摘要
为了应对疫情对医院医疗资源、诊疗模式的冲击,互联网医院系统需要得到推广与普及。在提供就医问诊便利的同时,其业务连续性与数据安全性保障问题日益突出。本文针对使用SaaS云服务模式的互联网医院系统如何开展网络安全等级测评工作,从互联网医院系统网络结构、测评指标的选择与判定方法、综合得分计算和测试与漏洞分析等几个方面详细论述了具体实施方法。评测实践结果表明,对互联网医院系统网络安全等级测评有助于提升医院的安全防范意识和防范措施,可以有效预防风险发生。
In response to the impact from COVID-19 pandemic on hospital medical resources, and diagnosis and treatment model, the Internet hospital system has become more attractive and commonly used. While providing convenience for medical consultation, the issues around business operations and data security have become more prominent. Aiming at the implementation of the network security level evaluation of the Internet hospital system using SaaS cloud service model, this paper discusses in detail the specific implementation methods from the aspects of the network structure of the Internet hospital system, the selection and determination techniques of evaluation indicators, the calculation of comprehensive ratings, and testing and vulnerability analysis. The evaluation practice result shows that, the evaluation of the network security level of the Internet hospital system can potentially improve the hospital security awareness and prevention resolutions, and prevent the occurrence of risks.
作者
刘俊伯
LIU Junbo(Shanghai Information Security Testing Evaluation and Certification Center,Shanghai,China,200011)
出处
《福建电脑》
2022年第10期21-24,共4页
Journal of Fujian Computer
关键词
网络安全等级测评
SaaS云服务
漏洞分析
Cybersecurity Classified Protection Evaluation
SaaS Cloud Service
Vulnerability and Risk Analysis
