Research Of Medical Health Privacy And Protection Method

In generally, privacy is personal information which is the coordinated outcome between law defining and natural persons’ willing, accepted by the public. At present, the law of medical and health privacy are not yet very clear, and explaining is ambiguous most of time in China. However, the public desire for protecting their medical and health privacy grow stronger. Clearly, health privacy involves problems in two aspects, that are’legal definition’ and’willing of natural person’. In our country, as medical informationization is growingly promoting and deepening, the problem of medical and health privacy is accordingly arisen. Most of privacy exposure of late root in organization management loopholes to a larger extent. Therefore, it is very necessary to reinforce internal organization management in medical institutes as while as to establish and improve the system of medical and health information management.The paper study the issue of protecting medical and health privacy only from perspective of’natural person’s willing’—their desire for medical and health privacy.First of all, use online questionnaires to collect public awareness of medical and health privacy. Through the analysis of the data, clarified the scope of’medical and health privacy’ in ’natural person’s willing’perspective, withal,’to what extent protecting’. Analysis of factors that affecting the public health privacy awareness have been also taken.Then, as the starting point, employ RBAC (role-based access control) to establish RBAC model based on medical privacy sensitivity level.In the model, the hospital is abstracted as treatment department, nursing department, inspection department, chemical department, medical record management department, and then, refine the positions that can contact with medical records in each department, set the roles accordingly; calculate the sensitivity level of the medical information and set default initial roles’levels using empirical investigation data; give the final role grade based on role state.Further, use the formal analysis method to verify model consistency of user permissions; to verify the model strategy security based on the idea of software testing.Finally, the model tested by’authority consistency’ and ’strategy security’is applied in research on medical and health privacy protection, the results show that there is no permissions inconsistent and RBAC model based on medical privacy sensitivity level can effectively protect medical and health privacy. Taking investigation results of public health privacy awareness as the basis and application RBAC model based on medical privacy sensitivity level provide powerful technical support to build for our health privacy protection system.