Kiah M L Mat, Nabi Mohamed S, Zaidan B B, Zaidan A A
Faculty of Computer Science and Information Technology, University Malaysia, 50603, Kuala Lumpur, Malaysia.
J Med Syst. 2013 Oct;37(5):9971. doi: 10.1007/s10916-013-9971-2. Epub 2013 Sep 14.
This study aims to provide security solutions for implementing electronic medical records (EMRs). E-Health organizations could utilize the proposed method and implement recommended solutions in medical/health systems. Majority of the required security features of EMRs were noted. The methods used were tested against each of these security features. In implementing the system, the combination that satisfied all of the security features of EMRs was selected. Secure implementation and management of EMRs facilitate the safeguarding of the confidentiality, integrity, and availability of e-health organization systems. Health practitioners, patients, and visitors can use the information system facilities safely and with confidence anytime and anywhere. After critically reviewing security and data transmission methods, a new hybrid method was proposed to be implemented on EMR systems. This method will enhance the robustness, security, and integration of EMR systems. The hybrid of simple object access protocol/extensible markup language (XML) with advanced encryption standard and secure hash algorithm version 1 has achieved the security requirements of an EMR system with the capability of integrating with other systems through the design of XML messages.
本研究旨在为实施电子病历(EMR)提供安全解决方案。电子健康组织可以利用所提出的方法,并在医疗/健康系统中实施推荐的解决方案。记录了电子病历所需的大部分安全功能。针对这些安全功能中的每一项对所使用的方法进行了测试。在实施该系统时,选择了满足电子病历所有安全功能的组合。电子病历的安全实施和管理有助于保障电子健康组织系统的保密性、完整性和可用性。医疗从业者、患者和访客可以随时随地安全、放心地使用信息系统设施。在对安全和数据传输方法进行严格审查之后,提出了一种新的混合方法,用于在电子病历系统上实施。该方法将增强电子病历系统的健壮性、安全性和集成性。简单对象访问协议/可扩展标记语言(XML)与高级加密标准和安全哈希算法版本1的混合,通过XML消息的设计,实现了电子病历系统的安全要求,并具备与其他系统集成的能力。
