | Systems and methods for facilitating clinical messaging in a network environment | |
| CN111274268A (en) | Internet of things data transmission method, device, medium and electronic equipment | |
| CN110719215B (en) | Flow information acquisition method and device of virtual network | |
| CN113452780B (en) | Access request processing method, device, equipment and medium for client | |
| CN113961245A (en) | Security protection system, method and medium based on micro-service application | |
| CN102761450A (en) | System, method and device for website analysis | |
| CN111464528A (en) | Network security protection method, system, computing device and storage medium | |
| JP2022094938A (en) | Method for monitoring and controlling data access, computer program, and security system agent equipment | |
| CN108710644A (en) | One kind is about government affairs big data processing method | |
| CN110650126A (en) | Method and device for preventing website traffic attack, intelligent terminal and storage medium | |
| US11017029B2 (en) | Data transfer system, data transfer apparatus, data transfer method, and computer-readable recording medium | |
| CN117914813A (en) | Medical sensitive information processing method and system | |
| CN114978649B (en) | Information security protection method, device, equipment and medium based on big data | |
| CN110881030A (en) | Logstack-based method and device for recording operation logs of web service administrator | |
| CN115222389A (en) | Payment security control method and device, electronic equipment and storage medium | |
| CN116529836A (en) | Privacy preserving computation based on subject data for developing artificial intelligence tools | |
| CN113992366A (en) | Network data transmission method, device, equipment and storage medium | |
| KR20120105992A (en) | Medical information management network and method thereof | |
| CN113742768A (en) | Privacy protection method, device and system for online application | |
| CN111143083B (en) | Data transmission method and device, storage medium and electronic device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |