CN118036082A - Medical information intercommunication interaction method and system - Google Patents

Medical information intercommunication interaction method and system Download PDF

Info

Publication number
CN118036082A
CN118036082A CN202410437485.4A CN202410437485A CN118036082A CN 118036082 A CN118036082 A CN 118036082A CN 202410437485 A CN202410437485 A CN 202410437485A CN 118036082 A CN118036082 A CN 118036082A
Authority
CN
China
Prior art keywords
data
request
domain
personal terminal
query
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202410437485.4A
Other languages
Chinese (zh)
Other versions
CN118036082B (en
Inventor
王希光
黄永生
陆凯
丁川
叶凯
樊海东
鲁冰青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jiangsu Mandala Software Co ltd
Jiangxi Mandala Software Co ltd
Original Assignee
Jiangsu Mandala Software Co ltd
Jiangxi Mandala Software Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jiangsu Mandala Software Co ltd, Jiangxi Mandala Software Co ltd filed Critical Jiangsu Mandala Software Co ltd
Priority to CN202410437485.4A priority Critical patent/CN118036082B/en
Publication of CN118036082A publication Critical patent/CN118036082A/en
Application granted granted Critical
Publication of CN118036082B publication Critical patent/CN118036082B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The invention discloses a method and a system for medical information intercommunication interaction, which relate to the technical field of medical data processing, wherein the method comprises the following steps: a user initiates a data query request through a platform center to generate a preset task cursor; when the personal terminal completes the current task cursor and the meeting heartbeat accesses the platform center, the platform center sends a query request to the personal terminal, the personal terminal stores the health medical information of the affiliated person, and the terminal access authority and the information access authority are set; after the personal terminal receives the query request, the personal terminal opens access according to the terminal access authority and the information access authority, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result and feeds back the query result to the platform center; receiving query results of all personal terminals by the platform center for users to query; the invention solves the problems of high risk of information leakage and abuse of the prior art that the platform center stores the health medical information of all affiliated persons.

Description

Medical information intercommunication interaction method and system
Technical Field
The invention relates to the technical field of medical data processing, in particular to a method and a system for medical information intercommunication interaction.
Background
The personal health data of the patient belongs to personal privacy, the data is stored in the data center in a centralized manner by a common platform center, a special authentication module is arranged in the health platform center in part of the medical field for protecting the data privacy, and the business system can view the data of the user only by giving the right to the user at the personal terminal. However, the data of the patients are still stored in the data center in a centralized way, the development and maintenance personnel of the related system can still conveniently check and copy the health data of all the patients in the data center, and the owners of the data center have the capability of removing the user authentication module. Individuals cannot truly guarantee the privacy of their own health data.
Currently, individuals are entitled to delete health data stored in a data center. However, after the deletion is required, the individual does not have the related technical knowledge and the operation authority of the data center, and cannot know whether the individual data is actually deleted or not, and the related operators cannot ensure that the individual data is completely deleted.
Disclosure of Invention
In view of the above, the invention aims to provide a method and a system for medical information intercommunication interaction, which aim to solve the problems of high risk of information leakage and abuse caused by the fact that a platform center stores all the health medical information of all the people in the prior art.
An aspect of the present invention is to provide a method for medical information interworking interaction, the method comprising:
a user initiates a data query request through a platform center and generates a preset task cursor;
when the personal terminals finish the current task cursors and access the platform center through the heartbeats, the platform center sends the query request of the preset task cursors to the personal terminals, wherein each personal terminal stores the health medical information of the corresponding person and sets the terminal access authority and the information access authority;
after the personal terminal receives the query request, the personal terminal opens access according to the terminal access right and the information access right, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result, and feeds back the query result to the platform center, and the method comprises the following steps:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
and receiving query results of all the personal terminals by the platform center for users to query.
Compared with the prior art, the invention has the beneficial effects that: by the medical information intercommunication interaction method provided by the invention, risks of information leakage and abuse can be effectively reduced, specifically, a user initiates a data query request through a platform center and a preset task cursor is generated; when a personal terminal completes a current task cursor and accesses the platform center, the platform center sends a query request of the preset task cursor to the personal terminal, wherein each personal terminal stores health medical information of an affiliated person, terminal access authority and information access authority are set, the personal terminal is adopted to store the health medical information, the affiliated person has higher control authority on the personal health medical information, the risk of information leakage and abuse can be effectively reduced, the platform center can process a large amount of health medical information more efficiently by means of actively connecting the personal terminal with the platform center, and the platform provides data writing, viewing and counting capabilities of a conventional data center, so that data processing is more flexible and diversified; when the personal terminal receives the query request, the personal terminal opens access according to the terminal access authority and the information access authority, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result and feeds back the query result to the platform center, is applicable to various different business scenes, and when a user needs to query various data, the platform center can only initiate the data query request, and then the data query request is uniformly processed by the interface processing device, the optimal query channel is selected according to the type of the data query request, corresponding data is obtained, and a large amount of discrete data is rapidly subjected to association analysis, so that more accurate service is provided for the user, user experience is improved, the data pressure of the platform center is reduced, and the running speed of the platform center is improved; and when the platform center receives the query results of all the personal terminals for users to query, the technical problems that the platform center stores all the health medical information of all the people, and the information leakage and abuse risks are high are solved.
According to an aspect of the above technical solution, the terminal access rights include forbidden access rights, white list protection rights and blacklist rejection rights, and the information access rights include primary rights, secondary rights, tertiary rights and quaternary rights;
The first-level authority is that the data is completely opened; the second-level authority is data which can be retrieved by the platform center and can prohibit the platform center from viewing; the third-level authority data prohibits the platform center from checking and searching, and can be used for statistics by the platform center; the fourth-level authority is that the data is not opened at all;
The requirement domain comprises patient information required by a user, the filtering domain comprises query conditions, the limiting domain comprises time limiting conditions and quantity limiting conditions for collecting query results, and the statistical domain comprises statistical dimension information and statistical function information.
According to one aspect of the above technical solution, the step of outputting a query result and encrypting the query result specifically includes:
generating an RSA key when the data query request is a data retrieval request;
And when the data query request is a data statistics request, generating a BGV key required by statistics and an RSA key used by dimension information.
According to one aspect of the above technical solution, the step of opening the access of the personal terminal according to the terminal access authority of the personal terminal after the personal terminal receives the query request specifically includes:
When the terminal access right is forbidden access right, the access is stopped;
When the terminal access authority is white list access authority or black list access authority, confirming whether the platform center is in the white list or outside the black list,
If yes, the personal terminal can be accessed, the information access right can be continuously confirmed,
If not, the access is aborted.
According to an aspect of the above technical solution, the data query request includes a data search request and a data statistics request, when the data query request is a data search request, the step of waiting for the personal terminal to parse out a demand domain, a filtering domain, a limiting domain, outputting a query result according to the authentication of the information access authority, and feeding back the query result to the platform center specifically includes:
Judging whether the requirement domain and the filtering domain are allowed to be screened or not according to the level of the information access authority after the personal terminal analyzes the requirement domain, the filtering domain and the limiting domain;
If yes, acquiring the health medical information of the personal terminal, when the health medical information has the data conforming to the filtering domain, marking the condition that the personal terminal meets the data retrieval request, and when the health medical information does not have the data conforming to the filtering domain, marking the condition that the personal terminal does not meet the data retrieval request;
If not, judging that the information access authority is the third-level authority or the fourth-level authority, and marking that the personal terminal does not meet the condition of the data retrieval request;
analyzing the request field in the filtering domain through a personal terminal meeting the condition of the data retrieval request, and judging whether the request field in the health medical information can be disclosed or not according to the level of the information access authority;
If yes, judging that the information access authority is the primary authority, and feeding back the health medical information to the platform center;
if not, judging that the information access authority is the secondary authority, and not needing to be fed back to the platform center.
According to an aspect of the foregoing technical solution, the method further includes:
According to the request fields of the filtering domains, traversing and inquiring the request fields in the health medical information through the personal terminal, collecting the inquired request fields, carrying out RSA encryption, and sending to a platform center;
And checking each preset task cursor through a task recoverer, and ending the search query according to the time limit condition and the number limit condition of the limit domain, wherein the user is required to query.
According to one aspect of the above technical solution, when the data query request is a data statistics request, the step of outputting a query result according to the authentication of the information access right and feeding back the query result to the platform center after the personal terminal parses out a requirement domain, a filtering domain, a statistics domain, and a limitation domain specifically includes:
judging whether to allow the statistics fields of the filtering domain and the statistics domain to be counted according to the level of the information access authority when the personal terminal analyzes the requirement domain, the filtering domain, the statistics domain and the restriction domain;
if yes, marking the personal terminal to meet the condition of the data statistics request;
if not, judging that the information access right is the four-level right, and marking that the personal terminal does not meet the condition of the data statistics request;
Dividing the conditions meeting and not meeting the data statistics request into two groups through the personal terminal, carrying out calculation statistics on the dimension information and the statistics function information of the two groups of data to obtain a dimension and a corresponding pre-statistics result, carrying out BGV key encryption on the pre-statistics result, carrying out RSA key encryption and MD5 hash processing on the dimension, and sending the dimension to the platform center.
According to an aspect of the foregoing technical solution, the method further includes:
Analyzing the hash information of each dimension after the platform center receives the encrypted pre-statistics result and the dimension, and checking whether the dimension exists in the platform center;
If yes, carrying out cooperative accumulation on the pre-statistics result and the pre-statistics data of corresponding dimensions in the platform center;
If not, storing the dimension and the pre-statistics result, and adding hash information of the dimension in the platform center;
and checking each preset task cursor through a task recoverer, ending statistics according to the time limit condition and the number limit condition of the limit domain, and inquiring the user.
According to an aspect of the foregoing technical solution, the method further includes:
The personal terminal records the queried log of the data for viewing by the affiliated person.
Another aspect of the present invention is to provide a system for medical information interworking interaction, for performing the method for medical information interworking interaction described in any one of the above, the system comprising:
The inquiry request sending module is used for sending an inquiry request of the preset task cursor to the personal terminals when the personal terminals finish the current task cursor and access the platform center by the meeting heartbeats, wherein each personal terminal stores the health medical information of the corresponding person and sets the terminal access permission and the information access permission;
The query result output module is used for receiving the query request by the personal terminal, opening access according to the terminal access authority and the information access authority, querying the health medical information of the personal terminal, outputting the query result, encrypting the query result and feeding back the query result to the platform center, and comprises the following steps:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
And the inquiry result receiving module is used for receiving inquiry results of all the personal terminals by the platform center for inquiry of users.
Drawings
FIG. 1 is a flow chart of a method of medical information interworking interactions in a first embodiment of the present invention;
FIG. 2 is a block diagram of a system for communicating and interacting medical information in accordance with a second embodiment of the present invention;
description of the drawings element symbols:
a query request initiating module 100, a query request transmitting module 200, a query result outputting module 300, a query result receiving module 400;
the invention will be further described in the following detailed description in conjunction with the above-described figures.
Detailed Description
In order that the invention may be readily understood, a more complete description of the invention will be rendered by reference to the appended drawings. Several embodiments of the invention are presented in the figures. This invention may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete.
It will be understood that when an element is referred to as being "mounted" on another element, it can be directly on the other element or intervening elements may also be present. When an element is referred to as being "connected" to another element, it can be directly connected to the other element or intervening elements may also be present. The terms "vertical," "horizontal," "left," "right," and the like are used herein for illustrative purposes only.
Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The terminology used herein in the description of the invention is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention. The term "and/or" as used herein includes any and all combinations of one or more of the associated listed types.
Example 1
Referring to fig. 1, a method for communicating and interacting medical information in a first embodiment of the present invention is shown, and the method includes steps S10 to S13.
Step S10, a user initiates a data query request through a platform center and generates a preset task cursor;
Step S11, when a personal terminal completes a current task cursor and accesses a heartbeat to the platform center, the platform center sends a query request of the preset task cursor to the personal terminal, wherein each personal terminal stores health medical information of the person, and terminal access permission and information access permission are set:
In order to ensure that an individual has control rights on own health medical information, the system stores the health medical information by means of a personal terminal of the individual to whom the health medical information belongs, and the platform center is responsible for providing data writing, checking and counting capabilities of a conventional data center.
The health record of the affiliated person is newly added by the medical institution through the unified interface applied in the personal terminal. The affiliated person can check the health medical information of the personal terminal of the affiliated person and set different access rights for the data in each piece of health medical information.
In some embodiments, the health medical information relates to a data type: personal identity information, personal basic information, hospital visit records, prognostic data, and physical examination records.
The terminal access permission comprises forbidden access permission, white list protection permission and blacklist refusal permission, and the information access permission level comprises primary permission, secondary permission, tertiary permission and quaternary permission;
The first-level authority is that the data is completely opened; the second-level authority is data which can be retrieved by the platform center and can prohibit the platform center from viewing; the third-level authority data prohibits the platform center from checking and searching, and can be used for statistics by the platform center; the four-level authority is that the data is not opened at all.
Because the personal terminals are numerous and network addresses are changed at will, a communication mode that the personal terminals are actively connected with the platform center is adopted. The data query request task is passively sent to the personal terminal through the asynchronous queue, and the platform center distributes the data query request task according to the task cursor.
In addition, the platform center receives the inquiry request and then generates a task cursor, inserts the task cursor into a task distributing queue, collects the starting state of the task, registers the limiting domain in a task recoverer and waits for the heartbeat contact of the personal terminal.
The personal terminal is used for storing the health medical information, the affiliated person has higher control right on the personal health medical information, and the affiliated person can better control the personal health medical information because the health medical information is stored in the personal terminal of the affiliated person. Compared with the existing health platform center for storing the health medical information of all affiliated persons, the invention reduces the risks of data leakage and abuse.
In addition, by means of the mode that the personal terminal is actively connected with the platform center, the platform center can process a large amount of health medical information more efficiently. Meanwhile, the platform provides data writing, checking and counting capabilities of the conventional data center, so that data processing is more flexible and diversified.
Step S12, after the personal terminal receives the query request, the personal terminal opens access according to the terminal access authority and the information access authority, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result, and feeds back the query result to the platform center, wherein the step comprises the following steps:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
Specifically, the steps of outputting the query result and encrypting the query result include:
generating an RSA key when the data query request is a data retrieval request;
And when the data query request is a data statistics request, generating a BGV key required by statistics and an RSA key used by dimension information.
Specifically, the data query request includes a data search request and a data statistics request, when the data query request is a data search request, the step of outputting a query result according to the authentication of the information access authority and feeding back the query result to the platform center includes the steps of:
Judging whether the requirement domain and the filtering domain are allowed to be screened or not according to the level of the information access authority after the personal terminal analyzes the requirement domain, the filtering domain and the limiting domain;
If yes, acquiring the health medical information of the personal terminal, when the health medical information has the data conforming to the filtering domain, marking the condition that the personal terminal meets the data retrieval request, and when the health medical information does not have the data conforming to the filtering domain, marking the condition that the personal terminal does not meet the data retrieval request;
If not, judging that the information access authority is the third-level authority or the fourth-level authority, and marking that the personal terminal does not meet the condition of the data retrieval request;
analyzing the request field in the filtering domain through a personal terminal meeting the condition of the data retrieval request, and judging whether the request field in the health medical information can be disclosed or not according to the level of the information access authority;
If yes, judging that the information access authority is the primary authority, and feeding back the health medical information to the platform center;
if not, judging that the information access authority is the secondary authority, and not needing to be fed back to the platform center.
In addition, the method further comprises:
According to the request fields of the filtering domains, traversing and inquiring the request fields in the health medical information through the personal terminal, collecting the inquired request fields, carrying out RSA encryption, and sending to a platform center;
And checking each preset task cursor through a task recoverer, and ending the search query according to the time limit condition and the number limit condition of the limit domain, wherein the user is required to query.
In some embodiments, the personal terminal constructs a query condition tree from the filtering domain, and the morphemes and lexicers are implemented by lex and yacc. The grammar in the condition tree is composed of three kinds of judging conditions, combining logical symbols (AND, OR, NOT) and nesting logical symbols (any one, all, none and at least N). And organizing the medical record data which is collected before and accords with the authority according to the requirement main body, traversing the whole condition tree from the query condition tree root according to the depth priority order, and judging whether each main body data meets the whole condition tree.
In addition, when the data query request is a data statistics request, the step of outputting a query result and feeding back the query result to the platform center according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limitation domain specifically includes:
judging whether to allow the statistics fields of the filtering domain and the statistics domain to be counted according to the level of the information access authority when the personal terminal analyzes the requirement domain, the filtering domain, the statistics domain and the restriction domain;
if yes, marking the personal terminal to meet the condition of the data statistics request;
if not, judging that the information access right is the four-level right, and marking that the personal terminal does not meet the condition of the data statistics request;
Dividing the conditions meeting and not meeting the data statistics request into two groups through the personal terminal, carrying out calculation statistics on the dimension information and the statistics function information of the two groups of data to obtain a dimension and a corresponding pre-statistics result, carrying out BGV key encryption on the pre-statistics result, carrying out RSA key encryption and MD5 hash processing on the dimension, and sending the dimension to the platform center.
In some embodiments, in order to enable the platform center to perform statistics and summarization on encrypted data, it is required that statistics values can be accumulated, statistics dimensions can be divided into buckets (the values after encryption in the same dimensions are the same), and conventional RSA encryption cannot be satisfied, so that a pre-statistics result adopts a co-encryption algorithm BGV, and decrypted data can be accumulated. While performing RSA encryption on the dimension, we also perform MD5 hash processing on the dimension, and the obtained hash value can enable the values of the same dimension to be combined in the center of the platform.
Analyzing the hash information of each dimension to check whether the dimension exists in the platform center after the platform center receives the encrypted pre-statistics result and the dimension;
If yes, carrying out cooperative accumulation on the pre-statistics result and the pre-statistics data of corresponding dimensions in the platform center;
If not, storing the dimension and the pre-statistics result, and adding hash information of the dimension in the platform center;
and checking each preset task cursor through a task recoverer, ending statistics according to the time limit condition and the number limit condition of the limit domain, and inquiring the user.
The method further comprises the steps of:
The personal terminal records the queried log of the data for viewing by the affiliated person.
The BGV encryption method comprises the following steps:
Encrypting to obtain a ciphertext and a corresponding key, and carrying out homomorphic multiplication operation on the ciphertext and the key to obtain a key with expanded dimension and the ciphertext, wherein the method specifically comprises the following steps:
In some embodiments, assuming data m (m 1 and m 2), the encrypted result is a vector ciphertext c (c 1 and c 2), and corresponding vector key s (s 1 and s 2),
Wherein,For the encryption equation, x is the encryption coefficient and q is the modulus.
In addition, the homomorphic multiplication formula is:
Wherein, Is the square of the x self tensor.
In order to ensure that the platform center can perform statistics, summary and calculation on encrypted data of the personal terminal, homomorphic encryption is required for the ciphertext and the secret key, so that the platform center can perform statistics, accumulation and estimation calculation on the encrypted data under the condition that the platform center does not know the data content.
The key is decomposed, combined and exchanged by a decomposition matrix, a new final ciphertext is output, noise data generated in each homomorphic multiplication operation process is subjected to noise reduction treatment, and the method specifically comprises the following steps of:
in order to ensure the operation efficiency of the key and the ciphertext, the key after dimension expansion needs to be decomposed.
Wherein c is ciphertext, s is a key, G is a decomposition matrix,Decomposing c by bit,/>Binary obtained after decomposition is combined,/>For the final ciphertext,/>Is the final key.
In addition, noise data is generated in each homomorphic multiplication operation process, the operation accuracy is affected, and noise reduction processing is needed for the straw rope data.
In some embodiments, the module is reduced by the module switching, the size of noise data is reduced, and the noise reduction effect is achieved.
It should be noted that, the scheme of the invention can be applied to various different service scenarios, when a user needs to inquire various data, the data inquiry request can be initiated only through the platform center, and then the data inquiry request is uniformly processed by the interface processing device, the optimal inquiry channel is selected at the personal terminal according to the type of the data inquiry request, corresponding data is obtained, and a large amount of discrete data is rapidly subjected to association analysis, so that more accurate service is provided for the user, user experience is improved, data pressure of the platform center is reduced, and the speed of processing the data by the platform center is improved.
And S13, receiving query results of all the personal terminals by the platform center for the user to query.
The invention can be applied to a plurality of fields of medical treatment, health care, body building and the like, and can provide more comprehensive health medical information support for related institutions. Meanwhile, the invention can collect the health medical information of the relevant affiliated person more efficiently, and protect the privacy and data security of the affiliated person better. Meanwhile, the invention can provide more personalized health services and suggestions for the public, and improve the public health consciousness and life quality.
In summary, the method for communicating and interacting medical information in the above embodiment of the present invention can effectively reduce risks of information leakage and abuse, specifically, a user initiates a data query request through a platform center, and generates a preset task cursor; when a personal terminal completes a current task cursor and accesses the platform center, the platform center sends a query request of the preset task cursor to the personal terminal, wherein each personal terminal stores health medical information of an affiliated person, terminal access authority and information access authority are set, the personal terminal is adopted to store the health medical information, the affiliated person has higher control authority on the personal health medical information, the risk of information leakage and abuse can be effectively reduced, the platform center can process a large amount of health medical information more efficiently by means of actively connecting the personal terminal with the platform center, and the platform provides data writing, viewing and counting capabilities of a conventional data center, so that data processing is more flexible and diversified; when the personal terminal receives the query request, the personal terminal opens access according to the terminal access authority and the information access authority, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result and feeds back the query result to the platform center, is applicable to various different business scenes, and when a user needs to query various data, the platform center can only initiate the data query request, and then the data query request is uniformly processed by the interface processing device, the optimal query channel is selected according to the type of the data query request, corresponding data is obtained, and a large amount of discrete data is rapidly subjected to association analysis, so that more accurate service is provided for the user, user experience is improved, the data pressure of the platform center is reduced, and the running speed of the platform center is improved; and when the platform center receives the query results of all the personal terminals for users to query, the technical problems that the platform center stores all the health medical information of all the people, and the information leakage and abuse risks are high are solved.
Example two
Referring to fig. 2, a system for medical information interworking interaction according to a second embodiment of the present invention is shown, the system includes:
The query request initiating module 100 is configured to initiate a data query request by a user through a platform center, and generate a preset task cursor;
The query request sending module 200 is configured to send, when the personal terminal completes the current task cursor and accesses the platform center with a meeting heartbeat, a query request of the preset task cursor to the personal terminal by the platform center, where each personal terminal stores health medical information of the person, and sets a terminal access permission and an information access permission;
The query result output module 300 is configured to receive the query request by the personal terminal, open access according to the terminal access right and the information access right, query the health medical information of the personal terminal, output a query result, encrypt the query result, and feed back the query result to the platform center, where the query result includes:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
the query result receiving module 400 is configured to receive query results of all the personal terminals for a user to query, for the platform center.
In summary, the system for interaction of medical information in the above embodiment of the present invention can effectively reduce risks of information leakage and abuse, specifically, the query request sending module stores health medical information by using a personal terminal, the person owns higher control right on the personal health medical information, and can effectively reduce risks of information leakage and abuse, the platform center can process a large amount of health medical information more efficiently by means of actively connecting the personal terminal with the platform center, the platform provides data writing, checking and statistics capabilities of the conventional data center, so that data processing is more flexible and diversified, an optimal query channel is selected according to the type of the data query request by the query result output module, corresponding data is obtained, and association analysis is rapidly performed on a large amount of discrete data, so that more accurate service is provided for users, and user experience is improved; therefore, the technical problems that the platform center stores health medical information of all affiliated persons and the information leakage and abuse risk are high are solved.
The technical features of the above embodiments may be arbitrarily combined, and for brevity, all of the possible combinations of the technical features of the above embodiments are not described, however, they should be considered as the scope of the description of the present specification as long as there is no contradiction between the combinations of the technical features.
In the description of the present specification, a description referring to terms "one embodiment," "some embodiments," "examples," "specific examples," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the present invention. In this specification, schematic representations of the above terms do not necessarily refer to the same embodiments or examples. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
The foregoing examples illustrate only a few embodiments of the invention and are described in detail herein without thereby limiting the scope of the invention. It should be noted that it will be apparent to those skilled in the art that several variations and modifications can be made without departing from the spirit of the invention, which are all within the scope of the invention. Accordingly, the scope of protection of the present invention is to be determined by the appended claims.

Claims (10)

1. A method of medical information interworking interaction, the method comprising:
a user initiates a data query request through a platform center and generates a preset task cursor;
when the personal terminals finish the current task cursors and access the platform center through the heartbeats, the platform center sends the query request of the preset task cursors to the personal terminals, wherein each personal terminal stores the health medical information of the corresponding person and sets the terminal access authority and the information access authority;
after the personal terminal receives the query request, the personal terminal opens access according to the terminal access right and the information access right, queries the health medical information of the personal terminal, outputs a query result, encrypts the query result, and feeds back the query result to the platform center, and the method comprises the following steps:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
and receiving query results of all the personal terminals by the platform center for users to query.
2. The method for communicating and interacting medical information according to claim 1, wherein the terminal access rights include forbidden access rights, white list protection rights and black list rejection rights, and the level of the information access rights includes primary rights, secondary rights, tertiary rights and quaternary rights;
The first-level authority is that the data is completely opened; the second-level authority is data which can be retrieved by the platform center and can prohibit the platform center from viewing; the third-level authority data prohibits the platform center from checking and searching, and can be used for statistics by the platform center; the fourth-level authority is that the data is not opened at all;
The requirement domain comprises patient information required by a user, the filtering domain comprises query conditions, the limiting domain comprises time limiting conditions and quantity limiting conditions for collecting query results, and the statistical domain comprises statistical dimension information and statistical function information.
3. The method for communicating and interacting medical information according to claim 2, wherein the step of outputting a query result and encrypting the query result specifically comprises:
generating an RSA key when the data query request is a data retrieval request;
And when the data query request is a data statistics request, generating a BGV key required by statistics and an RSA key used by dimension information.
4. The method for communicating and interacting medical information according to claim 3, wherein the step of opening access of the personal terminal according to own terminal access authority after the personal terminal receives the query request specifically comprises:
When the terminal access right is forbidden access right, the access is stopped;
When the terminal access authority is white list access authority or black list access authority, confirming whether the platform center is in the white list or outside the black list,
If yes, the personal terminal can be accessed, the information access right can be continuously confirmed,
If not, the access is aborted.
5. The method for communicating and interacting medical information according to claim 3, wherein the data query request includes a data search request and a data statistics request, and when the data query request is a data search request, the step of waiting for the personal terminal to parse out a required domain, a filtering domain and a limiting domain, outputting a query result according to the authentication of the information access authority, and feeding back the query result to the platform center specifically includes:
Judging whether the requirement domain and the filtering domain are allowed to be screened or not according to the level of the information access authority after the personal terminal analyzes the requirement domain, the filtering domain and the limiting domain;
If yes, acquiring the health medical information of the personal terminal, when the health medical information has the data conforming to the filtering domain, marking the condition that the personal terminal meets the data retrieval request, and when the health medical information does not have the data conforming to the filtering domain, marking the condition that the personal terminal does not meet the data retrieval request;
If not, judging that the information access authority is the third-level authority or the fourth-level authority, and marking that the personal terminal does not meet the condition of the data retrieval request;
analyzing the request field in the filtering domain through a personal terminal meeting the condition of the data retrieval request, and judging whether the request field in the health medical information can be disclosed or not according to the level of the information access authority;
If yes, judging that the information access authority is the primary authority, and feeding back the health medical information to the platform center;
if not, judging that the information access authority is the secondary authority, and not needing to be fed back to the platform center.
6. The method of medical information interworking interactions of claim 5, further comprising:
According to the request fields of the filtering domains, traversing and inquiring the request fields in the health medical information through the personal terminal, collecting the inquired request fields, carrying out RSA encryption, and sending to a platform center;
And checking each preset task cursor through a task recoverer, and ending the search query according to the time limit condition and the number limit condition of the limit domain, wherein the user is required to query.
7. The method for communicating and interacting medical information according to claim 3, wherein when the data query request is a data statistics request, the step of outputting a query result according to the authentication of the information access authority and feeding back the query result to the platform center after the personal terminal parses out a demand domain, a filtering domain, a statistics domain and a limitation domain specifically includes:
judging whether to allow the statistics fields of the filtering domain and the statistics domain to be counted according to the level of the information access authority when the personal terminal analyzes the requirement domain, the filtering domain, the statistics domain and the restriction domain;
if yes, marking the personal terminal to meet the condition of the data statistics request;
if not, judging that the information access right is the four-level right, and marking that the personal terminal does not meet the condition of the data statistics request;
Dividing the conditions meeting and not meeting the data statistics request into two groups through the personal terminal, carrying out calculation statistics on the dimension information and the statistics function information of the two groups of data to obtain a dimension and a corresponding pre-statistics result, carrying out BGV key encryption on the pre-statistics result, carrying out RSA key encryption and MD5 hash processing on the dimension, and sending the dimension to the platform center.
8. The method of medical information interworking interactions of claim 7, further comprising:
Analyzing the hash information of each dimension after the platform center receives the encrypted pre-statistics result and the dimension, and checking whether the dimension exists in the platform center;
If yes, carrying out cooperative accumulation on the pre-statistics result and the pre-statistics data of corresponding dimensions in the platform center;
If not, storing the dimension and the pre-statistics result, and adding hash information of the dimension in the platform center;
and checking each preset task cursor through a task recoverer, ending statistics according to the time limit condition and the number limit condition of the limit domain, and inquiring the user.
9. The method of medical information interworking interaction of claim 2, wherein the method further comprises:
The personal terminal records the queried log of the data for viewing by the affiliated person.
10. A system for medical information interworking interactions, characterized in that it comprises:
The inquiry request initiating module is used for initiating a data inquiry request by a user through the platform center and generating a preset task cursor;
The inquiry request sending module is used for sending an inquiry request of the preset task cursor to the personal terminals when the personal terminals finish the current task cursor and access the platform center by the meeting heartbeats, wherein each personal terminal stores the health medical information of the corresponding person and sets the terminal access permission and the information access permission;
The query result output module is used for receiving the query request by the personal terminal, opening access according to the terminal access authority and the information access authority, querying the health medical information of the personal terminal, outputting the query result, encrypting the query result and feeding back the query result to the platform center, and comprises the following steps:
opening access of the personal terminal according to terminal access authority of the personal terminal after the personal terminal receives the query request;
The data query request comprises a data retrieval request and a data statistics request, when the data query request is a data retrieval request, the personal terminal analyzes a demand domain, a filtering domain and a limiting domain, outputs a query result according to the authentication of the information access authority, feeds back the query result to the platform center,
When the data query request is a data statistics request, outputting a query result according to the authentication of the information access authority after the personal terminal analyzes a demand domain, a filtering domain, a statistics domain and a limit domain, and feeding back the query result to the platform center;
And the inquiry result receiving module is used for receiving inquiry results of all the personal terminals by the platform center for inquiry of users.
CN202410437485.4A 2024-04-12 2024-04-12 Medical information intercommunication interaction method and system Active CN118036082B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202410437485.4A CN118036082B (en) 2024-04-12 2024-04-12 Medical information intercommunication interaction method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202410437485.4A CN118036082B (en) 2024-04-12 2024-04-12 Medical information intercommunication interaction method and system

Publications (2)

Publication Number Publication Date
CN118036082A true CN118036082A (en) 2024-05-14
CN118036082B CN118036082B (en) 2024-06-07

Family

ID=90993587

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202410437485.4A Active CN118036082B (en) 2024-04-12 2024-04-12 Medical information intercommunication interaction method and system

Country Status (1)

Country Link
CN (1) CN118036082B (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001209742A (en) * 2000-01-25 2001-08-03 Fujitsu Ltd Medical information processing system and medical information processing program storage medium
JP2004030128A (en) * 2002-06-25 2004-01-29 Nec Software Kyushu Ltd Health care information sharing system, health care information sharing method, and health care information sharing program
US20110010199A1 (en) * 2009-07-09 2011-01-13 Himanshu Desai Method and system for healthcare information data storage
CN105577368A (en) * 2016-01-14 2016-05-11 西安电子科技大学 Two-way privacy protective system and method for inquiring medical diagnostic service
KR20210004408A (en) * 2019-07-04 2021-01-13 주식회사 필로시스 Method, device and system to share health information
KR20230082788A (en) * 2021-12-02 2023-06-09 주식회사 디케이아이테크놀로지 Samrtphone-based personal medical information collecting system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2001209742A (en) * 2000-01-25 2001-08-03 Fujitsu Ltd Medical information processing system and medical information processing program storage medium
JP2004030128A (en) * 2002-06-25 2004-01-29 Nec Software Kyushu Ltd Health care information sharing system, health care information sharing method, and health care information sharing program
US20110010199A1 (en) * 2009-07-09 2011-01-13 Himanshu Desai Method and system for healthcare information data storage
CN105577368A (en) * 2016-01-14 2016-05-11 西安电子科技大学 Two-way privacy protective system and method for inquiring medical diagnostic service
KR20210004408A (en) * 2019-07-04 2021-01-13 주식회사 필로시스 Method, device and system to share health information
KR20230082788A (en) * 2021-12-02 2023-06-09 주식회사 디케이아이테크놀로지 Samrtphone-based personal medical information collecting system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
张海涛;: "谈个人电子健康档案信息安全建设", 黑龙江档案, no. 04, 15 August 2013 (2013-08-15) *

Also Published As

Publication number Publication date
CN118036082B (en) 2024-06-07

Similar Documents

Publication Publication Date Title
Sun et al. Security and privacy in the medical internet of things: a review
US11425171B2 (en) Method and system for cryptographic attribute-based access control supporting dynamic rules
CN108449309B (en) A kind of mixed type can search for encryption method and system
Vijayakumar et al. RETRACTED ARTICLE: E-Health Cloud Security Using Timing Enabled Proxy Re-Encryption
Shang et al. A privacy-preserving approach to policy-based content dissemination
Li et al. Toward privacy-assured and searchable cloud data storage services
CN101436208B (en) Ciphertext database privacy protection enquiring method
Wang et al. Achieve privacy-preserving priority classification on patient health data in remote eHealthcare system
JP4870160B2 (en) Method for encapsulating information in a database, encapsulated database for use in a communication system, and method for mediating instant messages in a system
US8412957B2 (en) Encryption and decryption of records in accordance with group access vectors
Ren et al. Toward secure and effective data utilization in public cloud
Bobba et al. Attribute-based messaging: Access control and confidentiality
CN1295688A (en) Secure database manugement system for confidential records
CN112511599B (en) Civil air defense data sharing system and method based on block chain
CN114338038B (en) Storage system for secret inquiry of block chain data and careless transmission method
Zhang et al. Inference attack-resistant e-healthcare cloud system with fine-grained access control
CN106934301A (en) A kind of safely outsourced data processing method of relevant database for supporting ciphertext data manipulation
CN115378966A (en) Intelligent medical online service system and intelligent medical online service method
CN111935208A (en) Block chain private data sharing method and device, computer equipment and storage medium
CN118036082B (en) Medical information intercommunication interaction method and system
Lin et al. Preserving Privacy in Outsourced Database
Burke et al. K-anonymity for privacy preserving crime data publishing in resource constrained environments
CN115174072B (en) Privacy-protecting medical information similarity range query method
Sabbu et al. An oblivious image retrieval protocol
Gobi et al. A survey on public-key and identity-based encryption scheme with equality testing over encrypted data in cloud computing

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant