电子签名在医院信息系统中的应用

枫凡
5 ℃
2019-02-12

整理文档很辛苦，赏杯茶钱您下走！

还剩 ... 页未读，继续阅读 >>

免费阅读已结束，点击下载阅读编辑剩下 ... 页

阅读已结束，您可以下载文档离线阅读编辑

资源描述

1302电子签名在医院信息系统中的应用王桂榕幻灯片1电子签名在医院信息系统中的应用TheApplicationofElectronicSignatureintheHospitalInformationSystem广西壮族自治区人民医院ThePeople'sHospitalOfGuangxiZhuangAutonomousRegion王桂榕2008年9月幻灯片2www.gxhospital.com数字世界的信息安全要素InformationSecurityFactorsinDigitalWorldPAIN…zPrivacy（保密性）-确认信息的保密，不被窃取-EnsureinformationPrivacyandnotbestolenzAuthentication&Authorization（鉴别与授权）-确认对方的身份并确保其不越权-Authenticateusers’identityandensurethemdon’texceedtheirauthorityzIntegrity（完整性）-确保你收到信息没有被篡改-EnsurethereceivedinformationnottobetamperedzNon-Repudiation（抗抵赖）-有证据保证交易不被否认-Evidencetoconfirmthetransactionbeundeniable1303幻灯片3www.gxhospital.com各种安全技术比较ComparisonofallKindsofSecurityTechnology身份鉴别Authentication机密性Privacy完整性Integrity抗抵赖Non-Repudiation口令Password动态口令DynamicPassword密码技术EncryptTechnologyPKI/CAPKI/CA999999999999999999幻灯片4www.gxhospital.comPKI成为可信网络的安全基础PKIisaSecurityInfrastructureforCredibleNetwork公钥基础设施(PublicKeyInfrastructure,PKI)公钥基础设施(PublicKeyInfrastructure,PKI)浏览器BrowserE-mail服务器Server防火墙Firewall目录Directory路由器Router远程访问控制Remoteacc-essControl安全电子邮件securityEMAIL网络服务器安全securityofnetworkserver文件签名documentsignatureVPNVirtualPriv-ateNetworkIP骨干网络IPbackbonenetIP骨干网络IPbackbonenet医院信息管理系统（HospitalInformationSystem，HIS）1304幻灯片5www.gxhospital.com证书颁发机构：CACertificateissueinstitution:CAz证书认证权威(CertificationAuthority:CA)z提供网络身份认证服务Providetheidentityauthenticationservicefornetwork-证明数字证书的有效性Verifythevalidityofthedigitalcertificatez负责签发和管理数字证书Beresponsibleforissuingandmanagethedigitalcertificate-具体签发证书Issuecertification-对数字证书进行签名Signtodigitalcertificate-并管理数字证书Managedigitalcertificate幻灯片6www.gxhospital.com证书颁发机构：CACertificateawardinginstitution:CAz具有权威性和公正性AuthorityandFairness-类似于颁发身份证的公安局BesimilartothepolicestationwhichcanissuetheIDcard-在网络世界中人人都信任CAallpeopletrustCAinthenetworkworld公安局1305幻灯片7www.gxhospital.com证书注册机构：RACertificateregistrationinstitution:RAz证书注册权威(CertificateregistrationAuthority)-RegistrationAuthorityz受理用户的数字证书申请Accepttheuser’sapplicationofcertification-对证书申请者身份进行审核并提交CA制证Verifyapplicant’sidentityandsubmitapplicantrelatedinformationtoCA-类似于申请身份证的派出所BesimilartothelocalpolicestationwhichapplyfortheIDcard派出所幻灯片8www.gxhospital.com证书注册机构：RACertificateregistrationinstitution:RAz提供证书生命期的维护工作Offerthemaintenanceworkforthecertificatelifetime-受理用户证书申请(Acceptthecertificateapplicationfromusers)-协助颁发用户证书(Assisttoissuethecertificatetousers)-审核用户真实身份(Verifytherealidentityofusers)-受理证书更新请求(Updatecertificates)-受理证书吊鐀(Revocationcertificate)1306幻灯片9www.gxhospital.com电子文档的安全需求TheSecurityRequirementofElectronicDocumentz电子文档包括(Theelectronicdocumentsinclude):－各单位的申报审批报告、内部通知、公告等everyinstitution’sreportsforapplication,internalnotice,announcementandsoon－采用Word、Excel或网页等形式UseWord,Excel,homepage,andsoonz安全需求(securityrequirement):－需要多人对电子文档进行审批并签字Needmoreonepersontoexamandsigntheelectronicdocument－需要实现(Needstorealize)：z身份认证Identityauthenticationz完整性Integrityz抗抵赖Non-Repudiation幻灯片10www.gxhospital.com文档签章Documentssignature针对电子文档的安全需求，广西CA提供文档签章产品，解决电子文档的安全需求。z开发了针对Word、Excel或网页等文档系统的插件——电子签章插件。z使用电子签章插件和数字证书，可以对Word、Excel或网页等文档进行签名，并添加电子化图章。z点击文档上的电子化图章，可以验证签名者是谁，签名的信息包含哪些，以及电子文档是否被改动等。Inviewofthesecurityrequirementofelectronicdocuments,GuangXiCAprovidestheproductfordocumentsignature.zTheplug-inunitforWord,Excel,homepageandotherdocumentsystem-electronicsignatureplug-inunitzByelectronicsignatureplug-inunitandcertificate,wecansigntoword,Excel,homepageorotherdocuments,andaddelectronicstampondocuments.zClicktheelectronicstampinthisdocument,andconfirmwhosigned,whatinformationaboutthesignature,aswellaswhetherthedocumenthadbeen1307幻灯片11www.gxhospital.com电子文档签章实现原理TheRealizationPrincipleaboutElectronicDocumentsSignatureunsigneddocumentPersonalidentitycertificateDocumentsignaturemoduleDocumentssignatureoperationsigneddocumentSignatureicon幻灯片12www.gxhospital.comHIS应用的障碍HISapplicationbarrierDoyouworryaboutthefollowingsecurityrisk——networkmonitoring?您是否担心过以下情况——网络监听网络监听？站点服务器正常连接网络监听者屏幕输入username：abcdepassword：12345屏幕显示username：abcdepassword：12345信息被截获security安全1308幻灯片13www.gxhospital.comHIS应用的障碍HISapplicationbarrierDoyouworryaboutthefollowingsecurityrisk——Repudiation?您是否担心过以下情况——抵赖抵赖？医生在医院开出电子病历Doctorwritestheelectronicmedicalrecordinthehospital患者否认电子病历的完整性securityThepatientdenytheintegrityofelectronicmedicalrecord安全幻灯片14www.gxhospital.comDigitalSignature加密Encrypt加密Encrypt私钥与数字签名私钥与数字签名应用授权Authorizationofapplications应用授权Authorizationofapplications数字证书Certificate数字证书CertificateHIS与电子签名相结合的意义theSignificanceofHISCombinationwithElectronicSignatures保密性Privacy身份鉴证IdentityAuthentication授权Authorization完整性Integrity抗抵赖Non-Repudiation1309幻灯片15www.gxhospital.comz医疗行业：电子病历以及各种医院信息管理系统；Medicalprofession:electronicmedicalrecordandallkindsofhospitalinformationmanagementsystem;z药品监督行业：网上电子订单、药品监管；Drugssurveillanceprofession:electronicorderformon-line,drugssupervised;z网站运营：安全站点、网络维护权限管理系统等；Webstationmaintenance:Securitywebsite,networkmaintenanceauthorizationmanagementsystem,andsoon;z网上交易平台：网络交易系统；Transactionplatformon-line:Networktransactionsystem;PKI在信息化系统中的应用ThePKIapplicationsforinformat