WO2015198873A1 - Drug history information management device and method, and program - Google Patents

Drug history information management device and method, and program Download PDF

Info

Publication number
WO2015198873A1
WO2015198873A1 PCT/JP2015/066827 JP2015066827W WO2015198873A1 WO 2015198873 A1 WO2015198873 A1 WO 2015198873A1 JP 2015066827 W JP2015066827 W JP 2015066827W WO 2015198873 A1 WO2015198873 A1 WO 2015198873A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
authentication
terminal device
personal identification
browsing
Prior art date
Application number
PCT/JP2015/066827
Other languages
French (fr)
Japanese (ja)
Inventor
芳徳 高木
福士 岳歩
小堀 洋一
Original Assignee
ソニー株式会社
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ソニー株式会社 filed Critical ソニー株式会社
Priority to JP2016529284A priority Critical patent/JP6350658B2/en
Publication of WO2015198873A1 publication Critical patent/WO2015198873A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H20/00ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance
    • G16H20/10ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance relating to drugs or medications, e.g. for ensuring correct administration to patients
    • G16H20/13ICT specially adapted for therapies or health-improving plans, e.g. for handling prescriptions, for steering therapy or for monitoring patient compliance relating to drugs or medications, e.g. for ensuring correct administration to patients delivered from dispensers
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records

Definitions

  • the present technology relates to a drug history information management apparatus, method, and program, and more particularly, to a drug history information management apparatus, method, and program capable of improving convenience while ensuring security.
  • the user can browse the medical history of users managed by the server simply by holding (touching) an IC (Integrated Circuit) card over a reader installed in a medical institution or pharmacy.
  • An application program that realizes the function of a medicine notebook is also actually operated.
  • Patent Document 1 In the technique described in Patent Document 1, it is necessary to register patients, medical institutions (doctors), and dispensing pharmacies in advance. If there are unregistered dispensing pharmacies or medical institutions, the provision of services is provided. I could't get it.
  • the present technology has been made in view of such a situation, and is intended to improve convenience while ensuring security.
  • the medication history information management device is a medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network.
  • a communication unit for transmitting and receiving information;
  • a recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
  • the controller is When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit, Processing for generating the authentication information;
  • the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and
  • the authentication information can be valid for a predetermined time after the authentication information is issued, or for a predetermined time after accessing the drug history information using the authentication information.
  • the authentication auxiliary information includes information on a place where the browsing request is made by operating the second terminal device as information on the place where the browsing request is made by the second terminal device. can do.
  • the control unit further sends the second personal identification information, the updated drug history information, and the update request for the drug history information associated with the second personal identification information by the communication unit.
  • the process which updates the said medical history information can be performed.
  • the medical history information management method or program includes: A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network, A communication unit for transmitting and receiving information; A drug history information management method or program for a drug history information management apparatus comprising at least the drug history information, authentication information, and authentication recording information that can be recorded in association with personal identification information.
  • the communication unit Processing for generating the authentication information; A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information; A process of transmitting the authentication information by the communication unit to the first terminal device, When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device And performing a process of performing authentication and determining whether or not the medicine history information can be browsed by the second terminal device.
  • a medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network, A communication unit for transmitting and receiving information; A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information, In the drug history information management device comprising the communication unit and a control unit for controlling the recording unit, When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit, Processing for generating the authentication information; A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information; A process of transmitting the authentication information by the communication unit to the first terminal device; When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication
  • the present technology relates to an information processing system in which a user browses browsing data deposited on a cloud by using an IC card or the like issued to the user in advance.
  • a third party such as a predetermined operator designated by the user
  • the third party uses a one-time password to Authentication can be performed without using a browser, and browsing data can be browsed. Thereby, convenience can be improved while ensuring security.
  • FIG. 1 it is assumed that there is an information processing system that can browse browsing data about a user recorded in the server 12 using a portable terminal device 11 possessed by the user. .
  • a personal identification ID is recorded in the portable terminal device 11 as identification information that can uniquely identify the user, and the browsing data of the user specified by the personal identification ID is stored in the server 12. It is recorded in association with the personal identification ID.
  • a personal identification ID is issued in advance to the user.
  • the user When browsing the user's browsing data, the user operates the portable terminal device 11 to transmit the personal identification ID to the server 12 and acquires the browsing data associated with the personal identification ID from the server 12. It is displayed on the portable terminal device 11 and browsed.
  • a third party who intends to browse the browsing data of the user temporarily is, for example, a predetermined operator who browses the browsing data of the user and performs an update of the browsing data.
  • the terminal device 13 when the user's browsing data is browsed by the third party terminal device 13, the terminal device 13 basically has to acquire a personal identification ID from the portable terminal device 11 or the like. It can be difficult.
  • the terminal device 13 can temporarily browse the browsing data recorded in the server 12 by using the one-time password issued by the server 12 in response to a user request. Has been made.
  • the portable terminal device 11 transmits a request for issuing a one-time password to the server 12 together with the personal identification ID and authentication auxiliary information in accordance with a user operation.
  • the authentication auxiliary information is information related to the browsing data to be updated from now on, for example, part of the browsing data updated this time, that is, information included in the data of the updated portion of the browsing data.
  • This authentication auxiliary information is used together with a one-time password when authenticating a third party who temporarily browses browsing data, that is, the terminal device 13. That is, the authentication auxiliary information is used as auxiliary authentication information.
  • the one-time password is authentication information used for authentication of a third party when the server 12 gives the third party temporary authority for browsing data of the user in response to a user request.
  • the server 12 When a request for issuing a one-time password is made in this way, the server 12 generates (issues) a one-time password associated with the personal identification ID transmitted along with the issue request in response to the issue request. Then, the server 12 records the one-time password and the authentication auxiliary information in association with the personal identification ID, and transmits the generated one-time password to the portable terminal device 11 as indicated by an arrow A12.
  • the portable terminal device 11 When the portable terminal device 11 receives the one-time password from the server 12, the portable terminal device 11 displays the one-time password. Then, as indicated by arrow A13, the user verbally notifies the third party of the authentication assistance information and the one-time password by means such as telephone. Further, as indicated by an arrow A14, the terminal device 13 acquires information on a portion of the browsing data that is updated this time by some method.
  • the terminal device 13 can extract the authentication auxiliary information from the acquired information of the updated part. There is no need to pass authentication assistance information to a third party. Further, the notification of the one-time password from the user to the third party may be performed by any method such as e-mail using the portable terminal device 11 or the terminal device 13 and FAX transmission / reception in addition to verbal communication. .
  • the third party operates the terminal device 13 to transmit the one-time password and authentication auxiliary information notified from the user to the server 12 as indicated by arrow A15, and requests transmission of browsing data. Then, the server 12 compares the one-time password and authentication auxiliary information received from the terminal device 13 with the one-time password and authentication auxiliary information recorded in association with the personal identification ID, so that a third party (terminal Authentication of device 13) is performed.
  • the server 12 When the authentication is correctly performed, that is, when it is confirmed (authenticated) that the third party (terminal device 13) has been granted temporary browsing authority, the server 12 has the personal identification ID as indicated by an arrow A16.
  • the browsing data associated with is transmitted to the terminal device 13. Thereby, in the terminal device 13, it becomes possible to browse a user's browsing data temporarily.
  • the third party generates a portion of the browsing data that is updated this time, that is, new browsing data based on the information of the portion of the browsing data that is updated this time, referring to the browsing data as necessary.
  • the terminal device 13 transmits new browsing data to the server 12 as indicated by an arrow A17 and requests update (registration) of the new browsing data.
  • the server 12 updates the browsing data by recording the new browsing data received from the terminal device 13 in association with the personal identification ID in response to a request from the terminal device 13.
  • the server 12 invalidates the one-time password when new browsing data is received from the terminal device 13 and recorded. For example, the server 12 deletes the one-time password and authentication auxiliary information recorded in association with the personal identification ID, and invalidates the browsing authority by the one-time password.
  • the period during which a third party (terminal device 13) can register new browsing data that is, the one-time password is valid for a predetermined period after the one-time password is issued, It is possible to set a predetermined period after access to the browsing data using.
  • the period during which new browsing data can be registered is, for example, after authentication with a one-time password is performed until communication with the server 12 is disconnected (while the session continues). It can also be. Furthermore, the browsing authority by a one-time password may be invalidated when browsing data is transmitted to the terminal device 13 and browsing is completed.
  • This technology is managed on the network, for example, when browsing the user's medication history data with the electronic medicine notebook service, or when browsing the purchase history of the user's books managed by the server. It is applicable when browsing some data.
  • the present technology will be described in more detail by taking as an example a case where the user's medicine history data is browsed by the electronic medicine notebook service.
  • an information processing system to which the present technology is applied is configured, for example, as shown in FIG.
  • the information processing system 41 shown in FIG. 2 includes a data center 51, an information terminal device 52, an IC card 53 and a portable terminal device 54 possessed by the user.
  • the data center 51 and the information terminal device 52 are connected to each other via a communication network 55 including a wired or wireless network such as the Internet.
  • the portable terminal device 54 and the information terminal device 52 can upload drug history data such as an electronic medicine notebook to the data center 51 and browse the drug history data as appropriate. is there.
  • the data center 51, the information terminal device 52, and the portable terminal device 54 correspond to the server 12, the terminal device 13, and the portable terminal device 11 described with reference to FIG. Further, the medicine history data to be browsed in the information processing system 41 corresponds to the browse data described with reference to FIG.
  • the data center 51 manages the drug history data of the user. That is, the data center 51 records a personal identification ID, which is an ID unique to a user, and the user's medication history data specified by the personal identification ID in association with each other.
  • a personal identification ID which is an ID unique to a user
  • the personal identification ID is one piece of personal identification information that can uniquely identify the user. However, if another person simply obtains the personal identification ID, it is generally identified by the personal identification ID. It is information that cannot identify the individual user (it is difficult).
  • a personal identification ID is used as identification information for identifying a user.
  • any information can be used as long as the user can be identified, not limited to a personal identification ID.
  • the data center 51 manages the medicine history data supplied from the information terminal device 52 and the portable terminal device 54, and records the medicine history recorded in response to a request from the information terminal device 52 and the portable terminal device 54. Disclose data. Further, the data center 51 issues a one-time password in response to a request from the portable terminal device 54, and performs authentication using the one-time password.
  • the information terminal device 52 is provided, for example, in a service member store registered in advance that provides a predetermined service.
  • the information terminal device 52 is provided in a pharmacy where a user purchases a prescribed medicine.
  • the pharmacy (pharmacist or the like) in which the information terminal device 52 is installed corresponds to a third party such as the business operator described with reference to FIG.
  • the information terminal device 52 is not necessarily provided in the service member store. In other words, the information terminal device 52 does not need to be registered in the data center 51 in advance, and can be an arbitrary terminal device.
  • the information terminal device 52 is composed of a computer or the like, and performs various processes according to input operations by a pharmacist or the like. Specifically, for example, the information terminal device 52 generates drug history data of the user in response to an input operation by a pharmacist or the like, records the drug history data, or stores the drug history data via the communication network 55 in the data center. 51 to be recorded.
  • the information terminal device 52 acquires the drug history data recorded in the data center 51 using the one-time password and authentication auxiliary information transmitted from the user as appropriate.
  • the IC card 53 is an IC card that a user who receives a service provided by a service member store in which the information terminal device 52 is installed is appropriately used when receiving the service.
  • the IC card 53 is issued for each user. Is done.
  • the IC card 53 stores a personal identification ID for authenticating a user who is a service user, and personal information including the user's name, date of birth, and sex.
  • the portable terminal device 54 is composed of a multifunctional mobile phone or the like possessed by the user, communicates with the data center 51 or the information terminal device 52 via a communication network or communication network 55 (not shown), and stores information as necessary. Give and receive. For example, the portable terminal device 54 requests the data center 51 to issue a one-time password, or receives and displays drug history data from the data center 51.
  • the information processing system 41 may include a plurality of information terminal devices 52.
  • FIG. 3 is a diagram illustrating a configuration example of the data center 51.
  • the data center 51 is configured as a single device, but the data center 51 may be configured from a plurality of devices.
  • 3 includes a recording unit 81, a communication unit 82, and a control unit 83.
  • the recording unit 81 is a database, for example, and records various data.
  • the recording unit 81 records each user's personal identification ID and drug history data in association with each other, and supplies the recorded data to the control unit 83 as necessary.
  • the communication unit 82 communicates with the information terminal device 52 and the portable terminal device 54 via the communication network 55 and the like, supplies the received information to the control unit 83, and transmits information supplied from the control unit 83. To do.
  • the control unit 83 controls the operation of the entire data center 51.
  • the control unit 83 includes an information management unit 91, a generation unit 92, and an authentication unit 93.
  • the information management unit 91 manages the data recorded in the recording unit 81.
  • the generation unit 92 generates a one-time password in response to a request from the portable terminal device 54.
  • the authentication unit 93 authenticates the information terminal device 52 using a one-time password.
  • FIG. 4 is a diagram illustrating a configuration example of the information terminal device 52.
  • the information terminal device 52 is configured as one device, but the information terminal device 52 may be configured from a plurality of devices.
  • the information terminal device 52 includes a communication unit 121, an input unit 122, a display unit 123, a control unit 124, and a recording unit 125.
  • the communication unit 121 communicates with each device such as the data center 51 via the communication network 55, receives the transmitted information, supplies the information to the control unit 124, and transmits the information supplied from the control unit 124.
  • the input unit 122 includes a mouse, a touch panel, and the like, and supplies a signal corresponding to an operation of a pharmacist or the like to the control unit 124.
  • the display unit 123 includes a liquid crystal display panel and the like, and displays an image or the like based on data supplied from the control unit 124.
  • the control unit 124 controls the operation of the information terminal device 52 as a whole.
  • the control unit 124 includes a browsing control unit 131 and a display control unit 132.
  • the browsing control unit 131 performs processing related to browsing of medical history data recorded in the data center 51.
  • the display control unit 132 controls display of various images and information on the display unit 123.
  • the recording unit 125 records various data and supplies the data to the control unit 124 as necessary.
  • FIG. 5 is a diagram illustrating a configuration example of the portable terminal device 54.
  • the portable terminal device 54 includes a communication unit 161, an input unit 162, a control unit 163, a recording unit 164, and a display unit 165.
  • the communication unit 161 communicates with an external device such as the data center 51, receives various types of data, supplies the data to the control unit 163, and transmits data supplied from the control unit 163.
  • the input unit 162 includes, for example, an input button, a touch panel, a microphone, and the like, and supplies a signal corresponding to an input operation by the user to the control unit 163.
  • the control unit 163 controls the operation of the entire portable terminal device 54.
  • the control unit 163 includes an issue request unit 171 and a display control unit 172.
  • the issue request unit 171 generates a one-time password issue request.
  • the display control unit 172 controls display of images and information on the display unit 165.
  • the recording unit 164 records various types of data supplied from the control unit 163 and supplies the data to the control unit 163 as necessary. For example, the personal identification ID of the user is recorded in the recording unit 164.
  • the display unit 165 includes a liquid crystal display panel and the like, and displays various images and information based on data supplied from the control unit 163.
  • the following cases can be considered as cases where it is necessary to issue a one-time password when providing a service for browsing and managing drug history data using the information processing system 41.
  • a user who is a patient has already issued an IC card 53 for receiving an electronic medicine notebook service, and the portable terminal device 54 has already been registered as a terminal device for receiving the service.
  • medicine history data which is information in an electronic medicine notebook, is recorded in the data center 51 in association with the personal identification ID of the user.
  • the doctor prepares the prescription created at the examination with the consent of the user at the pharmacy for home medical care. It was delivered to the information terminal device 52.
  • the prescription is digitized, and prescription data, which is prescription data, is transmitted from the information terminal device owned by the doctor to the information terminal device 52 via the communication network 55 or the like.
  • the pharmacist displays the prescription data, confirms the prescription medicine, and creates medicine history data including the contents of the prescription.
  • the pharmacist wants to view the drug history data recorded in the data center 51 in order to confirm the contraindication of the combination of drugs from the patient's medication history.
  • the information terminal device 52 acquires the personal identification ID of the user from the IC card 53 or the portable terminal device 54, and the data The medical history data recorded in the center 51 can be browsed.
  • the pharmacist wants to browse the user's medication history data temporarily without causing the user to visit the station.
  • the user operates the portable terminal device 54 to perform an operation for requesting the issuance of a one-time password.
  • a part of the user's medicine history data to be updated specifically, For example, a drug name included in a prescription is input as authentication auxiliary information.
  • the information input (designated) as the authentication auxiliary information may be any information as long as it is information included in the prescription, that is, a part of the prescription data. Alternatively, the description will be continued on the assumption that names of a plurality of medicines are input.
  • a part of the prescription data specified as the authentication auxiliary information by the user is also referred to as prescription partial information.
  • the data of the updated part of the drug history data to be updated is data including prescription data
  • a part of the prescription data is prescription part information as authentication auxiliary information.
  • the portable terminal device 54 transmits a one-time password issuance request to the data center 51 together with the personal identification ID and prescription part information, as indicated by an arrow A21 in FIG.
  • the data center 51 generates a one-time password in response to the issuance request, records the one-time password and prescription part information in association with the personal identification ID, and stores the one-time password as indicated by an arrow A22. To device 54.
  • the doctor who performed the examination as shown by arrow A23 transmits the prescription data from the doctor's information terminal device to the information terminal device 52, and the information terminal device 52 The prescription data transmitted from the terminal device is received.
  • the portable terminal device 54 receives and displays the one-time password from the data center 51, the user verbally informs the pharmacist of the one-time password and prescription part information as indicated by an arrow A24.
  • the pharmacist operates the information terminal device 52, and the information terminal device 52 transmits the one-time password and prescription part information notified from the user to the data center 51 as indicated by an arrow A25, and requests transmission of drug history data. To do.
  • the data center 51 compares the one-time password and prescription part information received from the information terminal device 52 with the one-time password and prescription part information recorded in association with the personal identification ID for authentication. I do.
  • the data center 51 transmits the drug history data associated with the personal identification ID to the information terminal device 52 as indicated by an arrow A26. Thereby, in the information terminal device 52, it becomes possible to browse a user's medicine history data temporarily.
  • the pharmacist refers to the drug history data to check whether there are any contraindications to the drug prescribed to the user, and gives instructions to the user if necessary. Further, the pharmacist creates a part of the drug history data that is updated based on the prescription data, that is, new drug history data. Finally, the information terminal device 52 transmits new drug history data to the data center 51 as indicated by an arrow A27 and requests update (registration) of the new drug history data.
  • the data center 51 updates the drug history data by recording the new drug history data received from the information terminal device 52 in association with the personal identification ID in response to a request from the information terminal device 52.
  • step S11 the communication unit 161 of the portable terminal device 54 transmits the personal identification ID and prescription part information to the data center 51 together with the issue request.
  • the issue request unit 171 of the portable terminal device 54 generates prescription part information based on a signal supplied from the input unit 162 according to a user operation, and also generates a one-time password issue request. Further, the issue request unit 171 reads the personal identification ID of the user from the recording unit 164.
  • the issue request unit 171 supplies a request for issuing a one-time password, a personal identification ID, and prescription part information to the communication unit 161 and instructs (controls) transmission to the data center 51.
  • the communication unit 161 transmits the issue request, personal identification ID, and prescription part information supplied from the issue request unit 171 to the data center 51 via the communication network 55.
  • step S 21 the communication unit 82 of the data center 51 receives the issue request, the personal identification ID, and the prescription part information transmitted from the portable terminal device 54 and supplies them to the control unit 83.
  • step S ⁇ b> 22 the generation unit 92 of the control unit 83 generates a one-time password in response to the issue request supplied from the communication unit 82.
  • the generation unit 92 generates information including a predetermined number of randomly selected characters and numbers as a one-time password.
  • the generation unit 92 performs user authentication, and generates a one-time password after the user is authenticated.
  • step S23 the recording unit 81 records the one-time password and prescription part information in association with the personal identification ID.
  • the information management unit 91 supplies the personal identification ID and prescription part information supplied from the communication unit 82 and the one-time password generated by the generation unit 92 to the recording unit 81 and controls recording of the information. To do. Then, the recording unit 81 records the personal identification ID, the one-time password, and the prescription part information in association with each other according to the control of the information management unit 91.
  • the information management unit 91 supplies the generated one-time password to the communication unit 82 and instructs transmission to the portable terminal device 54.
  • step S24 the communication unit 82 transmits the one-time password supplied from the information management unit 91 to the portable terminal device 54 via the communication network 55, and the one-time password issuing process ends.
  • a one-time password for temporarily permitting a third party (pharmacist) to browse the user's medication history data is issued from the data center 51 to the user.
  • step S 12 the communication unit 161 of the portable terminal device 54 receives the one-time password transmitted from the data center 51 and supplies it to the control unit 163.
  • the issuance request unit 171 of the control unit 163 supplies the one-time password to the recording unit 164 as necessary, and records it.
  • step S13 the display control unit 172 supplies the one-time password supplied from the communication unit 161 to the display unit 165 for display.
  • the display unit 165 displays the one-time password in accordance with the control of the display control unit 172, and the one-time password issuance request process ends.
  • the user verbally notifies the pharmacist of the one-time password using a telephone or the like. At that time, the user also notifies the pharmacist of the medicine name as the prescription part information input by the user.
  • the portable terminal device 54 transmits a personal identification ID and prescription part information to the data center 51 together with an issuance request in accordance with a user operation. Further, the data center 51 issues a one-time password in response to the issuance request, and records the one-time password and prescription part information in association with the personal identification ID.
  • the prescription part information is information that is difficult for others to imagine and easy for the user and pharmacist to memorize.
  • the one-time password can be shortened while ensuring security, and the burden on the user and pharmacist can be reduced. Thereby, convenience can be improved while ensuring security.
  • step S51 the communication unit 121 of the information terminal device 52 receives prescription data transmitted from the doctor's information terminal device and supplies it to the control unit 124.
  • the prescription data may be acquired at any timing.
  • the pharmacist performs an operation for browsing the medical history data on the input unit 122 and operates the input unit 122 to input the one-time password and prescription part information.
  • the browsing control unit 131 generates a browsing request for requesting browsing of drug history data based on a signal supplied from the input unit 122 according to the operation of the pharmacist, and also includes a browsing request, a one-time password, and a prescription. Partial information is supplied to the communication unit 121 and transmission thereof is controlled.
  • the pharmacist verbally transmits and listens to the prescription part information from the user, and operates the input unit 122 to input the prescription part information.
  • the prescription part information may be acquired in any way. Good.
  • step S ⁇ b> 52 the communication unit 121 transmits the one-time password and prescription part information supplied from the browsing control unit 131 to the data center 51 via the communication network 55 together with the browsing request supplied from the browsing control unit 131. .
  • step S 61 the communication unit 82 of the data center 51 receives the browsing request, the one-time password, and the prescription part information transmitted from the information terminal device 52 and supplies them to the control unit 83.
  • step S62 the authentication unit 93 of the control unit 83 performs authentication based on the one-time password and prescription part information supplied from the communication unit 82 in response to the browsing request supplied from the communication unit 82. That is, the one-time password and prescription part information are compared, and the information terminal device 52 (pharmacist) is authenticated according to the comparison result.
  • the authentication unit 93 determines whether or not the one-time password and prescription part information supplied from the communication unit 82 match the one-time password and prescription part information recorded in the recording unit 81 in association with the personal identification ID. Determine whether. And when it determines with the authentication part 93 being in agreement, the third party (pharmacist) who transmitted the browsing request will identify the user identified by the personal identification ID associated with the one-time password and prescription part information. It is assumed that the user has the authority to view drug history data temporarily. That is, the pharmacist is authenticated as a third party having temporary browsing authority.
  • third-party authentication is not limited to whether the one-time password and prescription part information match, but how the information calculated from the one-time password and prescription part information matches, etc. Good.
  • the information management unit 91 reads out the medical history data requested to be browsed, that is, the medical history data associated with the personal identification ID from the recording unit 81 in step S63.
  • the identification ID and drug history data are supplied to the communication unit 82. Then, the information management unit 91 instructs the communication unit 82 to transmit a personal identification ID and medication history data.
  • step S64 the communication unit 82 transmits the personal identification ID and the medication history data supplied from the information management unit 91 to the information terminal device 52 via the communication network 55.
  • step S53 the communication unit 121 of the information terminal device 52 receives the personal identification ID and the medication history data transmitted from the data center 51 and supplies them to the control unit 124.
  • step S54 the display control unit 132 of the control unit 124 supplies the drug history data supplied from the communication unit 121 to the display unit 123 for display.
  • the display unit 123 displays the drug history data according to the control of the display control unit 132.
  • the pharmacist refers to the drug history data.
  • the pharmacist operates the input unit 122 to create drug history data by appropriately processing the prescription data acquired in the process of step S51. That is, the control unit 124 generates drug history data based on the prescription data in response to an operation performed on the input unit 122 by the pharmacist.
  • the drug history data generated at this time is, for example, a new part added when the drug history data recorded in the data center 51 is updated, that is, data of an updated part.
  • the new drug history data includes, for example, information related to the pharmacy in which the information terminal device 52 is provided, in addition to the information included in the prescription data.
  • information included in the prescription data for example, information included in the prescription data, the name of the drug prescribed to the user, the prescription amount of the drug, information indicating the medical institution that performed the diagnosis, etc. It is included.
  • the new drug history data includes, for example, information indicating a pharmacy name as information on the pharmacy.
  • control unit 124 supplies the generated new drug history data, the personal identification ID received in the process of step S53, and the update request for the drug history data to the communication unit 121, and the data The transmission to the center 51 is instructed.
  • step S55 the communication unit 121 transmits the personal identification ID, new drug history data, and drug history data update request supplied from the control unit 124 to the data center 51 via the communication network 55, and browse processing. Ends.
  • step S65 the communication unit 82 of the data center 51 receives the personal identification ID, the new drug history data, and the update request for the drug history data transmitted from the information terminal device 52, and supplies them to the control unit 83. To do.
  • step S66 the information management unit 91 supplies the new drug history data supplied from the communication unit 82 to the recording unit 81 for recording in response to a request to update the drug history data.
  • the information management unit 91 adds the newly received medication history data to the medication history data recorded in the recording unit 81 in association with the same personal identification ID as the personal identification ID supplied from the communication unit 82. Then, recording of new drug history data by the recording unit 81 is controlled so that the drug history data is updated.
  • the recording unit 81 updates the drug history data based on the drug history data supplied from the information management unit 91. When the drug history data is updated, the providing process ends.
  • the data center 51 performs authentication based on the one-time password and prescription part information, permits temporary browsing of the drug history data, receives new drug history data, and stores the drug history data. Update.
  • the information terminal device 52 can separately update the medical history data without performing authentication. Furthermore, convenience can be improved.
  • the case where the drug history data is updated after browsing the drug history data has been described, but the browsing process ends when the drug history data is browsed, that is, when the drug history data is displayed. You may do it. In such a case, step S55 in the browsing process and steps S65 and S66 in the providing process are not performed.
  • the one-time password is transmitted together with the personal identification ID, new drug history data, and the update request in step S55, and the one-time password is valid for the data center 51. If it is within the valid period, the process proceeds to step S65 and step S66.
  • the information processing apparatus 52 may extract prescription part information from the prescription data.
  • the process shown, for example in FIG. 9 is performed as a browsing process and a provision process.
  • step S91 is the same as the processing in step S51 in FIG.
  • step S92 the browsing control unit 131 of the information terminal device 52 extracts prescription part information from the prescription data supplied from the communication unit 121.
  • the browsing control unit 131 extracts a predetermined part of the prescription data and uses it as prescription part information.
  • the predetermined part is, for example, a part in which information about a medicine prescribed for the user (patient) is stored.
  • the prescription part information may be described in a prescription with a QR (Quick Response) code (registered trademark) or may be encrypted and described in prescription data.
  • the browsing control unit 131 acquires the prescription part information by reading a QR code (registered trademark) included in the prescription or decrypting data described in the prescription data.
  • the browsing control unit 131 supplies the browsing request, the one-time password, and the prescription part information to the communication unit 121, and controls their transmission.
  • step S ⁇ b> 93 the communication unit 121 transmits the one-time password and prescription part information supplied from the browsing control unit 131 to the data center 51 via the communication network 55 together with the browsing request supplied from the browsing control unit 131. .
  • the data center 51 When the browsing request is transmitted, the data center 51 performs the processing from step S101 to step S104 to perform the authentication processing and the personal identification ID and medication history data transmission processing. Since it is the same as the process of step S61 thru
  • steps S94 to S96 are performed in the information terminal device 52, and the browsing process is terminated, but these processes are the steps of FIG. Since it is the same as the process of S53 thru
  • step S94 to step S96 when the processing of step S94 to step S96 is performed and the personal identification ID, new drug history data, and an update request are transmitted to the data center 51, the data center 51 performs the processing of step S105 and step S106. Then, the providing process ends. Note that the processing in step S105 and step S106 is the same as the processing in step S65 and step S66 in FIG.
  • the information terminal device 52 extracts prescription part information from the acquired prescription data.
  • the user does not need to convey the prescription part information to the pharmacist, and not only can the convenience be improved, but also the security can be improved. .
  • ⁇ Third Embodiment> ⁇ About browsing medical history data>
  • a part of the prescription data is used as authentication auxiliary information as an example, but it is not included in the prescription data.
  • Information included in the history data for example, information related to a pharmacy, may be used as auxiliary authentication information.
  • auxiliary authentication information for example, information related to a pharmacy.
  • the pharmacy provided with the information terminal device 52 is registered in the data center 51 in advance. That is, in the recording unit 81 of the data center 51, a pharmacy ID for identifying a pharmacy, pharmacy name information indicating the pharmacy name (name), and area information indicating a pharmacy location area are recorded in association with each other. Yes.
  • the location area of the pharmacy is, for example, the prefecture or city where the pharmacy is located.
  • the user operates the portable terminal device 54 and inputs the pharmacy name information or the regional information of the pharmacy that temporarily permits the browsing of the drug history data as the pharmacy information.
  • pharmacy information is used as authentication auxiliary information. Since the information such as the pharmacy name is information included in the newly added drug history data, it can be said that the pharmacy information is information included in the drug history data to be updated.
  • the pharmacy information may be input directly by the user, or the user may select from the displayed information. Further, both pharmacy name information and regional information may be input as pharmacy information.
  • the portable terminal device 54 transmits a request for issuing a one-time password to the data center 51 together with the personal identification ID and the pharmacy information, as indicated by an arrow A31 in FIG.
  • the data center 51 generates a one-time password in response to the issuance request, records the one-time password and pharmacy information in association with the personal identification ID, and uses the one-time password as a portable terminal device as indicated by an arrow A32. 54.
  • the portable terminal device 54 When the portable terminal device 54 receives and displays the one-time password from the data center 51, the user verbally informs the pharmacist of the one-time password as indicated by an arrow A33. In this case, the user does not need to convey pharmacy information to the pharmacist.
  • the pharmacist operates the information terminal device 52, and the information terminal device 52 transmits the one-time password notified from the user and the pharmacy ID recorded in advance in the information terminal device 52 to the data center 51 as indicated by an arrow A34. And request transmission of drug history data.
  • the data center 51 performs authentication based on the one-time password and pharmacy ID received from the information terminal device 52 and the one-time password and pharmacy information recorded in association with the personal identification ID.
  • the pharmacy name information or the regional information that is recorded in association with the pharmacy ID in the data center 51 in advance and the pharmacy information that is recorded in association with the personal identification ID and the one-time password. If it matches, it is assumed that authentication was successful.
  • the data center 51 transmits the drug history data associated with the personal identification ID to the information terminal device 52 as indicated by an arrow A35. Thereby, in the information terminal device 52, it becomes possible to browse a user's medicine history data temporarily.
  • Pharmacist refers to drug history data and creates new drug history data. Finally, the information terminal device 52 transmits new drug history data to the data center 51 as indicated by an arrow A36, and requests update (registration) of the new drug history data.
  • the data center 51 updates the drug history data by recording the new drug history data received from the information terminal device 52 in association with the personal identification ID in response to a request from the information terminal device 52.
  • step S131 the communication unit 161 of the portable terminal device 54 transmits the personal identification ID and pharmacy information to the data center 51 together with the issue request.
  • the issue request unit 171 of the portable terminal device 54 generates pharmacy information based on a signal supplied from the input unit 162 according to a user operation, and also generates a one-time password issue request. Further, the issue request unit 171 reads the personal identification ID of the user from the recording unit 164.
  • the issuance request unit 171 supplies the one-time password issuance request, personal identification ID, and pharmacy information to the communication unit 161, and controls transmission to the data center 51.
  • the communication unit 161 transmits the issue request, the personal identification ID, and the pharmacy information supplied from the issue request unit 171 to the data center 51 via the communication network 55.
  • step S141 the communication unit 82 of the data center 51 receives the issuance request, personal identification ID, and pharmacy information transmitted from the portable terminal device 54 and supplies them to the control unit 83.
  • step S142 the generation unit 92 of the control unit 83 generates a one-time password in response to the issue request supplied from the communication unit 82.
  • step S143 the recording unit 81 records the one-time password and pharmacy information in association with the personal identification ID.
  • the information management unit 91 supplies the personal identification ID and pharmacy information supplied from the communication unit 82 and the one-time password generated by the generation unit 92 to the recording unit 81 and controls the recording of the information. .
  • the recording unit 81 records the personal identification ID, the one-time password, and the pharmacy information in association with each other according to the control of the information management unit 91.
  • the information management unit 91 supplies the generated one-time password to the communication unit 82 and instructs transmission to the portable terminal device 54.
  • step S144 the communication unit 82 transmits the one-time password supplied from the information management unit 91 to the portable terminal device 54 via the communication network 55, and the one-time password issuing process ends.
  • step S132 and step S133 are performed, and the one-time password issuance request process ends, but these processes are performed in steps S12 and S of FIG. Since it is the same as the process of S13, the description is abbreviate
  • the user verbally notifies the pharmacist of the one-time password using a telephone or the like. At that time, the user does not need to convey the personal identification ID and pharmacy information to the pharmacist.
  • the portable terminal device 54 transmits the personal identification ID and pharmacy information to the data center 51 together with the issue request. Further, the data center 51 issues a one-time password in response to the issue request, and records the one-time password and pharmacy information in association with the personal identification ID.
  • the one-time password can be shortened while ensuring security, and convenience can be improved.
  • pharmacy name information and regional information as pharmacy information, it is possible to limit the range of pharmacies that are permitted to be browsed, pharmacy groups, and the like, and further improve convenience.
  • step S171 the communication unit 121 of the information terminal device 52 transmits the one-time password and the pharmacy ID to the data center 51 through the communication network 55 together with the browsing request.
  • the pharmacist performs an operation for browsing the drug history data on the input unit 122 and operates the input unit 122 to input a one-time password.
  • the browsing control unit 131 generates a browsing request for requesting browsing of drug history data in accordance with the operation of the pharmacist and acquires a one-time password.
  • the browsing control unit 131 reads the pharmacy ID from the recording unit 125.
  • This pharmacy ID is information indicating a pharmacy in which the information terminal device 52 is provided.
  • the browsing control unit 131 supplies the browsing request, the one-time password, and the pharmacy ID obtained in this way to the communication unit 121, and controls their transmission.
  • the communication unit 121 transmits the browsing request, the one-time password, and the pharmacy ID supplied from the browsing control unit 131 to the data center 51.
  • step S181 the communication unit 82 of the data center 51 receives the browsing request, the one-time password, and the pharmacy ID transmitted from the information terminal device 52 and supplies them to the control unit 83.
  • step S182 the authentication unit 93 of the control unit 83 performs authentication based on the one-time password and pharmacy ID supplied from the communication unit 82 in response to the browsing request supplied from the communication unit 82.
  • the authentication unit 93 reads out from the recording unit 81 pharmacy name information and region information associated with the same pharmacy ID as the pharmacy ID supplied from the communication unit 82 among the pharmacy IDs recorded in the recording unit 81. .
  • the authentication unit 93 records the one-time password supplied from the communication unit 82 and the pharmacy name information or the region information read from the recording unit 81 in association with the personal identification ID in the recording unit 81. It is determined whether or not it matches the one-time password and pharmacy name information or regional information indicated by the pharmacy information.
  • pharmacy name information is designated as pharmacy information
  • one-time passwords are transmitted to several stores in a pharmacy belonging to the same group, it is possible to view the drug history data at each of those stores. That is, the user can limit the pharmacy groups permitted to view the drug history data by specifying the pharmacy name information as the pharmacy information.
  • the pharmacy name information may include a pharmacy name (pharmacy name) and a pharmacy store name.
  • the user can limit the stores that permit the browsing of the drug history data from the stores of the pharmacies belonging to the pharmacy group by specifying the name of the pharmacy group and the store name as the pharmacy name information.
  • step S183 and step S184 are performed, and the personal identification ID and drug history data are transmitted to the information terminal device 52. Note that the processing in step S183 and step S184 is the same as the processing in step S63 and step S64 in FIG.
  • the information terminal device 52 performs the processing of steps S172 to S174, and the browsing processing ends. Since it is the same as the process of S53 thru
  • step S185 and step S186 is the same as the processing in step S65 and step S66 in FIG. 8, and a description thereof will be omitted.
  • the processing in step S185 and step S186 is the same as the processing in step S65 and step S66 in FIG. 8, and a description thereof will be omitted.
  • the time when the medical history data is browsed that is, the time when the medical history data is displayed
  • the browsing process may be terminated. In such a case, it is not necessary for the information terminal device 52 to acquire prescription data in advance, and step S174 in the browsing process and steps S185 and S186 in the providing process are not performed. become.
  • the data center 51 performs authentication using the one-time password and the pharmacy information, and permits browsing of drug history data.
  • pharmacy information for authentication, it is possible to improve convenience while ensuring security.
  • pharmacy name information and regional information as pharmacy information, it is possible to limit the range of pharmacies that are permitted to be browsed, pharmacy groups, and the like, and further improve convenience.
  • the user designates a range that can be viewed when a one-time password issuance request is made.
  • the extraction of the range that can be browsed may be under any conditions as long as it can be extracted from the stored drug history data, such as the prescription issue date, the type of internal use, the dispensing pharmacy name, and the like.
  • the issue request unit 171 of the portable terminal device 54 generates disclosure range information indicating the range that can be browsed specified by the user, and the communication unit 161 issues the issue request, personal identification ID, prescription part information (or pharmacy information). At the same time, the disclosure range information is transmitted to the data center 51.
  • the data center 51 records the disclosure range information received from the portable terminal device 54 in this way in the recording unit 81 in association with the personal identification ID, and actually transmits the drug history data to the information terminal device 52. In this case, only the part indicated by the disclosure range information is transmitted. That is, the information management unit 91 reads only the portion indicated by the disclosure range information of the drug history data from the recording unit 81, and the communication unit 82 transmits the read portion of data to the information terminal device 52.
  • the above-described series of processing can be executed by hardware or can be executed by software.
  • a program constituting the software is installed in the computer.
  • the computer includes, for example, a general-purpose computer capable of executing various functions by installing a computer incorporated in dedicated hardware and various programs.
  • FIG. 13 is a block diagram showing an example of the hardware configuration of a computer that executes the above-described series of processing by a program.
  • a CPU Central Processing Unit
  • ROM Read Only Memory
  • RAM Random Access Memory
  • An input / output interface 505 is further connected to the bus 504.
  • An input unit 506, an output unit 507, a recording unit 508, a communication unit 509, and a drive 510 are connected to the input / output interface 505.
  • the input unit 506 includes a keyboard, a mouse, a microphone, an image sensor, and the like.
  • the output unit 507 includes a display, a speaker, and the like.
  • the recording unit 508 includes a hard disk, a nonvolatile memory, and the like.
  • the communication unit 509 includes a network interface or the like.
  • the drive 510 drives a removable medium 511 such as a magnetic disk, an optical disk, a magneto-optical disk, or a semiconductor memory.
  • the CPU 501 loads the program recorded in the recording unit 508 to the RAM 503 via the input / output interface 505 and the bus 504 and executes the program, for example. Is performed.
  • the program executed by the computer (CPU 501) can be provided by being recorded in, for example, a removable medium 511 as a package medium or the like.
  • the program can be provided via a wired or wireless transmission medium such as a local area network, the Internet, or digital satellite broadcasting.
  • the program can be installed in the recording unit 508 via the input / output interface 505 by attaching the removable medium 511 to the drive 510. Further, the program can be received by the communication unit 509 via a wired or wireless transmission medium and installed in the recording unit 508. In addition, the program can be installed in advance in the ROM 502 or the recording unit 508.
  • the program executed by the computer may be a program that is processed in time series in the order described in this specification, or in parallel or at a necessary timing such as when a call is made. It may be a program for processing.
  • the present technology can take a cloud computing configuration in which one function is shared by a plurality of devices via a network and is jointly processed.
  • each step described in the above flowchart can be executed by one device or can be shared by a plurality of devices.
  • the plurality of processes included in the one step can be executed by being shared by a plurality of apparatuses in addition to being executed by one apparatus.
  • the present technology can be configured as follows.
  • a communication unit for transmitting and receiving information
  • a recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information
  • the communication unit and a control unit for controlling the recording unit, The controller is When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit, Processing for generating the authentication information; A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information; A process of transmitting the authentication information by the communication unit to the first terminal device, When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A medication history
  • the authentication information is valid for a predetermined time after the authentication information is issued, or for a predetermined time after accessing the drug history information using the authentication information.
  • the authentication auxiliary information includes information on a place where a browsing request is made by operating the second terminal device as information on a location where the browsing request is made by the second terminal device.
  • the control unit further sends the second personal identification information, the updated drug history information, and the update request for the drug history information associated with the second personal identification information by the communication unit.
  • the medicine history information management device according to any one of (1) to (3), wherein when received from the second terminal device, the medicine history information is updated.
  • a medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network, A communication unit for transmitting and receiving information; A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
  • the control unit is When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit, Processing for generating the authentication information; A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information; A process of transmitting the authentication information by the communication unit to the first terminal device, When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and
  • a medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network, A communication unit for transmitting and receiving information;
  • a computer that controls a drug history information management device comprising a recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information,
  • Processing for generating the authentication information;
  • a process of transmitting the authentication information by the communication unit to the first terminal device When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device, Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device

Abstract

The technology of the present invention pertains to a drug history information management device and method, and a program, that enable improved convenience while ensuring security. A mobile-type terminal device sends to a server a one-time password issuance request, along with an individual identification ID of a user and authentication assistance information. The server generates a one-time password in response to the issuance request, transmits the one-time password to the mobile-type terminal device, associates the one-time password with the individual identification ID, and records the authentication assistance information and the one-time password. The terminal device sends the one-time password and authentication assistance information to the server, and requests transmission of browsing data. The server performs authentication on the basis of the one-time password and authentication assistance information received from the terminal device, and sends the browsing data to the terminal device. The technology of the present invention can be applied to information processing systems.

Description

薬歴情報管理装置および方法、並びにプログラムDrug history information management device and method, and program
 本技術は薬歴情報管理装置および方法、並びにプログラムに関し、特に、セキュリティを確保しつつ利便性を向上させることができるようにした薬歴情報管理装置および方法、並びにプログラムに関する。 The present technology relates to a drug history information management apparatus, method, and program, and more particularly, to a drug history information management apparatus, method, and program capable of improving convenience while ensuring security.
 今後、超高齢社会の到来に伴って、患者の収容数等が従来の医療機関のキャパシティをオーバーするであろうことから、在宅医療が推進される見込みになっている。 In the future, with the arrival of a super-aged society, the number of patients accommodated will exceed the capacity of conventional medical institutions, so home medical care is expected to be promoted.
 そこで、例えばサーバで各患者の処方箋や薬剤に関する情報を管理するとともに患者、医療機関の医師、および調剤薬局を予めサーバに登録しておき、医師の個人認証と患者の個人認証が正しくなされたときには、調剤薬局で薬剤師が患者や薬剤の情報を閲覧することができるようにする技術が提案されている(例えば、特許文献1参照)。この技術では、調剤薬局で薬剤が調剤されると、その薬剤が患者宅に配送される。 Therefore, for example, when the information about the prescriptions and medicines of each patient is managed by the server and the patient, the doctor of the medical institution, and the dispensing pharmacy are registered in the server in advance, the personal authentication of the doctor and the personal authentication of the patient are correctly performed. A technique has been proposed that enables a pharmacist to browse patient and drug information at a dispensing pharmacy (see, for example, Patent Document 1). In this technique, when a drug is dispensed at a dispensing pharmacy, the drug is delivered to the patient's home.
 また、ユーザがIC(Integrated Circuit)カードを医療機関や薬局に設置されたリーダにかざす(タッチする)だけで、サーバで管理されているユーザの薬歴等を閲覧することができるという、電子お薬手帳の機能を実現するアプリケーションプログラムも実際に運用されている。 In addition, the user can browse the medical history of users managed by the server simply by holding (touching) an IC (Integrated Circuit) card over a reader installed in a medical institution or pharmacy. An application program that realizes the function of a medicine notebook is also actually operated.
特開2011-221623号公報JP 2011-221623 A
 しかしながら上述した技術では、薬局で薬剤師等がサーバで管理されているユーザの薬歴等を参照しようとするときに、不都合が生じてしまうケースがあった。 However, in the technique described above, there is a case in which inconvenience occurs when a pharmacist or the like in a pharmacy tries to refer to a drug history of a user managed by a server.
 例えば、上述した電子お薬手帳の機能を実現するアプリケーションプログラムでは、薬局が在宅医療を受けている高齢者等であるユーザの薬歴を確認しようとする場合、そのユーザが実際に薬局まで来局し、ICカードをリーダにかざさなければならない。 For example, in the application program that realizes the function of the electronic medicine notebook described above, when the pharmacy wants to check the medication history of a user who is receiving medical care at home, the user actually visits the pharmacy. However, the IC card must be held over the reader.
 また、特許文献1に記載の技術では患者、医療機関(医師)、および調剤薬局について予め登録しておく必要があり、登録されていない調剤薬局や医療機関がある場合には、サービスの提供を受けることができなかった。 In the technique described in Patent Document 1, it is necessary to register patients, medical institutions (doctors), and dispensing pharmacies in advance. If there are unregistered dispensing pharmacies or medical institutions, the provision of services is provided. I couldn't get it.
 以上のように上述した技術では、サーバで管理されるデータを閲覧しようとするときに、セキュリティを確保することはできるが不便である場合があった。 As described above, with the above-described technology, when browsing data managed by the server, security can be ensured, but there are cases where it is inconvenient.
 本技術は、このような状況に鑑みてなされたものであり、セキュリティを確保しつつ利便性を向上させることができるようにするものである。 The present technology has been made in view of such a situation, and is intended to improve convenience while ensuring security.
 本技術の一側面の薬歴情報管理装置は、通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置において、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
 前記通信部と前記記録部を制御する制御部と
 を具備し、
 前記制御部は、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 を実行し、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する。 The medication history information management device according to one aspect of the present technology is a medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network.
A communication unit for transmitting and receiving information;
A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
The communication unit and a control unit for controlling the recording unit,
The controller is
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device,
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device Authentication is performed, and processing for determining whether or not the medicine history information can be browsed by the second terminal device is executed.
 前記認証情報を、前記認証情報が発行されてから所定の時間、又は前記認証情報を用いた前記薬歴情報へのアクセスを行ってから所定の時間有効とすることができる。 The authentication information can be valid for a predetermined time after the authentication information is issued, or for a predetermined time after accessing the drug history information using the authentication information.
 前記認証補助情報には、前記第二の端末装置による前記閲覧要求が行われた場所に関する情報として、前記第二の端末装置を操作して閲覧の要求を行った場所に関する情報が含まれるようにすることができる。 The authentication auxiliary information includes information on a place where the browsing request is made by operating the second terminal device as information on the place where the browsing request is made by the second terminal device. can do.
 前記制御部には、更に前記通信部により、前記第二の個人識別情報と、更新薬歴情報と、前記第二の個人識別情報に対応付けられている前記薬歴情報の更新要求とを前記第二の端末装置から受信した場合に、前記薬歴情報を更新する処理を実行させることができる。 The control unit further sends the second personal identification information, the updated drug history information, and the update request for the drug history information associated with the second personal identification information by the communication unit. When it receives from the 2nd terminal device, the process which updates the said medical history information can be performed.
 本技術の一側面の薬歴情報管理方法またはプログラムは、
 通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と
 を具備する薬歴情報管理装置の薬歴情報管理方法またはプログラムであって、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 を実行し、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
 ステップを含む。 The medical history information management method or program according to one aspect of the present technology includes:
A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
A communication unit for transmitting and receiving information;
A drug history information management method or program for a drug history information management apparatus comprising at least the drug history information, authentication information, and authentication recording information that can be recorded in association with personal identification information.
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device,
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device And performing a process of performing authentication and determining whether or not the medicine history information can be browsed by the second terminal device.
 本技術の一側面においては、
 通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
 前記通信部と前記記録部を制御する制御部と
 を具備する薬歴情報管理装置において、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 が実行され、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理が実行される。 In one aspect of the technology,
A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
A communication unit for transmitting and receiving information;
A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
In the drug history information management device comprising the communication unit and a control unit for controlling the recording unit,
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device;
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A process of performing authentication and determining whether or not the medicine history information can be browsed by the second terminal device is executed.
 本技術の一側面によれば、セキュリティを確保しつつ利便性を向上させることができる。 According to one aspect of the present technology, it is possible to improve convenience while ensuring security.
 なお、ここに記載された効果は必ずしも限定されるものではなく、本開示中に記載された何れかの効果であってもよい。 Note that the effects described here are not necessarily limited, and may be any of the effects described in the present disclosure.
本技術の概要について説明する図である。It is a figure explaining the outline | summary of this technique. 情報処理システムの構成例を示す図である。It is a figure which shows the structural example of an information processing system. データセンタの構成例を示す図である。It is a figure which shows the structural example of a data center. 情報端末装置の構成例を示す図である。It is a figure which shows the structural example of an information terminal device. 携帯型端末装置の構成例を示す図である。It is a figure which shows the structural example of a portable terminal device. ワンタイムパスワード利用時の処理について説明する図である。It is a figure explaining the process at the time of a one-time password utilization. ワンタイムパスワード発行要求処理およびワンタイムパスワード発行処理を説明するフローチャートである。It is a flowchart explaining a one-time password issue request process and a one-time password issue process. 閲覧処理および提供処理を説明するフローチャートである。It is a flowchart explaining a browsing process and a provision process. 閲覧処理および提供処理を説明するフローチャートである。It is a flowchart explaining a browsing process and a provision process. ワンタイムパスワード利用時の処理について説明する図である。It is a figure explaining the process at the time of a one-time password utilization. ワンタイムパスワード発行要求処理およびワンタイムパスワード発行処理を説明するフローチャートである。It is a flowchart explaining a one-time password issue request process and a one-time password issue process. 閲覧処理および提供処理を説明するフローチャートである。It is a flowchart explaining a browsing process and a provision process. コンピュータの構成例を示す図である。It is a figure which shows the structural example of a computer.
 以下、図面を参照して、本技術を適用した実施の形態について説明する。 Hereinafter, embodiments to which the present technology is applied will be described with reference to the drawings.
〈第1の実施の形態〉
〈本技術の概要〉
 本技術はクラウド上に預託された閲覧対象となる閲覧データを、ユーザが予めユーザに対して発行されたICカード等を利用して閲覧する情報処理システムに関するものである。本技術では、ユーザが指定する所定の事業者等である第三者に対してユーザに関する閲覧データの一時的な閲覧を許可する場合に、第三者がワンタイムパスワードを利用して、ICカード等を用いることなく認証を行い、閲覧データを閲覧することができるようになされている。これにより、セキュリティを確保しつつ利便性を向上させることができる。 <First Embodiment>
<Outline of this technology>
The present technology relates to an information processing system in which a user browses browsing data deposited on a cloud by using an IC card or the like issued to the user in advance. In this technology, when a third party, such as a predetermined operator designated by the user, is allowed to temporarily browse browsing data related to the user, the third party uses a one-time password to Authentication can be performed without using a browser, and browsing data can be browsed. Thereby, convenience can be improved while ensuring security.
 具体的には、例えば図1に示すようにユーザが所持している携帯型端末装置11を利用して、サーバ12に記録されているユーザについての閲覧データを閲覧できる情報処理システムがあるとする。 Specifically, for example, as illustrated in FIG. 1, it is assumed that there is an information processing system that can browse browsing data about a user recorded in the server 12 using a portable terminal device 11 possessed by the user. .
 ここで、携帯型端末装置11にはユーザを一意に特定することのできる識別情報として個人識別IDが記録されており、またサーバ12には個人識別IDにより特定されるユーザの閲覧データが、その個人識別IDに対応付けられて記録されている。この例では、個人識別IDがユーザに対して予め発行されている。 Here, a personal identification ID is recorded in the portable terminal device 11 as identification information that can uniquely identify the user, and the browsing data of the user specified by the personal identification ID is stored in the server 12. It is recorded in association with the personal identification ID. In this example, a personal identification ID is issued in advance to the user.
 ユーザは、自身の閲覧データを閲覧する際には、携帯型端末装置11を操作して個人識別IDをサーバ12に送信させ、その個人識別IDに対応付けられている閲覧データをサーバ12から取得させて携帯型端末装置11に表示させ、閲覧する。 When browsing the user's browsing data, the user operates the portable terminal device 11 to transmit the personal identification ID to the server 12 and acquires the browsing data associated with the personal identification ID from the server 12. It is displayed on the portable terminal device 11 and browsed.
 このような情報処理システムにおいて、ユーザの了解を得て第三者がユーザの閲覧データを新たに生成し、サーバ12に記録させようとする場合に、第三者が既にサーバ12に記録されているユーザの閲覧データを参照したいことがあったとする。換言すれば、サーバ12に記録されている閲覧データを更新しようとする場合に、更新前の閲覧データを参照したいことがあったとする。 In such an information processing system, when a third party obtains the user's consent and newly generates user browsing data and records it in the server 12, the third party is already recorded in the server 12. Suppose you want to refer to browsing data of a user. In other words, when the browsing data recorded in the server 12 is to be updated, it may be desired to refer to browsing data before update.
 ここで、ユーザの閲覧データを一時的に閲覧しようとする第三者は、例えばユーザの閲覧データを閲覧し、その閲覧データの更新を代行して行う所定の事業者などとされる。 Here, a third party who intends to browse the browsing data of the user temporarily is, for example, a predetermined operator who browses the browsing data of the user and performs an update of the browsing data.
 このような場合、第三者の端末装置13でユーザの閲覧データを閲覧しようとすると、基本的には端末装置13が携帯型端末装置11等から個人識別IDを取得しなければならないが、そのようなことが困難なこともある。 In such a case, when the user's browsing data is browsed by the third party terminal device 13, the terminal device 13 basically has to acquire a personal identification ID from the portable terminal device 11 or the like. It can be difficult.
 そこで、情報処理システムでは、ユーザの要求に応じてサーバ12により発行されたワンタイムパスワードを利用して、端末装置13がサーバ12に記録されている閲覧データを一時的に閲覧することができるようになされている。 Therefore, in the information processing system, the terminal device 13 can temporarily browse the browsing data recorded in the server 12 by using the one-time password issued by the server 12 in response to a user request. Has been made.
 具体的には矢印A11に示すように、携帯型端末装置11はユーザの操作に応じて、個人識別ID、および認証補助情報とともにワンタイムパスワードの発行要求をサーバ12に送信する。 Specifically, as indicated by an arrow A11, the portable terminal device 11 transmits a request for issuing a one-time password to the server 12 together with the personal identification ID and authentication auxiliary information in accordance with a user operation.
 ここで認証補助情報とは、これから更新しようとする閲覧データに関する情報であり、例えば今回更新される閲覧データの一部の情報、つまり閲覧データの更新部分のデータに含まれる情報などとされる。この認証補助情報は、閲覧データを一時的に閲覧する第三者、つまり端末装置13を認証するときにワンタイムパスワードとともに用いられる。すなわち、認証補助情報は補助的な認証情報として用いられる。 Here, the authentication auxiliary information is information related to the browsing data to be updated from now on, for example, part of the browsing data updated this time, that is, information included in the data of the updated portion of the browsing data. This authentication auxiliary information is used together with a one-time password when authenticating a third party who temporarily browses browsing data, that is, the terminal device 13. That is, the authentication auxiliary information is used as auxiliary authentication information.
 また、ワンタイムパスワードは、サーバ12がユーザの要求に応じて、ユーザの閲覧データに対する一時的な閲覧権限を第三者に与えたときに、第三者の認証に用いられる認証情報である。 Also, the one-time password is authentication information used for authentication of a third party when the server 12 gives the third party temporary authority for browsing data of the user in response to a user request.
 このようにしてワンタイムパスワードの発行要求がなされると、サーバ12は発行要求に応じて、発行要求とともに送信されてきた個人識別IDに紐づいたワンタイムパスワードを生成(発行)する。そして、サーバ12は、個人識別IDに対応付けてワンタイムパスワードおよび認証補助情報を記録するとともに、矢印A12に示すように、生成したワンタイムパスワードを携帯型端末装置11に送信する。 When a request for issuing a one-time password is made in this way, the server 12 generates (issues) a one-time password associated with the personal identification ID transmitted along with the issue request in response to the issue request. Then, the server 12 records the one-time password and the authentication auxiliary information in association with the personal identification ID, and transmits the generated one-time password to the portable terminal device 11 as indicated by an arrow A12.
 携帯型端末装置11は、サーバ12からワンタイムパスワードを受信すると、そのワンタイムパスワードを表示させる。そしてユーザは、矢印A13に示すように、第三者に対して電話等の手段により口頭で認証補助情報とワンタイムパスワードを知らせる。また、矢印A14に示すように端末装置13は、何らかの方法により、閲覧データの今回更新される部分の情報を取得する。 When the portable terminal device 11 receives the one-time password from the server 12, the portable terminal device 11 displays the one-time password. Then, as indicated by arrow A13, the user verbally notifies the third party of the authentication assistance information and the one-time password by means such as telephone. Further, as indicated by an arrow A14, the terminal device 13 acquires information on a portion of the browsing data that is updated this time by some method.
 例えば、認証補助情報が閲覧データの今回更新される部分の情報に含まれているときには、端末装置13は取得した更新される部分の情報から認証補助情報を抽出することができるので、ユーザは必ずしも認証補助情報を第三者に伝える必要はない。また、ユーザから第三者へのワンタイムパスワードの通知は、口頭の他、携帯型端末装置11や端末装置13を利用した電子メール、FAXの授受など、どのような方法で行われてもよい。 For example, when the authentication auxiliary information is included in the information of the part of the browsing data that is updated this time, the terminal device 13 can extract the authentication auxiliary information from the acquired information of the updated part. There is no need to pass authentication assistance information to a third party. Further, the notification of the one-time password from the user to the third party may be performed by any method such as e-mail using the portable terminal device 11 or the terminal device 13 and FAX transmission / reception in addition to verbal communication. .
 第三者は端末装置13を操作して、矢印A15に示すようにユーザから通知されたワンタイムパスワードと認証補助情報をサーバ12に送信し、閲覧データの送信を要求する。すると、サーバ12は、端末装置13から受信したワンタイムパスワードおよび認証補助情報と、個人識別IDに対応付けて記録しているワンタイムパスワードおよび認証補助情報とを比較して、第三者(端末装置13)の認証を行う。 The third party operates the terminal device 13 to transmit the one-time password and authentication auxiliary information notified from the user to the server 12 as indicated by arrow A15, and requests transmission of browsing data. Then, the server 12 compares the one-time password and authentication auxiliary information received from the terminal device 13 with the one-time password and authentication auxiliary information recorded in association with the personal identification ID, so that a third party (terminal Authentication of device 13) is performed.
 正しく認証が行われると、すなわち第三者(端末装置13)に一時的な閲覧権限が付与されていると確認(認証)されると、サーバ12は、矢印A16に示すように、個人識別IDに対応付けられている閲覧データを端末装置13に送信する。これにより、端末装置13ではユーザの閲覧データを一時的に閲覧することが可能となる。 When the authentication is correctly performed, that is, when it is confirmed (authenticated) that the third party (terminal device 13) has been granted temporary browsing authority, the server 12 has the personal identification ID as indicated by an arrow A16. The browsing data associated with is transmitted to the terminal device 13. Thereby, in the terminal device 13, it becomes possible to browse a user's browsing data temporarily.
 なお、ここでは個人識別IDに対応付けられている全閲覧データを第三者が閲覧可能な例について説明するが、所定の日付の閲覧データなど、全閲覧データのうちの一部のデータのみが閲覧可能となるように制限が加えられてもよい。 Here, an example in which all browsing data associated with the personal identification ID can be browsed by a third party will be described, but only a part of all browsing data such as browsing data on a predetermined date is displayed. Restrictions may be added to enable browsing.
 第三者は、必要に応じて閲覧データを参照しながら、閲覧データの今回更新される部分の情報に基づいて閲覧データの更新される部分、つまり新たな閲覧データを生成する。最後に、端末装置13は、矢印A17に示すように新たな閲覧データをサーバ12に送信するとともに、その新たな閲覧データの更新(登録)を要求する。 The third party generates a portion of the browsing data that is updated this time, that is, new browsing data based on the information of the portion of the browsing data that is updated this time, referring to the browsing data as necessary. Finally, the terminal device 13 transmits new browsing data to the server 12 as indicated by an arrow A17 and requests update (registration) of the new browsing data.
 サーバ12は、端末装置13の要求に応じて、端末装置13から受信した新たな閲覧データを個人識別IDに対応付けて記録することで、閲覧データを更新する。 The server 12 updates the browsing data by recording the new browsing data received from the terminal device 13 in association with the personal identification ID in response to a request from the terminal device 13.
 また、サーバ12は、端末装置13から新たな閲覧データを受信して記録した時点でワンタイムパスワードを無効化する。例えば、サーバ12は個人識別IDに対応付けて記録していたワンタイムパスワードおよび認証補助情報を削除し、ワンタイムパスワードによる閲覧権限を無効とする。 In addition, the server 12 invalidates the one-time password when new browsing data is received from the terminal device 13 and recorded. For example, the server 12 deletes the one-time password and authentication auxiliary information recorded in association with the personal identification ID, and invalidates the browsing authority by the one-time password.
 このように情報処理システムでは、ワンタイムパスワードを利用して第三者に閲覧データの閲覧を一時的に許可することで、セキュリティを確保しつつ利便性を向上させることができる。しかも、ワンタイムパスワードとともに、更新しようとする閲覧データに関する情報を認証補助情報として認証に利用することでセキュリティを確保することができるので、サーバ12によりワンタイムパスワードとして発行される文字列等を短くすることができる。これにより、ユーザや第三者がワンタイムパスワードを忘れにくくすることができるだけでなく、ワンタイムパスワードの伝達ミスを防止することができる。 In this way, in the information processing system, convenience can be improved while ensuring security by allowing a third party to browse browsing data temporarily using a one-time password. In addition, security can be ensured by using information related to the browsing data to be updated as authentication auxiliary information together with the one-time password, so that the character string issued as the one-time password by the server 12 can be shortened. can do. This not only makes it difficult for the user or third party to forget the one-time password, but also prevents a one-time password transmission error.
 また、第三者はワンタイムパスワードおよび認証補助情報により認証が行われると、閲覧データの閲覧だけでなく、新たな閲覧データの登録も行うことができるので、さらに利便性を向上させることができる。 In addition, when a third party is authenticated by a one-time password and authentication auxiliary information, not only browsing browsing data but also registration of new browsing data can be performed, which can further improve convenience. .
 なお、第三者(端末装置13)が新たな閲覧データの登録を行うことができる期間、すなわちワンタイムパスワードの有効期間は、ワンタイムパスワードが発行されてから所定の期間としたり、ワンタイムパスワードを用いた閲覧データへのアクセスがあってから所定の期間としたりすることができる。 It should be noted that the period during which a third party (terminal device 13) can register new browsing data, that is, the one-time password is valid for a predetermined period after the one-time password is issued, It is possible to set a predetermined period after access to the browsing data using.
 また、新たな閲覧データの登録を行うことができる期間は、例えばワンタイムパスワードによる認証が行われた後、サーバ12との通信が切断されるまでの間(セッションが継続している間)などとすることもできる。さらに、閲覧データが端末装置13に送信され、閲覧が終了した時点でワンタイムパスワードによる閲覧権限を無効とするようにしてもよい。 In addition, the period during which new browsing data can be registered is, for example, after authentication with a one-time password is performed until communication with the server 12 is disconnected (while the session continues). It can also be. Furthermore, the browsing authority by a one-time password may be invalidated when browsing data is transmitted to the terminal device 13 and browsing is completed.
 このような本技術は、電子お薬手帳サービスでユーザの薬歴データ等を閲覧する場合や、サーバで管理されているユーザの書籍等の購買履歴などを閲覧する場合など、ネットワーク上で管理されている何らかのデータを閲覧する場合に適用可能である。以下では、電子お薬手帳サービスでユーザの薬歴データを閲覧する場合を例として、本技術についてさらに詳細に説明する。 This technology is managed on the network, for example, when browsing the user's medication history data with the electronic medicine notebook service, or when browsing the purchase history of the user's books managed by the server. It is applicable when browsing some data. In the following, the present technology will be described in more detail by taking as an example a case where the user's medicine history data is browsed by the electronic medicine notebook service.
〈情報処理システムの構成例〉
 そのような場合、本技術を適用した情報処理システムは例えば図2に示すように構成される。 <Configuration example of information processing system>
In such a case, an information processing system to which the present technology is applied is configured, for example, as shown in FIG.
 図2に示す情報処理システム41は、データセンタ51、情報端末装置52、並びにユーザの所持するICカード53および携帯型端末装置54から構成される。また、データセンタ51と情報端末装置52とは、インターネットなど、有線や無線のネットワークからなる通信網55を介して、相互に接続されている。 The information processing system 41 shown in FIG. 2 includes a data center 51, an information terminal device 52, an IC card 53 and a portable terminal device 54 possessed by the user. In addition, the data center 51 and the information terminal device 52 are connected to each other via a communication network 55 including a wired or wireless network such as the Internet.
 この情報処理システム41では、携帯型端末装置54や情報端末装置52が電子化されたお薬手帳などの薬歴データをデータセンタ51にアップロードし、その薬歴データを適宜閲覧することが可能である。 In this information processing system 41, the portable terminal device 54 and the information terminal device 52 can upload drug history data such as an electronic medicine notebook to the data center 51 and browse the drug history data as appropriate. is there.
 したがって、この例ではデータセンタ51、情報端末装置52、および携帯型端末装置54が、図1を参照して説明したサーバ12、端末装置13、および携帯型端末装置11に対応する。また、情報処理システム41において閲覧対象となる薬歴データが図1で説明した閲覧データに対応する。 Therefore, in this example, the data center 51, the information terminal device 52, and the portable terminal device 54 correspond to the server 12, the terminal device 13, and the portable terminal device 11 described with reference to FIG. Further, the medicine history data to be browsed in the information processing system 41 corresponds to the browse data described with reference to FIG.
 データセンタ51は、ユーザの薬歴データを管理する。すなわち、データセンタ51は、ユーザに固有のIDである個人識別IDと、その個人識別IDにより特定されるユーザの薬歴データとを対応付けて記録している。 The data center 51 manages the drug history data of the user. That is, the data center 51 records a personal identification ID, which is an ID unique to a user, and the user's medication history data specified by the personal identification ID in association with each other.
 ここで、個人識別IDは、一意にユーザを特定することのできる個人識別情報の一つであるが、他人が個人識別IDを入手しただけでは、一般的にはその個人識別IDにより識別されるユーザ個人を特定することができない(困難である)情報とされる。 Here, the personal identification ID is one piece of personal identification information that can uniquely identify the user. However, if another person simply obtains the personal identification ID, it is generally identified by the personal identification ID. It is information that cannot identify the individual user (it is difficult).
 また、以下ではユーザを特定するための識別情報として個人識別IDを用いる場合について説明するが、ユーザを特定することができれば個人識別IDに限らず、どのような情報が用いられてもよい。 In the following, a case where a personal identification ID is used as identification information for identifying a user will be described. However, any information can be used as long as the user can be identified, not limited to a personal identification ID.
 データセンタ51は、情報端末装置52や携帯型端末装置54から供給された薬歴データを管理するとともに、情報端末装置52や携帯型端末装置54からの要求に応じて、記録している薬歴データを開示する。また、データセンタ51は、携帯型端末装置54からの要求に応じてワンタイムパスワードを発行し、ワンタイムパスワードを利用した認証も行う。 The data center 51 manages the medicine history data supplied from the information terminal device 52 and the portable terminal device 54, and records the medicine history recorded in response to a request from the information terminal device 52 and the portable terminal device 54. Disclose data. Further, the data center 51 issues a one-time password in response to a request from the portable terminal device 54, and performs authentication using the one-time password.
 情報端末装置52は、例えば所定のサービスを提供する、予め登録されたサービス加盟店に設けられている。例えば情報端末装置52は、ユーザが処方された薬剤を購入する薬局内等に設けられている。したがって、この例では、情報端末装置52が設置された薬局(薬剤師等)が、図1を参照して説明した事業者等の第三者に対応する。 The information terminal device 52 is provided, for example, in a service member store registered in advance that provides a predetermined service. For example, the information terminal device 52 is provided in a pharmacy where a user purchases a prescribed medicine. Accordingly, in this example, the pharmacy (pharmacist or the like) in which the information terminal device 52 is installed corresponds to a third party such as the business operator described with reference to FIG.
 なお、情報端末装置52は、必ずしもサービス加盟店に設けられている必要はない。換言すれば、情報端末装置52は予めデータセンタ51に登録されている必要はなく、任意の端末装置とすることができる。 Note that the information terminal device 52 is not necessarily provided in the service member store. In other words, the information terminal device 52 does not need to be registered in the data center 51 in advance, and can be an arbitrary terminal device.
 情報端末装置52は、コンピュータなどからなり、薬剤師等の入力操作に応じて各種の処理を行う。具体的には、例えば情報端末装置52は、薬剤師等の入力操作に応じてユーザの薬歴データを生成し、その薬歴データを記録したり、通信網55を介して薬歴データをデータセンタ51に送信して記録させたりする。 The information terminal device 52 is composed of a computer or the like, and performs various processes according to input operations by a pharmacist or the like. Specifically, for example, the information terminal device 52 generates drug history data of the user in response to an input operation by a pharmacist or the like, records the drug history data, or stores the drug history data via the communication network 55 in the data center. 51 to be recorded.
 また、情報端末装置52は、適宜、ユーザから伝えられたワンタイムパスワードと認証補助情報を用いて、データセンタ51に記録されている薬歴データを取得する。 In addition, the information terminal device 52 acquires the drug history data recorded in the data center 51 using the one-time password and authentication auxiliary information transmitted from the user as appropriate.
 ICカード53は、情報端末装置52が設置されているサービス加盟店で提供されるサービスを受けるユーザが、そのサービスを受けるときに適宜使用するICカードであり、ICカード53は、ユーザごとに発行される。ICカード53には、サービス利用者であるユーザを認証するための個人識別IDと、ユーザの氏名、生年月日、性別などからなる個人情報とが記録されている。 The IC card 53 is an IC card that a user who receives a service provided by a service member store in which the information terminal device 52 is installed is appropriately used when receiving the service. The IC card 53 is issued for each user. Is done. The IC card 53 stores a personal identification ID for authenticating a user who is a service user, and personal information including the user's name, date of birth, and sex.
 携帯型端末装置54は、ユーザが所持する多機能型携帯電話機などからなり、図示せぬ通信網や通信網55を介してデータセンタ51や情報端末装置52と通信し、必要に応じて情報の授受を行なう。例えば、携帯型端末装置54はデータセンタ51にワンタイムパスワードの発行を要求したり、データセンタ51から薬歴データを受信して表示したりする。 The portable terminal device 54 is composed of a multifunctional mobile phone or the like possessed by the user, communicates with the data center 51 or the information terminal device 52 via a communication network or communication network 55 (not shown), and stores information as necessary. Give and receive. For example, the portable terminal device 54 requests the data center 51 to issue a one-time password, or receives and displays drug history data from the data center 51.
 なお、図2の例では、情報処理システム41には、1つの情報端末装置52しか図示されていないが、情報処理システム41に複数の情報端末装置52が含まれているようにしてもよい。 In the example of FIG. 2, only one information terminal device 52 is illustrated in the information processing system 41, but the information processing system 41 may include a plurality of information terminal devices 52.
〈データセンタの構成例〉
 次に、図2に示したデータセンタ51、情報端末装置52、および携帯型端末装置54の構成について説明する。 <Data center configuration example>
Next, the configuration of the data center 51, the information terminal device 52, and the portable terminal device 54 shown in FIG. 2 will be described.
 図3は、データセンタ51の構成例を示す図である。なお、図3では、データセンタ51は1つの装置として構成されているが、データセンタ51は複数の装置から構成されるようにしてもよい。 FIG. 3 is a diagram illustrating a configuration example of the data center 51. In FIG. 3, the data center 51 is configured as a single device, but the data center 51 may be configured from a plurality of devices.
 図3に示すデータセンタ51は記録部81、通信部82、および制御部83を有している。 3 includes a recording unit 81, a communication unit 82, and a control unit 83.
 記録部81は例えばデータベースであり、各種のデータを記録する。例えば記録部81は、各ユーザの個人識別IDと薬歴データとを対応付けて記録しており、必要に応じて記録しているデータを制御部83に供給する。 The recording unit 81 is a database, for example, and records various data. For example, the recording unit 81 records each user's personal identification ID and drug history data in association with each other, and supplies the recorded data to the control unit 83 as necessary.
 通信部82は、通信網55などを介して情報端末装置52や携帯型端末装置54と通信し、受信した情報を制御部83に供給したり、制御部83から供給された情報を送信したりする。 The communication unit 82 communicates with the information terminal device 52 and the portable terminal device 54 via the communication network 55 and the like, supplies the received information to the control unit 83, and transmits information supplied from the control unit 83. To do.
 制御部83は、データセンタ51全体の動作を制御する。制御部83は、情報管理部91、生成部92、および認証部93を備えている。 The control unit 83 controls the operation of the entire data center 51. The control unit 83 includes an information management unit 91, a generation unit 92, and an authentication unit 93.
 情報管理部91は、記録部81に記録されているデータを管理する。生成部92は、携帯型端末装置54の要求に応じてワンタイムパスワードを生成する。また、認証部93は、ワンタイムパスワードを利用した情報端末装置52の認証を行う。 The information management unit 91 manages the data recorded in the recording unit 81. The generation unit 92 generates a one-time password in response to a request from the portable terminal device 54. The authentication unit 93 authenticates the information terminal device 52 using a one-time password.
〈情報端末装置の構成例〉
 次に、情報端末装置52の構成について説明する。 <Configuration example of information terminal device>
Next, the configuration of the information terminal device 52 will be described.
 図4は、情報端末装置52の構成例を示す図である。なお、図4では、情報端末装置52は1つの装置として構成されているが、情報端末装置52は複数の装置から構成されるようにしてもよい。 FIG. 4 is a diagram illustrating a configuration example of the information terminal device 52. In FIG. 4, the information terminal device 52 is configured as one device, but the information terminal device 52 may be configured from a plurality of devices.
 情報端末装置52は、通信部121、入力部122、表示部123、制御部124、および記録部125を有している。 The information terminal device 52 includes a communication unit 121, an input unit 122, a display unit 123, a control unit 124, and a recording unit 125.
 通信部121は、通信網55を介してデータセンタ51等の各装置と通信し、送信されてきた情報を受信して制御部124に供給したり、制御部124から供給された情報を送信したりする。入力部122は、マウスやタッチパネルなどからなり、薬剤師等の操作に応じた信号を制御部124に供給する。表示部123は、液晶表示パネルなどからなり、制御部124から供給されたデータに基づいて画像等を表示する。 The communication unit 121 communicates with each device such as the data center 51 via the communication network 55, receives the transmitted information, supplies the information to the control unit 124, and transmits the information supplied from the control unit 124. Or The input unit 122 includes a mouse, a touch panel, and the like, and supplies a signal corresponding to an operation of a pharmacist or the like to the control unit 124. The display unit 123 includes a liquid crystal display panel and the like, and displays an image or the like based on data supplied from the control unit 124.
 制御部124は、情報端末装置52全体の動作を制御する。制御部124は、閲覧制御部131および表示制御部132を備えている。 The control unit 124 controls the operation of the information terminal device 52 as a whole. The control unit 124 includes a browsing control unit 131 and a display control unit 132.
 閲覧制御部131はデータセンタ51に記録されている薬歴データの閲覧に関する処理を行う。表示制御部132は表示部123による各種の画像や情報の表示を制御する。 The browsing control unit 131 performs processing related to browsing of medical history data recorded in the data center 51. The display control unit 132 controls display of various images and information on the display unit 123.
 記録部125は各種のデータを記録し、必要に応じてそれらのデータを制御部124に供給する。 The recording unit 125 records various data and supplies the data to the control unit 124 as necessary.
〈携帯型端末装置の構成例〉
 さらに、図5は携帯型端末装置54の構成例を示す図である。 <Configuration example of portable terminal device>
Further, FIG. 5 is a diagram illustrating a configuration example of the portable terminal device 54.
 携帯型端末装置54は通信部161、入力部162、制御部163、記録部164、および表示部165を有している。 The portable terminal device 54 includes a communication unit 161, an input unit 162, a control unit 163, a recording unit 164, and a display unit 165.
 通信部161は、データセンタ51などの外部の装置と通信し、各種のデータを受信して制御部163に供給したり、制御部163から供給されたデータを送信したりする。 The communication unit 161 communicates with an external device such as the data center 51, receives various types of data, supplies the data to the control unit 163, and transmits data supplied from the control unit 163.
 入力部162は、例えば入力ボタンやタッチパネル、マイクロホンなどからなり、ユーザによる入力操作に応じた信号を制御部163に供給する。 The input unit 162 includes, for example, an input button, a touch panel, a microphone, and the like, and supplies a signal corresponding to an input operation by the user to the control unit 163.
 制御部163は、携帯型端末装置54全体の動作を制御する。制御部163は、発行要求部171および表示制御部172を備えている。 The control unit 163 controls the operation of the entire portable terminal device 54. The control unit 163 includes an issue request unit 171 and a display control unit 172.
 発行要求部171はワンタイムパスワードの発行要求を生成する。表示制御部172は、表示部165による画像や情報の表示を制御する。 The issue request unit 171 generates a one-time password issue request. The display control unit 172 controls display of images and information on the display unit 165.
 記録部164は、制御部163から供給された各種のデータを記録しており、必要に応じてそれらのデータを制御部163に供給する。例えば記録部164には、ユーザの個人識別IDが記録されている。表示部165は、液晶表示パネルなどからなり、制御部163から供給されたデータに基づいて各種の画像や情報を表示する。 The recording unit 164 records various types of data supplied from the control unit 163 and supplies the data to the control unit 163 as necessary. For example, the personal identification ID of the user is recorded in the recording unit 164. The display unit 165 includes a liquid crystal display panel and the like, and displays various images and information based on data supplied from the control unit 163.
〈薬歴データの閲覧について〉
 次に図1を参照して説明した本技術に関する処理を情報処理システム41に適用した場合における処理の流れについて図6を参照して説明する。 <About browsing medical history data>
Next, the flow of processing when the processing related to the present technology described with reference to FIG. 1 is applied to the information processing system 41 will be described with reference to FIG.
 情報処理システム41を利用した薬歴データの閲覧および管理のサービスを提供する場合に、ワンタイムパスワードの発行が必要となるケースとして、以下のようなケースが考えられる。 The following cases can be considered as cases where it is necessary to issue a one-time password when providing a service for browsing and managing drug history data using the information processing system 41.
 例えば患者であるユーザは、既に電子お薬手帳サービスを受けるためのICカード53の発行を受けており、サービスを受けるための端末装置として携帯型端末装置54についても既に登録されている。このような状況では、電子化されたお薬手帳の情報である薬歴データが、ユーザの個人識別IDに対応付けられてデータセンタ51に記録されている。 For example, a user who is a patient has already issued an IC card 53 for receiving an electronic medicine notebook service, and the portable terminal device 54 has already been registered as a terminal device for receiving the service. In such a situation, medicine history data, which is information in an electronic medicine notebook, is recorded in the data center 51 in association with the personal identification ID of the user.
 また、患者であるユーザは、現在、外出が困難であり、在宅で医師の診察を受け、医師はユーザの同意を得て診察の際に作成した処方箋を、在宅医療対応の薬局に設けられた情報端末装置52に送達した。例えば、処方箋は電子化されたものであり、処方箋のデータである処方箋データが医師の所有する情報端末装置から、通信網55等を介して情報端末装置52に送信される。 In addition, it is difficult for the user, who is a patient, to go out at present, and the doctor is examined at home, and the doctor prepares the prescription created at the examination with the consent of the user at the pharmacy for home medical care. It was delivered to the information terminal device 52. For example, the prescription is digitized, and prescription data, which is prescription data, is transmitted from the information terminal device owned by the doctor to the information terminal device 52 via the communication network 55 or the like.
 情報端末装置52が処方箋データを受信すると、薬剤師は処方箋データを表示させ、処方された薬剤を確認するとともに処方箋の内容を含む薬歴データを作成する。このとき薬剤師は、患者の服薬履歴などから薬剤の併用禁忌などを確認するため、データセンタ51に記録されている薬歴データを閲覧したい。 When the information terminal device 52 receives the prescription data, the pharmacist displays the prescription data, confirms the prescription medicine, and creates medicine history data including the contents of the prescription. At this time, the pharmacist wants to view the drug history data recorded in the data center 51 in order to confirm the contraindication of the combination of drugs from the patient's medication history.
 このような場合、患者であるユーザが、情報端末装置52が設けられている薬局にいれば、情報端末装置52はICカード53や携帯型端末装置54からユーザの個人識別IDを取得し、データセンタ51に記録されている薬歴データを閲覧することができる。しかし、このケースでは、ユーザは外出が困難であるため、薬剤師はユーザに来局させることなく、一時的にユーザの薬歴データを閲覧したい。 In such a case, if the user who is a patient is in a pharmacy where the information terminal device 52 is provided, the information terminal device 52 acquires the personal identification ID of the user from the IC card 53 or the portable terminal device 54, and the data The medical history data recorded in the center 51 can be browsed. However, in this case, since it is difficult for the user to go out, the pharmacist wants to browse the user's medication history data temporarily without causing the user to visit the station.
 このような場合、ユーザは携帯型端末装置54を操作してワンタイムパスワードの発行を要求するための操作を行い、その際に、これから更新されるユーザの薬歴データの一部、具体的には、例えば処方箋に含まれている薬剤名などを認証補助情報として入力する。 In such a case, the user operates the portable terminal device 54 to perform an operation for requesting the issuance of a one-time password. At that time, a part of the user's medicine history data to be updated, specifically, For example, a drug name included in a prescription is input as authentication auxiliary information.
 なお、認証補助情報として入力(指定)される情報は、処方箋に含まれる情報、つまり処方箋データの一部の情報であれば、どのようなものであってもよいが、以下では処方された1または複数の薬剤の名称が入力されるものとして説明を続ける。また、以下ではユーザにより認証補助情報として指定される処方箋データの一部の情報を処方箋部分情報とも称することとする。 Note that the information input (designated) as the authentication auxiliary information may be any information as long as it is information included in the prescription, that is, a part of the prescription data. Alternatively, the description will be continued on the assumption that names of a plurality of medicines are input. Hereinafter, a part of the prescription data specified as the authentication auxiliary information by the user is also referred to as prescription partial information.
 したがって、この例では、これから更新される薬歴データの更新部分のデータは、処方箋データが含まれるデータとされ、その処方箋データの一部の情報が認証補助情報としての処方箋部分情報とされる。 Therefore, in this example, the data of the updated part of the drug history data to be updated is data including prescription data, and a part of the prescription data is prescription part information as authentication auxiliary information.
 ユーザにより処方箋部分情報が入力されると、携帯型端末装置54は図6の矢印A21に示すように、個人識別IDおよび処方箋部分情報とともにワンタイムパスワードの発行要求をデータセンタ51に送信する。 When the prescription part information is input by the user, the portable terminal device 54 transmits a one-time password issuance request to the data center 51 together with the personal identification ID and prescription part information, as indicated by an arrow A21 in FIG.
 また、データセンタ51は発行要求に応じてワンタイムパスワードを生成し、個人識別IDに対応付けてワンタイムパスワードおよび処方箋部分情報を記録するとともに、矢印A22に示すようにワンタイムパスワードを携帯型端末装置54に送信する。 Further, the data center 51 generates a one-time password in response to the issuance request, records the one-time password and prescription part information in association with the personal identification ID, and stores the one-time password as indicated by an arrow A22. To device 54.
 同時に患者であるユーザ宅では、矢印A23に示すように診察を行った医師により、医師の情報端末装置から情報端末装置52への処方箋データの送信が行われ、情報端末装置52は、医師の情報端末装置から送信されてきた処方箋データを受信する。 At the same time, at the user's home that is a patient, the doctor who performed the examination as shown by arrow A23 transmits the prescription data from the doctor's information terminal device to the information terminal device 52, and the information terminal device 52 The prescription data transmitted from the terminal device is received.
 さらに、携帯型端末装置54がデータセンタ51からワンタイムパスワードを受信して表示すると、ユーザは矢印A24に示すように、薬剤師に対して口頭でワンタイムパスワードと処方箋部分情報を知らせる。 Further, when the portable terminal device 54 receives and displays the one-time password from the data center 51, the user verbally informs the pharmacist of the one-time password and prescription part information as indicated by an arrow A24.
 すると、薬剤師は情報端末装置52を操作し、情報端末装置52は矢印A25に示すようにユーザから通知されたワンタイムパスワードと処方箋部分情報をデータセンタ51に送信し、薬歴データの送信を要求する。 Then, the pharmacist operates the information terminal device 52, and the information terminal device 52 transmits the one-time password and prescription part information notified from the user to the data center 51 as indicated by an arrow A25, and requests transmission of drug history data. To do.
 これに応じて、データセンタ51は、情報端末装置52から受信したワンタイムパスワードおよび処方箋部分情報と、個人識別IDに対応付けて記録しているワンタイムパスワードおよび処方箋部分情報とを比較して認証を行う。 In response to this, the data center 51 compares the one-time password and prescription part information received from the information terminal device 52 with the one-time password and prescription part information recorded in association with the personal identification ID for authentication. I do.
 正しく認証が行われると、データセンタ51は矢印A26に示すように、個人識別IDに対応付けられている薬歴データを情報端末装置52に送信する。これにより、情報端末装置52ではユーザの薬歴データを一時的に閲覧することが可能となる。 When the authentication is correctly performed, the data center 51 transmits the drug history data associated with the personal identification ID to the information terminal device 52 as indicated by an arrow A26. Thereby, in the information terminal device 52, it becomes possible to browse a user's medicine history data temporarily.
 薬剤師は、薬歴データを参照してユーザに対して処方された薬剤に併用禁忌がないか等を確認し、必要に応じてユーザに服薬指導などを行う。また、薬剤師は、処方箋データに基づいて薬歴データの更新される部分、つまり新たな薬歴データを作成する。最後に、情報端末装置52は、矢印A27に示すように新たな薬歴データをデータセンタ51に送信するとともに、その新たな薬歴データの更新(登録)を要求する。 The pharmacist refers to the drug history data to check whether there are any contraindications to the drug prescribed to the user, and gives instructions to the user if necessary. Further, the pharmacist creates a part of the drug history data that is updated based on the prescription data, that is, new drug history data. Finally, the information terminal device 52 transmits new drug history data to the data center 51 as indicated by an arrow A27 and requests update (registration) of the new drug history data.
 データセンタ51は、情報端末装置52の要求に応じて、情報端末装置52から受信した新たな薬歴データを個人識別IDに対応付けて記録することで、薬歴データを更新する。 The data center 51 updates the drug history data by recording the new drug history data received from the information terminal device 52 in association with the personal identification ID in response to a request from the information terminal device 52.
〈ワンタイムパスワード発行要求処理およびワンタイムパスワード発行処理の説明〉
 続いて、図6を参照して説明した処理について、より詳細に説明する。 <Description of one-time password issuance request processing and one-time password issuance processing>
Subsequently, the process described with reference to FIG. 6 will be described in more detail.
 まず、図7のフローチャートを参照して、携帯型端末装置54によるワンタイムパスワード発行要求処理、およびデータセンタ51によるワンタイムパスワード発行処理について説明する。 First, the one-time password issuance request process by the portable terminal device 54 and the one-time password issuance process by the data center 51 will be described with reference to the flowchart of FIG.
 ステップS11において、携帯型端末装置54の通信部161は、発行要求とともに個人識別IDおよび処方箋部分情報をデータセンタ51に送信する。 In step S11, the communication unit 161 of the portable terminal device 54 transmits the personal identification ID and prescription part information to the data center 51 together with the issue request.
 すなわち、携帯型端末装置54の発行要求部171は、ユーザの操作に応じて入力部162から供給された信号に基づいて処方箋部分情報を生成するとともに、ワンタイムパスワードの発行要求も生成する。さらに、発行要求部171は、記録部164からユーザの個人識別IDを読み出す。 That is, the issue request unit 171 of the portable terminal device 54 generates prescription part information based on a signal supplied from the input unit 162 according to a user operation, and also generates a one-time password issue request. Further, the issue request unit 171 reads the personal identification ID of the user from the recording unit 164.
 そして、発行要求部171は、ワンタイムパスワードの発行要求、個人識別ID、および処方箋部分情報を通信部161に供給し、データセンタ51への送信を指示(制御)する。通信部161は、発行要求部171から供給された発行要求、個人識別ID、および処方箋部分情報を、通信網55を介してデータセンタ51に送信する。 Then, the issue request unit 171 supplies a request for issuing a one-time password, a personal identification ID, and prescription part information to the communication unit 161 and instructs (controls) transmission to the data center 51. The communication unit 161 transmits the issue request, personal identification ID, and prescription part information supplied from the issue request unit 171 to the data center 51 via the communication network 55.
 すると、ステップS21において、データセンタ51の通信部82は、携帯型端末装置54から送信されてきた発行要求、個人識別ID、および処方箋部分情報を受信して制御部83に供給する。 Then, in step S 21, the communication unit 82 of the data center 51 receives the issue request, the personal identification ID, and the prescription part information transmitted from the portable terminal device 54 and supplies them to the control unit 83.
 ステップS22において、制御部83の生成部92は、通信部82から供給された発行要求に応じてワンタイムパスワードを生成する。例えば生成部92は、無作為に選択した所定数の文字や数字からなる情報をワンタイムパスワードとして生成する。 In step S <b> 22, the generation unit 92 of the control unit 83 generates a one-time password in response to the issue request supplied from the communication unit 82. For example, the generation unit 92 generates information including a predetermined number of randomly selected characters and numbers as a one-time password.
 なお、より詳細には、生成部92はユーザの認証を行い、ユーザが認証されてからワンタイムパスワードの生成を行う。 In more detail, the generation unit 92 performs user authentication, and generates a one-time password after the user is authenticated.
 ステップS23において、記録部81は個人識別IDに対応付けて、ワンタイムパスワードおよび処方箋部分情報を記録する。 In step S23, the recording unit 81 records the one-time password and prescription part information in association with the personal identification ID.
 すなわち、情報管理部91は、通信部82から供給された個人識別IDおよび処方箋部分情報と、生成部92により生成されたワンタイムパスワードとを記録部81に供給し、それらの情報の記録を制御する。すると、記録部81は情報管理部91の制御に従って、個人識別IDと、ワンタイムパスワードおよび処方箋部分情報とを対応付けて記録する。 That is, the information management unit 91 supplies the personal identification ID and prescription part information supplied from the communication unit 82 and the one-time password generated by the generation unit 92 to the recording unit 81 and controls recording of the information. To do. Then, the recording unit 81 records the personal identification ID, the one-time password, and the prescription part information in association with each other according to the control of the information management unit 91.
 また、情報管理部91は、生成されたワンタイムパスワードを通信部82に供給し、携帯型端末装置54への送信を指示する。 In addition, the information management unit 91 supplies the generated one-time password to the communication unit 82 and instructs transmission to the portable terminal device 54.
 ステップS24において、通信部82は、情報管理部91から供給されたワンタイムパスワードを、通信網55を介して携帯型端末装置54に送信し、ワンタイムパスワード発行処理は終了する。これにより、データセンタ51からユーザに対して、ユーザの薬歴データの閲覧を第三者(薬剤師)に対して一時的に許可するためのワンタイムパスワードが発行されたことになる。 In step S24, the communication unit 82 transmits the one-time password supplied from the information management unit 91 to the portable terminal device 54 via the communication network 55, and the one-time password issuing process ends. As a result, a one-time password for temporarily permitting a third party (pharmacist) to browse the user's medication history data is issued from the data center 51 to the user.
 また、ステップS12において、携帯型端末装置54の通信部161は、データセンタ51から送信されてきたワンタイムパスワードを受信して制御部163に供給する。制御部163の発行要求部171は、必要に応じてワンタイムパスワードを記録部164に供給し、記録させる。 In step S 12, the communication unit 161 of the portable terminal device 54 receives the one-time password transmitted from the data center 51 and supplies it to the control unit 163. The issuance request unit 171 of the control unit 163 supplies the one-time password to the recording unit 164 as necessary, and records it.
 ステップS13において、表示制御部172は、通信部161から供給されたワンタイムパスワードを表示部165に供給して表示させる。表示部165は、表示制御部172の制御に応じてワンタイムパスワードを表示し、ワンタイムパスワード発行要求処理は終了する。 In step S13, the display control unit 172 supplies the one-time password supplied from the communication unit 161 to the display unit 165 for display. The display unit 165 displays the one-time password in accordance with the control of the display control unit 172, and the one-time password issuance request process ends.
 このようにして携帯型端末装置54にワンタイムパスワードが表示されると、ユーザは電話等を利用して、口頭でワンタイムパスワードを薬剤師に通知する。その際、ユーザは、自分で入力した処方箋部分情報としての薬剤名も薬剤師に通知する。 When the one-time password is displayed on the portable terminal device 54 in this way, the user verbally notifies the pharmacist of the one-time password using a telephone or the like. At that time, the user also notifies the pharmacist of the medicine name as the prescription part information input by the user.
 以上のようにして携帯型端末装置54は、ユーザの操作に応じて発行要求とともに個人識別IDと処方箋部分情報をデータセンタ51に送信する。また、データセンタ51は、発行要求に応じてワンタイムパスワードを発行するとともに、ワンタイムパスワードおよび処方箋部分情報を個人識別IDに対応付けて記録する。 As described above, the portable terminal device 54 transmits a personal identification ID and prescription part information to the data center 51 together with an issuance request in accordance with a user operation. Further, the data center 51 issues a one-time password in response to the issuance request, and records the one-time password and prescription part information in association with the personal identification ID.
 このように、ワンタイムパスワードとともに処方箋部分情報を記録しておくことで、ワンタイムパスワードだけでなく処方箋部分情報も認証に利用することができる。特に処方箋部分情報は他人には想像しづらく、かつユーザや薬剤師には記憶しやすい情報である。 Thus, by recording the prescription part information together with the one-time password, not only the one-time password but also the prescription part information can be used for authentication. In particular, the prescription part information is information that is difficult for others to imagine and easy for the user and pharmacist to memorize.
 したがって、ワンタイムパスワードと処方箋部分情報を用いて認証することで、セキュリティを確保しつつワンタイムパスワードを短くすることができ、ユーザや薬剤師の負担を軽減させることができる。これにより、セキュリティを確保しつつ利便性を向上させることができる。 Therefore, by authenticating using the one-time password and prescription part information, the one-time password can be shortened while ensuring security, and the burden on the user and pharmacist can be reduced. Thereby, convenience can be improved while ensuring security.
〈閲覧処理および提供処理の説明〉
 以上のようにして薬剤師にワンタイムパスワードと処方箋部分情報が伝えられると、薬剤師は情報端末装置52を操作して、ユーザの薬歴データを閲覧する。薬剤師により薬歴データの閲覧のための操作が行われると、情報端末装置52は閲覧処理を行って薬歴データを表示し、データセンタ51は情報端末装置52の要求に応じて薬歴データを提供する提供処理を行う。 <Explanation of browsing process and providing process>
When the one-time password and prescription part information are transmitted to the pharmacist as described above, the pharmacist operates the information terminal device 52 and browses the user's drug history data. When an operation for browsing the medical history data is performed by the pharmacist, the information terminal device 52 performs a browsing process to display the medical history data, and the data center 51 displays the medical history data in response to a request from the information terminal device 52. Perform the provision process to be provided.
 以下、図8のフローチャートを参照して、情報端末装置52による閲覧処理、およびデータセンタ51による提供処理について説明する。 Hereinafter, the browsing process by the information terminal device 52 and the providing process by the data center 51 will be described with reference to the flowchart of FIG.
 ステップS51において、情報端末装置52の通信部121は、医師の情報端末装置から送信されてきた処方箋データを受信して制御部124に供給する。なお、処方箋データは、どのようなタイミングで取得されるようにしてもよい。 In step S51, the communication unit 121 of the information terminal device 52 receives prescription data transmitted from the doctor's information terminal device and supplies it to the control unit 124. Note that the prescription data may be acquired at any timing.
 また、薬剤師は、入力部122に対して薬歴データの閲覧のための操作を行うとともに、入力部122を操作してワンタイムパスワードおよび処方箋部分情報を入力する。すると、閲覧制御部131は、薬剤師の操作に応じて入力部122から供給された信号に基づいて、薬歴データの閲覧を要求する閲覧要求を生成するとともに、閲覧要求、ワンタイムパスワード、および処方箋部分情報を通信部121に供給し、それらの送信を制御する。 In addition, the pharmacist performs an operation for browsing the medical history data on the input unit 122 and operates the input unit 122 to input the one-time password and prescription part information. Then, the browsing control unit 131 generates a browsing request for requesting browsing of drug history data based on a signal supplied from the input unit 122 according to the operation of the pharmacist, and also includes a browsing request, a one-time password, and a prescription. Partial information is supplied to the communication unit 121 and transmission thereof is controlled.
 なお、ここでは薬剤師が口頭でユーザから処方箋部分情報を伝え聞き、入力部122を操作して処方箋部分情報を入力する例について説明するが、処方箋部分情報はどのようにして取得されるようにしてもよい。 Here, an example will be described in which the pharmacist verbally transmits and listens to the prescription part information from the user, and operates the input unit 122 to input the prescription part information. However, the prescription part information may be acquired in any way. Good.
 ステップS52において、通信部121は、閲覧制御部131から供給された閲覧要求とともに、閲覧制御部131から供給されたワンタイムパスワードおよび処方箋部分情報を、通信網55を介してデータセンタ51に送信する。 In step S <b> 52, the communication unit 121 transmits the one-time password and prescription part information supplied from the browsing control unit 131 to the data center 51 via the communication network 55 together with the browsing request supplied from the browsing control unit 131. .
 すると、ステップS61において、データセンタ51の通信部82は、情報端末装置52から送信されてきた閲覧要求、ワンタイムパスワード、および処方箋部分情報を受信して制御部83に供給する。 Then, in step S 61, the communication unit 82 of the data center 51 receives the browsing request, the one-time password, and the prescription part information transmitted from the information terminal device 52 and supplies them to the control unit 83.
 ステップS62において、制御部83の認証部93は、通信部82から供給された閲覧要求に応じて、通信部82から供給されたワンタイムパスワードおよび処方箋部分情報に基づく認証を行う。すなわち、ワンタイムパスワードおよび処方箋部分情報の比較が行われ、その比較結果に応じて情報端末装置52(薬剤師)が認証される。 In step S62, the authentication unit 93 of the control unit 83 performs authentication based on the one-time password and prescription part information supplied from the communication unit 82 in response to the browsing request supplied from the communication unit 82. That is, the one-time password and prescription part information are compared, and the information terminal device 52 (pharmacist) is authenticated according to the comparison result.
 例えば認証部93は、通信部82から供給されたワンタイムパスワードおよび処方箋部分情報が、記録部81に個人識別IDに対応付けられて記録されているワンタイムパスワードおよび処方箋部分情報と一致するか否かを判定する。そして、認証部93は、一致すると判定された場合、閲覧要求を送信してきた第三者(薬剤師)は、ワンタイムパスワードおよび処方箋部分情報に対応付けられている個人識別IDにより特定されるユーザの薬歴データを一時的に閲覧する権限を有しているとする。つまり、薬剤師が一時的な閲覧権限を有する第三者であるとして認証される。 For example, the authentication unit 93 determines whether or not the one-time password and prescription part information supplied from the communication unit 82 match the one-time password and prescription part information recorded in the recording unit 81 in association with the personal identification ID. Determine whether. And when it determines with the authentication part 93 being in agreement, the third party (pharmacist) who transmitted the browsing request will identify the user identified by the personal identification ID associated with the one-time password and prescription part information. It is assumed that the user has the authority to view drug history data temporarily. That is, the pharmacist is authenticated as a third party having temporary browsing authority.
 この例では、情報端末装置52が設けられている薬局や、処方箋データを生成する医師の医療機関を予めデータセンタ51に登録しておく必要がないので、利便性を向上させることができる。 In this example, it is not necessary to register in advance in the data center 51 the pharmacy in which the information terminal device 52 is provided or the medical institution of the doctor who generates the prescription data, so the convenience can be improved.
 なお、第三者の認証は、ワンタイムパスワードおよび処方箋部分情報が一致するかに限らず、ワンタイムパスワードおよび処方箋部分情報から算出される情報が一致するかなど、どのようにして行われてもよい。 Note that third-party authentication is not limited to whether the one-time password and prescription part information match, but how the information calculated from the one-time password and prescription part information matches, etc. Good.
 以下では、正しく認証が行われたものとして説明を続ける。なお、正しく認証が行われなかった場合、つまり閲覧要求を送信してきた薬剤師に一時的な閲覧権限がないと判定された場合には、データセンタ51から情報端末装置52には、閲覧権限がない旨の情報が送信されて提供処理は終了する。 In the following, the explanation will be continued assuming that the authentication is correctly performed. If authentication is not performed correctly, that is, if it is determined that the pharmacist who has transmitted the browsing request does not have temporary browsing authority, the data terminal 51 does not have browsing authority. The information to that effect is transmitted and the providing process ends.
 ステップS62で正しく認証が行われると、ステップS63において情報管理部91は、閲覧が要求された薬歴データ、つまり個人識別IDに対応付けられている薬歴データを記録部81から読み出して、個人識別IDおよび薬歴データを通信部82に供給する。そして、情報管理部91は、通信部82に対して個人識別IDおよび薬歴データの送信を指示する。 When the authentication is correctly performed in step S62, the information management unit 91 reads out the medical history data requested to be browsed, that is, the medical history data associated with the personal identification ID from the recording unit 81 in step S63. The identification ID and drug history data are supplied to the communication unit 82. Then, the information management unit 91 instructs the communication unit 82 to transmit a personal identification ID and medication history data.
 ステップS64において、通信部82は、情報管理部91から供給された個人識別IDおよび薬歴データを、通信網55を介して情報端末装置52に送信する。 In step S64, the communication unit 82 transmits the personal identification ID and the medication history data supplied from the information management unit 91 to the information terminal device 52 via the communication network 55.
 すると、ステップS53において情報端末装置52の通信部121は、データセンタ51から送信されてきた個人識別IDおよび薬歴データを受信して制御部124に供給する。 Then, in step S53, the communication unit 121 of the information terminal device 52 receives the personal identification ID and the medication history data transmitted from the data center 51 and supplies them to the control unit 124.
 ステップS54において、制御部124の表示制御部132は、通信部121から供給された薬歴データを表示部123に供給して表示させる。表示部123は、表示制御部132の制御に従って薬歴データを表示する。 In step S54, the display control unit 132 of the control unit 124 supplies the drug history data supplied from the communication unit 121 to the display unit 123 for display. The display unit 123 displays the drug history data according to the control of the display control unit 132.
 このようにして薬歴データが表示されると、薬剤師は薬歴データを参照する。また、薬剤師は、入力部122を操作して、ステップS51の処理で取得された処方箋データを適宜、加工する等して薬歴データを作成する。すなわち、制御部124は、薬剤師の入力部122に対する操作に応じて、処方箋データに基づいて薬歴データを生成する。このとき生成される薬歴データは、例えばデータセンタ51に記録されている薬歴データを更新するときに追加される新たな部分、つまり更新部分のデータとされる。 When the drug history data is displayed in this way, the pharmacist refers to the drug history data. In addition, the pharmacist operates the input unit 122 to create drug history data by appropriately processing the prescription data acquired in the process of step S51. That is, the control unit 124 generates drug history data based on the prescription data in response to an operation performed on the input unit 122 by the pharmacist. The drug history data generated at this time is, for example, a new part added when the drug history data recorded in the data center 51 is updated, that is, data of an updated part.
 また、新たな薬歴データには、処方箋データに含まれている情報のほか、例えば情報端末装置52が設けられている薬局に関する情報も含まれている。具体的には、新たな薬歴データには、例えば処方箋データに含まれている情報として、ユーザに処方された薬剤の名称や、その薬剤の処方量、診察を行った医療機関を示す情報などが含まれている。また、新たな薬歴データには、例えば薬局に関する情報として、薬局名を示す情報などが含まれている。 Further, the new drug history data includes, for example, information related to the pharmacy in which the information terminal device 52 is provided, in addition to the information included in the prescription data. Specifically, in the new drug history data, for example, information included in the prescription data, the name of the drug prescribed to the user, the prescription amount of the drug, information indicating the medical institution that performed the diagnosis, etc. It is included. In addition, the new drug history data includes, for example, information indicating a pharmacy name as information on the pharmacy.
 薬歴データが生成されると、制御部124は、生成した新たな薬歴データ、ステップS53の処理で受信された個人識別ID、および薬歴データの更新要求を通信部121に供給し、データセンタ51への送信を指示する。 When the drug history data is generated, the control unit 124 supplies the generated new drug history data, the personal identification ID received in the process of step S53, and the update request for the drug history data to the communication unit 121, and the data The transmission to the center 51 is instructed.
 ステップS55において、通信部121は、制御部124から供給された個人識別ID、新たな薬歴データ、および薬歴データの更新要求を、通信網55を介してデータセンタ51に送信し、閲覧処理は終了する。 In step S55, the communication unit 121 transmits the personal identification ID, new drug history data, and drug history data update request supplied from the control unit 124 to the data center 51 via the communication network 55, and browse processing. Ends.
 また、ステップS65において、データセンタ51の通信部82は、情報端末装置52から送信されてきた個人識別ID、新たな薬歴データ、および薬歴データの更新要求を受信して制御部83に供給する。 In step S65, the communication unit 82 of the data center 51 receives the personal identification ID, the new drug history data, and the update request for the drug history data transmitted from the information terminal device 52, and supplies them to the control unit 83. To do.
 ステップS66において、情報管理部91は、薬歴データの更新要求に応じて、通信部82から供給された新たな薬歴データを記録部81に供給して記録させる。 In step S66, the information management unit 91 supplies the new drug history data supplied from the communication unit 82 to the recording unit 81 for recording in response to a request to update the drug history data.
 すなわち、情報管理部91は、通信部82から供給された個人識別IDと同じ個人識別IDに対応付けられて記録部81に記録されている薬歴データに、新たに受信した薬歴データが追加されて薬歴データが更新されるように、記録部81による新たな薬歴データの記録を制御する。記録部81は、情報管理部91から供給された薬歴データに基づいて、薬歴データを更新する。薬歴データが更新されると提供処理は終了する。 That is, the information management unit 91 adds the newly received medication history data to the medication history data recorded in the recording unit 81 in association with the same personal identification ID as the personal identification ID supplied from the communication unit 82. Then, recording of new drug history data by the recording unit 81 is controlled so that the drug history data is updated. The recording unit 81 updates the drug history data based on the drug history data supplied from the information management unit 91. When the drug history data is updated, the providing process ends.
 以上のようにして、データセンタ51はワンタイムパスワードおよび処方箋部分情報に基づいて認証を行い、薬歴データの一時的な閲覧を許可するとともに、新たな薬歴データを受信して薬歴データの更新を行う。 As described above, the data center 51 performs authentication based on the one-time password and prescription part information, permits temporary browsing of the drug history data, receives new drug history data, and stores the drug history data. Update.
 このようにワンタイムパスワードおよび処方箋部分情報に基づいて認証を行うようにすることで、セキュリティを確保しつつ利便性を向上させることができる。また、認証が行われたときに、閲覧を許可するとともに薬歴データの更新も許可することで、情報端末装置52(薬剤師)は別途、認証を行うことなく薬歴データを更新することができ、さらに利便性を向上させることができる。なお、ここでは、薬歴データの閲覧後、薬歴データが更新される場合について説明したが、薬歴データが閲覧された時点、つまり薬歴データが表示された時点で、閲覧処理が終了するようにしてもよい。そのような場合には、閲覧処理におけるステップS55と、提供処理におけるステップS65およびステップS66の処理とは行われないことになる。薬歴閲覧後、薬歴更新のみ行う場合は、ステップS55にて、個人識別ID、新たな薬歴データ、および更新要求とともにワンタイムパスワードを送信し、データセンタ51にてワンタイムパスワードが有効期間内かが確認され、有効期間内であれば、処理はステップS65およびステップS66へと進む。 As described above, by performing authentication based on the one-time password and prescription part information, it is possible to improve convenience while ensuring security. Further, when authentication is performed, by permitting browsing and updating of medical history data, the information terminal device 52 (pharmacist) can separately update the medical history data without performing authentication. Furthermore, convenience can be improved. Here, the case where the drug history data is updated after browsing the drug history data has been described, but the browsing process ends when the drug history data is browsed, that is, when the drug history data is displayed. You may do it. In such a case, step S55 in the browsing process and steps S65 and S66 in the providing process are not performed. If only the drug history is updated after browsing the drug history, the one-time password is transmitted together with the personal identification ID, new drug history data, and the update request in step S55, and the one-time password is valid for the data center 51. If it is within the valid period, the process proceeds to step S65 and step S66.
〈第2の実施の形態〉
〈閲覧処理および提供処理の説明〉
 なお、以上においては、ユーザから薬剤師に対して、ワンタイムパスワードとともに処方箋部分情報についても口頭等により伝えられると説明した。しかし、処方箋部分情報は処方箋データに含まれている情報であり、また情報端末装置52は医師の情報端末装置から処方箋データを取得するので、必ずしも処方箋部分情報を薬剤師に伝える必要はない。 <Second Embodiment>
<Explanation of browsing process and providing process>
In the above description, it has been described that the prescription part information is transmitted verbally together with the one-time password from the user to the pharmacist. However, since the prescription part information is information included in the prescription data, and the information terminal device 52 acquires the prescription data from the doctor's information terminal device, it is not always necessary to convey the prescription part information to the pharmacist.
 そのような場合、情報処理装置52は、処方箋データから処方箋部分情報を抽出すればよい。このように処方箋部分情報が処方箋データから抽出される場合、閲覧処理および提供処理として、例えば図9に示す処理が行われる。 In such a case, the information processing apparatus 52 may extract prescription part information from the prescription data. Thus, when prescription part information is extracted from prescription data, the process shown, for example in FIG. 9 is performed as a browsing process and a provision process.
 以下、図9のフローチャートを参照して、情報端末装置52による閲覧処理、およびデータセンタ51による提供処理について説明する。なお、ステップS91の処理は、図8のステップS51の処理と同様であるので、その説明は省略する。 Hereinafter, the browsing process by the information terminal device 52 and the providing process by the data center 51 will be described with reference to the flowchart of FIG. Note that the processing in step S91 is the same as the processing in step S51 in FIG.
 ステップS92において、情報端末装置52の閲覧制御部131は、通信部121から供給された処方箋データから処方箋部分情報を抽出する。 In step S92, the browsing control unit 131 of the information terminal device 52 extracts prescription part information from the prescription data supplied from the communication unit 121.
 例えば閲覧制御部131は、処方箋データの予め定められた部分を抽出して処方箋部分情報とする。ここで、予め定められた部分とは、例えばユーザ(患者)に対して処方された薬剤に関する情報が格納される部分などとされる。なお、処方箋部分情報が処方箋にQR(Quick Response)コード(登録商標)などで記述されていたり、処方箋データに暗号化されて記述されていたりするようにしてもよい。この場合、閲覧制御部131は、処方箋に含まれているQRコード(登録商標)を読み込んだり、処方箋データに記述されているデータを復号したりして処方箋部分情報を取得する。 For example, the browsing control unit 131 extracts a predetermined part of the prescription data and uses it as prescription part information. Here, the predetermined part is, for example, a part in which information about a medicine prescribed for the user (patient) is stored. Note that the prescription part information may be described in a prescription with a QR (Quick Response) code (registered trademark) or may be encrypted and described in prescription data. In this case, the browsing control unit 131 acquires the prescription part information by reading a QR code (registered trademark) included in the prescription or decrypting data described in the prescription data.
 処方箋部分情報が得られると、閲覧制御部131は閲覧要求、ワンタイムパスワード、および処方箋部分情報を通信部121に供給し、それらの送信を制御する。 When the prescription part information is obtained, the browsing control unit 131 supplies the browsing request, the one-time password, and the prescription part information to the communication unit 121, and controls their transmission.
 ステップS93において、通信部121は、閲覧制御部131から供給された閲覧要求とともに、閲覧制御部131から供給されたワンタイムパスワードおよび処方箋部分情報を、通信網55を介してデータセンタ51に送信する。 In step S <b> 93, the communication unit 121 transmits the one-time password and prescription part information supplied from the browsing control unit 131 to the data center 51 via the communication network 55 together with the browsing request supplied from the browsing control unit 131. .
 閲覧要求が送信されると、データセンタ51では、ステップS101乃至ステップS104の処理が行われて、認証の処理と、個人識別IDおよび薬歴データの送信処理とが行われるが、これらの処理は図8のステップS61乃至ステップS64の処理と同様であるので、その説明は省略する。 When the browsing request is transmitted, the data center 51 performs the processing from step S101 to step S104 to perform the authentication processing and the personal identification ID and medication history data transmission processing. Since it is the same as the process of step S61 thru | or step S64 of FIG. 8, the description is abbreviate | omitted.
 また、データセンタ51から個人識別IDおよび薬歴データが送信されると、情報端末装置52においてステップS94乃至ステップS96の処理が行われ、閲覧処理は終了するが、これらの処理は図8のステップS53乃至ステップS55の処理と同様であるので、その説明は省略する。 Further, when the personal identification ID and the drug history data are transmitted from the data center 51, the processing of steps S94 to S96 is performed in the information terminal device 52, and the browsing process is terminated, but these processes are the steps of FIG. Since it is the same as the process of S53 thru | or step S55, the description is abbreviate | omitted.
 さらに、ステップS94乃至ステップS96の処理が行われて、個人識別ID、新たな薬歴データ、および更新要求がデータセンタ51に送信されると、データセンタ51では、ステップS105およびステップS106の処理が行われて提供処理は終了する。なお、これらのステップS105およびステップS106の処理は、図8のステップS65およびステップS66の処理と同様であるので、その説明は省略する。 Furthermore, when the processing of step S94 to step S96 is performed and the personal identification ID, new drug history data, and an update request are transmitted to the data center 51, the data center 51 performs the processing of step S105 and step S106. Then, the providing process ends. Note that the processing in step S105 and step S106 is the same as the processing in step S65 and step S66 in FIG.
 このようにして、情報端末装置52は、取得した処方箋データから処方箋部分情報を抽出する。このように処方箋データから処方箋部分情報を抽出するようにすることで、ユーザは処方箋部分情報を薬剤師に伝える必要がなくなり、さらに利便性を向上させることができるだけでなく、セキュリティも向上させることができる。 In this way, the information terminal device 52 extracts prescription part information from the acquired prescription data. By extracting the prescription part information from the prescription data in this way, the user does not need to convey the prescription part information to the pharmacist, and not only can the convenience be improved, but also the security can be improved. .
〈第3の実施の形態〉
〈薬歴データの閲覧について〉
 また、以上においては認証補助情報として処方箋データの一部の情報が用いられる場合を例として説明したが、処方箋データには含まれていないが、ユーザおよび薬剤師がともに知っており、更新される薬歴データに含まれる情報、例えば薬局に関する情報を認証補助情報として用いてもよい。以下では、認証補助情報として薬局に関する情報が用いられる例について説明する。 <Third Embodiment>
<About browsing medical history data>
In the above description, a part of the prescription data is used as authentication auxiliary information as an example, but it is not included in the prescription data. Information included in the history data, for example, information related to a pharmacy, may be used as auxiliary authentication information. Below, the example in which the information regarding a pharmacy is used as authentication auxiliary information is demonstrated.
 そのような場合、情報端末装置52が設けられた薬局は、データセンタ51に予め登録されている。すなわち、データセンタ51の記録部81には、薬局を特定する薬局IDと、その薬局名(名称)を示す薬局名情報、および薬局の所在地域を示す地域情報とが対応付けられて記録されている。ここで、薬局の所在地域とは、例えば薬局がある都道府県や市などの地域とされる。 In such a case, the pharmacy provided with the information terminal device 52 is registered in the data center 51 in advance. That is, in the recording unit 81 of the data center 51, a pharmacy ID for identifying a pharmacy, pharmacy name information indicating the pharmacy name (name), and area information indicating a pharmacy location area are recorded in association with each other. Yes. Here, the location area of the pharmacy is, for example, the prefecture or city where the pharmacy is located.
 なお、ここではデータセンタ51において、薬局IDに対応付けて薬局名情報および地域情報を記録しておく例について説明するが、薬局名情報または地域情報の何れか一方のみが記録されるようにしてもよい。そのような場合、薬局名情報または地域情報の何れか一方のみが利用されることになる。 Here, an example in which the pharmacy name information and the regional information are recorded in association with the pharmacy ID in the data center 51 will be described. However, only one of the pharmacy name information and the regional information is recorded. Also good. In such a case, only one of pharmacy name information and regional information is used.
 このように薬局が予め登録されている場合、ユーザは携帯型端末装置54を操作して、薬歴データの閲覧を一時的に許可する薬局の薬局名情報または地域情報を薬局情報として入力する。この例では、薬局情報が認証補助情報として利用される。薬局名等の情報は、新たに追加される薬歴データに含まれる情報であるから、薬局情報は、これから更新される薬歴データに含まれる情報であるといえる。 In this way, when the pharmacy is registered in advance, the user operates the portable terminal device 54 and inputs the pharmacy name information or the regional information of the pharmacy that temporarily permits the browsing of the drug history data as the pharmacy information. In this example, pharmacy information is used as authentication auxiliary information. Since the information such as the pharmacy name is information included in the newly added drug history data, it can be said that the pharmacy information is information included in the drug history data to be updated.
 また、例えば薬局情報の入力は、ユーザにより直接入力されるようにしてもよいし、表示された情報のなかからユーザが選択するようにしてもよい。また、薬局情報として、薬局名情報および地域情報の両方が入力されるようにしてもよい。 Also, for example, the pharmacy information may be input directly by the user, or the user may select from the displayed information. Further, both pharmacy name information and regional information may be input as pharmacy information.
 ユーザにより薬局情報が入力されると、携帯型端末装置54は図10の矢印A31に示すように、個人識別IDおよび薬局情報とともにワンタイムパスワードの発行要求をデータセンタ51に送信する。 When the pharmacy information is input by the user, the portable terminal device 54 transmits a request for issuing a one-time password to the data center 51 together with the personal identification ID and the pharmacy information, as indicated by an arrow A31 in FIG.
 また、データセンタ51は発行要求に応じてワンタイムパスワードを生成し、個人識別IDに対応付けてワンタイムパスワードおよび薬局情報を記録するとともに、矢印A32に示すようにワンタイムパスワードを携帯型端末装置54に送信する。 Further, the data center 51 generates a one-time password in response to the issuance request, records the one-time password and pharmacy information in association with the personal identification ID, and uses the one-time password as a portable terminal device as indicated by an arrow A32. 54.
 携帯型端末装置54がデータセンタ51からワンタイムパスワードを受信して表示すると、ユーザは矢印A33に示すように、薬剤師に対して口頭でワンタイムパスワードを知らせる。この場合、ユーザは薬局情報を薬剤師に伝える必要はない。 When the portable terminal device 54 receives and displays the one-time password from the data center 51, the user verbally informs the pharmacist of the one-time password as indicated by an arrow A33. In this case, the user does not need to convey pharmacy information to the pharmacist.
 薬剤師は情報端末装置52を操作し、情報端末装置52は矢印A34に示すようにユーザから通知されたワンタイムパスワードと、予め情報端末装置52に記録されている薬局IDとをデータセンタ51に送信し、薬歴データの送信を要求する。 The pharmacist operates the information terminal device 52, and the information terminal device 52 transmits the one-time password notified from the user and the pharmacy ID recorded in advance in the information terminal device 52 to the data center 51 as indicated by an arrow A34. And request transmission of drug history data.
 これに応じて、データセンタ51は、情報端末装置52から受信したワンタイムパスワードおよび薬局IDと、個人識別IDに対応付けて記録しているワンタイムパスワードおよび薬局情報とに基づいて認証を行う。 Accordingly, the data center 51 performs authentication based on the one-time password and pharmacy ID received from the information terminal device 52 and the one-time password and pharmacy information recorded in association with the personal identification ID.
 例えばワンタイムパスワードが一致し、かつデータセンタ51に予め薬局IDと対応付けられて記録されている薬局名情報または地域情報と、個人識別IDおよびワンタイムパスワードに対応付けて記録している薬局情報とが一致する場合に正しく認証されたとされる。 For example, the pharmacy name information or the regional information that is recorded in association with the pharmacy ID in the data center 51 in advance, and the pharmacy information that is recorded in association with the personal identification ID and the one-time password. If it matches, it is assumed that authentication was successful.
 正しく認証が行われると、データセンタ51は矢印A35に示すように、個人識別IDに対応付けられている薬歴データを情報端末装置52に送信する。これにより、情報端末装置52ではユーザの薬歴データを一時的に閲覧することが可能となる。 When the authentication is correctly performed, the data center 51 transmits the drug history data associated with the personal identification ID to the information terminal device 52 as indicated by an arrow A35. Thereby, in the information terminal device 52, it becomes possible to browse a user's medicine history data temporarily.
 薬剤師は、薬歴データを参照するとともに新たな薬歴データを作成する。最後に、情報端末装置52は、矢印A36に示すように新たな薬歴データをデータセンタ51に送信するとともに、その新たな薬歴データの更新(登録)を要求する。 Pharmacist refers to drug history data and creates new drug history data. Finally, the information terminal device 52 transmits new drug history data to the data center 51 as indicated by an arrow A36, and requests update (registration) of the new drug history data.
 データセンタ51は、情報端末装置52の要求に応じて、情報端末装置52から受信した新たな薬歴データを個人識別IDに対応付けて記録することで、薬歴データを更新する。 The data center 51 updates the drug history data by recording the new drug history data received from the information terminal device 52 in association with the personal identification ID in response to a request from the information terminal device 52.
〈ワンタイムパスワード発行要求処理およびワンタイムパスワード発行処理の説明〉
 続いて、図10を参照して説明した処理について、より詳細に説明する。 <Description of one-time password issuance request processing and one-time password issuance processing>
Next, the process described with reference to FIG. 10 will be described in more detail.
 まず、図11のフローチャートを参照して、携帯型端末装置54によるワンタイムパスワード発行要求処理、およびデータセンタ51によるワンタイムパスワード発行処理について説明する。 First, the one-time password issue request process by the portable terminal device 54 and the one-time password issue process by the data center 51 will be described with reference to the flowchart of FIG.
 ステップS131において、携帯型端末装置54の通信部161は、発行要求とともに個人識別IDおよび薬局情報をデータセンタ51に送信する。 In step S131, the communication unit 161 of the portable terminal device 54 transmits the personal identification ID and pharmacy information to the data center 51 together with the issue request.
 すなわち、携帯型端末装置54の発行要求部171は、ユーザの操作に応じて入力部162から供給された信号に基づいて薬局情報を生成するとともに、ワンタイムパスワードの発行要求も生成する。さらに、発行要求部171は、記録部164からユーザの個人識別IDを読み出す。 That is, the issue request unit 171 of the portable terminal device 54 generates pharmacy information based on a signal supplied from the input unit 162 according to a user operation, and also generates a one-time password issue request. Further, the issue request unit 171 reads the personal identification ID of the user from the recording unit 164.
 そして、発行要求部171は、ワンタイムパスワードの発行要求、個人識別ID、および薬局情報を通信部161に供給し、データセンタ51への送信を制御する。通信部161は、発行要求部171から供給された発行要求、個人識別ID、および薬局情報を、通信網55を介してデータセンタ51に送信する。 The issuance request unit 171 supplies the one-time password issuance request, personal identification ID, and pharmacy information to the communication unit 161, and controls transmission to the data center 51. The communication unit 161 transmits the issue request, the personal identification ID, and the pharmacy information supplied from the issue request unit 171 to the data center 51 via the communication network 55.
 すると、ステップS141において、データセンタ51の通信部82は、携帯型端末装置54から送信されてきた発行要求、個人識別ID、および薬局情報を受信して制御部83に供給する。 Then, in step S141, the communication unit 82 of the data center 51 receives the issuance request, personal identification ID, and pharmacy information transmitted from the portable terminal device 54 and supplies them to the control unit 83.
 ステップS142において、制御部83の生成部92は、通信部82から供給された発行要求に応じてワンタイムパスワードを生成する。 In step S142, the generation unit 92 of the control unit 83 generates a one-time password in response to the issue request supplied from the communication unit 82.
 ステップS143において、記録部81は個人識別IDに対応付けて、ワンタイムパスワードおよび薬局情報を記録する。 In step S143, the recording unit 81 records the one-time password and pharmacy information in association with the personal identification ID.
 すなわち、情報管理部91は、通信部82から供給された個人識別IDおよび薬局情報と、生成部92により生成されたワンタイムパスワードとを記録部81に供給し、それらの情報の記録を制御する。記録部81は情報管理部91の制御に従って、個人識別IDと、ワンタイムパスワードおよび薬局情報とを対応付けて記録する。 That is, the information management unit 91 supplies the personal identification ID and pharmacy information supplied from the communication unit 82 and the one-time password generated by the generation unit 92 to the recording unit 81 and controls the recording of the information. . The recording unit 81 records the personal identification ID, the one-time password, and the pharmacy information in association with each other according to the control of the information management unit 91.
 また、情報管理部91は、生成されたワンタイムパスワードを通信部82に供給し、携帯型端末装置54への送信を指示する。 In addition, the information management unit 91 supplies the generated one-time password to the communication unit 82 and instructs transmission to the portable terminal device 54.
 ステップS144において、通信部82は、情報管理部91から供給されたワンタイムパスワードを、通信網55を介して携帯型端末装置54に送信し、ワンタイムパスワード発行処理は終了する。 In step S144, the communication unit 82 transmits the one-time password supplied from the information management unit 91 to the portable terminal device 54 via the communication network 55, and the one-time password issuing process ends.
 また、ワンタイムパスワードが携帯型端末装置54に送信されると、ステップS132およびステップS133の処理が行われてワンタイムパスワード発行要求処理は終了するが、これらの処理は図7のステップS12およびステップS13の処理と同様であるので、その説明は省略する。 Further, when the one-time password is transmitted to the portable terminal device 54, the processes of step S132 and step S133 are performed, and the one-time password issuance request process ends, but these processes are performed in steps S12 and S of FIG. Since it is the same as the process of S13, the description is abbreviate | omitted.
 このようにして携帯型端末装置54にワンタイムパスワードが表示されると、ユーザは電話等を利用して、口頭でワンタイムパスワードを薬剤師に通知する。その際、ユーザは、個人識別IDや薬局情報を薬剤師に伝える必要はない。 When the one-time password is displayed on the portable terminal device 54 in this way, the user verbally notifies the pharmacist of the one-time password using a telephone or the like. At that time, the user does not need to convey the personal identification ID and pharmacy information to the pharmacist.
 以上のようにして携帯型端末装置54は、発行要求とともに個人識別IDと薬局情報をデータセンタ51に送信する。また、データセンタ51は、発行要求に応じてワンタイムパスワードを発行するとともに、ワンタイムパスワードおよび薬局情報を個人識別IDに対応付けて記録する。 As described above, the portable terminal device 54 transmits the personal identification ID and pharmacy information to the data center 51 together with the issue request. Further, the data center 51 issues a one-time password in response to the issue request, and records the one-time password and pharmacy information in association with the personal identification ID.
 このように、ワンタイムパスワードとともに薬局情報を記録しておくことで、ワンタイムパスワードだけでなく薬局情報も認証に利用することができる。これにより、セキュリティを確保しつつワンタイムパスワードを短くすることができ、利便性を向上させることができる。特に、薬局情報として薬局名情報や地域情報を指定することで、閲覧を許可する薬局の地域の範囲や、薬局グループなどを限定することができ、さらに利便性を向上させることができる。 Thus, by recording the pharmacy information together with the one-time password, not only the one-time password but also the pharmacy information can be used for authentication. As a result, the one-time password can be shortened while ensuring security, and convenience can be improved. In particular, by specifying pharmacy name information and regional information as pharmacy information, it is possible to limit the range of pharmacies that are permitted to be browsed, pharmacy groups, and the like, and further improve convenience.
〈閲覧処理および提供処理の説明〉
 続いて図12のフローチャートを参照して、情報端末装置52による閲覧処理、およびデータセンタ51による提供処理について説明する。なお、この例では、情報端末装置52は、何らかの方法により処方箋データを予め取得しているものとする。 <Explanation of browsing process and providing process>
Next, the browsing process by the information terminal device 52 and the provision process by the data center 51 will be described with reference to the flowchart of FIG. In this example, it is assumed that the information terminal device 52 has acquired prescription data in advance by some method.
 ステップS171において、情報端末装置52の通信部121は、閲覧要求とともにワンタイムパスワードおよび薬局IDを、通信網55を介してデータセンタ51に送信する。 In step S171, the communication unit 121 of the information terminal device 52 transmits the one-time password and the pharmacy ID to the data center 51 through the communication network 55 together with the browsing request.
 すなわち、まず薬剤師は、入力部122に対して薬歴データの閲覧のための操作を行うとともに、入力部122を操作してワンタイムパスワードを入力する。すると、閲覧制御部131は、薬剤師の操作に応じて、薬歴データの閲覧を要求する閲覧要求を生成するとともに、ワンタイムパスワードを取得する。 That is, first, the pharmacist performs an operation for browsing the drug history data on the input unit 122 and operates the input unit 122 to input a one-time password. Then, the browsing control unit 131 generates a browsing request for requesting browsing of drug history data in accordance with the operation of the pharmacist and acquires a one-time password.
 また、閲覧制御部131は記録部125から薬局IDを読み出す。この薬局IDは、情報端末装置52が設けられている薬局を示す情報である。 Also, the browsing control unit 131 reads the pharmacy ID from the recording unit 125. This pharmacy ID is information indicating a pharmacy in which the information terminal device 52 is provided.
 閲覧制御部131は、このようにして得られた閲覧要求、ワンタイムパスワード、および薬局IDを通信部121に供給し、それらの送信を制御する。通信部121は、閲覧制御部131から供給された閲覧要求、ワンタイムパスワード、および薬局IDをデータセンタ51に送信する。 The browsing control unit 131 supplies the browsing request, the one-time password, and the pharmacy ID obtained in this way to the communication unit 121, and controls their transmission. The communication unit 121 transmits the browsing request, the one-time password, and the pharmacy ID supplied from the browsing control unit 131 to the data center 51.
 すると、ステップS181において、データセンタ51の通信部82は、情報端末装置52から送信されてきた閲覧要求、ワンタイムパスワード、および薬局IDを受信して制御部83に供給する。 Then, in step S181, the communication unit 82 of the data center 51 receives the browsing request, the one-time password, and the pharmacy ID transmitted from the information terminal device 52 and supplies them to the control unit 83.
 ステップS182において、制御部83の認証部93は、通信部82から供給された閲覧要求に応じて、通信部82から供給されたワンタイムパスワードおよび薬局IDに基づく認証を行う。 In step S182, the authentication unit 93 of the control unit 83 performs authentication based on the one-time password and pharmacy ID supplied from the communication unit 82 in response to the browsing request supplied from the communication unit 82.
 例えば認証部93は、記録部81に記録されている薬局IDのうち、通信部82から供給された薬局IDと同じ薬局IDに対応付けられている薬局名情報および地域情報を記録部81から読み出す。次に、認証部93は、通信部82から供給されたワンタイムパスワード、および記録部81から読み出した薬局名情報または地域情報が、記録部81に個人識別IDに対応付けられて記録されているワンタイムパスワード、および薬局情報により示される薬局名情報または地域情報と一致するか否かを判定する。 For example, the authentication unit 93 reads out from the recording unit 81 pharmacy name information and region information associated with the same pharmacy ID as the pharmacy ID supplied from the communication unit 82 among the pharmacy IDs recorded in the recording unit 81. . Next, the authentication unit 93 records the one-time password supplied from the communication unit 82 and the pharmacy name information or the region information read from the recording unit 81 in association with the personal identification ID in the recording unit 81. It is determined whether or not it matches the one-time password and pharmacy name information or regional information indicated by the pharmacy information.
 そして、認証部93は、一致すると判定された場合、閲覧要求を送信してきた第三者(薬剤師)はユーザの薬歴データを一時的に閲覧する権限を有しているとする。 And when it determines with the authentication part 93 being in agreement, suppose that the third party (pharmacist) who transmitted the browsing request has the authority to browse a user's medicine history data temporarily.
 例えば薬局情報として薬局名情報が指定された場合、同じグループに属する薬局のいくつかの店舗にワンタイムパスワードを伝えれば、それらの各店舗で薬歴データの閲覧が可能となる。つまり、ユーザは薬局情報として薬局名情報を指定することで、薬歴データの閲覧を許可する薬局グループを限定することができる。 For example, when pharmacy name information is designated as pharmacy information, if one-time passwords are transmitted to several stores in a pharmacy belonging to the same group, it is possible to view the drug history data at each of those stores. That is, the user can limit the pharmacy groups permitted to view the drug history data by specifying the pharmacy name information as the pharmacy information.
 同様に、薬局情報として地域情報が指定された場合には、その地域に存在するいくつかの薬局にワンタイムパスワードを伝えれば、それらの各薬局で薬歴データの閲覧が可能となる。つまり、ユーザは薬局情報として地域情報を指定することで、薬歴データの閲覧を許可する薬局のおかれた地域を限定することができる。 Similarly, when regional information is designated as pharmacy information, if one-time passwords are transmitted to some pharmacies existing in the region, it is possible to view the medical history data at each of those pharmacies. That is, the user can limit the area where the pharmacy where the browsing of the drug history data is permitted is specified by specifying the area information as the pharmacy information.
 さらに、薬局情報として薬局名情報が指定される場合、薬局名情報に薬局の名称(薬局名)と薬局の店舗名も含まれるようにしてもよい。この場合、ユーザは薬局名情報として薬局グループの名称と店舗名を指定することで、その薬局グループに属す薬局の各店舗のなかから薬歴データの閲覧を許可する店舗を限定することができる。 Furthermore, when pharmacy name information is designated as pharmacy information, the pharmacy name information may include a pharmacy name (pharmacy name) and a pharmacy store name. In this case, the user can limit the stores that permit the browsing of the drug history data from the stores of the pharmacies belonging to the pharmacy group by specifying the name of the pharmacy group and the store name as the pharmacy name information.
 ステップS182で正しく認証が行われると、その後、ステップS183およびステップS184の処理が行われて、情報端末装置52に個人識別IDおよび薬歴データが送信される。なお、これらのステップS183およびステップS184の処理は、図8のステップS63およびステップS64の処理と同様であるので、その説明は省略する。 If the authentication is correctly performed in step S182, then the processing of step S183 and step S184 is performed, and the personal identification ID and drug history data are transmitted to the information terminal device 52. Note that the processing in step S183 and step S184 is the same as the processing in step S63 and step S64 in FIG.
 また、データセンタ51から個人識別IDおよび薬歴データが送信されると、情報端末装置52においてステップS172乃至ステップS174の処理が行われ、閲覧処理は終了するが、これらの処理は図8のステップS53乃至ステップS55の処理と同様であるので、その説明は省略する。 Further, when the personal identification ID and the drug history data are transmitted from the data center 51, the information terminal device 52 performs the processing of steps S172 to S174, and the browsing processing ends. Since it is the same as the process of S53 thru | or step S55, the description is abbreviate | omitted.
 さらに、ステップS172乃至ステップS174の処理が行われて、個人識別ID、新たな薬歴データ、および更新要求がデータセンタ51に送信されると、データセンタ51では、ステップS185およびステップS186の処理が行われて提供処理は終了する。なお、これらのステップS185およびステップS186の処理は、図8のステップS65およびステップS66の処理と同様であるので、その説明は省略する。なお、ここでは、薬歴データの閲覧後、薬歴データが更新される場合について説明したが、閲覧のみを行う場合は、薬歴データが閲覧された時点、つまり薬歴データが表示された時点で、閲覧処理を終了するようにしてもよい。そのような場合には、事前に情報端末装置52が処方箋データを取得しておく必要はなく、また、閲覧処理におけるステップS174と、提供処理におけるステップS185およびステップS186の処理とは行われないことになる。 Further, when the processing from step S172 to step S174 is performed and the personal identification ID, the new drug history data, and the update request are transmitted to the data center 51, the data center 51 performs the processing of steps S185 and S186. Then, the providing process ends. Note that the processing in step S185 and step S186 is the same as the processing in step S65 and step S66 in FIG. 8, and a description thereof will be omitted. In addition, although the case where the medical history data is updated after browsing the medical history data is described here, when only the browsing is performed, the time when the medical history data is browsed, that is, the time when the medical history data is displayed Thus, the browsing process may be terminated. In such a case, it is not necessary for the information terminal device 52 to acquire prescription data in advance, and step S174 in the browsing process and steps S185 and S186 in the providing process are not performed. become.
 以上のようにしてデータセンタ51は、ワンタイムパスワードおよび薬局情報を用いて認証を行い、薬歴データの閲覧を許可する。このように薬局情報を認証に用いることで、セキュリティを確保しつつ利便性を向上させることができる。特に、薬局情報として薬局名情報や地域情報を指定することで、閲覧を許可する薬局の地域の範囲や、薬局グループなどを限定することができ、さらに利便性を向上させることができる。 As described above, the data center 51 performs authentication using the one-time password and the pharmacy information, and permits browsing of drug history data. Thus, by using pharmacy information for authentication, it is possible to improve convenience while ensuring security. In particular, by specifying pharmacy name information and regional information as pharmacy information, it is possible to limit the range of pharmacies that are permitted to be browsed, pharmacy groups, and the like, and further improve convenience.
 なお、以上においては、データセンタ51に記録されている薬歴データの全範囲が薬剤師に閲覧可能とされる例について説明したが、薬歴データのうちのユーザにより指定された範囲の部分だけが閲覧可能とされるようにしてもよい。 In the above description, the example in which the entire range of the medication history data recorded in the data center 51 is viewable by the pharmacist has been described. However, only the portion of the range designated by the user in the medication history data is included. It may be made possible to browse.
 そのような場合、ユーザは、ワンタイムパスワードの発行要求を行う時点で閲覧可能とする範囲を指定する。閲覧可能とする範囲の抽出は、処方箋発行日、内服などの種別、調剤薬局名など、保存された薬歴データから抽出が可能なものであれば、どのような条件であってもよい。携帯型端末装置54の発行要求部171は、ユーザにより指定された閲覧可能とする範囲を示す開示範囲情報を生成し、通信部161は発行要求や個人識別ID、処方箋部分情報(または薬局情報)とともに開示範囲情報をデータセンタ51に送信する。 In such a case, the user designates a range that can be viewed when a one-time password issuance request is made. The extraction of the range that can be browsed may be under any conditions as long as it can be extracted from the stored drug history data, such as the prescription issue date, the type of internal use, the dispensing pharmacy name, and the like. The issue request unit 171 of the portable terminal device 54 generates disclosure range information indicating the range that can be browsed specified by the user, and the communication unit 161 issues the issue request, personal identification ID, prescription part information (or pharmacy information). At the same time, the disclosure range information is transmitted to the data center 51.
 データセンタ51は、このようにして携帯型端末装置54から受信した開示範囲情報を個人識別IDに対応付けて記録部81に記録しておき、実際に情報端末装置52に薬歴データを送信する場合に、開示範囲情報により示される部分のみを送信する。つまり、情報管理部91は、薬歴データの開示範囲情報により示される部分のみ記録部81から読み出して、通信部82は読み出された部分のデータを情報端末装置52に送信する。 The data center 51 records the disclosure range information received from the portable terminal device 54 in this way in the recording unit 81 in association with the personal identification ID, and actually transmits the drug history data to the information terminal device 52. In this case, only the part indicated by the disclosure range information is transmitted. That is, the information management unit 91 reads only the portion indicated by the disclosure range information of the drug history data from the recording unit 81, and the communication unit 82 transmits the read portion of data to the information terminal device 52.
 ところで、上述した一連の処理は、ハードウェアにより実行することもできるし、ソフトウェアにより実行することもできる。一連の処理をソフトウェアにより実行する場合には、そのソフトウェアを構成するプログラムが、コンピュータにインストールされる。ここで、コンピュータには、専用のハードウェアに組み込まれているコンピュータや、各種のプログラムをインストールすることで、各種の機能を実行することが可能な、例えば汎用のコンピュータなどが含まれる。 By the way, the above-described series of processing can be executed by hardware or can be executed by software. When a series of processing is executed by software, a program constituting the software is installed in the computer. Here, the computer includes, for example, a general-purpose computer capable of executing various functions by installing a computer incorporated in dedicated hardware and various programs.
 図13は、上述した一連の処理をプログラムにより実行するコンピュータのハードウェアの構成例を示すブロック図である。 FIG. 13 is a block diagram showing an example of the hardware configuration of a computer that executes the above-described series of processing by a program.
 コンピュータにおいて、CPU(Central Processing Unit)501,ROM(Read Only Memory)502,RAM(Random Access Memory)503は、バス504により相互に接続されている。 In the computer, a CPU (Central Processing Unit) 501, a ROM (Read Only Memory) 502, and a RAM (Random Access Memory) 503 are connected to each other via a bus 504.
 バス504には、さらに、入出力インターフェース505が接続されている。入出力インターフェース505には、入力部506、出力部507、記録部508、通信部509、及びドライブ510が接続されている。 An input / output interface 505 is further connected to the bus 504. An input unit 506, an output unit 507, a recording unit 508, a communication unit 509, and a drive 510 are connected to the input / output interface 505.
 入力部506は、キーボード、マウス、マイクロホン、撮像素子などよりなる。出力部507は、ディスプレイ、スピーカなどよりなる。記録部508は、ハードディスクや不揮発性のメモリなどよりなる。通信部509は、ネットワークインターフェースなどよりなる。ドライブ510は、磁気ディスク、光ディスク、光磁気ディスク、又は半導体メモリなどのリムーバブルメディア511を駆動する。 The input unit 506 includes a keyboard, a mouse, a microphone, an image sensor, and the like. The output unit 507 includes a display, a speaker, and the like. The recording unit 508 includes a hard disk, a nonvolatile memory, and the like. The communication unit 509 includes a network interface or the like. The drive 510 drives a removable medium 511 such as a magnetic disk, an optical disk, a magneto-optical disk, or a semiconductor memory.
 以上のように構成されるコンピュータでは、CPU501が、例えば、記録部508に記録されているプログラムを、入出力インターフェース505及びバス504を介して、RAM503にロードして実行することにより、上述した一連の処理が行われる。 In the computer configured as described above, the CPU 501 loads the program recorded in the recording unit 508 to the RAM 503 via the input / output interface 505 and the bus 504 and executes the program, for example. Is performed.
 コンピュータ(CPU501)が実行するプログラムは、例えば、パッケージメディア等としてのリムーバブルメディア511に記録して提供することができる。また、プログラムは、ローカルエリアネットワーク、インターネット、デジタル衛星放送といった、有線または無線の伝送媒体を介して提供することができる。 The program executed by the computer (CPU 501) can be provided by being recorded in, for example, a removable medium 511 as a package medium or the like. The program can be provided via a wired or wireless transmission medium such as a local area network, the Internet, or digital satellite broadcasting.
 コンピュータでは、プログラムは、リムーバブルメディア511をドライブ510に装着することにより、入出力インターフェース505を介して、記録部508にインストールすることができる。また、プログラムは、有線または無線の伝送媒体を介して、通信部509で受信し、記録部508にインストールすることができる。その他、プログラムは、ROM502や記録部508に、あらかじめインストールしておくことができる。 In the computer, the program can be installed in the recording unit 508 via the input / output interface 505 by attaching the removable medium 511 to the drive 510. Further, the program can be received by the communication unit 509 via a wired or wireless transmission medium and installed in the recording unit 508. In addition, the program can be installed in advance in the ROM 502 or the recording unit 508.
 なお、コンピュータが実行するプログラムは、本明細書で説明する順序に沿って時系列に処理が行われるプログラムであっても良いし、並列に、あるいは呼び出しが行われたとき等の必要なタイミングで処理が行われるプログラムであっても良い。 The program executed by the computer may be a program that is processed in time series in the order described in this specification, or in parallel or at a necessary timing such as when a call is made. It may be a program for processing.
 また、本技術の実施の形態は、上述した実施の形態に限定されるものではなく、本技術の要旨を逸脱しない範囲において種々の変更が可能である。 The embodiments of the present technology are not limited to the above-described embodiments, and various modifications can be made without departing from the gist of the present technology.
 例えば、本技術は、1つの機能をネットワークを介して複数の装置で分担、共同して処理するクラウドコンピューティングの構成をとることができる。 For example, the present technology can take a cloud computing configuration in which one function is shared by a plurality of devices via a network and is jointly processed.
 また、上述のフローチャートで説明した各ステップは、1つの装置で実行する他、複数の装置で分担して実行することができる。 Further, each step described in the above flowchart can be executed by one device or can be shared by a plurality of devices.
 さらに、1つのステップに複数の処理が含まれる場合には、その1つのステップに含まれる複数の処理は、1つの装置で実行する他、複数の装置で分担して実行することができる。 Further, when a plurality of processes are included in one step, the plurality of processes included in the one step can be executed by being shared by a plurality of apparatuses in addition to being executed by one apparatus.
 また、本明細書中に記載された効果はあくまで例示であって限定されるものではなく、他の効果があってもよい。 Further, the effects described in the present specification are merely examples and are not limited, and other effects may be obtained.
 さらに、本技術は、以下の構成とすることも可能である。 Furthermore, the present technology can be configured as follows.
(1)
 通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置において、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
 前記通信部と前記記録部を制御する制御部と
 を具備し、
 前記制御部は、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 を実行し、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
 薬歴情報管理装置。
(2)
 前記認証情報は、前記認証情報が発行されてから所定の時間、又は前記認証情報を用いた前記薬歴情報へのアクセスを行ってから所定の時間有効である
 (1)に記載の薬歴情報管理装置。
(3)
 前記認証補助情報は、前記第二の端末装置による前記閲覧要求が行われた場所に関する情報として、前記第二の端末装置を操作して閲覧の要求を行った場所に関する情報を含む
 (1)または(2)に記載の薬歴情報管理装置。
(4)
 前記制御部は、更に前記通信部により、前記第二の個人識別情報と、更新薬歴情報と、前記第二の個人識別情報に対応付けられている前記薬歴情報の更新要求とを前記第二の端末装置から受信した場合に、前記薬歴情報を更新する処理を実行する
 (1)乃至(3)の何れか一項に記載の薬歴情報管理装置。
(5)
 通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
 前記通信部と前記記録部を制御する制御部と
 を具備する薬歴情報管理装置の薬歴情報管理方法において、
 前記制御部が、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 を実行し、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
 ステップを含む薬歴情報管理方法。
(6)
 通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
 情報を送信及び受信する通信部と、
 個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と
 を具備する薬歴情報管理装置を制御するコンピュータに、
 前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
  前記認証情報を生成する処理と、
  前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
  前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
 を実行し、
 前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
  前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
 ステップを含む処理を実行させるプログラム。 (1)
In the medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via the communication network,
A communication unit for transmitting and receiving information;
A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
The communication unit and a control unit for controlling the recording unit,
The controller is
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device,
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A medication history information management device that performs authentication and executes a process of determining whether or not the medication history information can be browsed by the second terminal device.
(2)
The authentication information is valid for a predetermined time after the authentication information is issued, or for a predetermined time after accessing the drug history information using the authentication information. Management device.
(3)
The authentication auxiliary information includes information on a place where a browsing request is made by operating the second terminal device as information on a location where the browsing request is made by the second terminal device. The medical history information management device according to (2).
(4)
The control unit further sends the second personal identification information, the updated drug history information, and the update request for the drug history information associated with the second personal identification information by the communication unit. The medicine history information management device according to any one of (1) to (3), wherein when received from the second terminal device, the medicine history information is updated.
(5)
A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
A communication unit for transmitting and receiving information;
A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
In the medication history information management method of the medication history information management device comprising the communication unit and a control unit that controls the recording unit,
The control unit is
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device,
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A drug history information management method including a step of performing authentication and determining whether or not the drug history information can be browsed by the second terminal device.
(6)
A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
A communication unit for transmitting and receiving information;
In association with personal identification information, a computer that controls a drug history information management device comprising a recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information,
When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
Processing for generating the authentication information;
A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
A process of transmitting the authentication information by the communication unit to the first terminal device,
When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A program for performing a process including a step of performing a process of performing authentication and performing a process of determining whether or not the drug history information can be viewed by the second terminal device.
 41 情報処理システム, 51 データセンタ, 52 情報端末装置, 54 携帯型端末装置, 82 通信部, 91 情報管理部, 92 生成部, 93 認証部, 121 通信部, 123 表示部, 131 閲覧制御部, 132 表示制御部, 161 通信部, 171 発行要求部, 172 表示制御部 41 information processing system, 51 data center, 52 information terminal device, 54 portable terminal device, 82 communication unit, 91 information management unit, 92 generation unit, 93 authentication unit, 121 communication unit, 123 display unit, 131 browsing control unit, 132 Display control unit, 161 communication unit, 171 issue request unit, 172 display control unit

Claims (6)

  1.  通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置において、
     情報を送信及び受信する通信部と、
     個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
     前記通信部と前記記録部を制御する制御部と
     を具備し、
     前記制御部は、
     前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
      前記認証情報を生成する処理と、
      前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
      前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
     を実行し、
     前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
      前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
     薬歴情報管理装置。     In the medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via the communication network,
    A communication unit for transmitting and receiving information;
    A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
    The communication unit and a control unit for controlling the recording unit,
    The controller is
    When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
    Processing for generating the authentication information;
    A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
    A process of transmitting the authentication information by the communication unit to the first terminal device,
    When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
    Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A medication history information management device that performs authentication and executes a process of determining whether or not the medication history information can be browsed by the second terminal device.
  2.  前記認証情報は、前記認証情報が発行されてから所定の時間、又は前記認証情報を用いた前記薬歴情報へのアクセスを行ってから所定の時間有効である
     請求項1に記載の薬歴情報管理装置。     The drug history information according to claim 1, wherein the authentication information is valid for a predetermined time after the authentication information is issued, or for a predetermined time after accessing the drug history information using the authentication information. Management device.
  3.  前記認証補助情報は、前記第二の端末装置による前記閲覧要求が行われた場所に関する情報として、前記第二の端末装置を操作して閲覧の要求を行った場所に関する情報を含む
     請求項1に記載の薬歴情報管理装置。     The authentication auxiliary information includes information on a location where a browsing request is made by operating the second terminal device as information on a location where the browsing request is made by the second terminal device. Drug history information management device described.
  4.  前記制御部は、更に前記通信部により、前記第二の個人識別情報と、更新薬歴情報と、前記第二の個人識別情報に対応付けられている前記薬歴情報の更新要求とを前記第二の端末装置から受信した場合に、前記薬歴情報を更新する処理を実行する
     請求項1に記載の薬歴情報管理装置。     The control unit further sends the second personal identification information, the updated drug history information, and the update request for the drug history information associated with the second personal identification information by the communication unit. The medical history information management device according to claim 1, wherein when received from a second terminal device, processing for updating the medical history information is executed.
  5.  通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
     情報を送信及び受信する通信部と、
     個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と、
     前記通信部と前記記録部を制御する制御部と
     を具備する薬歴情報管理装置の薬歴情報管理方法において、
     前記制御部が、
     前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
      前記認証情報を生成する処理と、
      前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
      前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
     を実行し、
     前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
      前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
     ステップを含む薬歴情報管理方法。     A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
    A communication unit for transmitting and receiving information;
    A recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information in association with personal identification information,
    In the medication history information management method of the medication history information management device comprising the communication unit and a control unit that controls the recording unit,
    The control unit is
    When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
    Processing for generating the authentication information;
    A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
    A process of transmitting the authentication information by the communication unit to the first terminal device,
    When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
    Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A drug history information management method including a step of performing authentication and determining whether or not the drug history information can be browsed by the second terminal device.
  6.  通信網を介して、ユーザの薬歴情報を閲覧可能な第一の端末装置及び第二の端末装置と接続される薬歴情報管理装置であって、
     情報を送信及び受信する通信部と、
     個人識別情報に対応付けて、少なくとも前記薬歴情報と認証情報と認証補助情報とを記録可能な記録部と
     を具備する薬歴情報管理装置を制御するコンピュータに、
     前記通信部により、第一の個人識別情報と、前記認証補助情報と、前記認証情報の発行要求とを前記第一の端末装置から受信した場合に、
      前記認証情報を生成する処理と、
      前記認証情報と前記認証補助情報とを前記第一の個人識別情報に対応付けて前記記録部に記録する処理と、
      前記第一の端末装置に対して、前記認証情報を前記通信部により送信する処理と
     を実行し、
     前記通信部により、前記認証情報と、前記認証補助情報と、第二の個人識別情報に対応付けられている前記薬歴情報の閲覧要求とを前記第二の端末装置から受信した場合に、
      前記第二の個人識別情報に対応付けられて前記記録部に記録されている前記認証情報及び前記認証補助情報と、前記第二の端末装置から受信した前記認証情報及び前記認証補助情報とに基づき認証を行い、前記第二の端末装置による前記薬歴情報の閲覧の可否を決定する処理を実行する
     ステップを含む処理を実行させるプログラム。     A medication history information management device connected to the first terminal device and the second terminal device capable of browsing the medication history information of the user via a communication network,
    A communication unit for transmitting and receiving information;
    In association with personal identification information, a computer that controls a drug history information management device comprising a recording unit capable of recording at least the drug history information, authentication information, and authentication auxiliary information,
    When the first personal identification information, the authentication auxiliary information, and the authentication information issuance request are received from the first terminal device by the communication unit,
    Processing for generating the authentication information;
    A process of recording the authentication information and the authentication auxiliary information in the recording unit in association with the first personal identification information;
    A process of transmitting the authentication information by the communication unit to the first terminal device,
    When the communication unit receives the authentication information, the authentication auxiliary information, and the browsing request for the drug history information associated with the second personal identification information from the second terminal device,
    Based on the authentication information and the authentication auxiliary information recorded in the recording unit in association with the second personal identification information, and the authentication information and the authentication auxiliary information received from the second terminal device A program for performing a process including a step of performing a process of performing authentication and performing a process of determining whether or not the drug history information can be browsed by the second terminal device.
PCT/JP2015/066827 2014-06-24 2015-06-11 Drug history information management device and method, and program WO2015198873A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
JP2016529284A JP6350658B2 (en) 2014-06-24 2015-06-11 Drug history information management device and method, and program

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2014128837 2014-06-24
JP2014-128837 2014-06-24

Publications (1)

Publication Number Publication Date
WO2015198873A1 true WO2015198873A1 (en) 2015-12-30

Family

ID=54937964

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2015/066827 WO2015198873A1 (en) 2014-06-24 2015-06-11 Drug history information management device and method, and program

Country Status (2)

Country Link
JP (2) JP6350658B2 (en)
WO (1) WO2015198873A1 (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6242469B1 (en) * 2016-12-06 2017-12-06 三菱電機インフォメーションシステムズ株式会社 Personal medical information management method, personal medical information management server and program
JP2020061003A (en) * 2018-10-11 2020-04-16 ヤンマー株式会社 Information management system
CN112259181A (en) * 2020-11-03 2021-01-22 陈军 Medication recording method and system
WO2021250992A1 (en) * 2020-06-12 2021-12-16 株式会社Cureapp Information disclosure system, server, and information disclosure method
JP7460420B2 (en) 2020-03-27 2024-04-02 矢崎総業株式会社 Medication instruction system and server

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11338825A (en) * 1998-05-29 1999-12-10 Hitachi Ltd Access control method considering configuration of organization
JP2005135431A (en) * 2004-12-03 2005-05-26 Mitsui Sumitomo Insurance Co Ltd Personal information management server and program
JP2007025763A (en) * 2005-07-12 2007-02-01 Duskin Healthcare:Kk Information processor and information processing system
JP2013257771A (en) * 2012-06-13 2013-12-26 Nec Corp Prescribed drug data management device, prescribed drug data management system, prescribed drug data management method and prescribed drug data management program
JP2015095229A (en) * 2013-11-14 2015-05-18 ソニー株式会社 Information processing device and method, and program

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002366665A (en) * 2001-06-05 2002-12-20 Nidek Co Ltd System and method for managing medical information
JP2003281277A (en) * 2002-03-19 2003-10-03 Kazuteru Ono Medical care database provision method and system
JP2004078519A (en) * 2002-08-16 2004-03-11 Medico Media:Kk Prescription operation support system
JP2005216239A (en) * 2004-02-02 2005-08-11 Santo:Kk Medicine procurement support system and its method
JP2006288473A (en) * 2005-04-06 2006-10-26 It Co Ltd Medicine notebook system
JP4983197B2 (en) * 2006-10-19 2012-07-25 富士ゼロックス株式会社 Authentication system, authentication service providing apparatus, and authentication service providing program
JP2008108084A (en) * 2006-10-26 2008-05-08 Hitachi Systems & Services Ltd Logon authentication system
JP2008288473A (en) * 2007-05-21 2008-11-27 Panasonic Corp Wire bonding method and wire bonding apparatus
JP5151374B2 (en) * 2007-10-02 2013-02-27 富士ゼロックス株式会社 Information processing system and program
JP5142195B2 (en) * 2007-10-04 2013-02-13 国立大学法人電気通信大学 Personal authentication method, personal authentication system, personal authentication program for causing a computer to execute the personal authentication method, and a personal authentication program storage medium storing the program
JP2012113523A (en) * 2010-11-25 2012-06-14 Sony Corp Information processing apparatus, method and program
JP2012190332A (en) * 2011-03-11 2012-10-04 Hitachi Solutions Ltd System and method for medication history management with mobile communication terminal

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11338825A (en) * 1998-05-29 1999-12-10 Hitachi Ltd Access control method considering configuration of organization
JP2005135431A (en) * 2004-12-03 2005-05-26 Mitsui Sumitomo Insurance Co Ltd Personal information management server and program
JP2007025763A (en) * 2005-07-12 2007-02-01 Duskin Healthcare:Kk Information processor and information processing system
JP2013257771A (en) * 2012-06-13 2013-12-26 Nec Corp Prescribed drug data management device, prescribed drug data management system, prescribed drug data management method and prescribed drug data management program
JP2015095229A (en) * 2013-11-14 2015-05-18 ソニー株式会社 Information processing device and method, and program

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6242469B1 (en) * 2016-12-06 2017-12-06 三菱電機インフォメーションシステムズ株式会社 Personal medical information management method, personal medical information management server and program
JP2018092463A (en) * 2016-12-06 2018-06-14 三菱電機インフォメーションシステムズ株式会社 Personal medical information management method, personal medical information management server and program
JP2020061003A (en) * 2018-10-11 2020-04-16 ヤンマー株式会社 Information management system
WO2020075373A1 (en) * 2018-10-11 2020-04-16 ヤンマー株式会社 Information management system
JP7045969B2 (en) 2018-10-11 2022-04-01 ヤンマーパワーテクノロジー株式会社 Information management system
JP7460420B2 (en) 2020-03-27 2024-04-02 矢崎総業株式会社 Medication instruction system and server
WO2021250992A1 (en) * 2020-06-12 2021-12-16 株式会社Cureapp Information disclosure system, server, and information disclosure method
JP2021196846A (en) * 2020-06-12 2021-12-27 株式会社Cureapp Information disclosure system, server, and information disclosure method
CN112259181A (en) * 2020-11-03 2021-01-22 陈军 Medication recording method and system

Also Published As

Publication number Publication date
JP6350658B2 (en) 2018-07-04
JP2018137002A (en) 2018-08-30
JPWO2015198873A1 (en) 2017-04-20

Similar Documents

Publication Publication Date Title
JP5967408B2 (en) Information acquisition terminal device, information acquisition method, and program
US11106818B2 (en) Patient identification systems and methods
US8943556B2 (en) Secure information release
JP2018137002A (en) Information management system, information management apparatus, and information management method
US20090249076A1 (en) Information server and mobile delivery system and method
JP6150129B2 (en) Drug history management apparatus and method, information processing apparatus and method, and program
US20180375864A1 (en) Id acquisition terminal apparatus and method, information processing apparatus and method, and program
WO2016166954A1 (en) Medication history management method, medication history management device and medication history management program
WO2015046198A1 (en) Clinical path management device
JP2016177461A (en) Information processing system, information processing method, mobile terminal, and information processing program
JP6177368B1 (en) Visiting service support device, visiting service support system, visiting service support method, and visiting service support program
JP6202152B2 (en) Information acquisition terminal device and method, information management device and method, and program
KR102636838B1 (en) DTx PLATFORM SYSTEM AND METHOD SUPPORTING CONTINUOUS PRESCRIPTION AND MULTI-HOSPITAL CONTINUOUS PRESCRIPTION
JP7143468B1 (en) Medication information management device, management method and program
KR102636860B1 (en) Authentication and interlocking system and method of digital therapeutic app using one-time code
JP7115799B1 (en) Information providing method, information providing device, information providing program and recording medium
JP6566990B2 (en) Drug history management apparatus and method, and program
KR20120076666A (en) System and method for providing electric prescription service based on open api, medical service apparatus and method, recordable medium which program for executing method is recorded
KR102504515B1 (en) Drug Providing System and Method using the same
US20240013879A1 (en) Medical system and computer program
KR20120076660A (en) Pharmacy apparatus based on open api and method for operating electronic prescription
JP7099865B2 (en) Information provision system, information provision method and program
JP6449803B2 (en) Visiting service support device, visiting service support system, visiting service support method, and visiting service support program
KR20110049109A (en) System for inquiry and service of medical document based mobile and method thereof
JP2022151194A (en) Medication information management system and management control device, terminal device, management method, and program

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15812655

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2016529284

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15812655

Country of ref document: EP

Kind code of ref document: A1