| Summary: | 碩士 === 大葉大學 === 資訊管理學系碩士在職專班 === 93 === The problems, such as industry migration, aging of population, successively rising rate of suffering from the chronic disease ,etc., are getting seriously day by day in recent years. Therefore, every hospital actively plunges into community's medical treatment, builds community's healthy life and implements the idea of “prevention is better than therapy”. And the Community HealthCare Information System (CHIS), combines the information technology and personnel's professional knowledge of medical treatment, offers medical member's omni-directional medical care to the community. The system can promote the convenience of patient's health management effectively, let the members of community look-after network condense the common consensus, and achieve purpose of sharing resources. The operations of CHIS are divided into three ways at present: The first way is in written form, recording the patient’s information of the doctor's advice, then taking back the written information and inputing into the medical information system; The second way is transferring the patient's basic materials to the notebook computer, then carrying to the community by the user, inquiring or modifying the information in the notebook computer if necessary, taking back the notebook to the hospital and upload the information to the host computer afterward; the third way is through VPN. The user first logins the host computer by inputting ID and password, and the user can then inquire about patient's information. Among them, the shortcomings of the first way are: difficult to recognize the data (for instance: hasty and careless handwriting), unable to examine the content’s accuracy immediately and the written files easy to be lost or defiled, etc.; the shortcomings of the second way are: the data are easy to be lost or distorted, or revealed the patient's personal secrets, etc. Although the third way offers the medical personnel's convenient operation interface real-time, it is unable to satisfy patients when they want to inquire their health information at home. It also can not offer more extensive and more convenient information when the doctors engaged in the service-at-home in the community. For this reason, the thesis is to focus on the environment of World Wide Web, based on the information security management standard (BS7799-2), to analyze and arrange the security requirement that exists in the community’s health-care information system. In addition, we also propose user authentication, data encryption/decryption, digital signature, authenticated encryption, role-based access control schemes to secure the CHIS. Furthermore, we implement the proposed CHIS to achieve pratical application indeed.
Key Words : Community Healthcare、Electronic Medical Record、BS7799、Role-Based Access Control、Self-certified public key cryptosystems、 Elliptic curve cryptosystems.
|
|---|
