JP2008269167A - Medical diagnostic device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a medical diagnostic device, capable of creating a storage medium through which management of recorded data can be easily and surely performed while further ensuring protection of the data recorded in the storage medium. <P>SOLUTION: The device comprises a data creation means 10 which encrypts data related to a subject and generates a decryption key corresponding to the code; a data recording means 11 which records the decrypted data in a storage medium, and a decryption key print means 1m which prints the decryption key on the storage medium. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to a medical diagnostic apparatus capable of recording various data such as patient data and imaging data of a subject acquired by examination or the like on a recording medium.

  In recent years, an increasing number of medical diagnostic apparatuses can store data obtained by examining a subject such as a patient. In particular, many devices such as, for example, X-ray diagnostic devices, CT (computed tomography) devices, ultrasonic diagnostic devices, magnetic resonance diagnostic devices, gamma cameras and PET (positron-emission tomography) However, since the volume of data of a subject to be imaged is large, it can be recorded on a recording medium such as a DVD instead of a storage means in a medical diagnostic apparatus.

  In addition to the above-described imaging data of the subject, the contents of data recorded on the recording medium by the medical diagnostic apparatus include information that can identify the subject, such as the name and patient ID of the subject. It is. Therefore, there is a case where data is encrypted and recorded from the content of information to be recorded. Furthermore, the storage medium itself that records the content is required to have a high level of management and protection.

For this data encryption, for example, various encryption methods such as a common key encryption method and a public key encryption method have been developed, and a key (key for decrypting encrypted data) has been developed. Many proposals have also been made on how to manage them. For example, in Patent Document 1 shown below, it is possible to safely transmit data only to legitimate users without depending on the mutual authentication processing between the sender and receiver of data that has been performed conventionally. Therefore, a program providing medium using an encryption key block that realizes an efficient key distribution and management configuration as a configuration for managing a hierarchical key distribution tree with an entity as a subset having a common element has been proposed. Yes.
JP 2001-358705 A

  However, in the program providing medium disclosed in Patent Document 1, a key (decryption key) for decrypting encrypted data is also recorded on the same medium as the encrypted data. Therefore, if a program providing medium on which data requiring protection is recorded leaks, the recorded decryption key is decrypted, so that the content of the data recorded in the program providing medium is decrypted. There is a risk of being done.

  In a medical institution in which a medical diagnostic apparatus is installed, there is a place where management of a decryption key for decrypting encrypted data is performed by, for example, collectively recording in a ledger. However, in such a management method, since the recording medium and the decryption key are managed separately, workability and manageability are deteriorated, and even though the ledger is thoroughly managed, the decryption is performed. If a ledger in which keys are recorded leaks, many recording media may be exposed to the risk of decryption.

  Also, if data recording to the recording medium fails, the operator of the medical diagnostic apparatus that performed the recording normally discards the recording medium by scratching or cracking it. For example, there is an increased risk of leakage of unencrypted data.

  The present invention has been made to solve the above-described problems, and an object of the present invention is to further protect data recorded on a recording medium and to easily and reliably manage recorded data. It is an object of the present invention to provide a medical diagnostic apparatus capable of creating a recording medium that can be performed in a simple manner.

  A feature according to the embodiment of the present invention is that, in the medical diagnostic apparatus, the data relating to the subject is encrypted, and a data creation means for generating a decryption key corresponding to the encryption, and the encrypted data on the recording medium Data recording means for recording, and decryption key printing means for printing the decryption key on a recording medium.

  ADVANTAGE OF THE INVENTION According to this invention, while aiming at the further thorough protection of the data recorded on a recording medium, the medical diagnostic apparatus which can produce the recording medium which can perform the management of the recorded data simply and reliably Can be provided.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

  FIG. 1 is a configuration diagram showing the overall configuration of a medical diagnostic apparatus 1 according to an embodiment of the present invention. As shown in FIG. 1, for example, the medical diagnostic apparatus 1 includes a CPU (Central Processing Unit) 1a, a ROM (Read Only Memory) 1b, a RAM (Random Access Memory) 1c, and an input / output interface 1d via a bus 1e. Connected. An input unit 1f, a display unit 1g, a communication control unit 1h, a storage unit 1i, a data reading unit 1j, and a drive unit control unit 1k are connected to the input / output interface 1d. The drive unit control unit 1 k controls various drive units provided in the medical diagnostic apparatus 1. Further, a data recording unit 11 and a decryption key printing unit 1m are connected to the input / output interface 1d.

  The CPU 1a reads out and executes a boot program for starting up the medical diagnostic apparatus 1 from the ROM 1b based on an input signal from the input unit 1f, and reads out various operating systems stored in the storage unit 1i. Further, the CPU 1a is based on an input signal from an external device (not shown in FIG. 1) such as an external recording device that records data on a recording medium such as a DVD via the input means 1f and the input / output interface 1d. Various devices are controlled, and programs and data stored in the RAM 1c, the storage means 1i, etc. are read and loaded into the RAM 1c, and data is calculated or processed based on the program commands read from the RAM 1c. , A processing device that implements a series of processing.

  The input unit 1f is configured by an input device such as a touch panel and a keyboard through which an operator of the medical diagnostic apparatus 1 inputs various operations. The input unit 1f creates an input signal based on the operation of the operator and sends the CPU 1a via the bus 1e. Sent to. The display unit 1g is, for example, a liquid crystal display, and is a unit that receives an output signal from the CPU 1a via the bus 1e, for example, and displays a processing result of the CPU 1a, for example, a recording status of data on a recording medium.

  The communication control unit 1h is a unit such as a LAN card or a modem, and is a unit that enables the medical diagnostic apparatus 1 to be connected to a communication network such as the Internet or a LAN. Data transmitted / received to / from the communication network via the communication control unit 1h is transmitted / received to / from the CPU 1a via the input / output interface 1d and the bus 1e as an input signal or an output signal.

  The storage means 1i is composed of a semiconductor or a magnetic disk, and stores programs and data executed by the CPU 1a. The data reading means 1j is means for reading data relating to a subject recorded in a recording medium such as an optical disk or a flexible disk, and the signal read by the disk drive is sent to the input / output interface 1d and the bus 1e. Via the CPU 1a.

  The data recording unit 11 records the encrypted data on a recording medium based on an instruction from the CPU 1a via the bus 1e. In the embodiment of the present invention, the data recording unit 11 is provided separately from the data reading unit 1j. However, the data recording unit 11 may function as the data reading unit 1j.

  In addition, the decryption key printing unit 1m prints on the recording medium a decryption key required when the data reading unit 1j decrypts and reads the encrypted data. The decryption key printing unit 1m is provided, for example, at a position facing the data recording unit 1l in the structure of the medical diagnostic apparatus 1. The printing location of the decryption key is the surface of the recording medium when the data recording surface of the recording medium is the back surface of the recording medium.

  In the storage unit 1i of the medical diagnostic apparatus 1 in the embodiment of the present invention, for example, a program for encrypting and reading image data obtained when an examination of a subject is performed is performed. Is memorized. The encryption program or the like is read and executed by the CPU 1a of the medical diagnostic apparatus 1, whereby the data creation means 10 is mounted on the medical diagnostic apparatus 1.

  FIG. 2 is a block diagram showing the internal configuration of the data creation means 10. The data creation means 10 includes a reception means 10a, a determination means 10b, an encryption means 10c, a decryption key generation means 10d, and a transmission means 10e. The determination unit 10b selects data to be recorded on the recording medium by performing encryption from, for example, imaging data acquired by the medical diagnostic apparatus 1 or personal information of the subject stored in the storage unit 1i. Further, after the data recording unit 11 records the data encrypted by the encryption unit 10c on the recording medium, it is determined whether the recording is normally performed.

  The encryption unit 10c encrypts the data selected by the determination unit 10b as an object to be encrypted. The encrypted data is sent to the data recording unit 11 via the transmission unit 10e and recorded on the recording medium.

  The decryption key generation means 10d generates a decryption key used when decrypting the encrypted data. The generated decryption key is transmitted to the decryption key printing unit 1m via the transmission unit 10e and printed on the surface of the recording medium. The generated decryption key is used to decrypt the encryption performed on the data recorded on the recording medium, and is paired with the encryption. There are various types of encryption and decryption methods, and examples thereof include the common key encryption method and the public key encryption method described above. Any method may be employed for decoding.

  Here, the flow of data recording will be described with reference to the flowchart shown in FIG. First, data to be encrypted is selected (ST1). The storage means 1i of the medical diagnostic apparatus 1 stores examination image data of the examination object and the subject, personal information such as the name and patient ID of the subject, and various data such as the examination date and time. Data to be encrypted and recorded on the recording medium is selected from the data, and the determination unit 10b selects the target data from the storage unit 1i.

  Next, the encryption means 10c encrypts the selected data (ST2). Regarding the encryption method, the medical diagnosis device 1 may determine the encryption method in advance, or may be selected from the existing encryption methods as described above. The encrypted data is recorded on the recording medium by the data recording means 11 (ST3).

  At the same time, the encrypted data is transmitted to the determination means 10b, and it is determined whether or not the recording is normally performed (ST4). If the encryption is not normally performed, the determination unit 10b does not instruct the decryption key generation unit 10d to generate the decryption key (ST5), and the decryption key is not printed on the recording medium. In this case, the recording of data on the recording medium ends here, and this recording medium is a target for discarding. That is, it becomes clear that a recording medium on which no decryption key is printed is a recording medium to be discarded.

  On the other hand, if the data is normally encrypted, the determination means 10b displays a message asking whether or not all data has been encrypted through the display means 1g (ST6). Since it takes a predetermined time to perform encryption and recording on a recording medium, for example, an operator may want to temporarily stop data recording. Therefore, although the data was encrypted and recorded on the recording medium normally, the recording was not performed on all the selected data, so the recording on the recording medium was completed for all the data. If not, the process proceeds to ST5 (no decryption key generation) described above. In this case, the decryption key is not generated, and the decryption key is generated when the encrypted data is recorded again.

  If all the selected data is normally encrypted and recorded on the recording medium (YES in ST6), whether or not there is additional data to be recorded on the recording medium. (ST7). When there is an additional recording on the recording medium, the selected data is recorded on the recording medium along the flow from step 1 to step 7 described above again.

  If there is no additional writing (NO in ST7), a decryption key generation instruction is issued from the determination means 10b to the decryption key generation means 10d, and a decryption key corresponding to the encryption applied to the data is generated (ST8). ). Further, the generated decryption key is designed (ST9). Here, the design of the decryption key determines how the generated decryption key is printed on the recording medium. The decryption key can be designed in any form. For example, FIG. 4 shows an example in which the decryption key is displayed on the recording medium with a barcode. It is also possible to print as a two-dimensional barcode (for example, QR code (registered trademark)) as shown in the recording medium shown in FIG. The selection of the design may be left to the operator of the medical diagnostic apparatus 1. In addition, for example, various hospital information management systems (HIS: Hospital Information System), radiation department information management systems (RIS: Radiological Information System), medical image management systems (PACS: Picture Archiving Communication System), etc. In the management system, when a barcode is used, it may be set such that a design suitable for the system adopted by the medical institution reading the encrypted data is selected in advance, such as selecting a barcode.

  Further, although not shown, the display mode of the decryption key can be arbitrarily determined, for example, a combination of numbers and characters, a predetermined mark being used as a decryption key, or the like. Further, it is possible to adopt a mode in which a decryption key composed of numbers, characters, marks, etc. is printed on a sticker and attached to a recording medium.

  After the design of the decryption key is determined in this way, the decryption key is printed on the surface of the recording medium using the design selected by the decryption key printing means 1m (ST10). By this printing, the encrypted data and the decryption key for reading the data are represented on the same recording medium.

  In this way, it is possible to further protect the data by encrypting the data and recording it on the recording medium. In addition, the decryption key is generated only when the encrypted data is normally recorded on the recording medium, and the encrypted data is recorded by using the encryption corresponding to the generated decryption key. Recording medium that can easily determine whether the recording medium is to be discarded by printing on the recording medium, and can manage the recorded data easily and reliably Can be provided.

  Note that the present invention is not limited to the above-described embodiment as it is, and can be embodied by modifying the constituent elements without departing from the scope of the invention in the implementation stage. Various inventions can be formed by appropriately combining a plurality of constituent elements disclosed in the embodiments. For example, some components may be deleted from all the components shown in the embodiment. Furthermore, you may combine the component covering different embodiment suitably.

It is a block diagram which shows the internal structure of the medical diagnostic apparatus in embodiment of this invention. It is a block diagram which shows the internal structure of the data preparation means in embodiment of this invention. It is a flowchart which shows the flow of the data recording in embodiment of this invention. It is a schematic diagram which shows an example of the decryption key printed on the recording medium in embodiment of this invention. It is a schematic diagram which shows an example of the decryption key printed on the recording medium in embodiment of this invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Medical diagnostic apparatus 10 Data preparation means 10a Reception means 10b Judgment means 10c Encryption means 10d Decryption key generation means 10e Transmission means

Claims (5)

A data creation means for encrypting data relating to the subject and generating a decryption key corresponding to the encryption;
Data recording means for recording the encrypted data on a recording medium;
Decryption key printing means for printing the decryption key on the recording medium;
A medical diagnostic apparatus comprising: The data creation means includes
Determining means for selecting data to be encrypted among the data;
Encryption means for encrypting the selected data;
Decryption key generation means for generating a key for decrypting the data encrypted by the encryption means;
The medical diagnostic apparatus according to claim 1, further comprising:   The determination means determines whether or not the data to be encrypted is normally encrypted by the encryption means, and when the data cannot be normally encrypted, the decryption key generation means The medical diagnostic apparatus according to claim 1, wherein the medical diagnosis apparatus instructs to not generate the data.   The medical diagnostic apparatus according to claim 1, wherein the decryption key printing unit prints the decryption key on a surface of the recording medium.   5. The medical diagnostic apparatus according to claim 1, further comprising a data reading unit that reads the encrypted data using the decryption key.

Images