摘要
随着卫生信息化的深入发展和对信息安全的日益重视,医院内部网络与地方医疗保险网络之间的数据安全交换问题迫切需要解决。经过充分调研两个网络的网络结构、网络之间的连接接口、业务流程以及网络间的访问模式,提出了从网络边界安全防护、身份认证和访问控制、应用层攻击防范、数据库访问监控等四个方面来保护医院内部网络、保护病人的信息安全。
With the in-depth development of hospital information technology and increasing emphasis on Information Security, the issue of exchange of data security must be resolved between hospital Intranet and Social Security WAN. This paper investigates network topology of interconnection between hospital Intranet and Social Security WAN, the exchange process of medical business data, the method of network access. It also proposed that the solution could protect patient information against various network attacks from four aspects: the security technology, Network GAP, Identity Authentication and Network Access Control, Application Layer DPI(Deep Packet Inspection)and Database Audit.
出处
《中国卫生信息管理杂志》
2012年第6期20-23,共4页
Chinese Journal of Health Informatics and Management
关键词
数据交换
信息安全
建设方案
Data exchange
Information security
Framework design
