WO2019095552A1 - 区域医疗电子病历安全协同整合系统及方法 - Google Patents

区域医疗电子病历安全协同整合系统及方法 Download PDF

Info

Publication number
WO2019095552A1
WO2019095552A1 PCT/CN2018/073191 CN2018073191W WO2019095552A1 WO 2019095552 A1 WO2019095552 A1 WO 2019095552A1 CN 2018073191 W CN2018073191 W CN 2018073191W WO 2019095552 A1 WO2019095552 A1 WO 2019095552A1
Authority
WO
WIPO (PCT)
Prior art keywords
electronic medical
medical record
field name
template
encryption
Prior art date
Application number
PCT/CN2018/073191
Other languages
English (en)
French (fr)
Inventor
张贯京
葛新科
王海荣
张红治
周亮
Original Assignee
深圳市前海安测信息技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳市前海安测信息技术有限公司 filed Critical 深圳市前海安测信息技术有限公司
Publication of WO2019095552A1 publication Critical patent/WO2019095552A1/zh

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records

Definitions

  • the invention relates to the field of medical informationization, in particular to a regional medical electronic medical record security collaborative integration system and method.
  • the medical record is the original record of the patient's diagnosis and treatment in the hospital. It contains the home page, the history record, the test results, the medical order, the surgical record, the nursing record and so on.
  • EMR Electronic Medical Record
  • IHE International Health Organization
  • XDS Cross-Enterprise Document Sharing
  • the encryption process of the electronic medical records adopts a fixed form (that is, the acquiring party and the acquired party adopt a fixed encryption and decryption algorithm), which is prone to cracking and increases information security. risk.
  • the main object of the present invention is to provide a regional medical electronic medical record security collaborative integration system and method, which aims to solve the technical problem that the electronic medical record dynamic adjustment and the electronic medical record transmission are easy to be broken and the information security is caused based on the existing technology.
  • the present invention provides a regional medical electronic medical record security collaborative integration system running in a data center, the data center comprising a processor adapted to implement various computer program instructions and adapted to store a plurality of computer program instructions And the data center is communicatively coupled to the plurality of hospital information systems via the network, the computer program instructions being loaded by the processor and performing the following steps:
  • the electronic medical record data in the decrypted electronic medical record is stored in a storage field corresponding to the reordered number in the database, and a new electronic medical record is generated;
  • an index number is established for all new electronic medical records, and an encryption and decryption algorithm is called to encrypt the new electronic medical record for establishing the index number.
  • the number of the field name in the electronic medical record template is consistent with the storage field name of the database storing the electronic medical record.
  • the computer program instructions are loaded by the processor, and the following steps are performed: if the matching result is that the field name in the encrypted electronic medical record is included in the field name of the electronic medical record template, the encrypted electronic The field name in the medical record is associated with the corresponding field name in the electronic medical record template.
  • the computer program instruction is loaded by the processor, and the following step is performed: if the matching result is that the field name in the encrypted electronic medical record is not included in the field name of the electronic medical record template, the electronic medical record template is Add a field name, the added field name is consistent with the field name in the encrypted electronic medical record.
  • the computer program instructions are loaded by the processor, and the following steps are performed: randomly selecting a pre-stored encryption and decryption algorithm in a data center by using a random function, and calculating a hash value of the randomly selected encryption and decryption algorithm, and then The Greek value is sent to the hospital information system, so that the hospital information system invokes the encryption and decryption algorithm corresponding to the hash value to encrypt the electronic medical record.
  • a regional medical electronic medical record security collaborative integration method is applied to a data center, wherein the data center is communicatively coupled to a plurality of hospital information systems via a network, and the method includes the following steps:
  • the electronic medical record data in the decrypted electronic medical record is stored in a storage field corresponding to the reordered number in the database, and a new electronic medical record is generated;
  • an index number is established for all new electronic medical records, and an encryption and decryption algorithm is called to encrypt the new electronic medical record for establishing the index number.
  • the number of the field name in the electronic medical record template is consistent with the storage field name of the database storing the electronic medical record.
  • the method further comprises the step of: if the field name in the encrypted electronic medical record is included in the field name of the electronic medical record template, the field name in the encrypted electronic medical record is The corresponding field name in the electronic medical record template is associated.
  • the method further comprises the step of: adding a field name to the electronic medical record template if the field name in the encrypted electronic medical record is not included in the field name of the electronic medical record template, The added field name is consistent with the field name in the encrypted electronic medical record.
  • the method further comprises the steps of: randomly selecting a pre-stored encryption and decryption algorithm in a data center by using a random function, and calculating a hash value of the randomly selected encryption/decryption algorithm, and then transmitting the hash value to the hospital information system.
  • the hospital information system causes the encryption and decryption algorithm corresponding to the hash value to encrypt the electronic medical record.
  • the invention adopts the above technical solution, and brings the technical effect that the invention adopts the electronic medical record field matching method to realize the dynamic adjustment of the electronic medical record, and the electronic medical record of different medical institutions can be integrated into the same type of electronic medical record template, The medical synergy shared by the electronic medical records is achieved, and the centralized medical data analysis can also be performed. At the same time, the electronic medical records are encrypted and decrypted by using a random encryption and decryption algorithm to improve the security of the information.
  • FIG. 1 is a schematic diagram of an application environment of a regional medical electronic medical record security collaborative integration system of the present invention
  • FIG. 2 is a block diagram showing a preferred embodiment of a regional medical electronic medical record security collaborative integration system of the present invention
  • FIG. 3 is a flow chart of a preferred embodiment of the regional medical electronic medical record security collaborative integration method of the present invention.
  • FIG. 4 is a schematic illustration of a preferred embodiment of electronic medical record template matching in the present invention.
  • FIG. 1 is a schematic diagram of an application environment of a regional medical electronic medical record security collaborative integration system according to the present invention.
  • the regional medical electronic medical record security collaborative integration system 30 of the present invention operates on the data center 3.
  • the data center 3 is communicably connected to a hospital information system 1 (Hoss Information System, HIS) of each medical institution (a medical institution such as a hospital or a social health center) via the network 2.
  • HIS Hoss Information System
  • the data center 3 accesses the hospital information system 1 of the medical institution after obtaining authorization from each medical institution, and acquires various types of electronic medical record data in the hospital information system 1 of each medical institution.
  • the electronic medical record data includes, but is not limited to, a patient name, a patient's age, a disease time, a disease name, a disease cause, a disease diagnosis information, a drug name, a drug quantity, a doctor name, a hospital and a department, a fee, and a patient's Contact information (for example, email address, mobile phone number, instant messaging account, etc.), disease encyclopedia, government medical policy documents and other information.
  • the hospital information system 1 of each medical institution provides a data import interface (for example, an application interface, Application) Program Interface (API), the device or system accessing the data import interface can obtain electronic medical record data from the hospital information system 1.
  • a data import interface for example, an application interface, Application) Program Interface (API)
  • API Application Program Interface
  • the network 2 may be a wired communication network or a wireless communication network.
  • the network is preferably a wireless communication network, including but not limited to a GSM network, a GPRS network, a CDMA network, a TD-SCDMA network, a WiMAX network, a TD-LTE network, an FDD-LTE network, and the like.
  • the data center 3 is communicatively coupled to the hospital information system 1 via the network 2 for obtaining various types of electronic medical record data from the hospital information system 1.
  • the hospital information system 1 provides an API interface
  • the data center 3 acquires the electronic based on the authorization of the hospital information system 1 (ie, authorized access to the API interface provided by the hospital information system 1) Medical record data.
  • the electronic medical record data format of the hospital information system 1 of each major medical institution is different, the electronic medical record of each medical institution can be integrated into the common electronic medical record template, so that the electronic medical record data can be exchanged and shared conveniently.
  • the patient obtains electronic medical record data after visiting a different medical institution.
  • the data center 3 is a server of a cloud platform or a data center, and the data transmission capability and data storage capability of the cloud platform or the data center can better manage and/or assist with the data center. 3 connected clients.
  • the data center 3 is also connected via a network 2 with a database 4 for storing electronic medical records.
  • the data center 3 can be communicatively coupled to a client (not shown) via the network 2, and the patient can access the data center 3 through the client and obtain an electronic medical record.
  • the data center 3 obtains an electronic medical record of each medical institution, and adopts an encryption and decryption algorithm (for example, an MD5 encryption and decryption algorithm, an RSA encryption and decryption algorithm). , DES encryption and decryption algorithm, DSA encryption and decryption algorithm, AES encryption and decryption algorithm, etc.) first encrypt the medical data.
  • an encryption and decryption algorithm for example, an MD5 encryption and decryption algorithm, an RSA encryption and decryption algorithm.
  • DES encryption and decryption algorithm for example, an MD5 encryption and decryption algorithm, an RSA encryption and decryption algorithm.
  • DSA encryption and decryption algorithm for example, DES encryption and decryption algorithm, DSA encryption and decryption algorithm, AES encryption and decryption algorithm, etc.
  • a plurality of encryption and decryption algorithms are pre-stored in the data center 3, for example, a data encryption standard algorithm (Data Encryption Standard, DES), Triple Data Encryption Standard (3DES), Advanced Encryption Standard (AES), RSA Public Key Algorithm, Digital Signature Algorithm (DSA), Ellipse Curve Cryptography Algorithm (Elliptic Curves) Cryptography, ECC), message digest algorithm (Message Digest Algorithm 5, MD5), Secure Hash Algorithm (SHA).
  • DES Data Encryption Standard
  • 3DES Triple Data Encryption Standard
  • AES Advanced Encryption Standard
  • DSA Digital Signature Algorithm
  • DSA Digital Signature Algorithm
  • ECC Ellipse Curve Cryptography Algorithm
  • MD5 Secure Hash Algorithm
  • SHA Secure Hash Algorithm
  • each encryption and decryption algorithm in the data center 3 can find the same encryption and decryption algorithm in the hospital information system 1, and each encryption and decryption algorithm in the data center 3 can also be in the hospital information system. Find the corresponding encryption and decryption algorithm in 1.
  • the data center 3 includes, but is not limited to, a regional medical electronic medical record security collaborative integration system 30, a storage unit 31, a processing unit 32, and a communication unit 33.
  • the storage unit 31 can be a read only memory unit ROM, an electrically erasable storage unit EEPROM, a flash memory unit FLASH or a solid hard disk.
  • the processing unit 32 can be a central processing unit (Central) Processing Unit (CPU), Microcontroller (MCU), data processing chip, or information processing unit with data processing function.
  • CPU Central Processing Unit
  • MCU Microcontroller
  • data processing chip or information processing unit with data processing function.
  • the communication unit 33 is a communication interface with a remote communication function, for example, a communication interface supporting wireless communication technologies such as GSM, GPRS, WCDMA, CDMA, TD-SCDMA, WiMAX, TD-LTE, FDD-LTE, and the like. , the wired communication interface of the network cable.
  • a remote communication function for example, a communication interface supporting wireless communication technologies such as GSM, GPRS, WCDMA, CDMA, TD-SCDMA, WiMAX, TD-LTE, FDD-LTE, and the like.
  • the regional medical electronic medical record security collaborative integration system 30 includes, but is not limited to, a creation module 311, an acquisition module 312, a conversion module 313, a matching module 314, a generation module 315, an association module 316, and a determination module 317, which are referred to in the present invention.
  • the module refers to a series of computer program instructions that can be executed by the processing unit 32 of the data center 3 and that are capable of performing fixed functions, which are stored in the storage unit 31 of the data center 3.
  • the creating module 311 is configured to create an electronic medical record template and sort the field names in the electronic medical record template, and create a field corresponding to the sorting number in the database 4.
  • the creating module 311 creates an electronic medical record template, and the template of the electronic medical record follows the "Electronic Medical Record Basic Specification" of the Health Care Administration [2010] No. 24 formulated by the Ministry of Health.
  • each field name in the electronic medical record template has a corresponding name.
  • the number is sorted in the form of a number plus a letter. Specifically, as shown in FIG.
  • the number is represented by Mi, wherein the letter M represents a label of an electronic medical record template (ie, an abbreviation of an electronic medical record template), and i represents A positive integer, i is greater than or equal to 1 and less than or equal to N (N represents the total number of field names in the electronic medical record template), for example, M1 represents the first field name in the electronic medical record template, and M2 represents the electronic medical record template.
  • the second field name, Mi represents the i-th field name in the electronic medical record template.
  • the number of the field name in the electronic medical record template is consistent with the storage field name of the database 4 storing the electronic medical record in the data center 3, and thus, the data center 3 is based on The number of the column name in the electronic medical record template can be retrieved from the database 4 and the data corresponding to the field name is displayed in the electronic medical record template.
  • the sending module 312 is configured to randomly select an encryption and decryption algorithm and send it to a hospital information system 1 to obtain an encrypted electronic medical record from the hospital information system 1. Specifically, the sending module 312 randomly selects a pre-stored encryption and decryption algorithm in the data center 3 by using a random function, and calculates a hash value of the randomly selected encryption and decryption algorithm, and then sends the hash value to the hospital information system. In the first embodiment, the hospital information system 1 invokes the encryption and decryption algorithm corresponding to the hash value to encrypt the electronic medical record, and transmits the encrypted electronic medical record to the data center 3.
  • the hospital information system 1 randomly selects an encryption and decryption algorithm to encrypt the electronic medical record, and the hash value corresponding to the randomly selected encryption and decryption algorithm and The encrypted electronic medical record is transmitted to the data center 3.
  • the data center 3 After receiving the hash value sent by the hospital information system 1, the data center 3 calls the encryption and decryption algorithm corresponding to the hash value and decrypts the encrypted electronic medical record.
  • the conversion module 313 is configured to invoke an encryption and decryption algorithm to decrypt the encrypted electronic medical record, and parse the field name in the decrypted electronic medical record.
  • the method for decrypting and encrypting the encrypted electronic medical record by the calling encryption and decryption algorithm and parsing the field name in the decrypted electronic medical record is as follows: (1) obtaining, (1) calling a randomly selected encryption and decryption algorithm to perform the encrypted electronic medical record. Decryption; (2) Convert the decrypted electronic medical record to XML format; (3) From the XML format, select the name of the field after the tag as the field name of the encrypted electronic medical record.
  • the conversion module 313 can also number each field name in the decrypted electronic medical record.
  • the number is sorted in the form of a number plus a letter. Specifically, as shown in FIG. 4, the number is represented as Ai, wherein the letter A indicates the label of the decrypted electronic medical record (ie, the abbreviation of HIS system A).
  • i represents a positive integer, i is greater than or equal to 1 and less than or equal to the total number of field names in the decrypted electronic medical record, for example, A1 represents the first field name in the decrypted electronic medical record, and A2 represents the decrypted The second field name in the electronic medical record, Ai indicates the i-th field name in the decrypted electronic medical record.
  • the matching module 314 is configured to match the field name corresponding to the decrypted electronic medical record with the field name in the electronic medical record template.
  • the manner of matching the field name corresponding to the decrypted electronic medical record with the field name in the electronic medical record template is as follows: the field name in the decrypted electronic medical record is in the field name of the electronic medical record template. Searching, for example, as shown in FIG. 4, the field names in the decrypted electronic medical record include "name”, “gender”, “age”, “contact information”, “social security number”, “identity number”, The "date of visit”, “visiting department”, “medical doctor”, “current medical history”, “symptom description”, etc., are searched one by one in the field name of the electronic medical record template.
  • the generating module 315 is configured to generate a new electronic medical record template according to the matched result and reorder the field names in the new electronic medical record template, and create a storage field corresponding to the reordered number in the database 4. Specifically, if the result of the matching is that the field name in the decrypted electronic medical record is included in the field name of the electronic medical record template, the field name in the decrypted electronic medical record is corresponding to the electronic medical record template. The field name is associated. It should be noted that because the names of the fields of the electronic medical records of different medical institutions are different, and the meanings are the same, for example, the names of the electronic medical records of some medical institutions are “social security numbers”, and the electronic organizations of some medical institutions.
  • the field name of the medical record is “social security computer number” or “social security number”.
  • the field name of the electronic medical record template can be expanded, that is, each field name in the electronic medical record template can be set more.
  • the field name "social security number" in the electronic medical record template may be expanded to a plurality of names such as "social security computer number” or "social security number”.
  • a field name is added to the electronic medical record template, and the added field name and the decrypted
  • the names of the fields in the electronic medical record are the same. For example, if the field name in the decrypted electronic medical record is “Doctor Profile” and the field name is not included in the electronic medical record template, the “Doctor Profile” field is added to the electronic medical record template.
  • the association module 316 is configured to use the electronic medical record data in the decrypted electronic medical record (that is, the data corresponding to the input of the field name, for example, the corresponding input data in the field name “name” is “Zhang San”, then “Zhang”
  • the third is the electronic medical record data stored in the storage field corresponding to the reordered number in the database 4, and a new electronic medical record is generated.
  • the field names of the electronic medical records in the hospital information system A correspond to the sorting numbers (ie, Mi) in the electronic medical record template, and the sorting numbers in the electronic medical record templates have corresponding numbers in the database 4.
  • the field is stored. Therefore, the association module 316 can directly store the electronic medical record data in the electronic medical record in the hospital information system A in the database 4 of the data center 3.
  • the determining module 317 is configured to determine whether to acquire an electronic medical record of the next hospital information system 1. Specifically, if the data center 3 authorizes the acquisition of the electronic medical records of the five hospital information systems 1, when the acquisition of the electronic medical records in the hospital information system 1 is completed, the API interface of the next hospital information system is automatically switched. And obtain the electronic medical record in the next hospital information system. The determining module 317 determines, according to the API call record, whether the electronic medical records of each authorized access to the hospital information system 1 are acquired.
  • the association module 316 is further configured to establish an electronic medical record of the next hospital information system 1 (ie, when all electronic medical records of the hospital information system 1 that are authorized to access are acquired), establish all new electronic medical records.
  • Index number and call the encryption and decryption algorithm to encrypt the new electronic medical record with the index number.
  • the index number is a unique number, and the electronic medical records of the same patient name in each medical institution are integrated by the index number, which saves storage space and facilitates querying.
  • the index number is formed by combining the name, the social security number and the ID number to form an index number, and the index number of all new electronic medical records is called to encrypt and decrypt the algorithm.
  • the electronic medical records of all authorized hospital information systems 1 are obtained, the electronic medical records of the patients in each medical institution are converted into new electronic medical records, for example, the medical institutions A, the medical institutions B, and the medical institutions. C has seen cold disease, and the integrated electronic medical records of the integrated patients will be integrated into the same electronic medical record after the medical treatment in three medical institutions due to the consistent format.
  • FIG. 3 there is shown a flow chart of a preferred embodiment of the regional medical electronic medical record security collaborative integration method of the present invention.
  • various method steps of the regional medical electronic medical record security collaborative integration method are implemented by a computer software program, which is stored in a computer program instruction and stored in a computer readable program.
  • the storage medium may include a read only memory, a random access memory, a magnetic disk or an optical disk, etc.
  • the computer program instructions can be loaded by a processor (for example, the processing unit 32) and perform the following steps S11 to S18.
  • the method includes the following steps:
  • Step S11 Create an electronic medical record template and sort the column names in the electronic medical record template, and create a field corresponding to the sort number in the database 4.
  • the creating module 311 creates an electronic medical record template, and the template of the electronic medical record follows the "Electronic Medical Record Basic Specification" of the Health Care Administration [2010] No. 24 formulated by the Ministry of Health.
  • each field name in the electronic medical record template has a corresponding name.
  • the number is sorted in the form of a number plus a letter. Specifically, as shown in FIG.
  • the number is represented by Mi, wherein the letter M represents a label of an electronic medical record template (ie, an abbreviation of an electronic medical record template), and i represents A positive integer, i is greater than or equal to 1 and less than or equal to N (N represents the total number of field names in the electronic medical record template), for example, M1 represents the first field name in the electronic medical record template, and M2 represents the electronic medical record template.
  • the second field name, Mi represents the i-th field name in the electronic medical record template.
  • the number of the field name in the electronic medical record template is consistent with the storage field name of the database 4 storing the electronic medical record in the data center 3, and thus, the data center 3 is based on The number of the column name in the electronic medical record template can be retrieved from the database 4 and the data corresponding to the field name is displayed in the electronic medical record template.
  • Step S12 randomly selecting an encryption and decryption algorithm and transmitting it to a hospital information system 1 to obtain an encrypted electronic medical record from the hospital information system 1.
  • the sending module 312 randomly selects a pre-stored encryption and decryption algorithm in the data center 3 by using a random function, and calculates a hash value of the randomly selected encryption and decryption algorithm, and then sends the hash value to the hospital information system.
  • the hospital information system 1 invokes the encryption and decryption algorithm corresponding to the hash value to encrypt the electronic medical record, and transmits the encrypted electronic medical record to the data center 3.
  • the hospital information system 1 randomly selects an encryption and decryption algorithm to encrypt the electronic medical record, and the hash value corresponding to the randomly selected encryption and decryption algorithm and The encrypted electronic medical record is transmitted to the data center 3.
  • the data center 3 After receiving the hash value sent by the hospital information system 1, the data center 3 calls the encryption and decryption algorithm corresponding to the hash value and decrypts the encrypted electronic medical record.
  • Step S13 Calling the encryption and decryption algorithm to decrypt the encrypted electronic medical record, and parsing the field name in the decrypted electronic medical record.
  • the method for decrypting and encrypting the encrypted electronic medical record by the calling encryption and decryption algorithm and parsing the field name in the decrypted electronic medical record is as follows: (1) obtaining, (1) calling a randomly selected encryption and decryption algorithm to perform the encrypted electronic medical record. Decryption; (2) Convert the decrypted electronic medical record to XML format; (3) From the XML format, select the name of the field after the tag as the field name of the encrypted electronic medical record.
  • the conversion module 313 can also number each field name in the decrypted electronic medical record.
  • the number is sorted in the form of a number plus a letter. Specifically, as shown in FIG. 4, the number is represented as Ai, wherein the letter A indicates the label of the decrypted electronic medical record (ie, the abbreviation of HIS system A).
  • i represents a positive integer, i is greater than or equal to 1 and less than or equal to the total number of field names in the decrypted electronic medical record, for example, A1 represents the first field name in the decrypted electronic medical record, and A2 represents the decrypted The second field name in the electronic medical record, Ai indicates the i-th field name in the decrypted electronic medical record.
  • Step S14 Match the field name corresponding to the decrypted electronic medical record with the field name in the electronic medical record template.
  • the manner of matching the field name corresponding to the decrypted electronic medical record with the field name in the electronic medical record template is as follows: the field name in the decrypted electronic medical record is in the field name of the electronic medical record template. Searching, for example, as shown in FIG. 4, the field names in the decrypted electronic medical record include "name”, “gender”, “age”, “contact information”, “social security number”, “identity number”, The “date of visit”, “visiting department”, “medical doctor”, “current medical history”, “symptom description”, etc., are searched one by one in the field name of the electronic medical record template.
  • Step S15 Generate a new electronic medical record template according to the matched result and reorder the field names in the new electronic medical record template, and create a storage field corresponding to the reordered number in the database 4. Specifically, if the result of the matching is that the field name in the decrypted electronic medical record is included in the field name of the electronic medical record template, the field name in the decrypted electronic medical record is corresponding to the electronic medical record template. The field name is associated. It should be noted that because the names of the fields of the electronic medical records of different medical institutions are different, and the meanings are the same, for example, the names of the electronic medical records of some medical institutions are “social security numbers”, and the electronic organizations of some medical institutions.
  • the field name of the medical record is “social security computer number” or “social security number”.
  • the field name of the electronic medical record template can be expanded, that is, each field name in the electronic medical record template can be set more.
  • the field name "social security number" in the electronic medical record template may be expanded to a plurality of names such as "social security computer number” or "social security number”.
  • a field name is added to the electronic medical record template, and the added field name and the decrypted
  • the names of the fields in the electronic medical record are the same. For example, if the field name in the decrypted electronic medical record is “Doctor Profile” and the field name is not included in the electronic medical record template, the “Doctor Profile” field is added to the electronic medical record template.
  • Step S16 The electronic medical record data in the decrypted electronic medical record (that is, the data corresponding to the field name input, for example, the corresponding input data in the field name "name” is "Zhang San", then "Zhang San” is
  • the electronic medical record data is stored in the storage field corresponding to the reordered number in the database 4, and a new electronic medical record is generated.
  • the field names of the electronic medical records in the hospital information system A correspond to the sorting numbers (ie, Mi) in the electronic medical record template, and the sorting numbers in the electronic medical record templates have corresponding numbers in the database 4.
  • the field is stored. Therefore, the association module 316 can directly store the electronic medical record data in the electronic medical record in the hospital information system A in the database 4 of the data center 3.
  • Step S17 It is judged whether or not the electronic medical record of the next hospital information system 1 is acquired. Specifically, if the data center 3 authorizes the acquisition of the electronic medical records of the five hospital information systems 1, when the acquisition of the electronic medical records in the hospital information system 1 is completed, the API interface of the next hospital information system is automatically switched. And obtain the electronic medical record in the next hospital information system. The determining module 317 determines, according to the API call record, whether the electronic medical records of each authorized access to the hospital information system 1 are acquired. When the electronic medical records of each authorized access to the hospital information system 1 are all completed, the flow proceeds to step S18. Otherwise, if it is necessary to acquire the electronic medical records of the next hospital information system 1, the flow returns to step S12.
  • Step S18 When the electronic medical record of the next hospital information system 1 is no longer acquired (that is, after all the electronic medical records of the hospital information system 1 authorized to access are completed), an index number is established for all new electronic medical records, and is called.
  • the encryption and decryption algorithm encrypts the new electronic medical record that establishes the index number.
  • the index number is a unique number, and the electronic medical records of the same patient name in each medical institution are integrated by the index number, which saves storage space and facilitates querying.
  • the index number is formed by combining the name, the social security number and the ID number to form an index number, and the index number of all new electronic medical records is called to encrypt and decrypt the algorithm.
  • the electronic medical records of all authorized hospital information systems 1 are obtained, the electronic medical records of the patients in each medical institution are converted into new electronic medical records, for example, the medical institutions A, the medical institutions B, and the medical institutions. C has seen cold disease, and the integrated electronic medical records of the integrated patients will be integrated into the same electronic medical record after the medical treatment in three medical institutions due to the consistent format.
  • the invention adopts the above technical solution, and brings the technical effect that the invention adopts the electronic medical record field matching method to realize the dynamic adjustment of the electronic medical record, and the electronic medical record of different medical institutions can be integrated into the same type of electronic medical record template, The medical synergy shared by the electronic medical records is achieved, and the centralized medical data analysis can also be performed. At the same time, the electronic medical records are encrypted and decrypted by using a random encryption and decryption algorithm to improve the security of the information.

Landscapes

  • Engineering & Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Theoretical Computer Science (AREA)
  • Medical Informatics (AREA)
  • Bioethics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Epidemiology (AREA)
  • Primary Health Care (AREA)
  • Public Health (AREA)
  • Medical Treatment And Welfare Office Work (AREA)
  • Storage Device Security (AREA)

Abstract

本发明提供一种区域医疗电子病历安全协同整合系统及方法,该方法包括:调用加解密算法解析加密的电子病历中的栏位名称;将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配;将解密后的电子病历中的电子病历数据存储于数据库中对应重新排序编号后的存储栏位,并生成新的电子病历;当不再获取下一个医院信息系统的电子病历时,对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。实施本发明实现电子病历的动态调整,可以将不同医疗机构的电子病历转换为通用电子病历,实现了电子病历的共享,同时,对传输的电子病历采用随机的加解密算法对电子病历进行加解密,提高了信息的安全性。

Description

区域医疗电子病历安全协同整合系统及方法 技术领域
本发明涉及医疗信息化领域,尤其涉及一种区域医疗电子病历安全协同整合系统及方法。
背景技术
病历是病人在医院诊断治疗全过程的原始记录,它包含有首页、病程记录、检查检验结果、医嘱、手术记录、护理记录等等。随着医院计算机管理网络化,电子病历(EMR,Electronic Medical Record)应运而生。作为科技进步的产物,电子病历因其方便记录,易存储等优点被越来越广泛的应用在医疗系统中。
近年来,国家在政策上加大力度推行电子病历共享系统,并依托现有的技术规范与信息技术,在局部地区建立了区域医疗信息共享系统。现有系统主要使用医疗机构信息集成规范(Integrating the Healthcare Enterprise,IHE)提出的跨机构文档共享(Cross-Enterprise Document Sharing,XDS)技术框架。IHE XDS技术框架的基本理念是采用注册和发布信息模型来存储和分享临床文档,主要定义的角色包括文档储存库和文档注册库。
但是,现有系统只是通过特定的文档编辑器导出普通介质,由患者自行携带和保管。在处理跨域电子病历共享时,不能确保数据的动态调整以达到医疗协同性,同时也无法进行集中式医疗数据分析及医疗服务。
此外,现有的系统在获取不同医疗机构的电子病历时,对电子病历的加密过程采用固定形式(即获取方和被获取方采用固定的加解密算法),容易发生破解,增加了信息安全的风险。
技术问题
本发明的主要目的在于提供一种区域医疗电子病历安全协同整合系统及方法,旨在解决基于现有的技术中无法实现电子病历动态调整及电子病历传输时容易发生破解导致信息安全的技术问题。
技术解决方案
为实现上述目的,本发明提供了一种区域医疗电子病历安全协同整合系统,运行于数据中心中,该数据中心包括适于实现各种计算机程序指令的处理器以及适于存储多条计算机程序指令的存储器,所述数据中心通过网络与多个医院信息系统通信连接,所述计算机程序指令由处理器加载并执行如下步骤:
创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库中创建对应排序编号的栏位;
随机选择一个加解密算法并发送至一个医院信息系统,从该医院信息系统中获取加密的电子病历;
调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称;
将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配;
根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库中创建对应重新排序编号后的存储栏位;
将解密后的电子病历中的电子病历数据存储于数据库中对应重新排序编号后的存储栏位,并生成新的电子病历;及
当不再获取下一个医院信息系统的电子病历时,对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。
优选的,所述电子病历模板中的栏位名称的编号与存储电子病历的数据库的存储栏位名称一致。
优选的,所述计算机程序指令由处理器加载还执行如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将加密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。
优选的,所述计算机程序指令由处理器加载还执行如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与加密后的电子病历中的栏位名称一致。
优选的,所述计算机程序指令由处理器加载还执行如下步骤:通过随机函数随机选择一个数据中心中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统中,使得该医院信息系统调用该哈希值对应的加解密算法对电子病历进行加密。
另一方面,本发明一种区域医疗电子病历安全协同整合方法,应用于数据中心中,所述数据中心通过网络与多个医院信息系统通信连接,该方法包括如下步骤:
创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库中创建对应排序编号的栏位;
随机选择一个加解密算法并发送至一个医院信息系统,从该医院信息系统中获取加密的电子病历;
调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称;
将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配;
根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库中创建对应重新排序编号后的存储栏位;
将解密后的电子病历中的电子病历数据存储于数据库中对应重新排序编号后的存储栏位,并生成新的电子病历;及
当不再获取下一个医院信息系统的电子病历时,对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。
优选的,所述电子病历模板中的栏位名称的编号与存储电子病历的数据库的存储栏位名称一致。
优选的,该方法还包括如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将加密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。
优选的,该方法还包括如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与加密后的电子病历中的栏位名称一致。
优选的,该方法还包括如下步骤:通过随机函数随机选择一个数据中心中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统中,使得该医院信息系统调用该哈希值对应的加解密算法对电子病历进行加密。
有益效果
本发明采用上述技术方案,带来的技术效果为:本发明采用电子病历栏位匹配的方式实现电子病历的动态调整,对不同医疗机构的电子病历可以整合到同一种类型的电子病历模板中,达到了电子病历共享的医疗协同性,同时也可以集中式医疗数据分析,同时,对传输的电子病历采用随机的加解密算法对电子病历进行加解密,提高了信息的安全性。
附图说明
图1是本发明区域医疗电子病历安全协同整合系统的应用环境示意图;
图2是本发明区域医疗电子病历安全协同整合系统的优选实施例的模块示意图;
图3是本发明区域医疗电子病历安全协同整合方法的优选实施例的流程图;
图4是本发明中电子病历模板匹配的优选实施例的示意图。
本发明目的实现、功能特点及优点将结合实施例,参照附图做进一步说明。
本发明的最佳实施方式
为更进一步阐述本发明为达成预定发明目的所采取的技术手段及功效,以下结合附图及较佳实施例,对本发明的具体实施方式、结构、特征及其功效,详细说明如下。应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限定本发明。
参照图1所示,图1是本发明区域医疗电子病历安全协同整合系统的应用环境示意图。本发明中的区域医疗电子病历安全协同整合系统30运行于数据中心3上。所述数据中心3通过网络2与各个医疗机构(医院、社康中心等医疗机构)的医院信息系统1(Hospital Information System,HIS)通信连接。
其中,所述数据中心3获得各个医疗机构的授权后访问医疗机构的医院信息系统1,并获取各个医疗机构的医院信息系统1中的各种类型的电子病历数据。所述电子病历数据包括,但不限于,患者姓名、患者年龄、患病时间、疾病名称、患病原因、疾病诊断信息、药品名称、药品数量、医生姓名、就诊医院及科室、费用及患者的联系方式(例如,电子邮箱地址、手机号码、即时通信账号等)、疾病百科、政府医疗政策文件等信息。
进一步地,各个医疗机构的医院信息系统1均提供数据导入接口(例如,应用程序接口,Application Program Interface,API),接入该数据导入接口的设备或系统都可以从所述医院信息系统1中获取电子病历数据。
在本实施例中,所述网络2可以是有线通讯网络或无线通讯网络。所述网络优选为无线通讯网络,包括但不限于,GSM网络、GPRS网络、CDMA网络、TD-SCDMA网络、WiMAX网络、TD-LTE网络、FDD-LTE网络等无线传输网络。
所述数据中心3通过所述网络2与医院信息系统1通信连接,用于从所述医院信息系统1获取各种类型的电子病历数据。具体地说,所述医院信息系统1提供API接口,所述数据中心3在所述医院信息系统1授权的基础上(即授权接入所述医院信息系统1提供的API接口)获取所述电子病历数据。需要说明的是,由于各大医疗机构的医院信息系统1中电子病历数据格式不同,通过将各个医疗机构的电子病历整合到通用的电子病历模板中,可以实现电子病历数据的互通及共享,方便患者获取在不同医疗机构就诊后的电子病历数据。
需要说明的是,所述数据中心3是云平台或数据中心的某一台服务器,通过云平台或数据中心的数据传输能力及数据存储能力,可以更好地管理及/或协助与该数据中心3连接的客户端。
所述数据中心3还通过网络2连接有数据库4,所述数据库4用于储存电子病历。
所述数据中心3可以通过网络2与客户端(图中未示出)通信连接,患者可以通过客户端访问数据中心3并获取电子病历。
需要说明的是,由于所述电子病历属于隐私信息,为了确保信息安全,所述数据中心3获取各个医疗机构的电子病历时,会通过加解密算法(例如,MD5加解密算法、RSA加解密算法、DES加解密算法、DSA加解密算法、AES加解密算法等)先对医疗数据进行加密处理。
进一步地,所述数据中心3内也预先存储有多种加解密算法,例如,数据加密标准算法(Data Encryption Standard,DES)、三次数据加密标准算法(Triple Data Encryption Standard, 3DES)、高级加密标准算法(Advanced Encryption Standard,AES)、RSA公共密钥算法,数字签名算法(Digital Signature Algorithm,DSA)、椭圆曲线密码编码学算法(Elliptic Curves Cryptography,ECC)、消息摘要算法(Message Digest Algorithm 5,MD5)、安全哈希算法(Secure Hash Algorithm,SHA)。
需要说明的是,所述数据中心3中的每个加解密算法在医院信息系统1中能找到相同的加解密算法,而所述数据中心3中的每个加解密算法也能在医院信息系统1中找到对应的加解密算法。
参照图2所示,是本发明区域医疗电子病历安全协同整合系统的优选实施例的模块示意图。在本实施例中,所述区域医疗电子病历安全协同整合系统30应用于数据中心3。该数据中心3包括, 但不仅限于,区域医疗电子病历安全协同整合系统30、存储单元31、处理单元32、及通讯单元33。
所述的存储单元31可以为一种只读存储单元ROM,电可擦写存储单元EEPROM、快闪存储单元FLASH或固体硬盘等。
所述的处理单元32可以为一种中央处理器(Central Processing Unit,CPU)、微控制器(MCU)、数据处理芯片、或者具有数据处理功能的信息处理单元。
所述的通讯单元33为一种具有远程通讯功能的通讯接口,例如支持GSM、GPRS、WCDMA、CDMA、TD-SCDMA、WiMAX、TD-LTE、FDD-LTE等无线通讯技术的通讯接口,支持USB、网线的有线通讯接口。
所述区域医疗电子病历安全协同整合系统30包括,但不局限于,创建模块311、获取模块312、转换模块313、匹配模块314、生成模块315、关联模块316及判断模块317,本发明所称的模块是指一种能够被所述数据中心3的处理单元32执行并且能够完成固定功能的一系列计算机程序指令段,其存储在所述数据中心3的存储单元31中。
所述创建模块311用于创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库4中创建对应排序编号的栏位。在本实施例中,所述创建模块311创建一个电子病历模板,该电子病历的模板遵循卫生部制定的卫医政发〔2010〕24号的《电子病历基本规范》。需要说明的是,由于电子病历模板中包括多个栏位名称,为了方便后续与其他医疗机构的HIS系统中的电子病历进行匹配,所述电子病历模板中的每个栏位名称都有一个对应的编号。所述编号是数字加字母的形式进行排序,具体地说,如图4所示,所述编号表示为 Mi,其中,字母M表示电子病历模板的标号(即电子病历模板的简称),i表示正整数,i大于或等于1且小于等于N(N表示电子病历模板中的栏位名称的总数量),例如,M1表示电子病历模板中的第一个栏位名称,M2表示电子病历模板中的第2个栏位名称,Mi表示电子病历模板中的第i个栏位名称。
进一步地,为了方便电子病历中的数据存储,所述电子病历模板中的栏位名称的编号与数据中心3中存储电子病历的数据库4的存储栏位名称一致,如此一来,数据中心3根据电子病历模板中栏位名称的编号就可以从数据库4中调出将该栏位名称对应的数据并显示于电子病历模板中。
所述发送模块312用于随机选择一个加解密算法并发送至一个医院信息系统1,从该医院信息系统1中获取加密的电子病历。具体地说,所述发送模块312通过随机函数随机选择一个数据中心3中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统1中,使得医院信息系统1调用该哈希值对应的加解密算法对电子病历进行加密,并将加密后的电子病历传输给数据中心3。需要说明的是,若医院信息系统1中没有对应的加解密算法,所述医院信息系统1随机选择一个加解密算法对电子病历进行加密,并将随机选择的加解密算法对应的哈希值及加密后的电子病历传输给数据中心3,数据中心3接收到医院信息系统1发送过来的哈希值后,调用该哈希值对应的加解密算法并对加密后的电子病历进行解密。
所述转换模块313用于调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称。所述调用加解密算法对加密的电子病历解密并解析解密后的电子病历中的栏位名称的方式如下:(1)获取,(1)调用随机选择的加解密算法对加密后的电子病历进行解密;(2)将解密后的电子病历转换为XML格式;(3)从XML格式中通过选取标签后面的名称作为加密后的电子病历的栏位名称。此外,所述转换模块313还可以对解密后的电子病历中的每个栏位名称进行编号。所述编号是数字加字母的形式进行排序,具体地说,如图4所示,所述编号表示为 Ai,其中,字母A表示解密后的电子病历的标号(即HIS系统A的简称),i表示正整数,i大于或等于1且小于等于解密后的电子病历中的栏位名称的总数量,例如,A1表示解密后的电子病历中的第一个栏位名称,A2表示解密后的电子病历中的第2个栏位名称,Ai表示解密后的电子病历中的第i个栏位名称。
所述匹配模块314用于将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配。具体地说,将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配的方式如下:将解密后的电子病历中的栏位名称在电子病历模板的栏位名称中进行检索,例如,如图4所示,解密后的电子病历中的栏位名称包括“姓名”、“性别”、“年龄”、“联系方式”、“社保号”、“身份证号”、“就诊日期”、“就诊科室”、“就诊医生”、“现病史”、“症状描述”等,将上述栏位名称逐个在电子病历模板的栏位名称中进行检索。
所述生成模块315用于根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库4中创建对应重新排序编号后的存储栏位。具体地说,若匹配的结果中为解密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将解密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。需要说明的是,由于不同医疗机构的电子病历的栏位名称表达方式不同,而表达意思相同,例如,有的医疗机构的电子病历的栏位名称为“社保号”,有的医疗机构的电子病历的栏位名称为“社保电脑号”或“社保编号”,为了确保匹配精确,所述电子病历模板的栏位名称可以拓展,即所述电子病历模板中的每个栏位名称可以设置多个相关名称,例如,所述电子病历模板中的栏位名称“社保号”还可以拓展为“社保电脑号”或“社保编号”等多个名称。若匹配的结果中为解密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与解密后的电子病历中的栏位名称一致。例如,若解密后的电子病历中的栏位名称为“医生简介”,而电子病历模板中没有该栏位名称,则在电子病历模板中增加该“医生简介”的栏位。
所述关联模块316用于将解密后的电子病历中的电子病历数据(即栏位名称对应输入的数据,例如,栏位名称“姓名”中对应输入的数据为“张三”,则“张三”即为电子病历数据)存储于数据库4中对应重新排序编号后的存储栏位,并生成新的电子病历。具体地说,通过图4可知,医院信息系统A中电子病历的栏位名称均对应于电子病历模板中的排序编号(即Mi),而电子病历模板中的排序编号在数据库4中有对应的存储栏位,因此,所述关联模块316可以直接将医院信息系统A中电子病历中的电子病历数据存储于数据中心3的数据库4中。
所述判断模块317用于判断是否获取下一个医院信息系统1的电子病历。具体地说,若所述数据中心3授权获取五个医院信息系统1的电子病历,则当完成一个医院信息系统1中的电子病历的获取后,在自动切换到下一个医院信息系统的API接口并获取该下一个医院信息系统中的电子病历。所述判断模块317根据API调用记录判断是否每个授权访问的医院信息系统1的电子病历均被获取。
所述关联模块316还用于当不再获取下一个医院信息系统1的电子病历时(即当所有授权访问的医院信息系统1的电子病历均被获取完成后),对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。在本实施例中,所述索引号为唯一编号,通过索引号将同一个患者名下在各个医疗机构看病的电子病历整合到一起,既节约存储空间,又方便查询。为了确保索引号的唯一性,所述索引号是将姓名、社保号及身份证号三者合一而形成索引号,对所有新的电子病历建立索引号调用加解密算法进行加密。此外,当说所有授权访问的医院信息系统1的电子病历均被获取后,患者在各个医疗机构的电子病历均转换成新的电子病历,例如,患者在医疗机构A、医疗机构B及医疗机构C均看过感冒病,整合后的患者的新的电子病历由于格式一致,将在三个医疗机构看病后的电子病历数据整合在同一个电子病历中。
参照图3所示,是本发明区域医疗电子病历安全协同整合方法的优选实施例的流程图。在本实施例中,在本实施例中,所述的区域医疗电子病历安全协同整合方法的各种方法步骤通过计算机软件程序来实现,该计算机软件程序以计算机程序指令的形式存储于计算机可读存储介质中,存储介质可以包括:只读存储器、随机存储器、磁盘或光盘等,所述计算机程序指令能够被处理器(例如处理单元32)加载并执行如下步骤S11至步骤S18。该方法包括以下步骤:
步骤S11:创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库4中创建对应排序编号的栏位。在本实施例中,所述创建模块311创建一个电子病历模板,该电子病历的模板遵循卫生部制定的卫医政发〔2010〕24号的《电子病历基本规范》。需要说明的是,由于电子病历模板中包括多个栏位名称,为了方便后续与其他医疗机构的HIS系统中的电子病历进行匹配,所述电子病历模板中的每个栏位名称都有一个对应的编号。所述编号是数字加字母的形式进行排序,具体地说,如图4所示,所述编号表示为 Mi,其中,字母M表示电子病历模板的标号(即电子病历模板的简称),i表示正整数,i大于或等于1且小于等于N(N表示电子病历模板中的栏位名称的总数量),例如,M1表示电子病历模板中的第一个栏位名称,M2表示电子病历模板中的第2个栏位名称,Mi表示电子病历模板中的第i个栏位名称。
进一步地,为了方便电子病历中的数据存储,所述电子病历模板中的栏位名称的编号与数据中心3中存储电子病历的数据库4的存储栏位名称一致,如此一来,数据中心3根据电子病历模板中栏位名称的编号就可以从数据库4中调出将该栏位名称对应的数据并显示于电子病历模板中。
步骤S12:随机选择一个加解密算法并发送至一个医院信息系统1,从该医院信息系统1中获取加密的电子病历。具体地说,所述发送模块312通过随机函数随机选择一个数据中心3中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统1中,使得医院信息系统1调用该哈希值对应的加解密算法对电子病历进行加密,并将加密后的电子病历传输给数据中心3。需要说明的是,若医院信息系统1中没有对应的加解密算法,所述医院信息系统1随机选择一个加解密算法对电子病历进行加密,并将随机选择的加解密算法对应的哈希值及加密后的电子病历传输给数据中心3,数据中心3接收到医院信息系统1发送过来的哈希值后,调用该哈希值对应的加解密算法并对加密后的电子病历进行解密。
步骤S13:调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称。所述调用加解密算法对加密的电子病历解密并解析解密后的电子病历中的栏位名称的方式如下:(1)获取,(1)调用随机选择的加解密算法对加密后的电子病历进行解密;(2)将解密后的电子病历转换为XML格式;(3)从XML格式中通过选取标签后面的名称作为加密后的电子病历的栏位名称。此外,所述转换模块313还可以对解密后的电子病历中的每个栏位名称进行编号。所述编号是数字加字母的形式进行排序,具体地说,如图4所示,所述编号表示为 Ai,其中,字母A表示解密后的电子病历的标号(即HIS系统A的简称),i表示正整数,i大于或等于1且小于等于解密后的电子病历中的栏位名称的总数量,例如,A1表示解密后的电子病历中的第一个栏位名称,A2表示解密后的电子病历中的第2个栏位名称,Ai表示解密后的电子病历中的第i个栏位名称。
步骤S14:将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配。具体地说,将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配的方式如下:将解密后的电子病历中的栏位名称在电子病历模板的栏位名称中进行检索,例如,如图4所示,解密后的电子病历中的栏位名称包括“姓名”、“性别”、“年龄”、“联系方式”、“社保号”、“身份证号”、“就诊日期”、“就诊科室”、“就诊医生”、“现病史”、“症状描述”等,将上述栏位名称逐个在电子病历模板的栏位名称中进行检索。
步骤S15:根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库4中创建对应重新排序编号后的存储栏位。具体地说,若匹配的结果中为解密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将解密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。需要说明的是,由于不同医疗机构的电子病历的栏位名称表达方式不同,而表达意思相同,例如,有的医疗机构的电子病历的栏位名称为“社保号”,有的医疗机构的电子病历的栏位名称为“社保电脑号”或“社保编号”,为了确保匹配精确,所述电子病历模板的栏位名称可以拓展,即所述电子病历模板中的每个栏位名称可以设置多个相关名称,例如,所述电子病历模板中的栏位名称“社保号”还可以拓展为“社保电脑号”或“社保编号”等多个名称。若匹配的结果中为解密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与解密后的电子病历中的栏位名称一致。例如,若解密后的电子病历中的栏位名称为“医生简介”,而电子病历模板中没有该栏位名称,则在电子病历模板中增加该“医生简介”的栏位。
步骤S16:将解密后的电子病历中的电子病历数据(即栏位名称对应输入的数据,例如,栏位名称“姓名”中对应输入的数据为“张三”,则“张三”即为电子病历数据)存储于数据库4中对应重新排序编号后的存储栏位,并生成新的电子病历。具体地说,通过图4可知,医院信息系统A中电子病历的栏位名称均对应于电子病历模板中的排序编号(即Mi),而电子病历模板中的排序编号在数据库4中有对应的存储栏位,因此,所述关联模块316可以直接将医院信息系统A中电子病历中的电子病历数据存储于数据中心3的数据库4中。
步骤S17:判断是否获取下一个医院信息系统1的电子病历。具体地说,若所述数据中心3授权获取五个医院信息系统1的电子病历,则当完成一个医院信息系统1中的电子病历的获取后,在自动切换到下一个医院信息系统的API接口并获取该下一个医院信息系统中的电子病历。所述判断模块317根据API调用记录判断是否每个授权访问的医院信息系统1的电子病历均被获取。当每个授权访问的医院信息系统1的电子病历均被获取完成后,流程进入步骤S18,否则,若还需要获取下一个医院信息系统1的电子病历,则流程返回步骤S12。
步骤S18:当不再获取下一个医院信息系统1的电子病历时(即当所有授权访问的医院信息系统1的电子病历均被获取完成后),对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。在本实施例中,所述索引号为唯一编号,通过索引号将同一个患者名下在各个医疗机构看病的电子病历整合到一起,既节约存储空间,又方便查询。为了确保索引号的唯一性,所述索引号是将姓名、社保号及身份证号三者合一而形成索引号,对所有新的电子病历建立索引号调用加解密算法进行加密。此外,当说所有授权访问的医院信息系统1的电子病历均被获取后,患者在各个医疗机构的电子病历均转换成新的电子病历,例如,患者在医疗机构A、医疗机构B及医疗机构C均看过感冒病,整合后的患者的新的电子病历由于格式一致,将在三个医疗机构看病后的电子病历数据整合在同一个电子病历中。
以上仅为本发明的优选实施例,并非因此限制本发明的专利范围,凡是利用本发明说明书及附图内容所作的等效结构或等效流程变换,或直接或间接运用在其他相关的技术领域,均同理包括在本发明的专利保护范围内。
工业实用性
本发明采用上述技术方案,带来的技术效果为:本发明采用电子病历栏位匹配的方式实现电子病历的动态调整,对不同医疗机构的电子病历可以整合到同一种类型的电子病历模板中,达到了电子病历共享的医疗协同性,同时也可以集中式医疗数据分析,同时,对传输的电子病历采用随机的加解密算法对电子病历进行加解密,提高了信息的安全性。

Claims (10)

  1. 一种区域医疗电子病历安全协同整合系统,运行于数据中心中,其特征在于,该数据中心包括适于实现各种计算机程序指令的处理器以及适于存储多条计算机程序指令的存储器,所述数据中心通过网络与多个医院信息系统通信连接,所述计算机程序指令由处理器加载并执行如下步骤:创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库中创建对应排序编号的栏位;随机选择一个加解密算法并发送至一个医院信息系统,从该医院信息系统中获取加密的电子病历;调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称;将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配;根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库中创建对应重新排序编号后的存储栏位;将解密后的电子病历中的电子病历数据存储于数据库中对应重新排序编号后的存储栏位,并生成新的电子病历;及当不再获取下一个医院信息系统的电子病历时,对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。
  2. 如权利要求1所述的区域医疗电子病历安全协同整合系统,其特征在于,所述电子病历模板中的栏位名称的编号与存储电子病历的数据库的存储栏位名称一致。
  3. 如权利要求1所述的区域医疗电子病历安全协同整合系统,其特征在于,所述计算机程序指令由处理器加载还执行如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将加密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。
  4. 如权利要求1所述的区域医疗电子病历安全协同整合系统,其特征在于,所述计算机程序指令由处理器加载还执行如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与加密后的电子病历中的栏位名称一致。
  5. 如权利要求1所述的区域医疗电子病历安全协同整合系统,其特征在于,所述计算机程序指令由处理器加载还执行如下步骤:通过随机函数随机选择一个数据中心中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统中,使得该医院信息系统调用该哈希值对应的加解密算法对电子病历进行加密。
  6. 一种区域医疗电子病历安全协同整合方法,应用于数据中心中,其特征在于,所述数据中心通过网络与多个医院信息系统通信连接,该方法包括如下步骤:创建电子病历模板并对电子病历模板中的栏位名称进行排序编号,并在数据库中创建对应排序编号的栏位;随机选择一个加解密算法并发送至一个医院信息系统,从该医院信息系统中获取加密的电子病历;调用加解密算法对加密的电子病历解密,并解析解密后的电子病历中的栏位名称;将解密后的电子病历对应的栏位名称与电子病历模板中的栏位名称进行匹配;根据匹配的结果生成新的电子病历模板并对新的电子病历模板中的栏位名称进行重新排序编号,并在数据库中创建对应重新排序编号后的存储栏位;将解密后的电子病历中的电子病历数据存储于数据库中对应重新排序编号后的存储栏位,并生成新的电子病历;及当不再获取下一个医院信息系统的电子病历时,对所有新的电子病历建立索引号,并调用加解密算法对建立索引号的新的电子病历加密。
  7. 如权利要求6所述的区域医疗电子病历安全协同整合方法,其特征在于,所述电子病历模板中的栏位名称的编号与存储电子病历的数据库的存储栏位名称一致。
  8. 如权利要求6所述的区域医疗电子病历安全协同整合方法,其特征在于,该方法还包括如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称包含在电子病历模板的栏位名称中,则将加密后的电子病历中的栏位名称与电子病历模板中对应的栏位名称关联。
  9. 如权利要求6所述的区域医疗电子病历安全协同整合方法,其特征在于,该方法还包括如下步骤:若匹配的结果中为加密后的电子病历中的栏位名称不包含在电子病历模板的栏位名称中,则将电子病历模板中增加一个栏位名称,该增加的栏位名称与加密后的电子病历中的栏位名称一致。
  10. 如权利要求6所述的区域医疗电子病历安全协同整合方法,其特征在于,该方法还包括如下步骤:通过随机函数随机选择一个数据中心中预存的加解密算法,并计算该随机选择的加解密算法的哈希值,之后将该哈希值发送至医院信息系统中,使得该医院信息系统调用该哈希值对应的加解密算法对电子病历进行加密。
PCT/CN2018/073191 2017-11-17 2018-01-18 区域医疗电子病历安全协同整合系统及方法 WO2019095552A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201711147928.2A CN109801688A (zh) 2017-11-17 2017-11-17 区域医疗电子病历安全协同整合系统及方法
CN201711147928.2 2017-11-17

Publications (1)

Publication Number Publication Date
WO2019095552A1 true WO2019095552A1 (zh) 2019-05-23

Family

ID=66538908

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/073191 WO2019095552A1 (zh) 2017-11-17 2018-01-18 区域医疗电子病历安全协同整合系统及方法

Country Status (2)

Country Link
CN (1) CN109801688A (zh)
WO (1) WO2019095552A1 (zh)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110767277A (zh) * 2019-09-09 2020-02-07 卫宁健康科技集团股份有限公司 区域电子药历的管理方法及系统
CN110752027B (zh) * 2019-10-21 2023-05-23 卓尔智联(武汉)研究院有限公司 电子病历数据推送方法、装置、计算机设备和存储介质
CN114255840B (zh) * 2022-02-25 2022-06-24 广州科犁医学研究有限公司 基于临床研究数据的智能数据处理系统
CN114283910B (zh) * 2022-03-04 2022-06-24 广州科犁医学研究有限公司 基于多渠道信息的临床数据采集分析系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070143149A1 (en) * 2005-10-31 2007-06-21 Buttner Mark D Data tagging and report customization method and apparatus
CN101094143A (zh) * 2007-07-18 2007-12-26 李磊 实现跨医院电子病历的系统和方法
US20090125322A9 (en) * 2000-11-22 2009-05-14 Recare, Inc. Integrated virtual consultant
CN103268583A (zh) * 2013-06-14 2013-08-28 山东地纬计算机软件有限公司 一种跨区域的电子病历快速定位及共享的系统与方法

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2007080041A (ja) * 2005-09-15 2007-03-29 Hitachi Medical Corp 電子カルテシステム
CN101984448A (zh) * 2010-12-24 2011-03-09 中山大学孙逸仙纪念医院 一种电子病历数据库系统
DE102012101901A1 (de) * 2012-03-07 2013-09-12 Thinkon Information Technology Co., Ltd. Verfahren zur Erzeugung von elektronischen Patientenakten (EMR) ohne ein Krankenhaus-Informationssystem (HIS) in einer zusätzlichen Weise zu ändern
JP6117483B2 (ja) * 2012-06-18 2017-04-19 マクロコム株式会社 医用データ変換送信装置及び医用データ変換送信方法
CN103294915A (zh) * 2013-05-28 2013-09-11 美合实业(苏州)有限公司 一种多功能医疗信息记录装置
JP6497206B2 (ja) * 2015-05-19 2019-04-10 コニカミノルタ株式会社 電子カルテ作成システム
CN106529130A (zh) * 2016-10-24 2017-03-22 深圳市前海安测信息技术有限公司 医疗信息化系统中电子病历加密审核系统及方法
CN106709232A (zh) * 2016-11-09 2017-05-24 洛阳晶云信息科技有限公司 用于电子病历系统的显示、数据录入和病历模板修改方法
CN107103197A (zh) * 2017-04-26 2017-08-29 浙江宁格医疗科技有限公司 一种智能电子病案管理方法及其系统
CN107018145A (zh) * 2017-05-06 2017-08-04 深圳市前海安测信息技术有限公司 医疗数据加密传输系统及方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20090125322A9 (en) * 2000-11-22 2009-05-14 Recare, Inc. Integrated virtual consultant
US20070143149A1 (en) * 2005-10-31 2007-06-21 Buttner Mark D Data tagging and report customization method and apparatus
CN101094143A (zh) * 2007-07-18 2007-12-26 李磊 实现跨医院电子病历的系统和方法
CN103268583A (zh) * 2013-06-14 2013-08-28 山东地纬计算机软件有限公司 一种跨区域的电子病历快速定位及共享的系统与方法

Also Published As

Publication number Publication date
CN109801688A (zh) 2019-05-24

Similar Documents

Publication Publication Date Title
US20230230665A1 (en) Secure portable medical information access systems and methods related thereto
JP6661742B2 (ja) 複数のブロックチェーンに基盤を置いた生命情報データ提供方法、生命情報データ保存方法及び生命情報データ伝送システム
Zhang et al. Security models and requirements for healthcare application clouds
EP2953053B1 (en) System and method for the protection of de-identification of health care data
US8108311B2 (en) Systems and methods for constructing a local electronic medical record data store using a remote personal health record server
US8977572B2 (en) Systems and methods for patient-controlled, encrypted, consolidated medical records
US20150302148A1 (en) Method and system for securing electronic health records
US11586742B2 (en) Data processing method, data processing device, and computer readable storage medium
US10164950B2 (en) Controlling access to clinical data analyzed by remote computing resources
Reen et al. Decentralized patient centric e-health record management system using blockchain and IPFS
EP3710966A1 (en) Storing and accessing medical datasets on the blockchain
US9940469B2 (en) Encrypted data store for records
WO2019095552A1 (zh) 区域医疗电子病历安全协同整合系统及方法
US10216940B2 (en) Systems, methods, apparatuses, and computer program products for truncated, encrypted searching of encrypted identifiers
WO2019095551A1 (zh) 区域医疗电子病历共享整合查询系统及方法
KR102279377B1 (ko) 블록체인을 이용한 개인 권한 기반의 의료 정보 제공 시스템
WO2019058952A1 (ja) 医療データ検索システム、医療データ検索方法および医療データ検索プログラム
Parthasarathy et al. Secure distributed medical record storage using blockchain and emergency sharing using multi-party computation
US11862304B1 (en) Patient authorized medical information storage and access system
AU2015346644A1 (en) System and method for securely storing and sharing information
KR20120124298A (ko) 개인 건강기록 관리 시스템 및 그 방법
Rubio et al. A robust and simple security extension for the medical standard SCP-ECG
US20210049301A1 (en) Method for combining different partial data
EP3883177A1 (en) General data protection method for multicentric sensitive data storage and sharing
Abouakil et al. Data models for the pseudonymization of DICOM data

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18877982

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 18/09/2020)

122 Ep: pct application non-entry in european phase

Ref document number: 18877982

Country of ref document: EP

Kind code of ref document: A1