摘要
目的/意义 基于医疗卫生机构个人敏感信息使用典型场景,探究个人敏感信息使用安全实现方式.方法/过程 针对用户注册、内部利用与交互、医疗器械/可穿戴设备采集和信息披露等使用场景,分析个人敏感信息泄漏风险,探究身份鉴别、访问控制、数据加密、数据脱敏和检测审计等多种技术手段的适用场景及优缺点.结果/结论 技术手段的应用可以辅助医疗卫生机构进一步保障患者个人信息安全.
Abstract
Purpose/Significance Based on the typical use scenario of sensitive personal information in medical and health institu-tions,the implementation of the secure use of sensitive personal information is explored.Method/Process For user registration,internal utilization and interaction,medical device/wearable device collection and information disclosure and other scenarios,the paper analyzes the risk of sensitive personal information leakage,explores the application scenarios,advantages and disadvantages of various technical means such as identity authentication,access control,data encryption,data desensitization and detection audit.Result/Conclusion The application of technical means can assist medical and health institutions to further protect the security of patients'personal information.
基金项目
江苏省科技厅重点研发计划(BE2020721)
江苏省南京市生命健康科技专项(202205053)
维普
万方数据