[go: up one dir, main page]

CN105450650A - Safety mobile electronic health record access control system - Google Patents

Safety mobile electronic health record access control system Download PDF

Info

Publication number
CN105450650A
CN105450650A CN201510883077.2A CN201510883077A CN105450650A CN 105450650 A CN105450650 A CN 105450650A CN 201510883077 A CN201510883077 A CN 201510883077A CN 105450650 A CN105450650 A CN 105450650A
Authority
CN
China
Prior art keywords
patient
doctor
mobile terminal
terminal
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201510883077.2A
Other languages
Chinese (zh)
Other versions
CN105450650B (en
Inventor
秦波
石文昌
唐秋楠
王美琪
黄瑾
张雅暄
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Renmin University of China
Original Assignee
Renmin University of China
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Renmin University of China filed Critical Renmin University of China
Priority to CN201510883077.2A priority Critical patent/CN105450650B/en
Publication of CN105450650A publication Critical patent/CN105450650A/en
Application granted granted Critical
Publication of CN105450650B publication Critical patent/CN105450650B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3234Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Measuring And Recording Apparatus For Diagnosis (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

本发明涉及一种安全移动电子健康记录访问控制系统,其特征在于,它包括一PKI服务器终端、一数据库管理终端、一医生移动终端、一USBKey、一患者移动终端和一患者可穿戴设备,患者可穿戴设备用于获取患者健康数据并通过蓝牙与患者移动终端连接,USBKey与医生移动终端连接;PKI服务器终端用于医生用户注册、生成基于医生属性的专属私钥,通过专属私钥与医生的USB?Key绑定,并将医生的注册信息和私钥信息存入数据库管理终端;患者移动终端用于患者用户注册并设置加密策略、从患者可穿戴设备中获取患者健康数据对其进行加密,并将患者的注册信息以及加密后的患者健康数据存入数据库管理终端;医生移动终端从数据库管理终端获取患者数据,并检验医生是否符合该患者加密策略,符合则对患者健康数据进行解密。

The invention relates to a safe mobile electronic health record access control system, which is characterized in that it includes a PKI server terminal, a database management terminal, a doctor's mobile terminal, a USBKey, a patient's mobile terminal and a patient's wearable device. The wearable device is used to obtain patient health data and connect to the patient's mobile terminal through Bluetooth, and the USBKey is connected to the doctor's mobile terminal; the PKI server terminal is used for doctor user registration, generating an exclusive private key based on the doctor's attributes, and through the exclusive private key. USB? Key binding, and store the doctor's registration information and private key information in the database management terminal; the patient's mobile terminal is used for patient user registration and setting encryption policies, and obtains patient health data from the patient's wearable device to encrypt it, and The patient's registration information and encrypted patient health data are stored in the database management terminal; the doctor's mobile terminal obtains the patient data from the database management terminal, and checks whether the doctor complies with the patient's encryption policy, and then decrypts the patient's health data.

Description

一种安全移动电子健康记录访问控制系统A secure mobile electronic health record access control system

技术领域technical field

本发明涉及隐私安全技术领域,特别是关于一种安全移动电子健康记录访问控制系统。The invention relates to the technical field of privacy security, in particular to a secure mobile electronic health record access control system.

背景技术Background technique

当前医疗健康技术的发展迅速,越来越多的疾病已经不再是无法治疗难题,然而由于所处地域、消费水平、先进技术的传播速度和患者自身因素的影响,大部分人获得的医疗保健服务远远落后于医学技术已经发展到的水平。由于对自身症状严重程度认识不足,很多患者的疾病到医院诊治的时候,已经错过了最好的诊治期,造成极大的财产损失甚至付出生命的代价。另外,当突发流行病时不能及时发现和控制,这也造成了极大的社会资源浪费。而与此同时,除了通常意义上提到的急性病和传染病,慢性病也成为人类健康的一大威胁,慢性病起病隐匿,病程长且病情迁延不愈,给患者的身心都带来很大的伤害,往往由于跟踪治疗不到位,复诊不及时造成严重后果。With the rapid development of current medical and health technology, more and more diseases are no longer untreatable problems. However, due to the geographical location, consumption level, the speed of advanced technology dissemination and the influence of patients' own factors, most people receive medical care. Services lag far behind where medical technology has advanced. Due to the lack of understanding of the severity of their own symptoms, many patients have missed the best period of diagnosis and treatment when their diseases come to the hospital for diagnosis and treatment, resulting in huge property losses and even paying the price of their lives. In addition, when an epidemic breaks out, it cannot be detected and controlled in time, which also causes a great waste of social resources. At the same time, in addition to the acute diseases and infectious diseases mentioned in the usual sense, chronic diseases have also become a major threat to human health. The onset of chronic diseases is hidden, the course of the disease is long and the disease is protracted, which brings great physical and mental harm to the patients. Injuries are often caused by inadequate follow-up treatment and untimely follow-up visits, resulting in serious consequences.

云计算、大数据和现代医疗体系的融合有望为人们提供实时、全面、权威的健康信息采集、传输、存储、共享与处理,实现泛在的、全天候的医疗保健,犹如有专门的医务人员随时随地提供健康保障,可穿戴智能设备被应用到生活中的各个方面。这类产品的主要功能是检测患者的各项健康指标,实时反馈给医生,用以分析患者病情,及时调整治疗方案。然而,可穿戴医疗设备一方面给人们带来很多便利,另一方面带来了很大的安全威胁。目前电子医疗系统主要有以下几个方面的安全问题:1)医疗数据传输过程中,容易被窃取并传播;2)医疗信息规模极大,海量信息的存储存在安全隐患;3)医疗数据的访问控制管理制度不健全,使患者的敏感资料可以轻易被进入医疗系统中的任何人获取。The integration of cloud computing, big data and modern medical system is expected to provide people with real-time, comprehensive and authoritative health information collection, transmission, storage, sharing and processing, and realize ubiquitous and all-weather medical care, as if there are dedicated medical staff at any time Provide health protection anywhere, and wearable smart devices are applied to all aspects of life. The main function of this type of product is to detect various health indicators of the patient and provide real-time feedback to the doctor to analyze the patient's condition and adjust the treatment plan in time. However, on the one hand, wearable medical devices bring a lot of convenience to people, on the other hand, they bring great security threats. At present, the electronic medical system mainly has the following security problems: 1) During the transmission of medical data, it is easy to be stolen and spread; 2) The scale of medical information is huge, and the storage of massive information has potential safety hazards; 3) Access to medical data Inadequate control and management systems allow sensitive patient data to be easily obtained by anyone with access to the healthcare system.

发明内容Contents of the invention

针对上述问题,本发明的目的是提供一种能够防止患者健康数据泄露的安全移动电子健康记录访问控制系统。In view of the above problems, the object of the present invention is to provide a secure mobile electronic health record access control system capable of preventing leakage of patient health data.

为实现上述目的,本发明采取以下技术方案:一种安全移动电子健康记录访问控制系统,其特征在于,它包括一PKI服务器终端、一数据库管理终端、一医生移动终端、一USBKey、一患者移动终端和一患者可穿戴设备,所述患者可穿戴设备用于获取患者健康数据并通过蓝牙与所述患者移动终端连接,所述USBKey与所述医生移动终端连接;所述PKI服务器终端用于医生用户注册、生成基于医生属性的专属私钥,通过专属私钥与医生的USBKey绑定,并将医生的注册信息和私钥信息存入所述数据库管理终端;所述患者移动终端用于患者用户注册并设置加密策略、从所述患者可穿戴设备中获取患者健康数据对其进行加密,并将患者的注册信息以及加密后的患者健康数据存入所述数据库管理终端;所述医生移动终端从所述数据库管理终端获取患者数据,并检验医生是否符合该患者加密策略,符合则对患者健康数据进行解密。To achieve the above object, the present invention adopts the following technical solutions: a safe mobile electronic health record access control system, characterized in that it includes a PKI server terminal, a database management terminal, a doctor mobile terminal, a USBKey, a patient mobile terminal and a patient wearable device, the patient wearable device is used to obtain patient health data and is connected to the patient mobile terminal via bluetooth, the USBKey is connected to the doctor mobile terminal; the PKI server terminal is used for the doctor The user registers, generates an exclusive private key based on the doctor's attribute, binds the doctor's USBKey through the exclusive private key, and stores the doctor's registration information and private key information into the database management terminal; the patient mobile terminal is used for patient users Register and set encryption policy, obtain patient health data from the patient's wearable device to encrypt it, and store the patient's registration information and encrypted patient health data in the database management terminal; the doctor's mobile terminal from The database management terminal obtains the patient data, and checks whether the doctor complies with the patient encryption policy, and if so, decrypts the patient health data.

进一步地,所述PKI服务器终端的具体工作过程为:初始化参数生成公共参数和主密钥,插入将要分配给医生的所述USBKey,管理员录入医生用户注册信息,采用密文策略的基于属性加密算法中的提取私钥算法结合医生属性集合和主密钥生成基于医生属性的私钥,并将私钥存入其专属USBKey,完成对于一个医生的注册和密钥分发,判断是否全部医生已经注册完毕,是则结束,否则继续进行其他医生的注册和密钥分发直到全部医生注册结束,将所有完成注册的医生的注册信息和相应私钥信息存入所述数据库管理终端。Further, the specific working process of the PKI server terminal is: initializing parameters to generate public parameters and a master key, inserting the USBKey to be distributed to the doctor, the administrator entering the doctor's user registration information, and adopting the attribute-based encryption of the ciphertext policy The private key extraction algorithm in the algorithm combines the doctor’s attribute set and the master key to generate a private key based on the doctor’s attribute, and stores the private key in its exclusive USBKey to complete the registration and key distribution of a doctor, and determine whether all doctors have registered Complete, if yes, then end, otherwise continue to register other doctors and distribute keys until all doctors are registered, and store the registration information and corresponding private key information of all registered doctors into the database management terminal.

进一步地,所述患者移动终端的具体工作过程为:判断患者是否已经注册,如未注册则进行注册,注册成功后进入由患者设定加密策略,所述患者移动终端从所述患者可穿戴设备中获取患者健康数据进行图形化显示,并通过密文策略的基于属性加密算法中的加密算法封装密钥,使用高级加密标准对从所述患者可穿戴设备中获取患者健康数据进行加密,并将患者注册信息、加密策略和加密后的数据存入所述数据库管理终端。Further, the specific working process of the patient mobile terminal is: judge whether the patient has registered, if not registered, register, after successful registration, enter the encryption policy set by the patient, the patient mobile terminal from the patient wearable device The patient's health data obtained from the patient's wearable device is graphically displayed, and the key is encapsulated by the encryption algorithm in the attribute-based encryption algorithm of the ciphertext strategy, and the patient's health data obtained from the patient's wearable device is encrypted using the Advanced Encryption Standard, and the Patient registration information, encryption strategy and encrypted data are stored in the database management terminal.

进一步地,所述医生移动终端的具体工作过程为:将所述USBKey与所述医生移动终端连接并进行登录,选择将要查看的患者并从所述数据库管理终端获取该患者数据,判断医生是否符合该患者的加密策略,若不符合则解密失败退出解密过程,若符合采用高级加密标准和密文策略的基于属性加密算法的解密部分进行解密,解密成功后该患者的健康数据将会展示在所述医生移动终端。Further, the specific working process of the doctor's mobile terminal is: connect the USBKey to the doctor's mobile terminal and log in, select the patient to be viewed and obtain the patient data from the database management terminal, and judge whether the doctor meets the requirements. If the encryption strategy of the patient is not met, the decryption will fail and exit the decryption process. If the decryption part of the attribute-based encryption algorithm using the advanced encryption standard and ciphertext strategy is met, the decryption will be performed. After the decryption is successful, the patient's health data will be displayed in the The doctor's mobile terminal.

进一步地,所述患者移动终端还用于接收复诊提醒,即患者通过所述患者移动终端向医生发送建立关系请求,所述医生移动终端接收患者建立关系请求并确认,医生为自己负责的患者定制复诊计划,选择复诊时间,并发送复诊信息到所述患者移动终端,并在所述患者移动终端显示提醒。Further, the patient’s mobile terminal is also used to receive a follow-up reminder, that is, the patient sends a relationship establishment request to the doctor through the patient’s mobile terminal, and the doctor’s mobile terminal receives the patient’s relationship establishment request and confirms that the doctor customizes the Follow-up plan, select the return visit time, and send the follow-up information to the patient's mobile terminal, and display a reminder on the patient's mobile terminal.

本发明由于采取以上技术方案,其具有以下优点:1、本发明采用的密文策略的基于属性加密算法和高级加密标准结合实现加密和密钥封装访问控制,不再使用单纯的公钥加密系统,而是对密钥进行了封装,避免了密钥被窃取造成的危害,同时将访问结构嵌入密文,只有满足访问控制权限的用户可以进行正确解密,因此能够防止患者隐私数据泄露,有效保护患者的隐私数据安全。2、本发明的患者移动终端通过蓝牙从患者可穿戴设备获取患者健康数据,对患者进行全天候健康保障,提高患者和医院之间的共享效果。3、本发明采用USBKey存储医生属性集实现身份认证,USBKey和医生移动终端连接读取医生属性集与数据库管理终端传输过来的参数生成私钥,实现了访问控制,防止信息被恶意窃取,同时支持医生进行安全的移动访问患者电子健康记录,使得患者足不出户,也可以得到诊治。4、本发明的数据库管理终端布置在云端,采用云存储模式对于电子健康记录进行统一管理,可以降低海量电子健康记录维护与管理的成本,减轻医疗系统承载负担,同时避免了对于患者观察期间的数据管理不到位,跟踪不细致的情况。The present invention has the following advantages due to the adoption of the above technical scheme: 1. The ciphertext strategy adopted by the present invention is based on the attribute encryption algorithm and the advanced encryption standard in combination to realize encryption and key encapsulation access control, and no longer use a simple public key encryption system , but the key is encapsulated to avoid the harm caused by the key being stolen. At the same time, the access structure is embedded in the ciphertext. Only users who meet the access control authority can decrypt it correctly, so it can prevent the leakage of patient privacy data and effectively protect Patient privacy data security. 2. The patient mobile terminal of the present invention acquires patient health data from the patient's wearable device through Bluetooth, provides round-the-clock health protection for the patient, and improves the sharing effect between the patient and the hospital. 3. The present invention uses the USBKey to store the doctor’s attribute set to realize identity authentication. The USBKey and the doctor’s mobile terminal are connected to read the doctor’s attribute set and the parameters transmitted by the database management terminal to generate a private key, which realizes access control and prevents information from being maliciously stolen. At the same time, it supports Doctors can securely access patients' electronic health records through mobile devices, so that patients can receive diagnosis and treatment without leaving home. 4. The database management terminal of the present invention is arranged in the cloud, and adopts the cloud storage mode to conduct unified management of electronic health records, which can reduce the cost of maintenance and management of massive electronic health records, reduce the burden on the medical system, and at the same time avoid the need for patients during observation. Inadequate data management and poor tracking.

附图说明Description of drawings

图1是本发明的结构示意图;Fig. 1 is a structural representation of the present invention;

图2是本发明的PKI服务器终端流程示意图;Fig. 2 is the schematic flow chart of PKI server terminal of the present invention;

图3是本发明的患者移动终端流程示意图;Fig. 3 is a schematic flow chart of the patient's mobile terminal of the present invention;

图4是本发明的医生移动终端流程示意图图Fig. 4 is a schematic flow diagram of the doctor's mobile terminal of the present invention

图5是本发明患者移动终端提醒复诊流程示意图;Fig. 5 is a schematic diagram of the patient's mobile terminal reminding the follow-up consultation process in the present invention;

图6是本发明医生移动终端进行复诊提醒流程示意图。Fig. 6 is a schematic diagram of a flow chart of reminders for follow-up visits performed by the doctor's mobile terminal according to the present invention.

具体实施方式detailed description

以下结合附图来对本发明进行详细的描绘。然而应当理解,附图的提供仅为了更好地理解本发明,它们不应该理解成对本发明的限制。The present invention will be described in detail below in conjunction with the accompanying drawings. However, it should be understood that the accompanying drawings are provided only for better understanding of the present invention, and they should not be construed as limiting the present invention.

如图1所示,本发明提供的安全移动电子健康记录访问控制系统,包括一PKI(公钥基础设施)服务器终端1、一数据库管理终端2、一医生移动终端3、一USBKey4、一患者移动终端5和一患者可穿戴设备6,其中,患者可穿戴设备6用于获取患者健康数据并通过蓝牙与患者移动终端5连接,USBKey4通过OTG技术与医生移动终端3连接,其中,On-The-Go技术用于各种不同的设备或移动设备间的联接,进行数据交换,改变如数码照相机、摄像机、打印机等设备间多种不同制式连接器,解决多达7种制式的存储卡间数据交换的问题。As shown in Figure 1, the secure mobile electronic health record access control system provided by the present invention includes a PKI (public key infrastructure) server terminal 1, a database management terminal 2, a doctor mobile terminal 3, a USBKey4, a patient mobile terminal Terminal 5 and a patient's wearable device 6, wherein, the patient's wearable device 6 is used to obtain patient health data and is connected to the patient's mobile terminal 5 through Bluetooth, and the USBKey4 is connected to the doctor's mobile terminal 3 through OTG technology, wherein On-The- Go technology is used to connect various devices or mobile devices for data exchange, change connectors of different standards among devices such as digital cameras, video cameras, printers, etc., and solve data exchange between up to 7 types of memory cards The problem.

PKI服务器终端1用于医生用户注册、生成基于医生属性的专属私钥,通过专属私钥与医生相应的USBKey4绑定,并将医生的注册信息和相应私钥信息存入数据库管理终端2;患者移动终端5用于患者用户注册并设置加密策略、从患者可穿戴设备6中获取患者健康数据对其进行加密,并将患者的注册信息、患者加密策略以及加密后的患者健康数据上传至数据库管理终端2;医生移动终端3从数据库管理终端2获取患者数据,检验医生是否符合该患者加密策略,符合则对患者健康数据进行解密。The PKI server terminal 1 is used for doctor user registration, generates an exclusive private key based on the doctor’s attribute, binds the doctor’s corresponding USBKey 4 through the exclusive private key, and stores the doctor’s registration information and corresponding private key information into the database management terminal 2; the patient Mobile terminal 5 is used for patient user registration and setting encryption policy, obtains patient health data from patient wearable device 6 to encrypt it, and uploads patient registration information, patient encryption policy and encrypted patient health data to database management The terminal 2 and the doctor's mobile terminal 3 obtain patient data from the database management terminal 2, and check whether the doctor complies with the patient's encryption policy, and if so, decrypt the patient's health data.

在一个优先实施例中,如图2所示,PKI服务器终端1的具体工作过程为:初始化参数生成公共参数和主密钥,插入将要分配给医生的USBKey4,由管理员录入医生用户注册信息,使用密文策略的基于属性加密算法中的提取私钥算法结合医生属性集合(医生属性主要是指医生所在的医院、科室和职务等信息)和主密钥生成基于医生属性的私钥,并将私钥存入其专属USBKey4,完成对于一个医生的注册和密钥分发,判断是否全部医生已经注册完毕,是则结束,否则继续进行其他医生的注册和密钥分发直到全部医生注册结束,将所有完成注册的医生的注册信息和相应私钥信息存入数据库管理终端2。In a preferred embodiment, as shown in FIG. 2 , the specific working process of the PKI server terminal 1 is: initializing parameters to generate public parameters and a master key, inserting the USBKey4 to be distributed to the doctor, entering the doctor user registration information by the administrator, The private key extraction algorithm in the attribute-based encryption algorithm using the ciphertext strategy combines the doctor’s attribute set (the doctor’s attribute mainly refers to the doctor’s hospital, department, and job information) and the master key to generate a private key based on the doctor’s attribute, and Store the private key in its exclusive USBKey4, complete the registration and key distribution for a doctor, and judge whether all doctors have been registered, and if so, end, otherwise continue to register and distribute keys for other doctors until the registration of all doctors is completed, and all doctors will be registered. The registered doctor's registration information and corresponding private key information are stored in the database management terminal 2.

在一个优先实施例中,如图3所示,患者移动终端5的具体工作过程为:判断患者是否已经注册,如未注册则进行注册,注册可以采用姓名、手机号码等基本信息进行注册;注册成功后进入由患者设定加密策略,该加密策略将作为判断医生用户是否具有获取患者数据权限的依据。患者移动终端5通过蓝牙从患者可穿戴设备6中获取患者健康数据进行图形化显示,并通过密文策略的基于属性加密算法中的加密算法封装密钥,使用高级加密标准对从患者可穿戴设备6中获取患者健康数据进行加密,并将患者注册信息、患者加密策略和加密后的数据上传至数据库管理终端2。In a preferred embodiment, as shown in Figure 3, the specific work process of the patient's mobile terminal 5 is: determine whether the patient has registered, if not registered, then register, the registration can be registered using basic information such as name, mobile phone number; After successful entry, the patient sets the encryption policy, which will be used as the basis for judging whether the doctor user has the right to obtain patient data. The patient's mobile terminal 5 obtains the patient's health data from the patient's wearable device 6 through Bluetooth for graphical display, and encapsulates the key through the encryption algorithm in the attribute-based encryption algorithm of the ciphertext strategy, and uses the advanced encryption standard to encrypt the patient's health data from the patient's wearable device. Obtain patient health data in 6 to encrypt, and upload patient registration information, patient encryption strategy and encrypted data to database management terminal 2.

在一个优先实施例中,如图4所示,医生移动终端3的具体工作过程为:将USBKey4通过OTG与医生移动终端3连接并进行登录,选择将要查看的患者并从数据库管理终端2获取该患者数据,判断医生是否符合该患者的加密策略,若不符合则解密失败退出解密过程,若符合采用高级加密标准和密文策略的基于属性加密算法的解密部分进行解密,解密成功后该患者的健康数据将会展示在医生移动终端上。In a preferred embodiment, as shown in Figure 4, the specific working process of the doctor's mobile terminal 3 is: connect the USBKey4 to the doctor's mobile terminal 3 through OTG and log in, select the patient to be viewed and obtain the data from the database management terminal 2 Patient data, judge whether the doctor complies with the patient's encryption strategy, if not, the decryption will fail and exit the decryption process, if it conforms to the decryption part of the attribute-based encryption algorithm using the advanced encryption standard and ciphertext strategy, the decryption will be decrypted, and the patient's data will be decrypted successfully Health data will be displayed on the doctor's mobile terminal.

在一个优先实施例中,如图5所示,患者移动终端5还可以使得患者向医生发送建立关系请求,得到医生确认之后,建立关系,患者移动终端5接收复诊提醒,并在患者移动终端5显示提醒。医生移动终端3还可以使得医生接收患者建立关系请求并确认,医生为自己负责的患者定制复诊计划,选择复诊时间,并通过医生移动终端3发送复诊信息到患者移动终端。In a preferred embodiment, as shown in Figure 5, the patient's mobile terminal 5 can also make the patient send a request to establish a relationship with the doctor. Show reminder. The doctor's mobile terminal 3 can also make the doctor receive the patient's relationship establishment request and confirm that the doctor customizes the follow-up plan for the patient in charge, selects the time for the follow-up visit, and sends the follow-up information to the patient's mobile terminal through the doctor's mobile terminal 3 .

在一个优先实施例中,数据库终端3布置在云端,采用云存储模式对于电子健康记录进行统一管理,数据库终端3可以采用计算机。In a preferred embodiment, the database terminal 3 is arranged in the cloud, and the electronic health records are managed uniformly in a cloud storage mode, and the database terminal 3 can be a computer.

在一个优先实施例中,可穿戴设备6可以采用任意能够获取患者健康数据的可穿戴设备。In a preferred embodiment, the wearable device 6 can be any wearable device capable of obtaining patient health data.

在一个优先实施例中,USBKey4可以采用任意可写入数据的USBKey。In a preferred embodiment, USBKey4 can adopt any USBKey that can write data.

在一个优选的实施例中,密文策略的基于属性加密算法为现有的算法,具体步骤为:In a preferred embodiment, the attribute-based encryption algorithm of the ciphertext policy is an existing algorithm, and the specific steps are:

(1)启动算法(PK,MK)←Setup(1λ):初始化输入安全参数λ,输出公共参数PK和主密钥MK。(1) Startup algorithm (PK,MK)←Setup(1 λ ): Initialize the input security parameter λ, and output the public parameter PK and master key MK.

(2)加密算法,CT←Encrypt(PK,M):加密算法输入公共参数PK,消息M和基于属性集的访问结构Α,该算法会加密M并且输出密文CT,只有属性集满足访问结构才能解密出原始消息。(2) Encryption algorithm, CT←Encrypt(PK,M): The encryption algorithm inputs the public parameter PK, the message M and the access structure Α based on the attribute set, the algorithm will encrypt M and output the ciphertext CT, only the attribute set satisfies the access structure to decrypt the original message.

(3)密钥生成,SK←KeyGen(MK,S):生成私钥算法输入主密钥MK和属性集合S,输出私钥SK。(3) Key generation, SK←KeyGen(MK,S): The private key generation algorithm inputs the master key MK and attribute set S, and outputs the private key SK.

(4)解密算法,M←Decrypt(PK,CT,SK):解密算法输入公共参数PK,密文CT(包含访问结构Α),以及由集合S产生的私钥SK,如果S满足访问结构Α,算法会将密文解密,返回原始消息M。(4) Decryption algorithm, M←Decrypt(PK,CT,SK): The decryption algorithm inputs public parameters PK, ciphertext CT (including access structure Α), and private key SK generated by set S, if S satisfies access structure Α , the algorithm will decrypt the ciphertext and return the original message M.

其中,启动算法和生成私钥算法在PKI服务器1中进行,初始化生成公共参数和主密钥,并为注册医生分配私钥;加密算法在患者移动终端5进行,使用该算法封装密钥,并使用高级加密标准加密患者健康数据;解密算法在医生移动终端3进行,判断医生身份符合对应患者加密策略后,允许医生进行解密还原数据。Among them, the startup algorithm and the private key generation algorithm are carried out in the PKI server 1, and the public parameters and the master key are initialized to be generated, and the private key is distributed to the registered doctor; the encryption algorithm is carried out in the patient's mobile terminal 5, and the key is encapsulated using this algorithm, and The patient's health data is encrypted using the advanced encryption standard; the decryption algorithm is performed on the doctor's mobile terminal 3, and after judging that the doctor's identity conforms to the corresponding patient's encryption strategy, the doctor is allowed to decrypt and restore the data.

综上所述,下面通过具体实施例详细介绍本发明的安全移动电子健康记录访问控制方法,包括以下步骤:To sum up, the method for controlling access to secure mobile electronic health records of the present invention will be described in detail below through specific embodiments, including the following steps:

1)如图3所示,患者用户在已注册情况下输入账号和密码登录换患者移动终端5后进入步骤2),如患者为初次登录则使用手机号码和姓名等基本信息进行注册,注册登录成功患者移动终端5将提示用户设置加密策略,设置成功后进入;1) As shown in Figure 3, the patient user enters the account number and password to log in after registration and changes to the patient's mobile terminal 5 and then enters step 2). If the patient is logging in for the first time, use basic information such as mobile phone number and name to register. The successful patient's mobile terminal 5 will prompt the user to set an encryption policy, and enter after the setting is successful;

2)患者移动终端5通过蓝牙获取患者可穿戴设备6中的运动数据,经过密文策略的基于属性加密和高级加密标准加密之后上传至数据库管理终端2,同时将相关数据图形化展示在患者移动终端5;2) The patient's mobile terminal 5 obtains the movement data in the patient's wearable device 6 through Bluetooth, and uploads it to the database management terminal 2 after being encrypted by attribute-based encryption and advanced encryption standard encryption of the ciphertext strategy, and at the same time, the relevant data is graphically displayed on the patient's mobile terminal. terminal 5;

3)医生用户在医生移动终端通过账号的密码进行登录后进入步骤4),如图2,若为初次登录则需要使用手机号、姓名以及所在医院和科室等信息进行注册,注册成功之后由PKI服务器终端1向医生用户分发私钥,并将私钥存储在医生用户的USBKey4中,实现和医生用户的绑定;3) The doctor user logs in through the account password on the doctor's mobile terminal and enters step 4), as shown in Figure 2, if it is the first time to log in, it needs to use the mobile phone number, name, and information such as the hospital and department to register. After the registration is successful, the PKI The server terminal 1 distributes the private key to the doctor user, and stores the private key in the doctor user's USBKey4 to realize the binding with the doctor user;

4)医生用户将其专属的USBKey4插入医生移动终端3的USB接口中,点击USB认证,获取USB中的该用户的基本信息,该信息将会被传送到医生登录的界面。4) The doctor user inserts his exclusive USBKey4 into the USB interface of the doctor's mobile terminal 3, clicks on the USB authentication, and obtains the basic information of the user in the USB, which will be sent to the doctor's login interface.

5)如图4所示,在医生登录阶段,医生需要输入正确的口令,登录成功后,通过从USBKey4中获取的患者密钥对从数据库管理终端2传过来的加密后的患者数据进行解密和显示;5) As shown in Figure 4, in the doctor login stage, the doctor needs to input the correct password. After the login is successful, the encrypted patient data transmitted from the database management terminal 2 is decrypted and retrieved by the patient key obtained from the USBKey4. show;

6)如图5和图6所示,患者还可以向医生发送建立关系请求,得到医生确认之后,建立关系,医生为自己负责的患者定制复诊计划,选择复诊时间,并发送复诊信息到患者终端,患者终端接收复诊提醒,并在患者移动终端显示提醒。6) As shown in Figure 5 and Figure 6, the patient can also send a relationship establishment request to the doctor. After the doctor confirms, the relationship is established. The doctor customizes the follow-up plan for the patient in charge, chooses the follow-up time, and sends the follow-up information to the patient terminal , the patient terminal receives a follow-up reminder and displays the reminder on the patient's mobile terminal.

上述各实施例仅用于说明本发明,其中各部件的结构、连接方式和制作工艺等都是可以有所变化的,凡是在本发明技术方案的基础上进行的等同变换和改进,均不应排除在本发明的保护范围之外。The above-mentioned embodiments are only used to illustrate the present invention, wherein the structure, connection mode and manufacturing process of each component can be changed to some extent, and any equivalent transformation and improvement carried out on the basis of the technical solution of the present invention should not excluded from the protection scope of the present invention.

Claims (6)

1. a safe mobile e health records access control system, it is characterized in that, it comprises a PKI server terminal, a data base administration terminal, doctor's mobile terminal, a USBKey, patient's mobile terminal and patient's wearable device, described patient's wearable device is for obtaining patient health data and being connected with described patient's mobile terminal by bluetooth, and described USBKey is connected with described doctor's mobile terminal;
Described PKI server terminal is used for clinician user registration, generates exclusive private key based on doctor's attribute, is bound by the USBKey of exclusive private key and doctor, and by the log-on message of doctor and private key information stored in described data base administration terminal; Described patient's mobile terminal is used for patient user and register and arrange encryption policy, obtain patient health data be encrypted it from described patient's wearable device, and by the log-on message of patient and the patient health data after encrypting stored in described data base administration terminal; Described doctor's mobile terminal obtains patient data from described data base administration terminal, and checks doctor whether to meet this patient's encryption policy, meets then to patient health decrypt data.
2. a kind of safe mobile e health records access control system as claimed in claim 1, it is characterized in that, the specific works process of described PKI server terminal is: initiation parameter generates common parameter and master key, insertion will distribute to the described USBKey of doctor, keeper's typing clinician user log-on message, what adopt Ciphertext policy generates private key based on doctor's attribute based on the extraction private key algorithm in encryption attribute algorithm in conjunction with doctor's community set and master key, and by private key stored in its exclusive USBKey, complete the registration for a doctor and key distribution, judge whether that whole doctor has registered complete, terminate, otherwise proceed the registration of other doctors and key distribution until all doctor registers end, the log-on message completing the doctor of registration by all and respective private keys information are stored in described data base administration terminal.
3. a kind of safe mobile e health records access control system as claimed in claim 1, it is characterized in that, the specific works process of described patient's mobile terminal is: judge whether patient registers, as unregistered, register, enter after succeeding in registration and set encryption policy by patient, described patient's mobile terminal obtains patient health data and carries out graphic software platform from described patient's wearable device, and by Ciphertext policy based in encryption attribute algorithm cryptographic algorithm encapsulation key, Advanced Encryption Standard is used to be encrypted obtaining patient health data from described patient's wearable device, and by patient registration's information, encryption policy and the data after encrypting are stored in described data base administration terminal.
4. a kind of safe mobile e health records access control system as claimed in claim 2, it is characterized in that, the specific works process of described patient's mobile terminal is: judge whether patient registers, as unregistered, register, enter after succeeding in registration and set encryption policy by patient, described patient's mobile terminal obtains patient health data and carries out graphic software platform from described patient's wearable device, and by Ciphertext policy based in encryption attribute algorithm cryptographic algorithm encapsulation key, Advanced Encryption Standard is used to be encrypted obtaining patient health data from described patient's wearable device, and by patient registration's information, encryption policy and the data after encrypting are stored in described data base administration terminal.
5. a kind of safe mobile e health records access control system as claimed in claim 1 or 2 or 3 or 4, it is characterized in that, the specific works process of described doctor's mobile terminal is: described USBKey is connected with described doctor's mobile terminal and is logged in, the patient that selection will be checked also obtains this patient data from described data base administration terminal, judge whether doctor meets the encryption policy of this patient, if do not meet, decipher and unsuccessfully exit decrypting process, the decryption portion based on encryption attribute algorithm of Advanced Encryption Standard and Ciphertext policy is adopted to be decrypted if meet, after successful decryption, the health data of this patient will be illustrated in described doctor's mobile terminal.
6. a kind of safe mobile e health records access control system as claimed in claim 1 or 2 or 3 or 4, it is characterized in that, described patient's mobile terminal is also reminded for receiving further consultation, namely patient sends opening relationships request by described patient's mobile terminal Xiang doctor, described doctor's mobile terminal receives patient's opening relationships and asks and confirm, the patient that doctor is responsible for for oneself customizes further consultation plan, select reexamination time, and send further consultation information to described patient's mobile terminal, and at described patient's mobile terminal display alarm.
CN201510883077.2A 2015-12-03 2015-12-03 A secure mobile electronic health record access control system Active CN105450650B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510883077.2A CN105450650B (en) 2015-12-03 2015-12-03 A secure mobile electronic health record access control system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510883077.2A CN105450650B (en) 2015-12-03 2015-12-03 A secure mobile electronic health record access control system

Publications (2)

Publication Number Publication Date
CN105450650A true CN105450650A (en) 2016-03-30
CN105450650B CN105450650B (en) 2019-03-08

Family

ID=55560427

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510883077.2A Active CN105450650B (en) 2015-12-03 2015-12-03 A secure mobile electronic health record access control system

Country Status (1)

Country Link
CN (1) CN105450650B (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105915567A (en) * 2016-07-06 2016-08-31 杨炳 Mobile security electronic health record access control system
CN106131014A (en) * 2016-07-06 2016-11-16 杨炳 The security system accessed for the case information of medical treatment
CN106131225A (en) * 2016-08-30 2016-11-16 孟玲 The security system accessed for medical treatment case information
CN107242854A (en) * 2017-05-27 2017-10-13 西安邮电大学 A kind of intelligent medical system based on secure communication
CN109545314A (en) * 2018-10-27 2019-03-29 平安医疗健康管理股份有限公司 A kind of risk control method of prescriptions, server and system
CN109583232A (en) * 2018-11-20 2019-04-05 深圳大学 Medical archive management method, device, equipment and storage medium based on CP-ABE
CN109920546A (en) * 2019-02-01 2019-06-21 广州豫本草电子科技有限公司 A kind of data processing method based on the logical instrument that weighs
CN109925597A (en) * 2019-02-01 2019-06-25 广州豫本草电子科技有限公司 A kind of cell rendering method based on the logical instrument that weighs
CN110554611A (en) * 2018-06-04 2019-12-10 珠海格力电器股份有限公司 Intelligent household control method and device and intelligent household system
CN110580951A (en) * 2019-09-10 2019-12-17 赵志宇 A communication encryption diagnostic monitoring comprehensive medical system and communication encryption method thereof
CN111669494A (en) * 2020-05-25 2020-09-15 杭州涂鸦信息技术有限公司 Network camera control method and network camera
CN111835762A (en) * 2019-07-11 2020-10-27 中国医学科学院阜外医院 A Hardware System Based on Asymmetric Key Algorithm
CN112185498A (en) * 2020-09-24 2021-01-05 毛真真 Method, system and device for processing data information of patient in traditional Chinese medicine internal medicine
CN116013547A (en) * 2022-12-07 2023-04-25 深圳市携康网络科技有限公司 Chronic disease management system and method based on big data

Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101292866A (en) * 2008-06-26 2008-10-29 北京科技大学 Tracking medical diagnosis and early warning nursing device based on post-3G high-speed wireless network
CN102085116A (en) * 2010-12-08 2011-06-08 华中科技大学 Multifunctional remote medical care system based on multi-network fusion
WO2011073894A1 (en) * 2009-12-18 2011-06-23 Koninklijke Philips Electronics N.V. Digital rights management using attribute-based encryption
CN102176709A (en) * 2010-12-13 2011-09-07 北京交通大学 Method and device with privacy protection function for data sharing and publishing
WO2012018495A2 (en) * 2010-07-27 2012-02-09 Microsoft Corporation Anonymous healthcare and records system
CN102882847A (en) * 2012-08-24 2013-01-16 山东省计算中心 Secure digital (SD)-password-card-based Internet of things healthcare service system and secure communication method thereof
CN102916954A (en) * 2012-10-15 2013-02-06 南京邮电大学 Attribute-based encryption cloud computing safety access control method
CN103116869A (en) * 2012-12-12 2013-05-22 江苏省人民医院 Identity authentication system and method of electronic medical record system
CN103338196A (en) * 2013-06-17 2013-10-02 上海华和得易信息技术发展有限公司 Information certificate authority and safety use method and system
CN103944975A (en) * 2014-04-03 2014-07-23 武汉大学 File safe sharing method based on mobile social network supporting user revocation
CN104168108A (en) * 2014-07-28 2014-11-26 北京航空航天大学 Attribute-based hybrid encryption method capable of tracing leaked secret key
CN104683099A (en) * 2015-02-03 2015-06-03 香港应用科技研究院有限公司 An improved method and apparatus for encrypting/decrypting content and distributing encrypted content
CN104683351A (en) * 2015-03-17 2015-06-03 西安电子科技大学 Attribute-based anonymous medical treatment and medical information security access control system and method

Patent Citations (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101292866A (en) * 2008-06-26 2008-10-29 北京科技大学 Tracking medical diagnosis and early warning nursing device based on post-3G high-speed wireless network
WO2011073894A1 (en) * 2009-12-18 2011-06-23 Koninklijke Philips Electronics N.V. Digital rights management using attribute-based encryption
WO2012018495A2 (en) * 2010-07-27 2012-02-09 Microsoft Corporation Anonymous healthcare and records system
CN102085116A (en) * 2010-12-08 2011-06-08 华中科技大学 Multifunctional remote medical care system based on multi-network fusion
CN102176709A (en) * 2010-12-13 2011-09-07 北京交通大学 Method and device with privacy protection function for data sharing and publishing
CN102882847A (en) * 2012-08-24 2013-01-16 山东省计算中心 Secure digital (SD)-password-card-based Internet of things healthcare service system and secure communication method thereof
CN102916954A (en) * 2012-10-15 2013-02-06 南京邮电大学 Attribute-based encryption cloud computing safety access control method
CN103116869A (en) * 2012-12-12 2013-05-22 江苏省人民医院 Identity authentication system and method of electronic medical record system
CN103338196A (en) * 2013-06-17 2013-10-02 上海华和得易信息技术发展有限公司 Information certificate authority and safety use method and system
CN103944975A (en) * 2014-04-03 2014-07-23 武汉大学 File safe sharing method based on mobile social network supporting user revocation
CN104168108A (en) * 2014-07-28 2014-11-26 北京航空航天大学 Attribute-based hybrid encryption method capable of tracing leaked secret key
CN104683099A (en) * 2015-02-03 2015-06-03 香港应用科技研究院有限公司 An improved method and apparatus for encrypting/decrypting content and distributing encrypted content
CN104683351A (en) * 2015-03-17 2015-06-03 西安电子科技大学 Attribute-based anonymous medical treatment and medical information security access control system and method

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106131014A (en) * 2016-07-06 2016-11-16 杨炳 The security system accessed for the case information of medical treatment
CN105915567A (en) * 2016-07-06 2016-08-31 杨炳 Mobile security electronic health record access control system
CN106131225A (en) * 2016-08-30 2016-11-16 孟玲 The security system accessed for medical treatment case information
CN107242854A (en) * 2017-05-27 2017-10-13 西安邮电大学 A kind of intelligent medical system based on secure communication
CN107242854B (en) * 2017-05-27 2020-03-06 西安邮电大学 An intelligent medical system based on secure communication
CN110554611A (en) * 2018-06-04 2019-12-10 珠海格力电器股份有限公司 Intelligent household control method and device and intelligent household system
CN109545314A (en) * 2018-10-27 2019-03-29 平安医疗健康管理股份有限公司 A kind of risk control method of prescriptions, server and system
CN109583232A (en) * 2018-11-20 2019-04-05 深圳大学 Medical archive management method, device, equipment and storage medium based on CP-ABE
CN109583232B (en) * 2018-11-20 2022-03-18 深圳大学 CP-ABE-based medical archive management method, device, equipment and storage medium
CN109925597A (en) * 2019-02-01 2019-06-25 广州豫本草电子科技有限公司 A kind of cell rendering method based on the logical instrument that weighs
CN109920546A (en) * 2019-02-01 2019-06-21 广州豫本草电子科技有限公司 A kind of data processing method based on the logical instrument that weighs
CN109925597B (en) * 2019-02-01 2023-06-09 广州唯思冠电子科技有限公司 Cell presentation method based on Heng Tong instrument
CN111835762A (en) * 2019-07-11 2020-10-27 中国医学科学院阜外医院 A Hardware System Based on Asymmetric Key Algorithm
CN110580951A (en) * 2019-09-10 2019-12-17 赵志宇 A communication encryption diagnostic monitoring comprehensive medical system and communication encryption method thereof
CN111669494A (en) * 2020-05-25 2020-09-15 杭州涂鸦信息技术有限公司 Network camera control method and network camera
CN112185498A (en) * 2020-09-24 2021-01-05 毛真真 Method, system and device for processing data information of patient in traditional Chinese medicine internal medicine
CN112185498B (en) * 2020-09-24 2022-10-14 毛真真 Method, system and device for processing data information of patient in traditional Chinese medicine internal medicine
CN116013547A (en) * 2022-12-07 2023-04-25 深圳市携康网络科技有限公司 Chronic disease management system and method based on big data
CN116013547B (en) * 2022-12-07 2023-11-24 深圳市携康网络科技有限公司 Chronic disease management system and method based on big data

Also Published As

Publication number Publication date
CN105450650B (en) 2019-03-08

Similar Documents

Publication Publication Date Title
CN105450650A (en) Safety mobile electronic health record access control system
Azbeg et al. Access control and privacy-preserving blockchain-based system for diseases management
US10164950B2 (en) Controlling access to clinical data analyzed by remote computing resources
KR101625359B1 (en) Personal security manager for ubiquitous patient monitoring
JP7023294B2 (en) Creating a matching cohort and exchanging protected data using the blockchain
US9092643B2 (en) Secure access to personal health records in emergency situations
CN102037474B (en) For the Identity based encryption of the data item of the secure access to data item
Hupperich et al. Flexible patient-controlled security for electronic health records
CN101742960A (en) Records Access and Management
WO2020186823A1 (en) Blockchain-based data querying method, device, system and apparatus, and storage medium
JPWO2018229867A1 (en) Personal information protection system
CN107579980A (en) Lightweight Dual Access Control System in Medical IoT
Hong et al. Secure access control for electronic health records in blockchain-enabled consumer internet of medical things
Riadi et al. Developing data integrity in an electronic health record system using blockchain and interplanetary file system (case study: COVID-19 data)
WO2016077219A1 (en) System and method for securely storing and sharing information
KR102605087B1 (en) System and method for sharing patient's medical data in medical cloud environment
EP3432547B1 (en) System and method for the management of personal data relative to a user by maintaining personal privacy
WO2014201599A1 (en) Method and system for information authentication authorization and secure use
Al-Muhtadi et al. Access control using threshold cryptography for ubiquitous computing environments
Arun et al. Privacy of health information in telemedicine on private cloud
Huang et al. A privacy-preserving data sharing solution for mobile healthcare
Thummavet et al. Privacy-preserving emergency access control for personal health records.
US11726674B2 (en) Bridging authorization standard for cloud storage
Haq et al. E-healthcare using block Chain technology and cryptographic techniques: A review
CN109545340B (en) Medical resource management method, server and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
EE01 Entry into force of recordation of patent licensing contract
EE01 Entry into force of recordation of patent licensing contract

Application publication date: 20160330

Assignee: Beijing Shenzhan Technology Co.,Ltd.

Assignor: RENMIN University OF CHINA

Contract record no.: X2025980001955

Denomination of invention: A secure mobile electronic health record access control system

Granted publication date: 20190308

License type: Common License

Record date: 20250120