Computer Engineering and Applications ›› 2008, Vol. 44 ›› Issue (26): 233-235.DOI: 10.3778/j.issn.1002-8331.2008.26.071

• 工程与应用 • Previous Articles     Next Articles

Research on privilege system for role-based access control based on Web in electric medical record system

DONG Bin1,CHEN Jin-zhe1,LIU Xiu-ling2,ZHANG Yu3   

  1. 1.Computer Center,Hebei University Affiliated Hosptial,Baoding,Hebei 071000,China
    2.Department of Electronic and Informational Engineering,Hebei University,Baoding,Hebei 071000,China
    3.Department of Medical Management,Baoding Health Bureau,Baoding,Hebei 071000,China
  • Received:2007-11-06 Revised:2008-01-28 Online:2008-09-11 Published:2008-09-11
  • Contact: DONG Bin

基于Web的RBAC权限机制在电子病历系统的研究

董 斌1,陈进哲1,刘秀玲2,张 瑜3   

  1. 1.河北大学附属医院 计算机中心,河北 保定 071000
    2.河北大学 电子信息工程学院,河北 保定 071000
    3.保定市卫生局 医政处,河北 保定 071000
  • 通讯作者: 董 斌

Abstract: This paper firstly analyzes the necessity of secure authentication for the electric medical record system,and then researches the Cookie technology emphatically,discusses the application system of secure Cookie in detail,and analyzes the secure character of secure Cookie with the technology of PKI digital authentication.Further,with the research of role-based access control,this thesis puts forward an effective secure system based on Web.This system utilizes the secure Cookie to guarantee the security,in the mean time,introduces the cache system to improve the efficiency of achieving privilege.Through the syntheses experiment with actual data,it is proved that this system has enhanced the efficiency in some degree.Finally,the present thesis analyzes the application of this system in the electric medical record system with its characters.

摘要: 首先分析了电子病历系统安全验证的必要性,着重研究了Cookie技术,探讨了安全Cookie的应用机制,并且通过使用PKI数字认证技术,分析了安全Cookie的安全特性。进一步通过对基于角色的访问控制的深入研究,提出了一种基于Web高效安全机制。该机制在利用安全Cookie保证安全性的前提下,引入缓存机制来提高权限获取效率。通过实际数据模拟实验,结果表明该机制在效率上有一定程度的提高。最后,针对电子病历系统的特点分析了该机制在其中的应用。