TWI781055B - A cloud heaith information management system, method and computer-readable medium thereof - Google Patents

A cloud heaith information management system, method and computer-readable medium thereof Download PDF

Info

Publication number
TWI781055B
TWI781055B TW111105126A TW111105126A TWI781055B TW I781055 B TWI781055 B TW I781055B TW 111105126 A TW111105126 A TW 111105126A TW 111105126 A TW111105126 A TW 111105126A TW I781055 B TWI781055 B TW I781055B
Authority
TW
Taiwan
Prior art keywords
data
enterprise
health
cloud
data management
Prior art date
Application number
TW111105126A
Other languages
Chinese (zh)
Other versions
TW202333103A (en
Inventor
劉應翰
金聚鈺
梁書潤
Original Assignee
中華電信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中華電信股份有限公司 filed Critical 中華電信股份有限公司
Priority to TW111105126A priority Critical patent/TWI781055B/en
Application granted granted Critical
Publication of TWI781055B publication Critical patent/TWI781055B/en
Publication of TW202333103A publication Critical patent/TW202333103A/en

Links

Images

Abstract

The present invention provides a cloud health information management system, method and computer readable medium thereof, including an enterprise-end device and a cloud health data management device, wherein the cloud health data management device receives a first secret data storage request sent by the enterprise-end device. When the first secret data storage request is legal, the cloud health data management device generates a first token, and sends the first token and a health data sorting style to the enterprise-end device, so that the enterprise-end device sends a second secret data storage request according to the first token and the health data sorting style. Then the cloud health data management device separately stores the employee health data to different databases. Therefore, the present invention improves the security of secret data through the design of token and data compartment.

Description

一種雲端健康資料管理系統、方法及其電腦可讀媒介 A cloud health data management system, method and computer-readable medium thereof

本發明關於一種健康資料管理技術,尤其指一種雲端健康資料管理系統、方法及其電腦可讀媒介。 The present invention relates to a health data management technology, in particular to a cloud health data management system, method and computer readable medium.

目前市面上普遍的職場健康管理服務皆以管理單一企業之健康管理服務為主,且更多的是僅能運作於企業端的單機系統,且隨著企業端的健康管理系統每年協助企業管理員工的健康檢查報告、生理量測、職場護理記錄等各項健康資料,並提供查詢管理介面或提供各式健康風險評估,以協助企業維護及提升員工之健康狀況,進而造成企業在系統及其設備的維護上花費相當的成本。 At present, the common workplace health management services on the market are all based on managing the health management services of a single enterprise, and most of them are stand-alone systems that can only operate on the enterprise side, and as the enterprise-side health management system assists the enterprise to manage the health of employees every year Inspection reports, physiological measurements, workplace nursing records and other health data, and provide query management interface or provide various health risk assessments to assist enterprises in maintaining and improving the health status of employees, thereby resulting in the maintenance of systems and equipment for enterprises considerable cost.

再者,雖現有技術亦有將健康管理系統及資料庫建置於雲端,以同時支援多個企業。然而,這對於資料之保護將有更嚴僅的要求,且企業與企業之間的權限管理以及資料的區隔更顯得重要,若稍有不慎,極有可能造成有心人仕可輕易的跨越不同權限、甚至不同企業,取得各項機敏資料。 Furthermore, although the existing technology also builds the health management system and database on the cloud to support multiple enterprises at the same time. However, this will have stricter requirements for data protection, and the authority management and data separation between enterprises are more important. If you are not careful, it is very likely that interested people can easily cross different Authorities, even different companies, to obtain various sensitive information.

因此,如何提供一種雲端健康資料管理技術,能有效地保護及管理企業或員工的機敏資料,遂成為業界亟待解決的課題。 Therefore, how to provide a cloud-based health data management technology that can effectively protect and manage sensitive data of enterprises or employees has become an urgent issue in the industry.

為解決前述習知的技術問題或提供相關之功效,本發明提供一種雲端健康資料管理系統,係包括:一企業端裝置,係供一企業之健康管理人輸入一企業驗證資料;以及一雲端健康資料管理裝置,係通訊連接該企業端裝置,且該雲端健康資料管理裝置係包括:一健康資料收集模組,係接收來自該企業端裝置之該企業驗證資料,以驗證該企業驗證資料,俾於該企業驗證資料經驗證為正確後,由該健康資料收集模組接收該企業端裝置發出之一第一機敏資料儲存要求;及一企業資料管理模組,係驗證該第一機敏資料儲存要求,以於確認該第一機敏資料儲存要求為合法時,依據該第一機敏資料儲存要求產生一第一令牌,其中,於該健康資料收集模組產生一健康資料排序方式後,將該健康資料排序方式與該第一令牌進行綁定,再將綁定後之該健康資料排序方式與該第一令牌回傳至該企業端裝置,俾由該企業端裝置依據該健康資料排序方式將一員工健康資料進行排序,再將該經排序之員工健康資料及該第一令牌進行綁定,以形成一第二機敏資料儲存要求,使該企業端裝置將該第二機敏資料儲存要求上傳至該雲端健康資料管理裝置。 In order to solve the aforementioned conventional technical problems or provide related effects, the present invention provides a cloud-based health data management system, which includes: an enterprise-side device for a company’s health manager to input an enterprise verification data; and a cloud-based health management system The data management device is connected to the enterprise device through communication, and the cloud health data management device includes: a health data collection module, which receives the enterprise verification data from the enterprise device to verify the enterprise verification data, so that After the enterprise verification information is verified as correct, the health data collection module receives a first smart data storage request from the enterprise device; and an enterprise data management module verifies the first smart data storage request , to generate a first token according to the first smart data storage request when it is confirmed that the first smart data storage request is legal, wherein, after the health data collection module generates a health data sorting method, the health The data sorting method is bound with the first token, and then the bound health data sorting method and the first token are sent back to the enterprise device so that the enterprise device can use the health data sorting method Sort an employee's health data, and then bind the sorted employee's health data with the first token to form a second smart data storage request, so that the enterprise device will store the second smart data storage request Upload to the cloud health data management device.

本發明復提供一種雲端健康資料管理方法,係包括:由一企業之健康管理人藉一企業端裝置輸入一企業驗證資料;由一雲端健康資料管理裝置中之健康資料收集模組接收來自該企業端裝置之該企業驗證資料,以 驗證該企業驗證資料;於該企業驗證資料經驗證為正確後,由該健康資料收集模組接收該企業端裝置發出之一第一機敏資料儲存要求;由該雲端健康資料管理裝置中之企業資料管理模組驗證該第一機敏資料儲存要求,以於確認該第一機敏資料儲存要求為合法時,由該企業資料管理模組依據該第一機敏資料儲存要求產生一第一令牌;由該健康資料收集模組產生一健康資料排序方式,以將該健康資料排序方式與該第一令牌進行綁定,再將綁定後之該健康資料排序方式與該第一令牌回傳至該企業端裝置;由該企業端裝置依據該健康資料排序方式將一員工健康資料進行排序,再將該經排序之員工健康資料及該第一令牌進行綁定,以形成一第二機敏資料儲存要求;以及由該企業端裝置將該第二機敏資料儲存要求上傳至該雲端健康資料管理裝置。 The present invention further provides a cloud-based health data management method, which includes: a health manager of an enterprise inputs an enterprise verification data through an enterprise-side device; a health data collection module in a cloud-based health data management device receives data from the enterprise The company's verification information of the terminal device, to Verify the enterprise verification information; after the enterprise verification information is verified as correct, the health information collection module receives a first alert data storage request from the enterprise device; the enterprise information in the cloud health information management device The management module verifies the first smart data storage request, so that when the first smart data storage request is confirmed to be legal, the enterprise data management module generates a first token according to the first smart data storage request; The health data collection module generates a health data sorting method to bind the health data sorting method with the first token, and then returns the bound health data sorting method and the first token to the Enterprise-side device: the enterprise-side device sorts an employee's health data according to the health data sorting method, and then binds the sorted employee's health data and the first token to form a second alert data storage request; and the enterprise device uploads the second smart data storage request to the cloud health data management device.

於一實施例中,該雲端健康資料管理裝置更包括一主資料庫,係提供複數企業資料給該企業資料管理模組,以由該企業資料管理模組將該複數企業資料與該第一機敏資料儲存要求進行比對,俾確認該複數企業資料中是否具有該第一機敏資料儲存要求中之對應企業資料,藉此驗證該第一機敏資料儲存要求的合法性。 In one embodiment, the cloud health information management device further includes a master database, which provides multiple enterprise information to the enterprise information management module, so that the enterprise information management module can combine the plurality of enterprise information with the first smart The data storage requirements are compared to confirm whether the plurality of enterprise information has the corresponding enterprise information in the first sensitive data storage request, thereby verifying the legitimacy of the first sensitive data storage request.

於一實施例中,該企業端裝置依據該健康資料排序方式將該員工健康資料中之生理量測資料的各項目之量測數值或人事資料進行排序。 In one embodiment, the enterprise device sorts the measurement values or personnel data of each item of the physiological measurement data in the employee health data according to the health data sorting method.

於一實施例中,該健康資料收集模組接收到該第二機敏資料儲存要求時,令該企業資料管理模組驗證該第一令牌的令牌合法性,以於該第一令牌為合法時,由該企業資料管理模組取得該企業之加密金鑰,且 由該健康資料收集模組依據該健康資料排序方式將該第二機敏資料儲存要求中之該經排序之員工健康資料進行還原,以取得完整的該員工健康資料。 In one embodiment, when the health data collection module receives the second smart data storage request, it makes the enterprise data management module verify the legitimacy of the first token, so that when the first token is When legal, the enterprise data management module obtains the encryption key of the enterprise, and The health data collection module restores the sorted employee health data in the second sensitive data storage request according to the health data sorting method, so as to obtain complete health data of the employee.

於一實施例中,該雲端健康資料管理裝置更包括一加解密模組,係利用該企業之加密金鑰對該員工健康資料中之人事資料、健檢報告資料及生理量測資料進行加密。 In one embodiment, the cloud health data management device further includes an encryption and decryption module, which uses the enterprise's encryption key to encrypt the personnel data, health check report data and physiological measurement data in the employee's health data.

於一實施例中,該雲端健康資料管理裝置更包括用於將經加密之生理量測資料儲存至一生理量測資料庫之生理量測資料管理模組、用於將經加密之健檢報告資料儲存至一健檢報告資料庫之健檢報告資料管理模組、以及用於將經加密之人事資料儲存至一健檢報告資料庫之人事資料管理模組。 In one embodiment, the cloud health data management device further includes a physiological measurement data management module for storing the encrypted physiological measurement data in a physiological measurement database, and a physiological measurement data management module for storing the encrypted health examination report A health examination report data management module for storing data in a health examination report database, and a personnel data management module for storing encrypted personnel data in a health examination report database.

於一實施例中,該企業端裝置係供該企業之健康管理人向該雲端健康資料管理裝置發出一機敏資料查詢要求,以於該企業資料管理模組驗證該機敏資料查詢要求為合法時,依據該機敏資料查詢要求產生一第二令牌。 In one embodiment, the enterprise device is used for the health manager of the enterprise to send a smart data query request to the cloud health data management device, so that when the enterprise data management module verifies that the smart data query request is legal, A second token is generated according to the smart data query request.

於一實施例中,雲端健康資料管理裝置更包括一機敏資料管理模組,係接收該企業資料管理模組回覆的該第二令牌,由該機敏資料管理模組將該第二令牌提供給該雲端健康資料管理裝置中之加解密模組,以由該加解密模組令該企業資料管理模組對該第二令牌進行令牌合法性確認。 In one embodiment, the cloud health data management device further includes a smart data management module, which receives the second token returned by the enterprise data management module, and the smart data management module provides the second token To the encryption and decryption module in the cloud health data management device, the encryption and decryption module makes the enterprise data management module to confirm the validity of the second token.

於一實施例中,當於該第二令牌為合法時,該企業資料管理模組取得該企業之加密金鑰,以回覆該加密金鑰給該加解密模組,再由該加解密模組分別取得經加密之生理量測資料、健檢報告資料及人事資料後 利用該企業之加密金鑰進行解密,以形成該員工健康資料,再回覆至該企業端裝置。 In one embodiment, when the second token is legal, the enterprise data management module obtains the encryption key of the enterprise, and replies the encryption key to the encryption and decryption module, and then the encryption and decryption module After the group obtained the encrypted physiological measurement data, health examination report data and personnel data Use the company's encryption key to decrypt to form the employee's health data, and then reply to the company's device.

本發明又提供一種電腦可讀媒介,應用於具有處理器及/或記憶體的電腦或計算裝置中,該電腦或該計算裝置透過處理器及/或記憶體執行一目標程式及電腦可讀媒介,並用於執行電腦可讀媒介時執行如上所述之雲端健康資料管理方法。 The present invention also provides a computer-readable medium, which is applied to a computer or computing device with a processor and/or memory, and the computer or the computing device executes a target program and the computer-readable medium through the processor and/or memory , and is used to execute the above cloud health data management method when executing the computer readable medium.

由上可知,本發明之雲端健康資料管理系統、方法及其電腦可讀媒介,主要透過產生企業獨有的令牌(token)以確認企業端裝置裝置所發出的敏資料儲存要求及敏資料查詢要求的合法性,進而提高資料在存取時的安全性,且將員工健康資料(亦即機敏資料)區分為人事資料、健檢報告資料以及生理量測資料分別加密並儲存,故相較於習知技術,即便員工健康資料被有心人士竊取,也僅能取得部分無法被識別的資料,藉此提高了資訊安全。 It can be seen from the above that the cloud health data management system, method and computer-readable medium of the present invention mainly confirm the sensitive data storage request and sensitive data query issued by the enterprise terminal device by generating a unique token (token) of the enterprise. The legality of the requirements, thereby improving the security of data during access, and distinguishing employee health data (that is, sensitive data) into personnel data, health check report data and physiological measurement data are encrypted and stored separately, so compared with With conventional technology, even if employee health information is stolen by someone with a heart, only part of the unidentifiable information can be obtained, thereby improving information security.

1:雲端健康資料管理系統 1: Cloud health data management system

10:企業端裝置 10:Enterprise device

11:企業端處理模組 11:Enterprise end processing module

20:雲端健康資料管理裝置 20: Cloud health data management device

21:健康資料收集模組 21: Health data collection module

22:機敏資料管理模組 22: Smart data management module

23:企業資料管理模組 23: Enterprise data management module

23a:主資料庫 23a: Master database

24:加解密模組 24: Encryption and decryption module

241:生理量測資料管理模組 241: Physiological measurement data management module

241a:生理量測資料庫 241a: Physiological measurement database

242:健檢報告資料管理模組 242: Health check report data management module

242a:健檢報告資料庫 242a: Health check report database

243:人事資料管理模組 243:Personnel data management module

243a:人事資料庫 243a: Personnel database

S21至S28、S31至S35、S41至S410:步驟 S21 to S28, S31 to S35, S41 to S410: steps

圖1為本發明之雲端健康資料管理系統之架構示意圖。 FIG. 1 is a schematic diagram of the architecture of the cloud health information management system of the present invention.

圖2為本發明之雲端健康資料管理系統之上傳員工健康資料方法流程示意圖。 FIG. 2 is a schematic flow chart of the method for uploading employee health data in the cloud health data management system of the present invention.

圖3為本發明之雲端健康資料管理系統之儲存員工健康資料方法流程示意圖。 FIG. 3 is a schematic flow chart of the method for storing employee health data in the cloud health data management system of the present invention.

圖4為本發明之雲端健康資料管理系統之查詢員工健康資料方法流程示意圖。 FIG. 4 is a schematic flow chart of the method for querying employee health data in the cloud health data management system of the present invention.

以下藉由特定的具體實施例說明本發明之實施方式,熟悉此技藝之人士可由本說明書所揭示之內容輕易地瞭解本發明之其他優點及功效。 The implementation of the present invention is described below through specific specific examples, and those skilled in the art can easily understand other advantages and effects of the present invention from the content disclosed in this specification.

須知,本說明書所附圖式所繪示之結構、比例、大小等,均僅用以配合說明書所揭示之內容,以供熟悉此技藝之人士之瞭解與閱讀,並非用以限定本發明可實施之限定條件,故不具技術上之實質意義,任何結構之修飾、比例關係之改變或大小之調整,在不影響本發明所能產生之功效及所能達成之目的下,均應仍落在本發明所揭示之技術內容得能涵蓋之範圍內。同時,本說明書中所引用之如「一」、「第一」、「第二」、「上」及「下」等之用語,亦僅為便於敘述之明瞭,而非用以限定本發明可實施之範圍,其相對關係之改變或調整,在無實質變更技術內容下,當視為本發明可實施之範疇。 It should be noted that the structures, proportions, sizes, etc. shown in the drawings attached to this specification are only used to match the content disclosed in the specification, for the understanding and reading of those familiar with this technology, and are not used to limit the implementation of the present invention Therefore, it has no technical substantive meaning. Any modification of structure, change of proportional relationship or adjustment of size shall still fall within the scope of this invention without affecting the effect and purpose of the present invention. The technical content disclosed by the invention must be within the scope covered. At the same time, terms such as "a", "first", "second", "upper" and "lower" quoted in this specification are only for the convenience of description and are not used to limit the scope of the present invention. The scope of implementation, the change or adjustment of its relative relationship, without substantial change in technical content, shall be regarded as the scope of implementation of the present invention.

圖1為本發明之雲端健康資料管理系統1之架構示意圖。如圖1所示,雲端健康資料管理系統1係包括:一企業端裝置10以及一雲端健康資料管理裝置20,其中,企業端裝置10包括一企業端處理模組11,以及雲端健康資料管理裝置20包括一健康資料收集模組21、一機敏資料管理模組22、一企業資料管理模組23、一主資料庫23a、一加解密模組24、一生理量測資料管理模組241、一健檢報告資料管理模組242、一人事資料管理模組243、一生理量測資料庫241a、一健檢報告資料庫242a及一人事資料庫243a。 FIG. 1 is a schematic diagram of the structure of the cloud health information management system 1 of the present invention. As shown in Figure 1, the cloud health data management system 1 includes: an enterprise device 10 and a cloud health data management device 20, wherein the enterprise device 10 includes an enterprise processing module 11 and a cloud health data management device 20 includes a health data collection module 21, a smart data management module 22, an enterprise data management module 23, a master database 23a, an encryption and decryption module 24, a physiological measurement data management module 241, a A health examination report data management module 242, a personnel data management module 243, a physiological measurement database 241a, a health examination report database 242a, and a personnel database 243a.

具體而言,企業端裝置10係可為智慧型手機、平板電腦、個人電腦或其他電子裝置等,以及雲端健康資料管理裝置20可建立於伺服器(如通用型伺服器、檔案型伺服器、儲存單元型伺服器等)及電腦等具有適當演算機制之電子設備中,其中,企業端裝置10及雲端健康資料管理裝置20中之各個模組均可為軟體、硬體或韌體;若為硬體,則可為具有資料處理與運算能力之處理單元、處理器、電腦或伺服器;若為軟體或韌體,則可包括處理單元、處理器、電腦或伺服器可執行之指令,且可安裝於同一硬體裝置或分布於不同的複數硬體裝置。此外,企業端裝置10係透過有線或無線通訊方式通訊連接(或電氣連接)雲端健康資料管理裝置20。 Specifically, the enterprise device 10 can be a smart phone, a tablet computer, a personal computer or other electronic devices, etc., and the cloud health data management device 20 can be established on a server (such as a general-purpose server, a file server, Storage unit type server, etc.) and computers and other electronic devices with appropriate calculation mechanisms, wherein each module in the enterprise device 10 and the cloud health data management device 20 can be software, hardware or firmware; if it is hardware, it may be a processing unit, processor, computer or server with data processing and computing capabilities; if it is software or firmware, it may include instructions executable by a processing unit, processor, computer or server, and It can be installed on the same hardware device or distributed across multiple different hardware devices. In addition, the enterprise device 10 is communicatively connected (or electrically connected) to the cloud health data management device 20 through wired or wireless communication.

圖2為本發明之雲端健康資料管理系統1之上傳員工健康資料方法流程示意圖,且一併參閱圖1說明,其中,該方法流程包含下列步驟S21至步驟S28: FIG. 2 is a schematic flow diagram of the method for uploading employee health data in the cloud-based health data management system 1 of the present invention, and is explained with reference to FIG. 1 , wherein the method flow includes the following steps S21 to S28:

於步驟S21中,一企業A之企業端裝置10中之企業端處理模組11係供一輸入介面給企業A之健康管理人輸入一企業驗證資料(如企業驗證資料之統一編號或帳號密碼等),且傳送至雲端健康資料管理裝置20中之健康資料收集模組21以確認企業A之企業驗證資料是否為正確。 In step S21, the enterprise-end processing module 11 in the enterprise-end device 10 of an enterprise A provides an input interface for the health manager of the enterprise A to input an enterprise verification data (such as the unified number or account password of the enterprise verification data, etc. ), and sent to the health data collection module 21 in the cloud health data management device 20 to confirm whether the enterprise verification data of enterprise A is correct.

於步驟S22中,當健康資料收集模組21確認企業驗證資料為正確時,企業端處理模組11向健康資料收集模組21發出之第一機敏資料儲存要求。在一實施例中,第一機敏資料儲存要求包含企業A之企業資料(如企業名稱、帳號密碼、統一編號或企業電話)或企業端裝置10之識別資料等,其中,企業端裝置10之識別資料係包含但不限於網際網路協定位址 (Internet Protocol Address,IP Address;或稱IP位址)、交談識別碼(session identifier,session ID)等。 In step S22, when the health data collection module 21 confirms that the enterprise verification data is correct, the enterprise-side processing module 11 sends a first sensitive data storage request to the health data collection module 21. In one embodiment, the first sensitive data storage request includes enterprise information of enterprise A (such as enterprise name, account password, unified number or enterprise telephone number) or identification data of enterprise end device 10, etc., wherein the identification information of enterprise end device 10 Data includes, but is not limited to, Internet Protocol addresses (Internet Protocol Address, IP Address; or IP address), conversation identification code (session identifier, session ID), etc.

於步驟S23中,健康資料收集模組21接收到第一機敏資料儲存要求後,透過機敏資料管理模組22呼叫企業資料管理模組23對第一機敏資料儲存要求進行驗證,以確認第一機敏資料儲存要求的合法性。 In step S23, after receiving the first sensitive data storage request, the health data collection module 21 calls the enterprise data management module 23 through the smart data management module 22 to verify the first sensitive data storage request to confirm the first sensitive data Legality of Data Storage Requests.

於步驟S24中,企業資料管理模組23依據主資料庫23a中之複數企業資料比對第一機敏資料儲存要求是否合法。在一實施例中,企業資料管理模組23將複數企業資料逐一比對第一機敏資料儲存要求中之企業A之企業資料(如帳號密碼或統一編號等),以確認複數企業資料中是否具有企業A之企業資料。在一實施例中,企業資料係包括企業名稱、帳號密碼、統一編號、企業電話等企業之唯一資訊。 In step S24, the enterprise data management module 23 compares whether the storage request for the first smart data is legal according to the multiple enterprise data in the master database 23a. In one embodiment, the enterprise data management module 23 compares the plural enterprise data one by one with the enterprise data (such as account password or uniform number) of enterprise A in the first sensitive data storage request to confirm whether there is any Enterprise A's enterprise information. In one embodiment, the enterprise information includes the unique information of the enterprise such as enterprise name, account password, unified number, and enterprise phone number.

於步驟S25中,若無法從複數企業資料中比對出企業A之企業資料(亦即企業資料管理模組23未比對成功),則驗證出第一機敏資料儲存要求為不合法,以由企業資料管理模組23回覆驗證失敗訊息至企業端裝置10,俾結束此次第一機敏資料儲存要求。 In step S25, if it is impossible to compare the enterprise data of enterprise A from the plurality of enterprise data (that is, the enterprise data management module 23 is not compared successfully), then it is verified that the first smart data storage request is illegal, and the The enterprise data management module 23 replies a verification failure message to the enterprise device 10, so as to end the first sensitive data storage request.

於步驟S26中,若從複數企業資料中比對出企業A之企業資料(亦即企業資料管理模組23比對成功),則驗證出第一機敏資料儲存要求為合法,以由企業資料管理模組23依據第一機敏資料儲存要求中企業A之企業資料及企業端裝置10之識別資料產生一第一令牌(token)。在一實施例中,企業資料管理模組23利用其與機敏資料管理模組22皆認識之加密方式(如非對稱加密、對稱加密等加密方式,或是雜湊演算法等)依據企業資料、 識別資料、加密鹽或/及時間戳記進行加密以形成第一令牌。在一實施例中,該第一令牌可包括多種加密方式,以利於後續針對不同資料進行加解密。 In step S26, if the enterprise data of enterprise A is compared from the plurality of enterprise data (that is, the enterprise data management module 23 compares successfully), then it is verified that the first smart data storage request is legal, so that it can be managed by the enterprise data The module 23 generates a first token according to the enterprise data of the enterprise A and the identification data of the enterprise device 10 in the first smart data storage request. In one embodiment, the enterprise data management module 23 utilizes encryption methods (such as asymmetric encryption, symmetric encryption, etc. encryption methods, or hash algorithms, etc.) The identifying data, encrypted salt or/and timestamp are encrypted to form a first token. In an embodiment, the first token may include multiple encryption methods to facilitate subsequent encryption and decryption of different data.

於步驟S27中,健康資料收集模組21以亂數方式產生一健康資料排序方式,並將健康資料排序方式與第一令牌進行綁定,以回傳至企業端處理模組11。 In step S27 , the health data collection module 21 generates a health data sorting method in a random number manner, binds the health data sorting method with the first token, and sends it back to the enterprise-side processing module 11 .

於步驟S28中,企業端處理模組11依據健康資料排序方式將員工健康資料中之生理量測資料的各項目(如身高、體重、收縮壓、舒張壓等)之量測數值或人事資料(如年齡、員工號碼等)進行排序,且企業端處理模組11將經排序之員工健康資料及第一令牌進行綁定,以形成具有經排序之員工健康資料及第一令牌之第二機敏資料儲存要求,藉此企業端處理模組11將第二機敏資料儲存要求上傳至雲端健康資料管理裝置20。 In step S28, the enterprise-side processing module 11 sorts the measured value or personnel data of each item (such as height, weight, systolic blood pressure, diastolic blood pressure, etc.) Such as age, employee number, etc.) are sorted, and the enterprise-side processing module 11 binds the sorted employee health data and the first token to form a second token with the sorted employee health data and the first token. The alert data storage request, whereby the enterprise-end processing module 11 uploads the second alert data storage request to the cloud health data management device 20 .

在一實施例中,員工健康資料包含複數員工之人事資料(如員工姓名、年齡等)、健檢報告資料(如醫生評估報告)以及生理量測資料(如身高、體重、收縮壓、舒張壓等量測數值)。 In one embodiment, employee health information includes multiple employee personnel information (such as employee name, age, etc.), health check report information (such as doctor's evaluation report), and physiological measurement data (such as height, weight, systolic blood pressure, diastolic blood pressure, etc.) equivalent measured value).

在一實施例中,健康資料排序方式僅包含員工健康資料中之各項目之編號,並未包含各項目之具體名稱,且企業端處理模組11及健康資料收集模組21皆認識各項目之編號,故經排序之員工健康資料不具備識別化之資訊,即便經排序之員工健康資料不幸被竊取,也無法得知經排序之員工健康資料中各項數值的意義。 In one embodiment, the health data sorting method only includes the number of each item in the employee health data, and does not include the specific name of each item, and the enterprise-side processing module 11 and the health data collection module 21 both recognize the number of each item Therefore, the sorted employee health data does not have identification information. Even if the sorted employee health data is stolen unfortunately, it is impossible to know the meaning of each value in the sorted employee health data.

圖3為本發明之雲端健康資料管理系統1之儲存員工健康資料方法流程示意圖,且一併參閱圖1及圖2說明,其中,該方法流程包含下列步驟S31至步驟S35: FIG. 3 is a schematic flow diagram of the method for storing employee health data in the cloud health data management system 1 of the present invention, and is explained with reference to FIG. 1 and FIG. 2 , wherein the method flow includes the following steps S31 to S35:

於步驟S31中,雲端健康資料管理裝置20中之健康資料收集模組21接收到企業A之企業端裝置10中之企業端處理模組11所上傳之第二機敏資料儲存要求,且將第二機敏資料儲存要求中之第一令牌提供給機敏資料管理模組22。 In step S31, the health data collection module 21 in the cloud health data management device 20 receives the second sensitive data storage request uploaded by the enterprise end processing module 11 in the enterprise end device 10 of enterprise A, and sends the second The first token in the smart data storage request is provided to the smart data management module 22 .

於步驟S32中,機敏資料管理模組22將第一令牌傳送至加解密模組24,由加解密模組24令企業資料管理模組23對第一令牌進行令牌合法性確認。在一實施例中,企業資料管理模組23將第一令牌進行解密,以判斷第一令牌中之時間戳記是否過期,及企業端裝置10之識別資料是否正確,以於企業資料管理模組23確認第一令牌中之時間戳記未過期且企業端裝置10之識別資料正確時,第一令牌為合法。 In step S32, the smart information management module 22 sends the first token to the encryption and decryption module 24, and the encryption and decryption module 24 instructs the enterprise information management module 23 to confirm the validity of the first token. In one embodiment, the enterprise information management module 23 decrypts the first token to determine whether the time stamp in the first token has expired and whether the identification data of the enterprise device 10 is correct, so as to be used in the enterprise information management module. When the group 23 confirms that the time stamp in the first token has not expired and the identification information of the enterprise device 10 is correct, the first token is valid.

於步驟S33中,當企業資料管理模組23確認第一令牌為合法時,由企業資料管理模組23至主資料庫23a取得企業A之加密金鑰,並回覆給加解密模組24,且由企業資料管理模組23令健康資料收集模組21依據健康資料排序方式將第二機敏資料儲存要求中之經排序之員工健康資料進行還原,以取得完整的員工健康資料。 In step S33, when the enterprise information management module 23 confirms that the first token is legal, the encryption key of the enterprise A is obtained from the enterprise information management module 23 to the master database 23a, and replied to the encryption and decryption module 24, And the enterprise data management module 23 instructs the health data collection module 21 to restore the sorted employee health data in the second alert data storage request according to the health data sorting method, so as to obtain complete employee health data.

於步驟S34中,加解密模組24利用企業A之加密金鑰分別對員工健康資料中之人事資料、健檢報告資料及生理量測資料進行加密。在一實施例中,加解密模組24可利用不同的方式分別對該人事資料、該健檢報告資料及該生理量測資料進行加密,以增加其資料安全性。 In step S34, the encryption and decryption module 24 uses the encryption key of enterprise A to encrypt the personnel data, health check report data and physiological measurement data in the employee health data respectively. In one embodiment, the encryption/decryption module 24 can encrypt the personnel data, the health check report data, and the physiological measurement data in different ways to increase data security.

於步驟S35中,生理量測資料管理模組241將經加密之生理量測資料儲存至生理量測資料庫241a、健檢報告資料管理模組242將經加密之健檢報告資料儲存至健檢報告資料庫242a以及人事資料管理模組243 將經加密之人事資料儲存至健檢報告資料庫243a。在一實施例中,經加密之該人事資料、該健檢報告資料及該生理量測資料後續可利用不同的方式進行解密。 In step S35, the physiological measurement data management module 241 stores the encrypted physiological measurement data in the physiological measurement database 241a, and the health examination report data management module 242 stores the encrypted health examination report data in the health examination Report database 242a and personnel data management module 243 Store the encrypted personnel data in the health check report database 243a. In one embodiment, the encrypted personnel data, the health check report data and the physiological measurement data can be subsequently decrypted in different ways.

圖4為本發明之雲端健康資料管理系統1之查詢員工健康資料方法流程示意圖,且一併參閱圖1說明,其中,該方法流程包含下列步驟S41至步驟S410: FIG. 4 is a schematic flow diagram of the method for querying employee health data in the cloud health data management system 1 of the present invention, and is explained with reference to FIG. 1 , wherein the method flow includes the following steps S41 to S410:

於步驟S41中,一企業A之企業端裝置10中之企業端處理模組11係供企業A之健康管理人向雲端健康資料管理裝置20發出一機敏資料查詢要求。在一實施例中,機敏資料查詢要求包含企業A之企業資料(如企業名稱、帳號密碼、統一編號或企業電話)或企業端裝置10之識別資料等,其中,企業端裝置10之識別資料係包含但不限於網際網路協定位址(Internet Protocol Address,IP Address;或稱IP位址)、交談識別碼(session identifier,session ID)等。 In step S41 , the enterprise-end processing module 11 in the enterprise-end device 10 of an enterprise A is for the health manager of the enterprise A to send a smart data query request to the cloud-based health information management device 20 . In one embodiment, the smart information query request includes enterprise information of enterprise A (such as enterprise name, account password, unified number or enterprise telephone number) or identification information of enterprise end device 10, etc., wherein, the identification information of enterprise end device 10 is Including but not limited to Internet Protocol Address (IP Address; or IP address), session identifier (session ID), etc.

於步驟S42中,當雲端健康資料管理裝置20中之機敏資料管理模組22收到企業A之機敏資料查詢要求時,機敏資料管理模組22呼叫企業資料管理模組23驗證機敏資料查詢要求的合法性。 In step S42, when the smart data management module 22 in the cloud health data management device 20 receives the smart data query request from enterprise A, the smart data management module 22 calls the enterprise data management module 23 to verify the smart data query request legality.

於步驟S43中,企業資料管理模組23依據主資料庫23a中之複數企業資料比對機敏資料查詢要求是否合法。在一實施例中,企業資料管理模組23將複數企業資料逐一比對機敏資料查詢要求中之企業A之企業資料(如帳號密碼或統一編號等),以確認複數企業資料中是否具有企業A之企業資料。 In step S43, the enterprise data management module 23 checks whether the smart data inquiry request is legal or not according to the plurality of enterprise data in the master database 23a. In one embodiment, the enterprise information management module 23 compares the enterprise information (such as account password or uniform number) of enterprise A in the smart information query request one by one with the plurality of enterprise information to confirm whether there is enterprise A in the plurality of enterprise information enterprise information.

於步驟S44中,若無法從複數企業資料中比對出企業A之企業資料(亦即企業資料管理模組23未比對成功),則驗證出機敏資料查詢要求為不合法,以由企業資料管理模組23回覆驗證失敗訊息至企業端裝置10,以結束此次機敏資料查詢要求。 In step S44, if it is impossible to compare the enterprise data of enterprise A from the plural enterprise data (that is, the enterprise data management module 23 is not compared successfully), then it is verified that the smart data query request is illegal, and the enterprise data The management module 23 replies a verification failure message to the enterprise device 10 to end the smart data query request.

於步驟S45中,若從複數企業資料中比對出企業A之企業資料(亦即企業資料管理模組23比對成功),則驗證出機敏資料查詢要求為合法,以由企業資料管理模組23依據機敏資料查詢要求中企業A之企業資料及企業端裝置10之識別資料產生一第二令牌(token)。在一實施例中,企業資料管理模組23利用其與機敏資料管理模組22皆認識之加密方式(如非對稱加密、對稱加密等加密方式,或是雜湊演算法)依據企業資料、識別資料、加密鹽或/及時間戳記進行加密以形成第二令牌。在一實施例中,該第二令牌可包括多種加密方式,以利於後續針對不同資料進行加解密。 In step S45, if the enterprise data of enterprise A is compared from the plurality of enterprise data (that is, the enterprise data management module 23 compares successfully), then it is verified that the smart data query request is legal, and the enterprise data management module 23 Generate a second token (token) according to the enterprise information of enterprise A and the identification information of the enterprise device 10 in the smart information query request. In one embodiment, the enterprise data management module 23 uses an encryption method (such as asymmetric encryption, symmetric encryption, or hash algorithm) that it and the smart data management module 22 recognize , salt or/and timestamp are encrypted to form a second token. In an embodiment, the second token may include multiple encryption methods to facilitate subsequent encryption and decryption of different data.

於步驟S46中,企業資料管理模組23將第二令牌回覆至機敏資料管理模組22,以由機敏資料管理模組22將第二令牌提供給加解密模組24,俾由加解密模組24令企業資料管理模組23對第二令牌進行令牌合法性確認。在一實施例中,企業資料管理模組23將第二令牌進行解密,以判斷第二令牌中之時間戳記是否過期,及企業端裝置10之識別資料是否正確,以於企業資料管理模組23確認第二令牌中之時間戳記未過期且企業端裝置10之識別資料正確時,第二令牌為合法。 In step S46, the enterprise data management module 23 replies the second token to the smart data management module 22, so that the smart data management module 22 provides the second token to the encryption and decryption module 24 for encryption and decryption The module 24 instructs the enterprise data management module 23 to confirm the legitimacy of the second token. In one embodiment, the enterprise information management module 23 decrypts the second token to determine whether the time stamp in the second token has expired and whether the identification information of the enterprise device 10 is correct, so as to be used in the enterprise information management module. When the group 23 confirms that the time stamp in the second token has not expired and the identification data of the enterprise device 10 is correct, the second token is valid.

於步驟S47中,當企業資料管理模組23確認第二令牌為合法時,企業資料管理模組23至主資料庫23a取得企業A之加密金鑰,並回覆給加解密模組24。 In step S47, when the enterprise information management module 23 confirms that the second token is legal, the enterprise information management module 23 obtains the encryption key of the enterprise A from the main database 23a, and sends a reply to the encryption and decryption module 24.

於步驟S48中,加解密模組24分別透過生理量測資料管理模組241、健檢報告資料管理模組242及人事資料管理模組243向生理量測資料庫241a取得企業A的經加密之生理量測資料、向健檢報告資料庫242a取得經加密之健檢報告資料及向健檢報告資料庫243a取得經加密之人事資料。 In step S48, the encryption and decryption module 24 obtains the encrypted data of enterprise A from the physiological measurement database 241a through the physiological measurement data management module 241, the health examination report data management module 242 and the personnel data management module 243 respectively. Physiological measurement data, obtain encrypted health check report data from the health check report database 242a, and obtain encrypted personnel data from the health check report database 243a.

於步驟S49中,加解密模組24將經加密之生理量測資料、健檢報告資料及人事資料透過企業A之加密金鑰進行解密,以取得生理量測資料、健檢報告資料及人事資料,進而形成一員工健康資料,並回傳至機敏資料管理模組22。在一實施例中,加解密模組24需同時對經加密之生理量測資料、健檢報告資料及人事資料三者進行解密,無法僅對經加密之生理量測資料、健檢報告資料及人事資料其中一者單獨解密,藉此確保經加密之生理量測資料、健檢報告資料及人事資料的安全性。 In step S49, the encryption and decryption module 24 decrypts the encrypted physiological measurement data, health examination report data and personnel information through the encryption key of enterprise A to obtain the physiological measurement data, health examination report data and personnel information , and then form an employee health data, and send it back to the smart data management module 22. In one embodiment, the encryption and decryption module 24 needs to decrypt the encrypted physiological measurement data, health examination report data and personnel data at the same time, and cannot only decrypt the encrypted physiological measurement data, health examination report data and One of the personnel data is decrypted separately to ensure the security of the encrypted physiological measurement data, health examination report data and personnel data.

於步驟S410中,機敏資料管理模組22將企業A之員工健康資料回傳至企業A之企業端裝置10,以完成機敏資料查詢。 In step S410, the smart data management module 22 sends back the employee health data of the company A to the enterprise device 10 of the company A to complete the smart data query.

此外,本發明還揭示一種電腦可讀媒介,係應用於具有處理器(例如,CPU、GPU等)及/或記憶體的計算裝置或電腦中,且儲存有指令,並可利用此計算裝置或電腦透過處理器及/或記憶體執行此電腦可讀媒介,以於執行此電腦可讀媒介時執行上述之方法及各步驟。 In addition, the present invention also discloses a computer-readable medium, which is applied to a computing device or computer having a processor (for example, CPU, GPU, etc.) and/or memory, and stores instructions, and can be used by this computing device or The computer executes the computer-readable medium through the processor and/or memory, so as to execute the above-mentioned method and each step when executing the computer-readable medium.

下列實施例為本發明之一實施例,且一併參閱圖1至圖3說明,且相同處不再贅述。 The following embodiment is an embodiment of the present invention, and will be described with reference to FIG. 1 to FIG. 3 , and the same parts will not be described again.

於本實施例中,一企業A之健康管理人利用電腦(即企業端裝置10)之企業端處理模組11輸入企業A之帳號密碼(如企業驗證資料)以登入 雲端健康資料管理裝置20,且雲端健康資料管理裝置20驗證企業A之帳號密碼是否為正確。當雲端健康資料管理裝置20確認企業驗證資料為正確時,企業A之健康管理人透過企業端處理模組11發出之第一機敏資料儲存要求。 In this embodiment, a health manager of an enterprise A uses the enterprise-end processing module 11 of a computer (i.e. enterprise-end device 10) to input the account password (such as enterprise verification information) of enterprise A to log in The cloud health data management device 20, and the cloud health data management device 20 verifies whether the account password of the enterprise A is correct. When the cloud health data management device 20 confirms that the company's verification data is correct, the health manager of company A sends the first sensitive data storage request through the company-side processing module 11 .

接著,雲端健康資料管理裝置20驗證第一機敏資料儲存要求的合法性,將主資料庫23a中之複數企業資料逐一比對第一機敏資料儲存要求中之企業A之企業資料(如帳號密碼或統一編號等),以確認複數企業資料中是否具有企業A之企業資料。當從複數企業資料中比對出企業A之企業資料時,雲端健康資料管理裝置20驗證出第一機敏資料儲存要求為合法,且依據第一機敏資料儲存要求中企業A之企業資料及識別資料產生一第一令牌(token),例如:第一令牌為“xxxde3pofijsojpo3o0983jdlfsdfd”。 Then, the cloud-based health data management device 20 verifies the legitimacy of the first smart data storage request, and compares the multiple enterprise data in the master database 23a one by one with the enterprise data of enterprise A in the first smart data storage request (such as account password or Unified number, etc.) to confirm whether the enterprise information of enterprise A exists in the plural enterprise information. When the corporate data of company A is compared from the multiple corporate data, the cloud health data management device 20 verifies that the first sensitive data storage request is legal, and according to the corporate data and identification data of company A in the first smart data storage request Generate a first token (token), for example: the first token is "xxxde3pofijsojpo3o0983jdlfsdfd".

再者,雲端健康資料管理裝置20中之健康資料收集模組21以亂數方式產生一健康資料排序方式,並將健康資料排序方式與第一令牌進行綁定,以回傳至企業端處理模組11,其中,健康資料排序方式如下表1所示: Furthermore, the health data collection module 21 in the cloud health data management device 20 generates a health data sorting method in a random number manner, binds the health data sorting method with the first token, and sends it back to the enterprise for processing Module 11, where the health information sorting method is shown in Table 1 below:

表1:健康資料排序方式

Figure 111105126-A0101-12-0014-1
Table 1: Sorting method of health information
Figure 111105126-A0101-12-0014-1

須說明,傳送至企業端處理模組11的健康資料排序方式僅包含健康資料中之各項目的編號,並不具備名稱,且企業端處理模組11及健康資料收集模組21皆認識各項目之編號,藉以提高資訊安全性。 It should be noted that the health data sorting method sent to the enterprise-side processing module 11 only includes the number of each item in the health data, and does not have a name, and both the enterprise-side processing module 11 and the health data collection module 21 recognize each item number to improve information security.

電腦(即企業端裝置10)之企業端處理模組11接收到健康資料排序方式與第一令牌後,依據健康資料排序方式中之編號將員工健康資料中之生理量測資料的各項目之量測數值或人事資料進行排序,以產生經排序之員工健康資料,例如:“64,89,36.4,172,135”。企業端處理模組11再將經排序之員工健康資料及第一令牌進行綁定,以形成具有經排序之員工健康資料及第一令牌之第二機敏資料儲存要求,其中,第二機敏資料儲存要求中所包含之經排序之員工健康資料及第一令牌,如下表2所示: After receiving the health data sorting method and the first token, the enterprise-side processing module 11 of the computer (that is, the enterprise-side device 10) sorts the items of the physiological measurement data in the employee's health data according to the number in the health data sorting method. Sort the measured values or personnel data to generate sorted employee health data, for example: "64,89,36.4,172,135". The enterprise-side processing module 11 then binds the sorted employee health data and the first token to form a second alert data storage request with the sorted employee health data and the first token, wherein the second alert The sorted employee health data and the first token included in the data storage request are shown in Table 2 below:

經排序之員工健康資料及第一令牌 Sorted Employee Health Data and First Token

Figure 111105126-A0101-12-0015-2
Figure 111105126-A0101-12-0015-2

企業端處理模組11向雲端健康資料管理裝置20發出第二機敏資料儲存要求,當雲端健康資料管理裝置20中之健康資料收集模組21接收到第二機敏資料儲存要求後進行令牌合法性確認,以於第一令牌為合法時,雲端健康資料管理裝置20中之企業資料管理模組23至主資料庫23a取得企業A之加密金鑰,並回覆給雲端健康資料管理裝置20中之加解密模組24,且企業資料管理模組23令健康資料收集模組21依據健康資料排序方式將第二 機敏資料儲存要求中之經排序之員工健康資料進行還原,以取得完整的員工健康資料。例如:體重=64、收縮壓=89、體溫=36.4、身高=172、舒張壓=135。 The enterprise-end processing module 11 sends a second smart data storage request to the cloud health data management device 20, and the token validity is performed after the health data collection module 21 in the cloud health data management device 20 receives the second smart data storage request Confirm that when the first token is legal, the enterprise data management module 23 in the cloud health data management device 20 obtains the encrypted key of enterprise A from the master database 23a, and replies to the cloud health data management device 20 The encryption and decryption module 24, and the enterprise data management module 23 makes the health data collection module 21 sort the health data according to the second Restore the sorted employee health data in the sensitive data storage request to obtain complete employee health data. For example: weight=64, systolic blood pressure=89, body temperature=36.4, height=172, diastolic blood pressure=135.

最後,加解密模組24利用企業A之加密金鑰分別對員工健康資料中之人事資料、健檢報告資料及生理量測資料進行加密,以透過生理量測資料管理模組241將經加密之生理量測資料儲存至生理量測資料庫241a、健檢報告資料管理模組242將經加密之健檢報告資料儲存至健檢報告資料庫242a以及人事資料管理模組243將經加密之人事資料儲存至健檢報告資料庫243a。 Finally, the encryption and decryption module 24 uses the encryption key of enterprise A to encrypt the personnel data, health check report data and physiological measurement data in the employee health data, so that the encrypted physiological measurement data management module 241 The physiological measurement data is stored in the physiological measurement database 241a, the health examination report data management module 242 stores the encrypted health examination report data in the health examination report database 242a, and the personnel data management module 243 stores the encrypted personnel data Save to the health check report database 243a.

綜上所述,本發明之雲端健康資料管理系統、方法及其電腦可讀媒介,藉由企業資料管理模組產生企業獨有的令牌(token)以確認企業端裝置裝置所發出的敏資料儲存要求及敏資料查詢要求的合法性,進而提高資料在存取時的安全性,且將員工健康資料區分為人事資料、健檢報告資料以及生理量測資料分別加密並儲存,故相較於習知技術,即便員工健康資料被有心人仕竊取,也僅能取得部分無法被識別的資料,藉此提高了資訊安全。 To sum up, the cloud health data management system and method and its computer-readable medium of the present invention use the enterprise data management module to generate an enterprise-specific token (token) to confirm the sensitive information sent by the enterprise-end device. The legitimacy of storage requirements and sensitive data query requirements, thereby improving the security of data during access, and distinguishing employee health data into personnel data, health check report data, and physiological measurement data are encrypted and stored separately, so compared with With conventional technology, even if employees' health data is stolen by malicious persons, only part of the unidentifiable data can be obtained, thereby improving information security.

此外,本發明之雲端健康資料管理系統、方法及其電腦可讀媒介,係具備下列優點或技術功效。 In addition, the cloud-based health data management system, method and computer-readable medium of the present invention have the following advantages or technical effects.

一、本發明依據企業資料及企業端裝置(如電腦)之識別資料,以產生企業的唯一令牌(token)。是以,透過令牌檢查方法能確認交易之合法性,且令牌檢查除了單純確認令牌合法性外,亦會檢查交易之使用 者是否合法,進而確保不同企業之間的資料無法互通,可有效避免有心人仕跨企業查詢機敏資料,以提高機敏資料之安全性。 1. The present invention generates a unique token (token) of the enterprise based on the enterprise information and the identification information of the enterprise device (such as a computer). Therefore, the legitimacy of the transaction can be confirmed through the token check method, and the token check will not only confirm the legitimacy of the token, but also check the use of the transaction Whether it is legal or not, so as to ensure that the data between different companies cannot communicate with each other, which can effectively prevent interested parties from cross-enterprise querying smart data, so as to improve the security of smart data.

二、本發明將員工健康資料依據不同類型(人事資料、健檢報告資料以及生理量測資料)進行資料分艙,以儲存於不同的資料庫,且員工健康資料中之人事資料、健檢報告資料以及生理量測資料皆已加密,故即便任一機敏資料遺失,也無法透過還原解譯機敏資料,進而維持資料的安全性。 2. The present invention classifies employee health data according to different types (personnel data, health examination report data, and physiological measurement data) to store them in different databases, and the personnel data and health examination reports in the employee health data Data and physiological measurement data are encrypted, so even if any sensitive data is lost, it cannot be restored and interpreted to maintain data security.

三、本發明的健康資料排序方式僅包含員工健康資料中之各項目之編號,並未包含各項目之具體名稱,且企業端處理模組及健康資料收集模組皆認識各項目之編號,故經排序之員工健康資料不具備識別化之資訊,即便經排序之員工健康資料不幸被竊取,也無法得知經排序之員工健康資料中各項數值的意義,進而保證資訊安全。 3. The health data sorting method of the present invention only includes the number of each item in the employee health data, and does not include the specific name of each item, and both the enterprise-side processing module and the health data collection module recognize the number of each item, so The sorted employee health data does not have identifiable information. Even if the sorted employee health data is unfortunately stolen, it is impossible to know the meaning of each value in the sorted employee health data, thereby ensuring information security.

上述實施形態僅例示性說明本發明之原理及其功效,而非用於限制本發明。任何熟習此項技藝之人士均可在不違背本發明之精神及範疇下,對上述實施形態進行修飾與改變。因此,本發明之權利保護範圍應如申請專利範圍所列。 The above-mentioned embodiments are only illustrative to illustrate the principles and effects of the present invention, and are not intended to limit the present invention. Anyone skilled in the art can modify and change the above-mentioned embodiments without departing from the spirit and scope of the present invention. Therefore, the scope of protection of the rights of the present invention should be listed in the scope of the patent application.

1:雲端健康資料管理系統 1: Cloud health data management system

10:企業端裝置 10:Enterprise device

11:企業端處理模組 11:Enterprise end processing module

20:雲端健康資料管理裝置 20: Cloud health data management device

21:健康資料收集模組 21: Health data collection module

22:機敏資料管理模組 22: Smart data management module

23:企業資料管理模組 23: Enterprise data management module

23a:主資料庫 23a: Master database

24:加解密模組 24: Encryption and decryption module

241:生理量測資料管理模組 241: Physiological measurement data management module

241a:生理量測資料庫 241a: Physiological measurement database

242:健檢報告資料管理模組 242: Health check report data management module

242a:健檢報告資料庫 242a: Health check report database

243:人事資料管理模組 243:Personnel data management module

243a:人事資料庫 243a: Personnel database

Claims (15)

一種雲端健康資料管理系統,係包括: A cloud health information management system, including: 一企業端裝置,係供一企業之健康管理人輸入一企業驗證資料;以及一雲端健康資料管理裝置,係通訊連接該企業端裝置,且該雲端健康資料管理裝置係包括: An enterprise-side device for a company's health manager to input a company's verification information; and a cloud-based health data management device that is communicatively connected to the enterprise-side device, and the cloud-based health data management device includes: 一健康資料收集模組,係接收來自該企業端裝置之該企業驗證資料,以驗證該企業驗證資料,俾於該企業驗證資料經驗證為正確後,由該健康資料收集模組接收該企業端裝置發出之一第一機敏資料儲存要求;及 A health information collection module, which receives the enterprise verification data from the enterprise device to verify the enterprise verification data, so that after the enterprise verification data is verified to be correct, the health data collection module receives the enterprise verification data. A first sensitive data storage request issued by the device; and 一企業資料管理模組,係驗證該第一機敏資料儲存要求,以於確認該第一機敏資料儲存要求為合法時,依據該第一機敏資料儲存要求產生一第一令牌, An enterprise data management module is used to verify the first smart data storage request, so as to generate a first token according to the first smart data storage request when it is confirmed that the first smart data storage request is legal, 其中,於該健康資料收集模組產生一健康資料排序方式後,將該健康資料排序方式與該第一令牌進行綁定,再將綁定後之該健康資料排序方式與該第一令牌回傳至該企業端裝置,俾由該企業端裝置依據該健康資料排序方式將一員工健康資料進行排序,再將該經排序之員工健康資料及該第一令牌進行綁定,以形成一第二機敏資料儲存要求,使該企業端裝置將該第二機敏資料儲存要求上傳至該雲端健康資料管理裝置。 Wherein, after the health data collection module generates a health data sorting method, bind the health data sorting method with the first token, and then bind the health data sorting method with the first token Send back to the enterprise device, so that the enterprise device sorts an employee's health data according to the health data sorting method, and then binds the sorted employee health data and the first token to form a The second sensitive data storage request enables the enterprise device to upload the second sensitive data storage request to the cloud health data management device. 如請求項1所述之雲端健康資料管理系統,其中,該雲端健康資料管理裝置更包括一主資料庫,係提供複數企業資料給該企業資料管理模組,以由該企業資料管理模組將該複數企業資料與該第一機敏資料儲存要 求進行比對,俾確認該複數企業資料中是否具有該第一機敏資料儲存要求中之對應企業資料,藉此驗證該第一機敏資料儲存要求的合法性。 The cloud-based health data management system as described in Claim 1, wherein the cloud-based health data management device further includes a master database that provides multiple enterprise data to the enterprise data management module, so that the enterprise data management module will The multiple enterprise data and the storage requirements for the first sensitive data Comparison is required to confirm whether the plurality of enterprise information has the corresponding enterprise information in the first sensitive data storage request, thereby verifying the legitimacy of the first smart data storage request. 如請求項1所述之雲端健康資料管理系統,其中,該企業端裝置依據該健康資料排序方式將該員工健康資料中之生理量測資料的各項目之量測數值或人事資料進行排序。 The cloud health data management system as described in Claim 1, wherein the enterprise device sorts the measurement values or personnel data of each item of the physiological measurement data in the employee health data according to the health data sorting method. 如請求項1所述之雲端健康資料管理系統,其中,該健康資料收集模組接收到該第二機敏資料儲存要求時,由該企業資料管理模組驗證該第一令牌的令牌合法性,以於該第一令牌為合法時,該企業資料管理模組取得該企業之加密金鑰,且由該健康資料收集模組依據該健康資料排序方式將該第二機敏資料儲存要求中之該經排序之員工健康資料進行還原,以取得完整的該員工健康資料。 The cloud health data management system as described in Claim 1, wherein, when the health data collection module receives the second sensitive data storage request, the enterprise data management module verifies the legitimacy of the first token , so that when the first token is legal, the enterprise data management module obtains the encryption key of the enterprise, and the health data collection module stores the second sensitive data according to the health data sorting method The sorted employee health information is restored to obtain the complete employee health information. 如請求項4所述之雲端健康資料管理系統,其中,該雲端健康資料管理裝置更包括一加解密模組,係利用該企業之加密金鑰對該員工健康資料中之人事資料、健檢報告資料及生理量測資料進行加密。 The cloud-based health data management system as described in Claim 4, wherein the cloud-based health data management device further includes an encryption and decryption module, which uses the encryption key of the enterprise to store personnel data and health check reports in the employee's health data Data and physiological measurement data are encrypted. 如請求項1所述之雲端健康資料管理系統,其中,該企業端裝置係供該企業之健康管理人向該雲端健康資料管理裝置發出一機敏資料查詢要求,以於該企業資料管理模組驗證該機敏資料查詢要求為合法時,依據該機敏資料查詢要求產生一第二令牌。 The cloud health data management system as described in claim 1, wherein the enterprise-side device is for the health manager of the enterprise to send a smart data query request to the cloud health data management device for verification in the enterprise data management module When the smart data query request is valid, a second token is generated according to the smart data query request. 如請求項6所述之雲端健康資料管理系統,其中,該雲端健康資料管理裝置更包括一機敏資料管理模組,係接收該企業資料管理模組回覆的該第二令牌,由該機敏資料管理模組將該第二令牌提供給該雲端健康資料管 理裝置中之加解密模組,以由該加解密模組令該企業資料管理模組對該第二令牌進行令牌合法性確認。 The cloud-based health data management system as described in claim 6, wherein the cloud-based health data management device further includes a smart data management module, which receives the second token returned by the enterprise data management module and uses the smart data The management module provides the second token to the cloud health data manager The encryption and decryption module in the management device, so that the encryption and decryption module can make the enterprise data management module to confirm the token validity of the second token. 一種雲端健康資料管理方法,係包括: A cloud health data management method, comprising: 由一企業之健康管理人藉一企業端裝置輸入一企業驗證資料; The health manager of an enterprise enters an enterprise's verification information through an enterprise-end device; 由一雲端健康資料管理裝置中之健康資料收集模組接收來自該企業端裝置之該企業驗證資料,以驗證該企業驗證資料; The health data collection module in a cloud health data management device receives the enterprise verification data from the enterprise device to verify the enterprise verification data; 於該企業驗證資料經驗證為正確後,由該健康資料收集模組接收該企業端裝置發出之一第一機敏資料儲存要求; After the enterprise verification information is verified as correct, the health information collection module receives a first alert data storage request from the enterprise device; 由該雲端健康資料管理裝置中之企業資料管理模組驗證該第一機敏資料儲存要求,以於確認該第一機敏資料儲存要求為合法時,由該企業資料管理模組依據該第一機敏資料儲存要求產生一第一令牌; The enterprise data management module in the cloud health data management device verifies the first sensitive data storage request, so that when the first sensitive data storage request is confirmed to be legal, the enterprise data management module relies on the first sensitive data The storage request generates a first token; 由該健康資料收集模組產生一健康資料排序方式,以將該健康資料排序方式與該第一令牌進行綁定,再將綁定後之該健康資料排序方式與該第一令牌回傳至該企業端裝置; A health data sorting method is generated by the health data collection module to bind the health data sorting method with the first token, and then return the bound health data sorting method and the first token to the enterprise device; 由該企業端裝置依據該健康資料排序方式將一員工健康資料進行排序,再將該經排序之員工健康資料及該第一令牌進行綁定,以形成一第二機敏資料儲存要求;以及 The enterprise device sorts an employee's health data according to the health data sorting method, and then binds the sorted employee's health data and the first token to form a second sensitive data storage request; and 由該企業端裝置將該第二機敏資料儲存要求上傳至該雲端健康資料管理裝置。 The enterprise-side device uploads the second alert data storage request to the cloud health data management device. 如請求項8所述之雲端健康資料管理方法,更包括由該雲端健康資料管理裝置中之主資料庫提供複數企業資料給該企業資料管理模組,以由該企業資料管理模組將該複數企業資料與該第一機敏資料儲存要求進行比 對,俾確認該複數企業資料中是否具有該第一機敏資料儲存要求中之對應企業資料,藉此驗證該第一機敏資料儲存要求的合法性。 The cloud health data management method as described in claim item 8 further includes that the master database in the cloud health data management device provides multiple enterprise data to the enterprise data management module, so that the enterprise data management module Corporate data is compared with the first sensitive data storage requirements Yes, to confirm whether the plurality of enterprise information has the corresponding enterprise information in the first sensitive information storage request, so as to verify the legitimacy of the first sensitive information storage request. 如請求項8所述之雲端健康資料管理方法,更包括由該企業端裝置依據該健康資料排序方式將該員工健康資料中之生理量測資料的各項目之量測數值或人事資料進行排序。 The cloud-based health data management method as described in Claim 8 further includes that the enterprise device sorts the measurement values or personnel data of each item of the physiological measurement data in the employee's health data according to the health data sorting method. 如請求項8所述之雲端健康資料管理方法,更包括由該健康資料收集模組接收到該第二機敏資料儲存要求時,令該企業資料管理模組驗證該第一令牌的令牌合法性,以於該第一令牌為合法時,由該企業資料管理模組取得該企業之加密金鑰,再由該健康資料收集模組依據該健康資料排序方式將該第二機敏資料儲存要求中之該經排序之員工健康資料進行還原,以取得完整的該員工健康資料。 The cloud health data management method as described in claim item 8, further includes making the enterprise data management module verify that the token of the first token is legal when the health data collection module receives the second sensitive data storage request When the first token is legal, the enterprise data management module obtains the encryption key of the enterprise, and then the health data collection module requests to store the second sensitive data according to the health data sorting method Restore the sorted employee health data in order to obtain the complete employee health data. 如請求項11所述之雲端健康資料管理方法,更包括由該雲端健康資料管理裝置中之加解密模組利用該企業之加密金鑰對該員工健康資料中之人事資料、健檢報告資料及生理量測資料進行加密。 The cloud-based health data management method as described in claim 11 further includes that the encryption and decryption module in the cloud-based health data management device uses the encryption key of the company to encrypt the personnel data, health check report data and Physiological measurement data is encrypted. 如請求項8所述之雲端健康資料管理方法,更包括由該企業端裝置係提供該企業之健康管理人向該雲端健康資料管理裝置發出一機敏資料查詢要求,以於該企業資料管理模組驗證該機敏資料查詢要求係為合法時,由該企業資料管理模組依據該機敏資料查詢要求產生一第二令牌。 The cloud health data management method as described in claim item 8 further includes that the enterprise’s health manager sends a smart data query request to the cloud health data management device to be used in the enterprise data management module. When verifying that the smart data query request is legal, the enterprise data management module generates a second token according to the smart data query request. 如請求項13所述之雲端健康資料管理方法,更包括由該雲端健康資料管理裝置中之機敏資料管理模組接收由該企業資料管理模組回覆的該第二令牌,再由該機敏資料管理模組將該第二令牌提供給該雲端健康資料 管理裝置中之加解密模組,以使該加解密模組令該企業資料管理模組對該第二令牌進行令牌合法性確認。 The cloud health data management method as described in claim 13 further includes receiving the second token returned by the enterprise data management module by the smart data management module in the cloud health data management device, and then using the smart data The management module provides the second token to the cloud health information The encryption and decryption module in the management device, so that the encryption and decryption module can make the enterprise data management module to confirm the token validity of the second token. 一種電腦可讀媒介,應用於計算裝置或電腦中,係儲存有指令,以執行如請求項8至14之任一者所述之雲端健康資料管理方法。 A computer-readable medium, used in a computing device or a computer, stores instructions to execute the cloud-based health data management method described in any one of claims 8 to 14.
TW111105126A 2022-02-11 2022-02-11 A cloud heaith information management system, method and computer-readable medium thereof TWI781055B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111105126A TWI781055B (en) 2022-02-11 2022-02-11 A cloud heaith information management system, method and computer-readable medium thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111105126A TWI781055B (en) 2022-02-11 2022-02-11 A cloud heaith information management system, method and computer-readable medium thereof

Publications (2)

Publication Number Publication Date
TWI781055B true TWI781055B (en) 2022-10-11
TW202333103A TW202333103A (en) 2023-08-16

Family

ID=85462520

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111105126A TWI781055B (en) 2022-02-11 2022-02-11 A cloud heaith information management system, method and computer-readable medium thereof

Country Status (1)

Country Link
TW (1) TWI781055B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8863299B2 (en) * 2012-01-06 2014-10-14 Mobile Iron, Inc. Secure virtual file management system
CN104933654A (en) * 2015-05-29 2015-09-23 安徽师范大学 Community medical internet of things privacy protection method
TW202013925A (en) * 2018-06-11 2020-04-01 美商佩宣特里公司 System and method of controlling access of a user's health information stored over a health care network
WO2021212113A1 (en) * 2020-04-17 2021-10-21 Vacmobile Corporation Storing, authenticating, and transmitting health data

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8863299B2 (en) * 2012-01-06 2014-10-14 Mobile Iron, Inc. Secure virtual file management system
CN104933654A (en) * 2015-05-29 2015-09-23 安徽师范大学 Community medical internet of things privacy protection method
TW202013925A (en) * 2018-06-11 2020-04-01 美商佩宣特里公司 System and method of controlling access of a user's health information stored over a health care network
WO2021212113A1 (en) * 2020-04-17 2021-10-21 Vacmobile Corporation Storing, authenticating, and transmitting health data

Also Published As

Publication number Publication date
TW202333103A (en) 2023-08-16

Similar Documents

Publication Publication Date Title
US10887098B2 (en) System for digital identity authentication and methods of use
US11025419B2 (en) System for digital identity authentication and methods of use
US11429738B2 (en) Blockchain endorsement with approximate hash verification
CN110771095B (en) System and method for implementing blockchain-based digital certificates
US20180089419A1 (en) Digital identity system
US11360963B2 (en) Tracking and verification of physical assets
US9648496B2 (en) Authentication of web content
US11570002B2 (en) Reduced-step blockchain verification of media file
US20200274715A1 (en) Method, apparatus, and electronic device for blockchain-based recordkeeping
US20210091960A1 (en) Tracking and verification of physical assets
US20160239653A1 (en) Digital identity
US20200379856A1 (en) Peer node recovery via approximate hash verification
CN110800254B (en) System and method for generating digital signature
US11516000B2 (en) Approximate hash verification of unused blockchain output
US20200382280A1 (en) Committing data to blockchain based on approximate hash verification
US20160239658A1 (en) Digital identity
US20160241531A1 (en) Confidence values
WO2020000769A1 (en) Block chain-based medical insurance claim settlement method, system and computer device
EP3295388A1 (en) Computer-implemented tracking mechanism and data management
US20220329446A1 (en) Enhanced asset management using an electronic ledger
US20220329436A1 (en) Token-based identity validation via blockchain
US11621851B2 (en) Block chain proof for identification
US20200220899A1 (en) Certifying authenticity via dynamic dimensional coordinate scanning and decentralized data storage
US20210240673A1 (en) Load balancing based blockchain transaction submission
CN114257376A (en) Digital certificate updating method and device, computer equipment and storage medium

Legal Events

Date Code Title Description
GD4A Issue of patent certificate for granted invention patent