【摘要】：人類已步入信息時代,現(xiàn)代醫(yī)療發(fā)展趨勢正逐步偏向電子化,電子病歷(EMR,Electronic Medical Record),作為醫(yī)療活動信息的主要載體,在現(xiàn)代醫(yī)療中占據(jù)舉足輕重的位置。關(guān)于患者就診的各方面綜合信息,醫(yī)院一般用EMR來記錄。目前于局域網(wǎng)基礎(chǔ)上建立的EMR系統(tǒng)在我國大部分醫(yī)院信息系統(tǒng)中被廣泛應(yīng)用,這種系統(tǒng)不能支持EMR廣泛信息的共享,對醫(yī)療服務(wù)和病理研究也沒有太多的貢獻,因而不能滿足醫(yī)療發(fā)展的需要。而且EMR中包含眾多患者隱私信息,在實現(xiàn)信息共享過程中極有可能面臨諸多安全問題,所以EMR在我國還未普遍應(yīng)用。針對上述存在的問題,如果構(gòu)建一種基于云存儲的EMR系統(tǒng),從系統(tǒng)的安全性和適用性方面對現(xiàn)有系統(tǒng)進行改善,使得EMR系統(tǒng)能夠為醫(yī)院和患者提供方便安全的服務(wù),將會在我國信息化醫(yī)療方面做出巨大貢獻。我們構(gòu)建的EMR系統(tǒng)主要由EMR存儲云和可信屬性機構(gòu)組成。我們采用云存儲技術(shù)對數(shù)據(jù)進行存儲和管理,具有易于維護和擴展的特點�；谠拼鎯Φ腅MR系統(tǒng)有四個層面,分別為資源存儲層、基礎(chǔ)管理層、訪問控制層和EMR服務(wù)層。訪問控制層用來實現(xiàn)屬性認證功能,只有當(dāng)用戶的屬性滿足一定的條件才能獲取真實明文信息。EMR服務(wù)層主要對醫(yī)院和患者提供統(tǒng)一的EMR�？尚艑傩詸C構(gòu)存儲不同醫(yī)師的屬性特征,為訪問控制奠定基礎(chǔ)。本文根據(jù)EMR在現(xiàn)實中的安全需求,在現(xiàn)有研究成果的基礎(chǔ)上,應(yīng)用基于密文策略的屬性加密(Ciphertext-Policy Attribute-Based Encryption,CP-ABE)方法詳細設(shè)計了對云存儲中數(shù)據(jù)的訪問和控制模型,只有那些具有與加密策略相匹配的用戶才能把密文翻譯成明文,這樣就可以強有力地保證云空間中EMR數(shù)據(jù)的安全。而且為了方便地進行用戶權(quán)限撤銷操作,為每個屬性隨機選擇了一個屬性版本號。引進轉(zhuǎn)移密鑰,轉(zhuǎn)移密鑰可以使用戶把自己的大量計算轉(zhuǎn)移給云服務(wù)器,極大地減輕了用戶計算量。
[Abstract]:Human has entered the information age, the development trend of modern medical care is gradually inclined to electronic, electronic medical records (EMR,Electronic Medical Record),) as the main carrier of medical activities, occupies an important position in modern medical care. Hospitals generally use EMR to record comprehensive information on all aspects of a patient's visit. At present, the EMR system based on LAN is widely used in most hospital information systems in our country. This kind of system can not support the sharing of extensive information of EMR, and has little contribution to medical service and pathology research. Therefore, it can not meet the needs of medical development. Moreover, EMR contains many patients' privacy information, so it is possible to face many security problems in the process of information sharing. Therefore, EMR has not been widely used in China. In order to solve the above problems, if we build a EMR system based on cloud storage, improve the existing system from the security and applicability of the system, so that the EMR system can provide convenient and secure services for hospitals and patients. It will make a great contribution in the field of information-based medical treatment in our country. The EMR system we build mainly consists of EMR storage cloud and trusted attribute organization. We use cloud storage technology to store and manage data, which is easy to maintain and expand. The EMR system based on cloud storage has four layers: resource storage layer, basic management layer, access control layer and EMR service layer. The access control layer is used to realize the attribute authentication function, and only when the user's attributes satisfy certain conditions can the real plaintext information be obtained. EMR service layer mainly provides a unified EMR. for hospitals and patients. Trusted attribute mechanism stores the attribute characteristics of different physicians and lays the foundation for access control. According to the security requirement of EMR in reality, this paper designs the data access and control model of cloud storage in detail by using attribute encryption (Ciphertext-Policy Attribute-Based Encryption,CP-ABE) method based on ciphertext policy, based on the existing research results. Only those users who have matching encryption policies can translate ciphertext into plain text, which can guarantee the security of EMR data in cloud space. And for the convenience of user rights revocation, a random attribute version number is selected for each attribute. The introduction of transfer key enables users to transfer a large number of their calculations to the cloud server, which greatly reduces the user's calculation.
【學(xué)位授予單位】：北方工業(yè)大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2017
【分類號】：R197.3;TP333

【參考文獻】

相關(guān)期刊論文 前5條

1 周可;王樺;李春花;;云存儲技術(shù)及其應(yīng)用[J];中興通訊技術(shù);2010年04期

2 趙鋒;曹文杰;;醫(yī)院信息系統(tǒng)訪問控制策略設(shè)計分析[J];計算機技術(shù)與發(fā)展;2010年06期

3 徐金建;王煒;;剖析電子病歷系統(tǒng)應(yīng)用體系架構(gòu)[J];當(dāng)代醫(yī)學(xué);2010年15期

4 張國榮;鐘初雷;黎海源;;電子病歷系統(tǒng)的建立及臨床信息整合[J];中華醫(yī)院管理雜志;2005年12期

5 黃素華;我國電子病案發(fā)展概況[J];廣西醫(yī)學(xué);2004年06期

相關(guān)博士學(xué)位論文 前1條

1 曹雪菲;基于身份的認證協(xié)議的理論及應(yīng)用研究[D];西安電子科技大學(xué);2008年

相關(guān)碩士學(xué)位論文 前6條

1 甄偉娜;車載自組網(wǎng)的認證和隱私保護研究[D];北方工業(yè)大學(xué);2016年

2 王鑫;基于雙線性對的部分盲簽名研究[D];合肥工業(yè)大學(xué);2013年

3 周凱;基于云存儲的電子病歷系統(tǒng)及訪問控制策略研究[D];上海交通大學(xué);2011年

4 錢寧;基于云計算平臺的電信業(yè)務(wù)支撐系統(tǒng)中調(diào)度技術(shù)的研究[D];南京郵電大學(xué);2011年

5 孔楠;基于云計算平臺的商業(yè)服務(wù)模式研究[D];上海外國語大學(xué);2010年

6 胡江紅;特殊代理簽名體制的研究與設(shè)計[D];陜西師范大學(xué);2008年

，

本文編號：2435887