[go: up one dir, main page]

CN116743513A - Safe operation method and system for remotely retrieving electronic medical records - Google Patents

Safe operation method and system for remotely retrieving electronic medical records Download PDF

Info

Publication number
CN116743513A
CN116743513A CN202311031963.3A CN202311031963A CN116743513A CN 116743513 A CN116743513 A CN 116743513A CN 202311031963 A CN202311031963 A CN 202311031963A CN 116743513 A CN116743513 A CN 116743513A
Authority
CN
China
Prior art keywords
data
verification
group
electronic medical
medical record
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202311031963.3A
Other languages
Chinese (zh)
Other versions
CN116743513B (en
Inventor
杨文菊
张娜
廖辛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Second Affiliated Hospital Army Medical University
Original Assignee
Second Affiliated Hospital Army Medical University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Second Affiliated Hospital Army Medical University filed Critical Second Affiliated Hospital Army Medical University
Priority to CN202311031963.3A priority Critical patent/CN116743513B/en
Publication of CN116743513A publication Critical patent/CN116743513A/en
Application granted granted Critical
Publication of CN116743513B publication Critical patent/CN116743513B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • GPHYSICS
    • G16INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
    • G16HHEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
    • G16H10/00ICT specially adapted for the handling or processing of patient-related medical or healthcare data
    • G16H10/60ICT specially adapted for the handling or processing of patient-related medical or healthcare data for patient-specific data, e.g. for electronic patient records
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/88Medical equipments

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Epidemiology (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Primary Health Care (AREA)
  • Public Health (AREA)
  • Medical Treatment And Welfare Office Work (AREA)

Abstract

The invention relates to the technical field of medical communication, in particular to a safe operation method and a system for remotely retrieving an electronic medical record, wherein the method comprises the following steps: combining the electronic medical record and the corresponding medical data to characterize the electronic medical record as an electronic medical record data packet, and dividing the electronic medical record data packet into a verification group and a data group; sequentially carrying out data recombination on the verification group and the data group, setting identification bits of the verification group and the data group as a specific communication protocol to characterize a communication verification mode between the verification group and the data group, and forming a recombined verification group and data group; performing iterative verification on the data set through the verification set, taking the data overlap ratio as a judgment standard, if the data overlap ratio is lower than a threshold value, performing integrity recognition on the verification set and the data set, performing corresponding processing, and performing iterative verification again until the data overlap ratio reaches the threshold value; if the data overlap ratio reaches a threshold value, completing verification and receiving communication transmission of the electronic medical record data packet.

Description

一种电子病历远程调阅的安全操作方法及系统A safe operation method and system for remote access to electronic medical records

技术领域Technical field

本发明涉及医疗通信技术领域,具体而言,涉及一种电子病历远程调阅的安全操作方法及系统。The present invention relates to the technical field of medical communication, and specifically to a safe operation method and system for remote access of electronic medical records.

背景技术Background technique

随着科技技术的不断创新,远程医疗已成为了人们常用的问诊方式。就目前而言,在远程医疗中,医生端主要依赖于患者端的电子病历及历史医疗的有关数据才能进行处理,但一方面,远程医疗所包含的医院众多,且各个医院的通信协议并不统一,容易增加患者端医疗隐私数据传输的安全风险,同时另一方面,就于大数据时代的快速发展,若远程医疗没有相应对患者端医疗隐私数据的保密操作,极易导致患者端医疗隐私数据泄漏,对患者造成极大的困扰。基于此,针对上述问题,我们设计了一种电子病历远程调阅的安全操作方法及系统。With the continuous innovation of science and technology, telemedicine has become a commonly used consultation method. For now, in telemedicine, doctors mainly rely on the patient's electronic medical records and historical medical data for processing. But on the one hand, telemedicine involves many hospitals, and the communication protocols of each hospital are not unified. , it is easy to increase the security risk of patient-side medical privacy data transmission. On the other hand, due to the rapid development of the big data era, if telemedicine does not have corresponding confidentiality operations for patient-side medical privacy data, it can easily lead to patient-side medical privacy data Leakage causes great distress to patients. Based on this and in response to the above problems, we designed a safe operation method and system for remote access of electronic medical records.

发明内容Contents of the invention

本发明的目的在于提供一种电子病历远程调阅的安全操作方法及系统,其通过将患者端的电子病历及历史医疗的有关数据,以验证组与数据组之间的关联性,实施电子病历及历史医疗的有关数据的通信加密、数据加密,解决了患者端医疗隐私数据泄漏,对患者造成极大的困扰技术问题,降低了患者端医疗隐私数据传输的安全风险。The purpose of the present invention is to provide a safe operation method and system for remote access of electronic medical records, which verifies the correlation between the patient's electronic medical records and historical medical data, and implements electronic medical records and Communication encryption and data encryption of historical medical related data solve the problem of patient-side medical privacy data leakage, which causes great trouble to patients and reduces the security risks of patient-side medical privacy data transmission.

本发明的实施例通过以下技术方案实现:The embodiments of the present invention are implemented through the following technical solutions:

一种电子病历远程调阅的安全操作方法,该方法的步骤包括:A safe operation method for remote access to electronic medical records. The steps of the method include:

结合电子病历及对应的医疗数据,以表征为电子病历数据包,并将电子病历数据包划分为验证组与数据组;Combine the electronic medical record and the corresponding medical data to represent the electronic medical record data package, and divide the electronic medical record data package into a verification group and a data group;

依次对验证组与数据组进行数据重组,并将验证组与数据组的标识位设定为特定通信协议,以表征为验证组与数据组之间的通信验证方式,形成重组后的验证组与数据组;Reorganize the data of the verification group and the data group in turn, and set the identification bits of the verification group and the data group to a specific communication protocol to represent the communication verification method between the verification group and the data group, forming the reorganized verification group and data group. data group;

通过验证组对数据组进行迭代验证,以数据重合度作为判定标准,若数据重合度低于阈值,则对验证组与数据组进行完整度识别,基于完整度识别结果进行相应处理后,重新通过验证组对数据组进行迭代验证,直至数据重合度达到阈值;若数据重合度达到阈值,则完成验证并接收电子病历数据包的通信传输;The data group is iteratively verified through the verification group, and the data coincidence degree is used as the judgment standard. If the data coincidence degree is lower than the threshold, the integrity of the verification group and the data group is identified. After corresponding processing based on the integrity identification results, the data group is passed again. The verification group iteratively verifies the data group until the data coincidence reaches the threshold; if the data coincidence reaches the threshold, the verification is completed and the communication transmission of the electronic medical record data packet is received;

其中,所述对验证组与数据组进行完整度识别的目标函数如下:Among them, the objective function for completeness identification of the verification group and the data group is as follows:

,

其中,为完整度识别的目标函数,用于衡量模型预测结果与实际结果之间的差距,/>为数据样本的个数,/>为第i个样本的特征值,/>为第i个样本的完整度,若数据完整,设为1,若数据不完整,设为0,/>为模型对第i个样本的预测结果,/>为模型的参数,/>为正则化参数,用于控制模型复杂度,防止过拟合,/>为模型的第 j 个参数;in, The objective function for completeness identification is used to measure the gap between the model prediction results and the actual results,/> is the number of data samples,/> is the characteristic value of the i-th sample,/> is the completeness of the i-th sample. If the data is complete, it is set to 1. If the data is incomplete, it is set to 0./> is the prediction result of the model for the i-th sample,/> are the parameters of the model,/> is a regularization parameter, used to control model complexity and prevent overfitting,/> is the jth parameter of the model;

所述验证组由具名字段与丈量字段所组成,其中,验证组的数据重组具体为:按照预存设置将丈量字段进行随机分段,并将具名字段与各个分段的丈量字段进行数据聚合,形成各个分段的聚合数据,并将特定通信协议设置在各个分段聚合数据的标识位处。The verification group is composed of named fields and measurement fields. The data reorganization of the verification group is specifically: randomly segmenting the measurement fields according to the pre-stored settings, and aggregating the data of the named fields and the measurement fields of each segment to form Aggregate data of each segment, and set a specific communication protocol at the identification bit of the aggregate data of each segment.

可选的,所述数据组由原始数据所组成,其中,数据组的数据重组具体为:基于随机分段后的丈量字段将原始数据按批次进行划分,使得划分后的各批次原始数据与各个分段的丈量字段保持一致,将各批次原始数据依次进行数据压缩、通信加密,并将特定通信协议设置在各批次原始数据的标识位处。Optionally, the data group is composed of original data, wherein the data reorganization of the data group is specifically: dividing the original data into batches based on the randomly segmented measurement fields, so that each divided batch of original data Consistent with the measurement fields of each segment, data compression and communication encryption are performed on each batch of raw data in sequence, and a specific communication protocol is set at the identification position of each batch of raw data.

可选的,所述通信加密具体采用设定单钥和/或公钥通信加密算法,通过设定单钥和/或公钥通信加密算法对经数据压缩后的各批次原始数据进行通信加密。Optionally, the communication encryption specifically uses setting a single key and/or a public key communication encryption algorithm, and performs communication encryption on each batch of original data after data compression by setting a single key and/or a public key communication encryption algorithm. .

可选的,所述验证组内还设置有对应设定单钥和/或公钥通信加密算法的解密模块。Optionally, the verification group is also provided with a decryption module corresponding to the single key and/or public key communication encryption algorithm.

可选的,所述通过验证组对数据组进行迭代验证,其具体过程为:Optionally, the data group is iteratively verified through the verification group. The specific process is:

对各个分段聚合数据的标识位与各批次原始数据的标识位进行特定通信协议验证;Perform specific communication protocol verification on the identification bits of each segmented aggregate data and the identification bits of each batch of raw data;

若验证均为特定通信协议,则再次通过具名字段进行验证,若上述验证均通过,则依次对各批次原始数据进行数据解密、数据解压,并将各批次原始数据与各个分段的丈量字段进行迭代匹配,直至各批次原始数据与各个分段的丈量数据匹配完毕后,基于匹配结果获取数据重合度;If the verification is for a specific communication protocol, verify again through the named field. If all the above verifications pass, perform data decryption and data decompression on each batch of original data in turn, and combine each batch of original data with the measurement of each segment. The fields are iteratively matched until the original data of each batch and the measurement data of each segment are matched, and the data coincidence degree is obtained based on the matching results;

若验证均为特定通信协议,则再次通过具名字段进行验证,若具名字段验证失败,则判定为验证失败,流程结束;If the verification is for a specific communication protocol, verify again through the named field. If the verification of the named field fails, it is determined that the verification failed and the process ends;

若验证各个分段聚合数据的标识位和/或各批次原始数据的标识位不为特定通信协议,则判定验证失败,并对该不为特定通信协议的标识位进行警告标记,流程结束。If it is verified that the identification bits of each segmented aggregate data and/or the identification bits of each batch of raw data are not for a specific communication protocol, it will be determined that the verification has failed, and a warning mark will be issued for the identification bits that are not for a specific communication protocol, and the process ends.

可选的,所述电子病历数据包在划分前,还包括对其进行数据预处理步骤,所述数据预处理步骤依次为:Optionally, before dividing the electronic medical record data package, it also includes a data preprocessing step. The data preprocessing steps are as follows:

采用K邻近算法,用以对电子病历数据包进行数据补全及数据修正;The K-nearby algorithm is used to complete and correct data in electronic medical record data packages;

采用中值法,用以对电子病历数据包进行数据缺失修正。The median method was used to correct missing data in electronic medical record data packages.

一种电子病历远程调阅的安全操作系统,应用于上述一种电子病历远程调阅的安全操作方法,包括:A secure operating system for remote access to electronic medical records, applied to the above secure operation method for remote access to electronic medical records, including:

发送端,打包电子病历及对应的医疗数据,对打包数据进行发送端及接收端进行具名,并依次对具名后的打包数据进行协议标识及设定处理后,将处理后的打包数据传输至接收端处;The sender packages electronic medical records and corresponding medical data, names the sender and receiver of the packaged data, and performs protocol identification and setting processing on the named packaged data in turn, and then transmits the processed packaged data to the receiver. end;

接收端,依次验证打包数据的发送端及接收端的协议标识与具名,经上述验证通过后,将处理后的打包数据进行还原处理,并接收还原后的打包数据。The receiving end verifies the protocol identification and signature of the sending end and receiving end of the packaged data in turn. After passing the above verification, the processed packaged data is restored and receives the restored packaged data.

本发明实施例的技术方案至少具有如下优点和有益效果:The technical solutions of the embodiments of the present invention have at least the following advantages and beneficial effects:

本发明实施例通过将患者端的电子病历及历史医疗的有关数据,以验证组与数据组之间的关联性,实施电子病历及历史医疗的有关数据的通信加密、数据加密,解决了患者端医疗隐私数据泄漏,对患者造成极大的困扰技术问题,降低了患者端医疗隐私数据传输的安全风险。The embodiment of the present invention solves the problem of patient-side medical treatment by verifying the correlation between the patient-side electronic medical records and historical medical-related data, and implementing communication encryption and data encryption of the electronic medical records and historical medical-related data. Private data leakage causes great technical problems to patients and reduces the security risk of patient-side medical privacy data transmission.

附图说明Description of drawings

图1为本发明实施例提供了一种电子病历远程调阅的安全操作方法的整体流程示意图;Figure 1 is a schematic flow diagram of an overall safe operation method for remote retrieval of electronic medical records provided by an embodiment of the present invention;

图2为本发明实施例提供了验证组对数据组进行迭代验证的逻辑示意图。Figure 2 is a logical schematic diagram of an embodiment of the present invention providing a verification group for iterative verification of a data group.

具体实施方式Detailed ways

为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。通常在此处附图中描述和示出的本发明实施例的组件可以以各种不同的配置来布置和设计。In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments These are some embodiments of the present invention, rather than all embodiments. The components of the embodiments of the invention generally described and illustrated in the figures herein may be arranged and designed in a variety of different configurations.

参照图1所示,本发明实施例提供了一种电子病历远程调阅的安全操作方法的整体流程示意图。Referring to FIG. 1 , an embodiment of the present invention provides an overall flow diagram of a safe operation method for remote access to electronic medical records.

一种电子病历远程调阅的安全操作方法,该方法的步骤包括:A safe operation method for remote access to electronic medical records. The steps of the method include:

结合电子病历及对应的医疗数据,以表征为电子病历数据包,并将电子病历数据包划分为验证组与数据组;Combine the electronic medical record and the corresponding medical data to represent the electronic medical record data package, and divide the electronic medical record data package into a verification group and a data group;

依次对验证组与数据组进行数据重组,并将验证组与数据组的标识位设定为特定通信协议,以表征为验证组与数据组之间的通信验证方式,形成重组后的验证组与数据组;Reorganize the data of the verification group and the data group in turn, and set the identification bits of the verification group and the data group to a specific communication protocol to represent the communication verification method between the verification group and the data group, forming the reorganized verification group and data group. data group;

通过验证组对数据组进行迭代验证,以数据重合度作为判定标准,若数据重合度低于阈值,则对验证组与数据组进行完整度识别,基于完整度识别结果进行相应处理后,重新通过验证组对数据组进行迭代验证,直至数据重合度达到阈值;若数据重合度达到阈值,则完成验证并接收电子病历数据包的通信传输。The data group is iteratively verified through the verification group, and the data coincidence degree is used as the judgment standard. If the data coincidence degree is lower than the threshold, the integrity of the verification group and the data group is identified. After corresponding processing based on the integrity identification results, the data group is passed again. The verification group iteratively verifies the data group until the data coincidence reaches the threshold; if the data coincidence reaches the threshold, the verification is completed and the communication transmission of the electronic medical record data packet is received.

上述对验证组与数据组进行完整度识别的目标函数如下:The above objective function for completeness identification of the verification group and the data group is as follows:

,

其中,为完整度识别的目标函数,用于衡量模型预测结果与实际结果之间的差距,/>为数据样本的个数,/>为第i个样本的特征值,/>为第i个样本的完整度,若数据完整,设为1,若数据不完整,设为0,/>为模型对第i个样本的预测结果,/>为模型的参数,/>为正则化参数,用于控制模型复杂度,防止过拟合,/>为模型的第 j 个参数。in, The objective function for completeness identification is used to measure the gap between the model prediction results and the actual results,/> is the number of data samples,/> is the characteristic value of the i-th sample,/> is the completeness of the i-th sample. If the data is complete, it is set to 1. If the data is incomplete, it is set to 0./> is the prediction result of the model for the i-th sample,/> are the parameters of the model,/> is a regularization parameter, used to control model complexity and prevent overfitting,/> is the jth parameter of the model.

本实施方式将电子病历定义为所有必要字段均被填写,并且字段值在合理范围内判定为数据完整,之后本实施例可以提取一些特征,例如,每个字段是否被填写,字段值是否在合理范围内,字段值的长度等,基于上述,本实施例训练出数据完整度识别模型,并设定此模型的目标函数,以执行上述步骤中的功能。在实际应用中,需要考虑数据的不平衡问题,即若大部分电子病历的数据都是完整的,则模型设定为偏向于预测数据为完整,可以理解的,若出现上述情况,本实施例除上述应用外,还可通过过采样、欠采样或者修改目标函数等方式来解决这个问题。In this embodiment, the electronic medical record is defined as having all necessary fields filled in, and the field values are within a reasonable range as the data is complete. After that, this embodiment can extract some features, for example, whether each field is filled in, and whether the field value is within a reasonable range. range, the length of the field value, etc. Based on the above, this embodiment trains a data integrity recognition model and sets the objective function of this model to perform the functions in the above steps. In practical applications, the problem of data imbalance needs to be considered. That is, if most of the electronic medical record data are complete, the model is set to be biased towards predicting that the data is complete. It is understandable that if the above situation occurs, this embodiment In addition to the above applications, this problem can also be solved by oversampling, undersampling, or modifying the objective function.

应用本实施例所提供的算法,能够提高模型的准确性和泛化能力,同时具有可解释性强和算法简单等优点,有助于提高电子病历数据的完整度识别准确性。Applying the algorithm provided in this embodiment can improve the accuracy and generalization ability of the model. It also has the advantages of strong interpretability and simple algorithm, which helps to improve the accuracy of identifying the integrity of electronic medical record data.

在上述实现过程中,患者端可以将电子病历及历史医疗的有关数据(对应的医疗数据)进行打包,汇总形成电子病历数据包,并对远程医疗服务中的特定医院和/或特定医生进行选取及具名,将电子病历数据包上传至云端处,云端将患者端的电子病历数据包分别划分成为验证组与数据组,其中,验证组与数据组一一对应,云端分别对验证组与数据组的数据包头进行特定通信协议的标识,并分别对验证组与数据组进行对应的处理后,将验证组与数据组发送至患者端所选取的特定医院和/或特定医生(即接收端),特定医院和/或特定医生根据获取的验证组,首先判定验证组与数据组之间的标识处(即数据包头处)是否为特定通信协议,若否,则特定医院和/或特定医生重新选取数据组(实际应用中,特定医院和/或特定医生可能接收有多个验证组与数据组,因此,选取验证组对数据组进行验证,若数据组验证失败,就重新选取下一个数据组再次进行验证)进行特定通信协议验证,若验证通过,则完成数据组的第一次筛选,此时的验证组所对应的数据组均为特定通信协议,本实施方式中的特定通信方式可以采用TLS通信协议或其他通信协议,特定医院和/或特定医生再次通过验证组对数据组进行具名验证,若患者及特定医院和/或特定医生的具名均验证通过后,则特定医院和/或特定医生接收患者端的电子病历数据包,或在特定通信协议下,远程调阅云端内的患者端电子病历数据包。In the above implementation process, the patient can package electronic medical records and historical medical data (corresponding medical data), summarize them to form an electronic medical record data package, and select a specific hospital and/or a specific doctor in the telemedicine service. and signed, the electronic medical record data package is uploaded to the cloud. The cloud divides the patient's electronic medical record data package into a verification group and a data group. The verification group and the data group correspond one to one, and the cloud separates the verification group and the data group. The data packet header identifies the specific communication protocol, and after processing the verification group and the data group respectively, the verification group and the data group are sent to the specific hospital and/or specific doctor selected by the patient (i.e., the receiving end). Based on the obtained verification group, the hospital and/or specific doctor first determines whether the identifier between the verification group and the data group (i.e., the data packet header) is a specific communication protocol. If not, the specific hospital and/or specific doctor reselects the data. Group (In actual applications, a specific hospital and/or a specific doctor may receive multiple verification groups and data groups. Therefore, select a verification group to verify the data group. If the data group verification fails, reselect the next data group and proceed again. Verification) Verification of a specific communication protocol is performed. If the verification is passed, the first screening of the data group is completed. The data groups corresponding to the verification group at this time are all specific communication protocols. The specific communication method in this embodiment can use TLS communication. protocol or other communication protocol, the specific hospital and/or specific doctor will verify the name of the data set again through the verification group. If the names of the patient and the specific hospital and/or specific doctor are verified, the specific hospital and/or specific doctor will receive The patient-side electronic medical record data package, or remotely access the patient-side electronic medical record data package in the cloud under a specific communication protocol.

在上述实现过程中,所述电子病历数据包在划分前,还包括对其进行数据预处理步骤,所述数据预处理步骤依次为:采用K邻近算法,用以对电子病历数据包进行数据补全及数据修正;采用中值法,用以对电子病历数据包进行数据缺失修正。In the above implementation process, the electronic medical record data package also includes a data preprocessing step before dividing it. The data preprocessing steps are as follows: using the K neighbor algorithm to perform data complement on the electronic medical record data package. Complete and data correction; the median method is used to correct missing data in the electronic medical record data package.

在一种实施方式中,所述验证组由具名字段与丈量字段所组成,其中,验证组的数据重组具体为:按照预存设置将丈量字段进行随机分段,并将具名字段与各个分段的丈量字段进行数据聚合,形成各个分段的聚合数据,并将特定通信协议设置在各个分段聚合数据的标识位处。In one implementation, the verification group is composed of named fields and measurement fields, wherein the data reorganization of the verification group is specifically: randomly segmenting the measurement fields according to the pre-stored settings, and combining the named fields with the data of each segment. The measurement field performs data aggregation to form aggregated data of each segment, and sets a specific communication protocol at the identification position of each segmented aggregated data.

在上述实现过程中,验证组表征为患者的电子病历及历史医疗的有关数据的验证数据,具名字段表征为患者及特定医院和/或特定医生的数字署名,丈量字段表征为数据组内原始数据的总数据长度,云端根据预存的设置将丈量字段进行随机分段后,得到若干不同长度的丈量字段,此时,将具名字段与若干不同长度的丈量字段进行数据聚合,可以得到若干不同长度的具有具名字段的丈量字段,即本实施方式中的各个分段聚合数据,并将特定通信协议整合在各个分段聚合数据的标识处。In the above implementation process, the verification group is represented by the verification data of the patient's electronic medical record and historical medical related data, the named field is represented by the digital signature of the patient and a specific hospital and/or a specific doctor, and the measurement field is represented by the original data in the data group The total data length. After the cloud randomly segments the measurement fields according to the pre-stored settings, several measurement fields of different lengths are obtained. At this time, the named field and several measurement fields of different lengths are aggregated to obtain several different lengths. A measurement field with a named field, that is, each segmented aggregate data in this embodiment, and a specific communication protocol is integrated at the identifier of each segmented aggregated data.

在一种实施方式中,所述数据组由原始数据所组成,其中,数据组的数据重组具体为:基于随机分段后的丈量字段将原始数据按批次进行划分,使得划分后的各批次原始数据与各个分段的丈量字段保持一致,将各批次原始数据依次进行数据压缩、通信加密,并将特定通信协议设置在各批次原始数据的标识位处。In one implementation, the data group is composed of original data, wherein the data reorganization of the data group is specifically: dividing the original data into batches based on randomly segmented measurement fields, so that each divided batch The secondary raw data is consistent with the measurement fields of each segment. Each batch of raw data is compressed and communicated in sequence, and a specific communication protocol is set at the identification position of each batch of raw data.

在上述实现过程中,数据组表征为患者的电子病历及历史医疗的有关数据,在对验证组与数据组的处理中,首先完成对验证组的数据处理,再基于验证组完成对数据组的数据处理,因此,即上述基于随机分段后的丈量字段,将原始数据按批次进行划分为各批次不同长度的原始数据,使得各批次不同长度的原始数据能够与若干不同长度的丈量字段相互匹配,之后对各批次原始数据依次进行数据压缩、通信加密,形成各个加密数据包,并在各个加密数据包的标识处设置特定通信协议。In the above implementation process, the data group is represented by the patient's electronic medical record and historical medical related data. In the processing of the verification group and the data group, the data processing of the verification group is first completed, and then the data group is processed based on the verification group. Data processing, therefore, that is, based on the measurement fields after random segmentation, the original data is divided into batches of raw data of different lengths, so that the raw data of different lengths in each batch can be compared with several measurements of different lengths. The fields match each other, and then each batch of original data is compressed and communicated in sequence to form each encrypted data packet, and a specific communication protocol is set at the identifier of each encrypted data packet.

在一种实施方式中,所述通信加密具体采用设定单钥和/或公钥通信加密算法,通过设定单钥和/或公钥通信加密算法对经数据压缩后的各批次原始数据进行通信加密。In one embodiment, the communication encryption specifically adopts a set single key and/or public key communication encryption algorithm, and each batch of original data after data compression is processed by setting a single key and/or public key communication encryption algorithm. Encrypt communications.

在上述实现过程中,云端可以采用设定单钥通信加密算法或公钥通信加密算法对经数据压缩后的各批次原始数据进行通信加密,以保证患者的医疗隐私数据的安全性。During the above implementation process, the cloud can use a set single-key communication encryption algorithm or a public-key communication encryption algorithm to communicate and encrypt each batch of original data after data compression to ensure the security of the patient's medical privacy data.

更为具体的,设定单钥和/或公钥通信加密算法具体可以采用data encryptionstandard算法,digital signature algorithm算法等。More specifically, the data encryption standard algorithm, digital signature algorithm, etc. can be used to set the single key and/or public key communication encryption algorithm.

在一种实施方式中,所述验证组内还设置有对应设定单钥和/或公钥通信加密算法的解密模块。In one implementation, the verification group is also provided with a decryption module corresponding to the single key and/or public key communication encryption algorithm.

在上述实现过程中,由于验证组与数据组是一一对应的关系,通过特定的验证组才能验证特定的数据组,即因此,本实施方式将解密模块设置在验证组内,当验证组成功验证数据组后,可以通过对应的解密模块对数据组进行解密。In the above implementation process, since the verification group and the data group are in a one-to-one correspondence, a specific data group can be verified through a specific verification group. Therefore, this implementation method sets the decryption module in the verification group. When the verification group succeeds After verifying the data group, the data group can be decrypted through the corresponding decryption module.

参照图2所示,本发明实施例提供了验证组对数据组进行迭代验证的逻辑示意图。Referring to FIG. 2 , an embodiment of the present invention provides a logical schematic diagram for the verification group to iteratively verify the data group.

在一种实施方式中,所述通过验证组对数据组进行迭代验证,其具体过程为:In one implementation, the data group is iteratively verified through the verification group, and the specific process is:

对各个分段聚合数据的标识位与各批次原始数据的标识位进行特定通信协议验证;Perform specific communication protocol verification on the identification bits of each segmented aggregate data and the identification bits of each batch of raw data;

若验证均为特定通信协议,则再次通过具名字段进行验证,若上述验证均通过,则依次对各批次原始数据进行数据解密、数据解压,并将各批次原始数据与各个分段的丈量字段进行迭代匹配,直至各批次原始数据与各个分段的丈量数据匹配完毕后,基于匹配结果获取数据重合度;If the verification is for a specific communication protocol, verify again through the named field. If all the above verifications pass, perform data decryption and data decompression on each batch of original data in turn, and combine each batch of original data with the measurement of each segment. The fields are iteratively matched until the original data of each batch and the measurement data of each segment are matched, and the data coincidence degree is obtained based on the matching results;

若验证均为特定通信协议,则再次通过具名字段进行验证,若具名字段验证失败,则判定为验证失败,流程结束;If the verification is for a specific communication protocol, verify again through the named field. If the verification of the named field fails, it is determined that the verification failed and the process ends;

若验证各个分段聚合数据的标识位和/或各批次原始数据的标识位不为特定通信协议,则判定验证失败,并对该不为特定通信协议的标识位进行警告标记,流程结束。If it is verified that the identification bits of each segmented aggregate data and/or the identification bits of each batch of raw data are not for a specific communication protocol, it will be determined that the verification has failed, and a warning mark will be issued for the identification bits that are not for a specific communication protocol, and the process ends.

在上述实现过程中,特定医院和/或特定医生首先判断验证组的各个分段聚合数据的标识位所设置的特定通信协议,与各批次原始数据的标识位所设置的特定通信协议是否一致,即上述实施方式所述的第一次筛选,若判断各个分段聚合数据的标识位和/或各批次原始数据的标识位不为特定通信协议,则判定验证失败,特定医院和/或特定医生对该不为特定通信协议的标识位进行警告标记,并上传至云端,若验证二者均为特定通信协议,则再次通过验证组的具名字段进行验证,此处具名字段验证具体为验证是否为特定医院和/或特定医生,若具名字段验证失败,则判定为验证失败,特定医院和/或特定医生将数据组提交至云端,重新验证具名字段所选取的特定医院和/或特定医生,若具名字段验证成功,则特定医院和/或特定医生依次通过验证组内的解密模块对数据组内各批次原始数据进行数据解密、数据解压,并将各批次原始数据与各个分段的丈量字段进行迭代匹配,直至各批次原始数据与各个分段的丈量数据匹配完毕后,基于匹配结果获取数据重合度。In the above implementation process, a specific hospital and/or a specific doctor first determines whether the specific communication protocol set in the identification bits of each segmented aggregate data of the verification group is consistent with the specific communication protocol set in the identification bits of each batch of original data. , that is, in the first screening described in the above embodiment, if it is determined that the identification bit of each segmented aggregate data and/or the identification bit of each batch of original data is not a specific communication protocol, it is determined that the verification fails, and the specific hospital and/or The specific doctor puts a warning mark on the identification bit that is not a specific communication protocol and uploads it to the cloud. If it is verified that both are specific communication protocols, it will be verified again through the named field of the verification group. The named field verification here is specifically verification. Whether it is a specific hospital and/or a specific doctor. If the verification of the named field fails, it is determined that the verification has failed. The specific hospital and/or specific doctor will submit the data set to the cloud to re-verify the specific hospital and/or specific doctor selected by the named field. , if the named field verification is successful, the specific hospital and/or specific doctor will decrypt and decompress each batch of original data in the data group through the decryption module in the verification group, and combine each batch of original data with each segment. The measurement fields are iteratively matched until the original data of each batch and the measurement data of each segment are matched, and the data coincidence degree is obtained based on the matching results.

更为具体的,数据重合度设置有阈值,因为在处理过程中,患者端的电子病历及历史医疗的有关数据容易出现处理出错导致丢失的情况,因此,重合度作为验证数据组的原始数据是否完全与丈量字段匹配的关键因素,因此本实施方式中,阈值设置为0.998-1。More specifically, the data coincidence degree is set with a threshold, because during the processing process, the patient's electronic medical record and historical medical related data are prone to processing errors leading to loss. Therefore, the coincidence degree is used to verify whether the original data of the data group is complete. The key factor that matches the measurement field, so in this implementation, the threshold is set to 0.998-1.

在上述实现过程中,本实施方式应用于一种电子病历远程调阅的安全操作方法,提供了一种电子病历远程调阅的安全操作系统,包括:In the above implementation process, this embodiment is applied to a safe operation method for remote access of electronic medical records, and provides a safe operating system for remote access of electronic medical records, including:

发送端,打包电子病历及对应的医疗数据,对打包数据进行发送端及接收端进行具名,并依次对具名后的打包数据进行协议标识及设定处理后,将处理后的打包数据传输至接收端处;The sender packages electronic medical records and corresponding medical data, names the sender and receiver of the packaged data, and performs protocol identification and setting processing on the named packaged data in turn, and then transmits the processed packaged data to the receiver. end;

接收端,依次验证打包数据的发送端及接收端的协议标识与具名,经上述验证通过后,将处理后的打包数据进行还原处理,并接收还原后的打包数据。The receiving end verifies the protocol identification and signature of the sending end and receiving end of the packaged data in turn. After passing the above verification, the processed packaged data is restored and receives the restored packaged data.

以上仅为本发明的优选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above are only preferred embodiments of the present invention and are not intended to limit the present invention. For those skilled in the art, the present invention may have various modifications and changes. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and principles of the present invention shall be included in the protection scope of the present invention.

Claims (7)

1. The safe operation method for remotely retrieving the electronic medical record is characterized by comprising the following steps of:
combining the electronic medical record and the corresponding medical data to characterize the electronic medical record as an electronic medical record data packet, and dividing the electronic medical record data packet into a verification group and a data group;
sequentially carrying out data recombination on the verification group and the data group, setting identification bits of the verification group and the data group as a specific communication protocol to characterize a communication verification mode between the verification group and the data group, and forming a recombined verification group and data group;
performing iterative verification on the data set through the verification set, taking the data overlap ratio as a judgment standard, if the data overlap ratio is lower than a threshold value, performing integrity recognition on the verification set and the data set, and performing iterative verification on the data set through the verification set again after performing corresponding processing on the integrity recognition result until the data overlap ratio reaches the threshold value; if the data overlap ratio reaches a threshold value, completing verification and receiving communication transmission of the electronic medical record data packet;
wherein, the objective function for integrity recognition of the verification group and the data group is as follows:
wherein ,for the purpose of integrity recognition, an objective function is used to measure the difference between the model predicted outcome and the actual outcome,/>Number of data samples +.>For the eigenvalue of the ith sample, +.>For the integrity of the ith sample, if the data is complete, set to 1, if the data is incomplete, set to 0, < >>For the model prediction result of the ith sample, < +.>For parameters of the model, +.>For regularization parameters for controlling model complexity, prevent overfitting, +.>Is the j-th parameter of the model;
the verification group consists of a named field and a measurement field, wherein the data reorganization of the verification group is specifically as follows: randomly segmenting the measurement field according to a pre-stored setting, carrying out data aggregation on the named field and the measurement field of each segment to form aggregation data of each segment, and setting a specific communication protocol at the identification bit of the aggregation data of each segment.
2. The method for remotely retrieving electronic medical records according to claim 1, wherein the data set is composed of original data, and wherein the data reorganization of the data set is specifically as follows: dividing the original data according to batches based on the measurement fields after random segmentation, enabling the divided batches of original data to be consistent with the measurement fields of the segments, sequentially carrying out data compression and communication encryption on the batches of original data, and setting a specific communication protocol at the identification position of the batches of original data.
3. The method for remotely retrieving and safely operating an electronic medical record according to claim 2, wherein the communication encryption specifically adopts a set single key and/or public key communication encryption algorithm, and the communication encryption is carried out on each batch of raw data after data compression through the set single key and/or public key communication encryption algorithm.
4. The method according to claim 3, wherein a decryption module for setting a single key and/or a public key communication encryption algorithm is further provided in the verification group.
5. The method for remotely retrieving and safely operating an electronic medical record according to claim 2, wherein the iterative verification of the data set by the verification group comprises the following specific procedures:
carrying out specific communication protocol verification on the identification bits of each piece of sectional aggregate data and the identification bits of each batch of original data;
if the verification is a specific communication protocol, the verification is performed again through a named field, if the verification is passed, data decryption and data decompression are sequentially performed on each batch of original data, iterative matching is performed on each batch of original data and each segmented measurement field until the matching of each batch of original data and each segmented measurement field is completed, and then the data overlap ratio is obtained based on the matching result;
if the verification is the specific communication protocol, the verification is performed again through the named field, if the verification of the named field fails, the verification is judged to fail, and the flow is ended;
if the identification bit of each piece of segment aggregate data and/or the identification bit of each batch of original data is verified to be not in a specific communication protocol, judging that verification fails, and carrying out warning marking on the identification bit which is not in the specific communication protocol, and ending the flow.
6. The method for remotely retrieving and safely operating an electronic medical record according to claim 1, wherein the electronic medical record data package further comprises a data preprocessing step for the electronic medical record data package before division, and the data preprocessing step sequentially comprises:
adopting a K adjacent algorithm to carry out data complement and data correction on the electronic medical record data packet;
and adopting a median method to correct the data missing of the electronic medical record data packet.
7. A secure operating system for remote review of electronic medical records, applied to the method of any one of claims 1-6, comprising:
the sending end packs the electronic medical record and the corresponding medical data, performs named verification on the packed data at the sending end and the receiving end, sequentially performs protocol identification and setting processing on the named verified packed data, and then transmits the processed packed data to the receiving end;
the receiving end sequentially verifies the protocol identification and the name of the sending end and the receiving end of the packed data, and after the verification is passed, the processed packed data is restored and the restored packed data is received.
CN202311031963.3A 2023-08-16 2023-08-16 A safe operation method and system for remote access to electronic medical records Expired - Fee Related CN116743513B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202311031963.3A CN116743513B (en) 2023-08-16 2023-08-16 A safe operation method and system for remote access to electronic medical records

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202311031963.3A CN116743513B (en) 2023-08-16 2023-08-16 A safe operation method and system for remote access to electronic medical records

Publications (2)

Publication Number Publication Date
CN116743513A true CN116743513A (en) 2023-09-12
CN116743513B CN116743513B (en) 2023-10-20

Family

ID=87903028

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202311031963.3A Expired - Fee Related CN116743513B (en) 2023-08-16 2023-08-16 A safe operation method and system for remote access to electronic medical records

Country Status (1)

Country Link
CN (1) CN116743513B (en)

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6874085B1 (en) * 2000-05-15 2005-03-29 Imedica Corp. Medical records data security system
JP2008015820A (en) * 2006-07-06 2008-01-24 Masahiko Yoshihara Method and device for referring to electronic medical chart information by mobile phone
WO2014201599A1 (en) * 2013-06-17 2014-12-24 上海华和得易信息技术发展有限公司 Method and system for information authentication authorization and secure use
CN109886027A (en) * 2019-01-14 2019-06-14 湘潭大学 A method for secure sharing of medical data based on blockchain
WO2020186823A1 (en) * 2019-03-21 2020-09-24 深圳壹账通智能科技有限公司 Blockchain-based data querying method, device, system and apparatus, and storage medium
CN113488128A (en) * 2021-07-28 2021-10-08 平安国际智慧城市科技股份有限公司 Block chain-based electronic medical record retrieval method and device and related equipment
CN115700887A (en) * 2021-07-29 2023-02-07 京东方科技集团股份有限公司 Electronic medical record processing method and device, storage medium and electronic equipment

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6874085B1 (en) * 2000-05-15 2005-03-29 Imedica Corp. Medical records data security system
JP2008015820A (en) * 2006-07-06 2008-01-24 Masahiko Yoshihara Method and device for referring to electronic medical chart information by mobile phone
WO2014201599A1 (en) * 2013-06-17 2014-12-24 上海华和得易信息技术发展有限公司 Method and system for information authentication authorization and secure use
CN109886027A (en) * 2019-01-14 2019-06-14 湘潭大学 A method for secure sharing of medical data based on blockchain
WO2020186823A1 (en) * 2019-03-21 2020-09-24 深圳壹账通智能科技有限公司 Blockchain-based data querying method, device, system and apparatus, and storage medium
CN113488128A (en) * 2021-07-28 2021-10-08 平安国际智慧城市科技股份有限公司 Block chain-based electronic medical record retrieval method and device and related equipment
CN115700887A (en) * 2021-07-29 2023-02-07 京东方科技集团股份有限公司 Electronic medical record processing method and device, storage medium and electronic equipment

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
胡建理;李小华;周斌;: "一种确保电子病历传输安全性的模型", 微电子学与计算机, no. 11 *

Also Published As

Publication number Publication date
CN116743513B (en) 2023-10-20

Similar Documents

Publication Publication Date Title
CN112637161B (en) Data transmission method and storage medium
CN108347331A (en) The method and apparatus that T_Box equipment is securely communicated with ECU equipment in car networking system
CN104318510B (en) A kind of image encryption and decomposition method based on Matlab
CN114938304B (en) Method and system for safely transmitting industrial Internet of things data
CN109981282A (en) Improve method, apparatus, system and the storage medium of image data transmission safety
CN110912877B (en) Data transmitting and receiving method and device based on IEC61850 model in transformer substation
WO2017066995A1 (en) Method and device for preventing unauthorized access to server
WO2023059501A1 (en) Statistically private oblivious transfer from cdh
CN104717644A (en) Two-tiered wireless sensor network range query method capable of verifying privacy protection
CN111770189B (en) Networking type medical big data grading transmission method and system
WO2025007934A1 (en) Method and apparatus for upgrading energy storage system, computer device, and readable storage medium
CN119155017A (en) Biological safety data interconnection and intercommunication method and system based on hybrid encryption
CN104809411A (en) Medical image authentication preservation method based on data integrity checking and restoration
CN118741436B (en) SMS signature title real-name automation method and system
CN113360923B (en) Data interaction method, device, system and electronic equipment
CN114499879A (en) Method, system, equipment and storage medium for transmitting trusted message of internet of things based on block chain technology
CN118174879B (en) Method and system for safely transmitting inspection data in blockchain scene
CN116743513A (en) Safe operation method and system for remotely retrieving electronic medical records
CN118590328A (en) Data encryption method based on artificial intelligence
CN116707934A (en) A data encryption transmission method based on wireless sensor network
CN109194614A (en) A kind of electric power data processing method based on block chain
CN108833080A (en) A data transmission method, device and network system
CN114374519A (en) Data transmission method, system and equipment
CN113130031A (en) PKI-based intercourse electronic medical record interaction system, method, equipment and storage medium
CN118300880B (en) Cloud platform data encryption transmission system and method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20231020