摘要
针对代理检查检验服务平台中的安全问题,提出面向患者医疗信息的安全机制模型。借鉴CHAP(ChallengeHandshake Authentication Protocol,询问握手认证协议)为原理的身份认证机制,结合令牌与RSA非对称式加密算法的数据传输模式为手段,实现防窃听、防篡改、防重放攻击的数据通讯层面上的安全机制体系,为以医疗数据为中心的区域协同医疗服务体系建立了可靠的互联网数据共享安全基础。
It proposes the security mechanism mode of the patient-oriented medical information to solve the security problem in the proxy Laboratory and Examination service platform. It builds the security mechanism which is anti-eavesdrop, anti-tamper and anti- replay attack in terms of the data communication, by taking the identity authentication mechanism based on the CHAP (Challenge Handshake Authentication Protocol) principles as reference and the data transfer mode combining token and the asymmetric cryptographic algorithm of RSA as the method. In this way, it lays a reliable security foundation for medical service system of regional collaboration centered on medical data to share internet data.
出处
《中国数字医学》
2013年第7期51-52,58,共3页
China Digital Medicine
基金
国家科技支撑计划(编号:2011BAH1508-005)~~
关键词
区域协同医疗
RSA
CHAP
令牌
身份认证
regional medical cooperation, RSA, CHAP, token, identity authentication
