Please use this identifier to cite or link to this item:
http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/23660
Title: | 醫療資訊系統中之安全遠端存取 Secure Remote Mobile Access in Health Information Systems |
Authors: | Chia-Hui Liu 劉嘉惠 |
Advisor: | 王勝德 |
Keyword: | 醫療資訊系統,行動代理人,遠端存取,行動計算,電子醫療, Health Information Systems,Remote Access,Mobile Computing,E-medicine,Mobile Agent, |
Publication Year : | 2011 |
Degree: | 博士 |
Abstract: | 隨著網際網路蓬勃發展的影響,無線網路相關應用與技術也隨之崛起,也由於無線網路基礎建設與行動設備的進步,行動計算已在日常生活中發展出多樣化的應用,它允許使用者在行進間也能進行運算或透過網路存取遠端資訊,也因此如何確保使用者能安全的存取資訊是一個重要的議題;特別是應用在醫療資訊系統時,由於醫療資訊是記載病患重要資訊,可能包含醫師對疾病的診斷、治療和病情追蹤,以及護理人員對患者的護理措施、醫技部門的各項檢查結果,醫護人員如能在移動間也能迅速的掌握了解病患完整醫療資訊,將可以對病患做出更精確的診斷及提供更適當的治療。然而以往傳統的醫療資訊已面臨著許多問題:缺乏統一格式、資料流動性低、儲存空間及保存困難、轉移不易。為了改善這些缺點並降低醫療成本與提升醫療品質,目前各醫療機構已逐漸將資訊電子化,但是透過網路在各異質系統構成的醫療資訊系統間欲達到安全的遠端行動存取醫療資料,需要克服的最大問題在於要能確保醫療資訊能安全的傳送及存取,不會被惡意者攔截或是被未授權的醫護人員竊取資訊。因此,本論文提出使用有效且安全的遠端存取機制以解決此問題;首先是整合行動代理人在醫療資訊系統中,用以控制使用者存取醫療資訊的權限。接著,更進一步提出了改良式、有效率的安全管理機制,主要是植基於橢圓曲線上雙線性配對的概念,運用在遠端存取醫療資訊以確保隱私和存取控制權限的管理。最後提出一個限制使用者僅能在合法時間內存取資訊的存取控制機制以提高遠端醫療資訊存取的安全性。由安全分析得知這些機制能夠有效抵擋惡意者攻擊,達到安全的密鑰管理並提供有效且安全的遠端存取資訊在醫療資訊系統中,同時也促進了整體醫療品質。 For the rapid development of wireless networks, mobile computing has greatly in the past few years and would be continue that trend into the future. With advancing computation and storage capacity of mobile devices, the applications of mobile computing also become more various and popular in our lives. It enables mobile users to compute and access information from anywhere, anytime. Therefore, deploying secure remote access is the most important issue when mobile computing applications haves become critical roles of network technology, especially in mobile Health Information Systems (HIS). Because the health information is inherently sensitive, remote access of mobile environment in HIS must be computationally efficient, secure, and require minimal storage capacity. With the abilities of higher autonomy and mobility, a mobile agent is an important breakthrough on the related techniques and applications of mobile computing environment and becomes the most suitable technology for establishing secure remote access in HIS. However, remote access of mobile computing in HIS with mobile agent requires concerning the performance, efficiency, effective computational ability and security issues. Hence, this study proposed an effective and secure remote access in HIS with mobile agent, an improvement strategy for efficient migration of mobile agent and an enhance strategy for HIS in medical networks. The remote access scheme in HIS with mobile agent of this study could allow physicians immediately securely and efficiently obtaining data from different medical organizations. Then, this study proposed an enhanced architecture for the mobile agent in HIS. The scheme, based on the bilinear pairing over elliptic curves, takes the concept of identity-based access control on a hierarchical key management. Furthermore, adapting time-sensitive key management scheme in this study would enhance efficiency and security of access control. This study also proposed secure medical managerial strategies being applied to the mobile computation environments of the HIS so as to avoid the external or internal information security events, allow the medical system to work smoothly and safely that not only benefits the patients, but also allows the doctors to use it more conveniently, and further promote the overall medical quality. From the above proposed three strategies, it can achieve secure mobile computation for remote access in HIS. |
URI: | http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/23660 |
Fulltext Rights: | 未授權 |
Appears in Collections: | 電機工程學系 |
Files in This Item:
File | Size | Format | |
---|---|---|---|
ntu-100-1.pdf Restricted Access | 1.26 MB | Adobe PDF |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.