Research On The Model Of Mutual Visits Of Electronic Medical Records Between Hospitals Based On Poly-chromatic Sets Theory

With the continuous development of medical information construction,many medical institutions have gradually recognized electronic medical records due to their high efficiency,convenience,ease of query and analysis.However,medical records contain a large amount of sensitive data,and there is a risk of privacy data leakage during the interaction process.Therefore,cross-domain electronic medical records exchange visits have become an urgent problem to be solved.The research content of this paper is mainly to propose a model of electronic medical records mutual visits between hospitals,and apply the theory of poly-chromatic sets to the formal description of the business process of the mutual visit model.At the same time,on the basis of the role task-based access control model,the use of poly-chromatic set realizes the dynamic authorization of users and the formalization of access control strategies and conflict detection in the process of mutual visits of electronic medical records.The main contents are as follows:(1)Aiming at the problem of interoperability between multiple organizations,based on the theory of poly-chromatic sets,the enclosure matrix is used to analyze the external interaction activities and internal private activities of each organization during the interoperability process,and to model business processes from multiple perspectives.Based on the above research,the business process of the electronic medical record mutual visit model is modeled.While describing the model business process,the autonomy of the internal activities of each organization in the model and the weak coupling of business processes between the organizations are realized.(2)Based on the role-task-based access control model,extract the users,roles,permissions and activities involved in the electronic medical record exchange model between multiple hospitals,and model the access control mechanism by combining the operation of the poly-chromatic confinement matrix.Realize the dynamic authorization of users,avoid users directly associate with access permissions,and obtain permissions beyond the scope of their roles.(3)Analyze the formalization of access control policies,split complex policies,associate atomic rules with complex policies through logical operations,use the concept of "body" to formalize,and proposes a conflict detection method based on poly-chromatic sets to solve the problems of redundancy and conflict between access control strategies.The experimental results show the correctness of the algorithm as well as advantages in the detection efficiency.