| With popularity of information technology, hardware and software infrastructure, electronic medical information system has made great progress. Owing to construction of information technology, hospitals achieve "paperless" and "digital" so that hospitals can adapt to current society developing quickly and efficiently, various work flows become more and more scientific and standardized. Electronic medical information system started late in China. During self-development process, a lot of advanced experiences from foreign countries have been referred. Therefore, the electronic medical information system develops relatively fast. Health workers rely on electronic medical information system more and more. People’s self-awareness on privacy protection increases day by day. Quick development of IT industry strengthens risk of information safety. Hospitals run for24hours every day. Therefore, it requires more on information safety managementFor safe and effective operation of the system, it needs to enhance safety of electronic medical information system. Information technology challenges the hospital greatly. Hospitals and patients are threatened while enjoying the convenience. As we all know, if medical information is lost, destroyed, falsified or leaked, any nuisance effect on both the hospitals and patients cannot be irreparable. In previous studies, safety management of electronic medical information is studied based on the general requirement to safety level protection of information system. Specific requirements are put forward both on technology and management. In those studies, although there is strong operability, there is no specific safety objective. It is difficult to confirm safety demands, let alone establishment of safety policy. Therefore, it is necessary to establish a set of scientific safety countermeasure so that the special service mechanism hospital can be managed effectively.Consequently, in combination with research achievement both here and abroad, the paper studies safety problem of electronic medical information system in practical application deeply and put forward a set of methods:firstly, analyze various major links in the electronic medical business to make it more specific. Secondly, identify safety requirement in major electronic medical business links to make it moderate. Finally, establish corresponding safety policies aiming at various safety requirements to meet safety requirement of various electronic medical businesses to make it integrity. Therefore, it is significant to establish a set of scientific and effective information safety policy in development of electronic medical information system.In electronic medical business analysis link, this paper identifies and describes main electronic medical business in electric medical information through user role, business processes and business data.In analysis link of electric medical business demands, the paper analyzes hazard of electronic medical business on from user role, business process and business data by listing threats faced with electronic medical business to identify safety requirements finally.In safety policy design link of electronic medical business, safety policies for various electronic medical businesses are established by designing access control policy and emergency response measures model. At last, the paper effectively verifies safety policies for electronic medical businesses. |
PDF Full Text Request