论文部分内容阅读
信息安全体系是保证电子病历的研究与应用不断深入和健康发展的重要支撑。在分析了电子病历的机密性、完整性、不可抵赖性、认证性、有效性等安全需求的基础上,结合基于Web的电子病历(Web—EMR)的特点提出了其安全管理模型及其体系架构和组成,分别阐述了PKI/PMI、数字签名、数据加密、数字时间戳、数字证书及认证中心等信息安全技术在Web-EMR系统中的设计和应用。
The information security system is an important support for ensuring the continuous deepening and healthy development of the research and application of electronic medical records. Based on the analysis of the security requirements such as the confidentiality, integrity, non-repudiation, authentication and validity of EHR, this paper presents its security management model and its system based on the Web-based EHR Architecture and composition, respectively, the design and application of information security technology such as PKI / PMI, digital signature, data encryption, digital time stamp, digital certificate and authentication center in Web-EMR system are described respectively.