摘要
通过分析国际标准化组织(ISO)、欧盟标准化委员会(CEN)、英国健康部门发布的个人健康信息安全的标准与规则,以及美国健康保险流通与责任法(HIPAA)的安全与隐私部分,总结出在安全管理、物理安全、安全技术与安全审计四个维度上个人健康信息的要求,对制定符合我国特色的健康信息保护标准提供借鉴。
Through the introduction of health protection standards and regulations published respectively by I SO, the EU CEN 251, department of health in UK, as well as privacy and security part in the HIPAA of the United States, this paper concludes requirements and practical rules on protecting personal health information, in the dimension of safety management, physical security, security technology and security audit, which is of great referential significance to formulate health information protection standards with Chinese characteristics.
出处
《信息技术与标准化》
2017年第3期50-54,共5页
Information Technology & Standardization
基金
国家科技支撑计划课题"口腔健康协同服务应用示范"
项目编号:2015BAH14F02
关键词
健康信息
保护
标准
大数据
安全管理
物理安全
安全技术
安全审计
health information
protection
standards
big data
safety management
physical security
security technology
security audit
