CN104285236A - System and method for security of data communication having biometrics - Google Patents
System and method for security of data communication having biometrics Download PDFInfo
- Publication number
- CN104285236A CN104285236A CN201380014855.3A CN201380014855A CN104285236A CN 104285236 A CN104285236 A CN 104285236A CN 201380014855 A CN201380014855 A CN 201380014855A CN 104285236 A CN104285236 A CN 104285236A
- Authority
- CN
- China
- Prior art keywords
- biological characteristic
- encrypted
- data communication
- measuring instrument
- safety guarantee
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000004891 communication Methods 0.000 title claims abstract description 52
- 238000000034 method Methods 0.000 title claims abstract description 20
- 230000005540 biological transmission Effects 0.000 claims description 8
- 238000005259 measurement Methods 0.000 description 11
- 230000036772 blood pressure Effects 0.000 description 8
- 239000008280 blood Substances 0.000 description 6
- 210000004369 blood Anatomy 0.000 description 6
- WQZGKKKJIJFFOK-GASJEMHNSA-N Glucose Natural products OC[C@H]1OC(O)[C@H](O)[C@@H](O)[C@@H]1O WQZGKKKJIJFFOK-GASJEMHNSA-N 0.000 description 4
- 230000000694 effects Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 239000008103 glucose Substances 0.000 description 4
- 230000003862 health status Effects 0.000 description 4
- 230000036760 body temperature Effects 0.000 description 3
- 230000037396 body weight Effects 0.000 description 3
- 238000006243 chemical reaction Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000007726 management method Methods 0.000 description 2
- 238000005303 weighing Methods 0.000 description 2
- 208000017667 Chronic Disease Diseases 0.000 description 1
- 210000000577 adipose tissue Anatomy 0.000 description 1
- 230000032683 aging Effects 0.000 description 1
- QVGXLLKOCUKJST-UHFFFAOYSA-N atomic oxygen Chemical compound [O] QVGXLLKOCUKJST-UHFFFAOYSA-N 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000001684 chronic effect Effects 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- 238000003745 diagnosis Methods 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 229910052760 oxygen Inorganic materials 0.000 description 1
- 239000001301 oxygen Substances 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 230000002980 postoperative effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3231—Biological data, e.g. fingerprint, voice or retina
-
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H40/00—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices
- G16H40/60—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices
- G16H40/67—ICT specially adapted for the management or administration of healthcare resources or facilities; ICT specially adapted for the management or operation of medical equipment or devices for the operation of medical equipment or devices for remote operation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/88—Medical equipments
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Life Sciences & Earth Sciences (AREA)
- Biodiversity & Conservation Biology (AREA)
- Biomedical Technology (AREA)
- General Health & Medical Sciences (AREA)
- Measuring And Recording Apparatus For Diagnosis (AREA)
Abstract
The present invention relates to a system and method for the security of data communication having biometrics. The present invention provides a system for the security of data communication having biometrics that includes a personal heath measuring unit that measures the biometrics and transmits the measured biometrics, a gateway that receives the measured biometrics, determines whether the received biometrics are encrypted, encrypts the received biometrics if the received biometrics are not encrypted, and transmits the encrypted biometrics, and a health and medical information server that receives the encrypted biometrics, performs decrypting on the encrypted biometrics, and stores the decrypted biometrics. Moreover, the present invention provides a method for the security of data communication having biometrics.
Description
Technical field
The present invention relates to data security safeguards technique, in more detail, relating to when carrying out the data communication comprising the biological informations such as blood pressure, heart rate, body weight, body temperature for the system of the safety guarantee of data and method thereof.
Background technology
Instant health care (Ubiquitous Health Care) technology be while the patient made in ordinary people, chronic, old man, rehabilitation or postoperative patients etc. support the family at home easily or simply with the short period or with persistent state measure health information and monitor health state thus at once obtain the service of the expert about health status change, based on the technology with/without the line communications infrastructure.This technology is expected to and by daily health control and the sharp increase effective management of chronic disease greatly being alleviated to the medical expense caused because of aging population, and can be believed to the phenomenon by providing efficient medical services to make up medical professional's deficiency.In the past, at measurement biological characteristic in process transmit eventually to the device for integrated management biological characteristic, because not having the safety guarantee of structure to the information of these data, therefore this information is obtained by third party by very high possibility.In addition, when jointly enjoying the instrument for measuring biological characteristic, cannot learn that whose biological characteristic measured biological characteristic is.
Summary of the invention
Technical task
Thus, considering above-mentioned aspect, the object of the present invention is to provide system and the method thereof of the safety guarantee of the data communication for having biological characteristic can transmitting the biological characteristic recorded safely.
In addition, another object of the present invention is to provide the individual that can identify exactly for biological characteristic and can takes care of its data exactly according to each individual and the system of the safety of the data colleague for having biological characteristic browsed for it and method thereof.
Technical scheme
System for the safety guarantee realizing the data communication for having biological characteristic according to a preferred embodiment of the invention of object described above comprises personal health measuring instrument, gateway and health-care hospital information server, wherein, described personal health measuring instrument is measured described biological characteristic and is also transmitted the biological characteristic recorded, whether the biological characteristic received described in the biological characteristic recorded described in described gateway receives also judges is encrypted, and when not having encrypted, described gateway performs encryption and transferring encrypted biological characteristic to the described biological characteristic received, described health-care hospital information server receives described encrypted biological characteristic and performs deciphering to described encrypted biological characteristic and store decrypted biological characteristic.
When the biological characteristic recorded described in transmitting, transmit in the biological characteristic recorded described in the authentication information of the user of the biological characteristic recorded described in described personal health measuring instrument can identify is mapped to, described gateway receives described authentication information and certification user.
Described encrypted biological characteristic is converted to HL7 form and transmits by described gateway.
When the biological characteristic recorded described in transmitting, described personal health measuring instrument is by transmitting according to the mode of IEEE 11073 PHD (Personal Health Device).
System for the safety guarantee realizing the data communication for having biological characteristic according to a preferred embodiment of the invention of above-mentioned purpose comprises personal health measuring instrument and measures the step that described biological characteristic also transmits the biological characteristic recorded; The biological characteristic recorded described in gateway receives also judges that whether the biological characteristic received is encrypted, when not having encrypted, performs encryption and the step of transferring encrypted biological characteristic to the biological characteristic received; Health-care hospital information server receives described encrypted biological characteristic and deciphers according to described encryption the biological characteristic execution received and store the step of decrypted biological characteristic.
In the step of the biological characteristic recorded described in transmission, when the biological characteristic recorded described in transmitting, the authentication information of the user of the biological characteristic recorded described in described personal health measuring instrument can identify to be mapped in described biological characteristic and to transmit, and described gateway receives described authentication information and carrys out certification user.
In the step of the described encrypted biological characteristic of transmission, described encrypted biological characteristic is converted to HL7 form and transmits by described gateway.
In the step of the biological characteristic recorded described in transmission, when the biological characteristic recorded described in transmitting, described personal health measuring instrument is by transmitting according to the mode of IEEE 11073 PHD (Personal Health Device).
Beneficial effect
As mentioned above according to embodiments of the invention, encrypt at least one times by performing in personal health measuring instrument and gateway, thus the biological characteristic that records can be encrypted safely and transmit, in addition, in units of individual, certification biological characteristic is carried out by authentication information, thus the biological characteristic of the biological characteristic of unique individual and other people can be made a distinction storage clearly, and then the safety guarantee of biological characteristic can be improved.
Accompanying drawing explanation
Fig. 1 is for illustration of having according to an embodiment of the invention for having the block scheme of the system of the safety guarantee of the data communication of biological characteristic.
Fig. 2 is the block scheme for illustration of the concrete structure of personal health measuring instrument according to an embodiment of the invention.
Fig. 3 is the block scheme for illustration of the concrete structure of gateway according to an embodiment of the invention.
Fig. 4 is the process flow diagram for illustration of data communications security support method according to an embodiment of the invention.
Embodiment
Before the present invention is described in detail, the term used in this instructions hereinafter illustrated and claim or word should not be construed as being limited to the implication in general or dictionary, but according to the concept definition term of term or word with the principle be described with the invention of method to oneself of the best, can should be construed as implication and the concept of technological thought according to the invention according to inventor.Therefore, should understand, in the embodiment recorded in this instructions and accompanying drawing, illustrated structure is most preferred embodiment of the present invention instead of represents all technological thoughts of the present invention, therefore, should understand the multiple equipollent and variation that have and can replace these embodiments from the application's angle.
Below, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.Now, it should be noted that textural element identical is in the accompanying drawings represented by same-sign.In addition, the detailed description of the known function and structure that may obscure main idea of the present invention may be omitted.For identical reason, because a part of textural element in accompanying drawing is exaggerated or is omitted or illustrated briefly, so the size of each textural element is not reflect its actual size completely.
Fig. 1 is for illustration of according to an embodiment of the invention for having the block scheme of the system of the safety guarantee of the data communication of biological characteristic.
With reference to Fig. 1, system is essentially the system of the health for systematically managing user according to an embodiment of the invention, for this reason, diagnosed the health status of individual by the biological characteristic of user individual, and manage the health of user according to the health status of diagnosis.
For this reason, system comprises personal health measuring instrument (Personal Health Device according to an embodiment of the invention; PHD) 100, gateway 200 and health-care hospital information server 300.
Personal health measuring instrument 100 is essentially the device of the biological characteristic for measuring user individual.This personal health measuring instrument 100 can enumerate instrument for detecting sphygmus and blood oxygen saturation (Pulse Oximeter), blood pressure monitor (Blood Pressure Monitor), thermometer (Thermometer), weighing scale (Weighing Scale), blood glucose meter (Glucose Meter), body fat analyzer (Body composition analyzer), forced volume,expiratory measuring instrument (Peak flow), electrocardiograph (electrocardiogram; ECG) etc.In addition, the biological characteristic of the individual that the indivedual personal health measuring instruments 100 cited by utilization record can enumerate body weight, body temperature, blood pressure, blood sugar, heart rate etc.
Personal health measuring instrument 100 is measured this biological characteristic and is transmitted the biological characteristic recorded to gateway 200.Especially, before transmission biological characteristic, personal health measuring instrument 100 can perform the data comprising biological characteristic and once encrypts and transmit.In addition, personal health measuring instrument can also will be used for identifying that transmitted biological characteristic is that the identifier (identification) being used for certification of whose biological characteristic to be included in biological characteristic and to transmit.
Communication path between personal health measuring instrument 100 with gateway 200 is that logic point-to-point (point-to-point) is connected, and personal health measuring instrument 100 communicates with a gateway 200.Gateway 200 can use extra point to point connect to communicate with multiple personal health measuring instrument 100 simultaneously.IEEE 11073 PHD defines the communication protocol between above-mentioned personal health measuring instrument 100 and gateway 200, and this IEEE 11073 PHD is followed in the communication according to an embodiment of the invention between personal health measuring instrument 100 and gateway 200.
Gateway 200 performs substantially to be collected biological characteristic from multiple personal health measuring instrument 100 and transmits the effect of the biological characteristic collected to health-care hospital information server 300.Now, biological characteristic is converted according to canonical form and is transmitted.Such canonical form preferably utilizes Health Category 7 (Health Level 7; HL7).HL7 information as information delivery protocol, its in order to by all to the file used in medical field, information, view data etc. medical information documentations and electronization and be defined.The all information used in the medical fields such as HL7 information definition hospital, and comprise be in hospital/the leaving hospital of patient, transfer from one department to another, various inquiry, medical treatment result, reservation, institute's business, insurance, clinical file etc.
Particularly, in an embodiment of the present invention, when gateway 200 receives biological characteristic and authentication information from personal health measuring instrument 100, by authentication information certification user and to biological characteristic execution superencipher.Subsequently, the authentication information of biological characteristic according to canonical form conversion and each user for biological characteristic is transmitted to health-care hospital information server 300 according to canonical form converting biological feature.Above-mentioned once encryption and superencipher in any one can be omitted.Such as, when personal health measuring instrument 100 does not have encrypting module, only superencipher can be performed.In addition, when once encrypt be performed, gateway 200 can omit superencipher.In addition, once encryption and superencipher can all be performed.
Health-care hospital information server 300 performs substantially to be collected multiple biological characteristic and diagnoses the health status of each user and manage the effect of the health of each user.Health-care hospital information server 300 receives the biological characteristic of user individual, and performs deciphering according to by the encryption that in personal health measuring instrument 100 and gateway 200, at least one performs, thus obtains biological characteristic.In addition, health-care hospital information server 300 stores the biological characteristic extracted from biological characteristic in units of the user of gateway 200 certification.
Fig. 2 is the block scheme for illustration of the concrete structure of personal health measuring instrument according to an embodiment of the invention.
Personal health measuring instrument 100 comprises measurement module 110, safety guarantee module 120, communication module 130 and control module 140.
Measurement module 110 performs the effect of measuring biological characteristic according to the kind of personal health measuring instrument.Such as, when personal health measuring instrument 100 is blood pressure monitor (Blood Pressure Monitor), measurement module 110 Measure blood pressure, when personal health measuring instrument 100 is blood glucose meter (Glucose Meter), measurement module 110 measures blood sugar.
Safety guarantee module 120 performs encryption to the biological characteristic recorded by measurement module 110.This cryptographic algorithm can utilize SEED, ECC, RSA, BABIN, KCDSA, McElice etc.
Communication module 130 carries out as with gateway 200 module that communicates, and it can transmit biological characteristic according to IEEE11073 PHD standard to gateway 200.This communication module 130 can utilize RFID, bluetooth (Bluetooth), Z-ripple, ZigBee, Wi-Fi, USB, LAN etc. realize.
Authentication module 140 is for personal authentication.This authentication module 140 receives the authentication information inputted by user, or generates the authentication information of personal health measuring instrument 100 self.This authentication information can be can identify the identifier of user individual or can identify the identifier of the personal health measuring instrument 100 that user individual is special.In addition, authentication module 140 perform by receive or the authentication information that generates be mapped to the effect of biological characteristic.When receiving authentication information, authentication module 140 can pass through near-field communication (Near Field Communication; NFC) mode receives authentication information.
Control module 150 controls the flowing of the succession of signals for measurement module 110, safety guarantee module 120, communication module 130 and authentication module 140.That is, when measurement module 110 measures biological characteristic, control module 150 is controlled safety guarantee module 120 and once encrypts to be performed by safety guarantee module 120 pairs of biological characteristics.In addition, control module 150 controls authentication module 140 the authentication information of user individual is mapped to biological characteristic by authentication module 140.In addition, control module 150 control communication module 130 with by communication module 130 according to IEEE11073 PHD standard transmission biological characteristic and the authentication information being mapped to biological characteristic.
Fig. 3 is the block scheme for illustration of the concrete structure of gateway according to an embodiment of the invention.
With reference to Fig. 3, gateway 200 comprises communication unit 210, authentication ' unit 220, safety guarantee unit 230 and control module 240.
Communication unit 210 is for carrying out with personal health measuring instrument 100 and health-care hospital information server 300 unit that communicates.Communication unit 210 can comprise for personal health measuring instrument 100 carry out the proximity communication module that communicates with for carrying out with health-care hospital information server 300 the wide-area communication module that communicates.The proximity communication module of communication unit 210 can receive biological characteristic according to IEEE 11073 PHD standard from personal health measuring instrument 100, and this communication module 130 can utilize RFID, bluetooth (Bluetooth), Z-ripple, ZigBee, Wi-Fi, USB, LAN etc. realize.Wide-area communication module is connected to broadband network in several ways with the module communicated with health-care hospital information server 300.When completing the certification of the biological characteristic received and ciphering process, biological characteristic is transferred to health-care hospital information server 300 by wide-area communication module together with authentication information.Such as, wide-area communication module can be communicated to be utilized by base station the mode of broadband mobile network.3GPP LTE can be enumerated typically as this mode.In addition, wide-area communication module can utilize AP to be connected to broadband network.As such mode, WLAN (wireless local area network) (Wireless Local Area Network can be enumerated; WLAN), WiFi (Wireless Fidelity) or World Interoperability for Microwave Access, WiMax alliance (Worldwide Interoperability for Microwave Access; WiMAX) etc.In addition, wide-area communication module also can utilize wireless personal domain network (Wireless Personal Area Network; WPAN).In this case, broadband network can be connected to by the gateway for wireless personal domain network.
Authentication ' unit 220 is the unit of the authentication information received from personal health measuring instrument 100 for certification.Authentication ' unit 220 transmits personal health measuring instrument 100 or its user of corresponding biological characteristic in advance by authentication information certification, thus whether certification can utilize corresponding service.
The biological characteristic that safety guarantee unit 230 pairs of measurement modules 110 record performs superencipher.This cryptographic algorithm can utilize SEED, ECC, RSA, BABIN, KCDSA, McElice etc.Now, safety guarantee unit 230 judges whether the once encryption of the safety guarantee module 120 of personal health measuring instrument 100 is performed, when encryption is not performed, performs encryption to biological characteristic, when encryption is performed, optionally can perform encryption.That is, once encryption and superencipher in any one can be omitted, once encrypt and superencipher also can all be performed.
When receiving from communication unit 210 biological characteristic comprising authentication information, control module 240 controls authentication ' unit 220 and performs certification with the authentication information by receiving.In addition, control module 240, after the form of the biological characteristic received according to HL7 standard handovers, controls safety guarantee unit 230 to pass through the biological feature encryption of safety guarantee unit 230 to conversion.Subsequently, control module 240 controls communication unit 210 authentication information is transferred to health-care hospital information server 300 together with biological characteristic by communication unit 210.
In addition, in above-described embodiment of reference Fig. 2 and Fig. 3, authentication information is illustrated as and is transferred to gateway by personal health measuring instrument 100.
According to other embodiments of the invention, other device that authentication information also can be carried by user individual, such as mobile communication terminal etc. are directly transferred to gateway 200, in this case, gateway 200 can carry out certification to the authentication information of user's input on the biological characteristic received, and when certification completes, authentication information is mapped to biological characteristic.Now, authentication information can be transferred to gateway 200 in NFC mode by other device that user individual carries.
Fig. 4 is the process flow diagram for illustration of the data communications security method according to the embodiment of the present invention.
With reference to Fig. 4, the biological characteristic of user measured by personal health measuring instrument 100 in step S410.The generation of this biological characteristic can be consisted of the measurement module 110 of personal health measuring instrument 100.Herein, this bio signal can comprise blood pressure, body temperature, body weight, blood sugar, heart rate etc.
After measurement biological characteristic, personal health measuring instrument 100 performs biological characteristic in the step s 420 and once encrypts.Herein, this encryption is consisted of the safety guarantee module 120 of personal health measuring instrument 100, and the security algorithms such as SEED, ECC, RSA, BABIN, KCDSA, McElice can be utilized to perform.
When biological characteristic is encrypted, personal health measuring instrument 100 transmits biological characteristic to gateway 200 in step S430.Now, as the communication protocol being transferred to gateway 200, preferably utilize the mode according to IEEE 11073 PHD (Personal Health Device).Particularly, personal health measuring instrument 100 can be mapped to biological characteristic using as the authentication information being used for the identifier identifying user in step S430, and transmits together with biological characteristic.This identifier is the identifier of personal health measuring instrument 100 or the identifier of user individual, and is registered in advance on health-care hospital information server.
The gateway 200 receiving biological characteristic performs personal authentication to the biological characteristic received in step S440.Now, personal authentication is consisted of the authentication ' unit 210 of gateway 200, and utilizes the authentication information transmitted by personal health measuring instrument 100 to perform certification.Now, authentication ' unit 210 can receive the information needed for certification in advance and after storage, utilize the authentication information transmitted by personal health measuring instrument 100 to perform certification from health-care hospital information server 300.
When certification completes, gateway 200 performs superencipher to authentic biological characteristic in step S450.This cipher mode can utilize the security algorithms such as SEED, ECC, RSA, BABIN, KCDSA, McElice.Herein, above-mentioned step S420 and step S450 separately once encryption and superencipher in any one can be omitted.Such as, when personal health measuring instrument 100 does not have encrypting module, only can carry out superencipher.In addition, when once encrypt be performed, gateway 200 can omit superencipher.In addition, once encryption and superencipher can all be performed.
Subsequently, gateway 200 in step S460 according to Health Category 7 (Health Level 7; HL7), after converting biological feature, in step S470, biological characteristic is transmitted to health-care hospital information server 300.Now, the biological characteristic transmitted can be transmitted together with the authentication information of certification user individual.
Herein, health-care hospital information server 300 is the servers existed as any one entity of cloud network system.Health-care hospital information server 300 receives the biological characteristic of user individual and performs deciphering according to the encryption performed by least one in personal health measuring instrument 100 and gateway 200 in S480 step.Subsequently, health-care hospital information server 300 stores the biological characteristic extracted by performing deciphering to the biological characteristic performing encryption in units of the user of gateway 200 certification in step S490.
In addition, in order to close to biological characteristic, need the encryption according to being performed by least one in personal health measuring instrument 100 and gateway 200 to perform deciphering, and in order to browse stored biological characteristic, need again to carry out personal authentication.As mentioned above, the safe class for personal biology characteristics can be improved according to the present invention.
Although use several preferred embodiment to describe the present invention hereinbefore, these embodiments are exemplary instead of determinate.As mentioned above, those skilled in the art should be understood that can to the multiple change of the invention process and distortion according to impartial principle when not deviating from the interest field of thought of the present invention and appended claims.
Claims (8)
1., for having a system for the safety guarantee of the data communication of biological characteristic, relating to the system of the safety guarantee of the data communication for having biological characteristic, it is characterized in that, comprise:
Personal health measuring instrument, measures described biological characteristic and also transmits the biological characteristic recorded;
Gateway, whether the biological characteristic received described in the biological characteristic recorded described in reception also judges is encrypted, when not having encrypted, performs encryption and transferring encrypted biological characteristic to the described biological characteristic received; And
Health-care hospital information server, receives described encrypted biological characteristic and performs deciphering to described encrypted biological characteristic and store decrypted biological characteristic.
2. as claimed in claim 1 for having the system of the safety guarantee of the data communication of biological characteristic, it is characterized in that, when the biological characteristic recorded described in transmitting, transmit in the biological characteristic recorded described in the authentication information of the user of the biological characteristic recorded described in described personal health measuring instrument can identify is mapped to, described gateway receives described authentication information and certification user.
3. as claimed in claim 1 for having the system of the safety guarantee of the data communication of biological characteristic, it is characterized in that, described encrypted biological characteristic is converted to HL7 form and transmits by described gateway.
4. as claimed in claim 1 for having the system of the safety guarantee of the data communication of biological characteristic, it is characterized in that, when the biological characteristic recorded described in transmitting, described personal health measuring instrument is by transmitting according to the mode of IEEE 11073 PHD.
5., for having a method for the safety guarantee of the data communication of biological characteristic, relating to the system of the safety guarantee of the data communication for having biological characteristic, it is characterized in that, comprise the following steps:
Personal health measuring instrument is measured described biological characteristic and is also transmitted the biological characteristic recorded;
The biological characteristic recorded described in gateway receives also judges that whether the biological characteristic received is encrypted, when not having encrypted, performs encryption and transferring encrypted biological characteristic to the biological characteristic received; And
Health-care hospital information server receives described encrypted biological characteristic and deciphers according to described encryption the biological characteristic execution received and store decrypted biological characteristic.
6. as claimed in claim 5 for having the method for the safety guarantee of the data communication of biological characteristic, it is characterized in that, in the step of the biological characteristic recorded described in transmission, when the biological characteristic recorded described in transmitting, the authentication information of the user of the biological characteristic recorded described in described personal health measuring instrument can identify to be mapped in described biological characteristic and to transmit, and described gateway receives described authentication information and certification user.
7. as claimed in claim 5 for having the method for the safety guarantee of the data communication of biological characteristic, it is characterized in that, in the step of the described encrypted biological characteristic of transmission, described encrypted biological characteristic is converted to HL7 form and transmits by described gateway.
8. as claimed in claim 5 for having the method for the safety guarantee of the data communication of biological characteristic, it is characterized in that, in the step of the biological characteristic recorded described in transmission, when the biological characteristic recorded described in transmitting, described healthy equipment is by transmitting according to the mode of IEEE 11073 PHD.
Applications Claiming Priority (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| KR1020120029949A KR20130107837A (en) | 2012-03-23 | 2012-03-23 | A security system and a method for communicating data having biometric data |
| KR10-2012-0029949 | 2012-03-23 | ||
| PCT/KR2013/001369 WO2013141491A1 (en) | 2012-03-23 | 2013-02-21 | System and method for security of data communication having biometrics |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104285236A true CN104285236A (en) | 2015-01-14 |
Family
ID=49222905
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201380014855.3A Pending CN104285236A (en) | 2012-03-23 | 2013-02-21 | System and method for security of data communication having biometrics |
Country Status (3)
| Country | Link |
|---|---|
| KR (1) | KR20130107837A (en) |
| CN (1) | CN104285236A (en) |
| WO (1) | WO2013141491A1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111382409A (en) * | 2020-03-19 | 2020-07-07 | 支付宝(杭州)信息技术有限公司 | Identity authentication method and device for protecting privacy |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10263959B2 (en) | 2014-11-28 | 2019-04-16 | Samsung Electronics Co., Ltd. | Method for communicating medical data |
| CN104933654B (en) * | 2015-05-29 | 2018-06-15 | 安徽师范大学 | Community medicine Internet of Things method for secret protection |
| KR101646567B1 (en) * | 2015-06-18 | 2016-08-08 | 계명대학교 산학협력단 | User authentication method and system via the tattoo recognition in the bio-electrical signal measurement environment |
| KR101646566B1 (en) * | 2015-06-18 | 2016-08-08 | 계명대학교 산학협력단 | User authentication method and system via the ecg signal acquisition in the bio-electrical signal measurement environment using wearable sensors |
| KR20170135294A (en) * | 2016-05-31 | 2017-12-08 | 주식회사 비트컴퓨터 | System detecting abnormality and method therof |
| KR101933638B1 (en) * | 2018-01-22 | 2019-03-15 | 정철오 | Wellness service system using security-enhanced residential gateway device |
| KR102407101B1 (en) * | 2022-02-25 | 2022-06-10 | 주식회사 에이직스 | A data processing system of wearable device based on mobile device and Bluetooth |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20060082660A (en) * | 2005-01-13 | 2006-07-19 | 주식회사 락테크놀로지 | Medical information service system and method thereof |
| WO2008044867A1 (en) * | 2006-10-12 | 2008-04-17 | Md Ware Co., Ltd. | Physiological signal monitoring system and method, terminal |
| US20110137681A1 (en) * | 2009-12-04 | 2011-06-09 | Electronics And Telecommunications Research Institute | System for managing personal health device measurement data based on hl7 cda standard |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2416522A1 (en) * | 2009-03-30 | 2012-02-08 | Panasonic Corporation | Healthcare system |
-
2012
- 2012-03-23 KR KR1020120029949A patent/KR20130107837A/en active Application Filing
-
2013
- 2013-02-21 CN CN201380014855.3A patent/CN104285236A/en active Pending
- 2013-02-21 WO PCT/KR2013/001369 patent/WO2013141491A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20060082660A (en) * | 2005-01-13 | 2006-07-19 | 주식회사 락테크놀로지 | Medical information service system and method thereof |
| WO2008044867A1 (en) * | 2006-10-12 | 2008-04-17 | Md Ware Co., Ltd. | Physiological signal monitoring system and method, terminal |
| US20110137681A1 (en) * | 2009-12-04 | 2011-06-09 | Electronics And Telecommunications Research Institute | System for managing personal health device measurement data based on hl7 cda standard |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111382409A (en) * | 2020-03-19 | 2020-07-07 | 支付宝(杭州)信息技术有限公司 | Identity authentication method and device for protecting privacy |
Also Published As
| Publication number | Publication date |
|---|---|
| KR20130107837A (en) | 2013-10-02 |
| WO2013141491A1 (en) | 2013-09-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104285236A (en) | System and method for security of data communication having biometrics | |
| Chakraborty et al. | A review on telemedicine-based WBAN framework for patient monitoring | |
| US11126969B2 (en) | Patient sensor data exchange systems and methods | |
| US20170303119A1 (en) | Information processing system, method of obtaining monitor information, and sensor device | |
| US20150334474A1 (en) | Platform for patient monitoring | |
| US20100122083A1 (en) | Method and apparatus for securely communicating personal health information | |
| JP2015512175A (en) | Medical device remote monitoring system and method | |
| Jiménez-Fernández et al. | Usability and interoperability in wireless sensor networks for patient telemonitoring in chronic disease management | |
| JP2015532021A (en) | System and method for remote consultation and condition assessment using parallel data and voice communication paths | |
| Othman et al. | Security architecture for at-home medical care using Wireless Sensor Network | |
| Chen et al. | Hadoop‐Based Healthcare Information System Design and Wireless Security Communication Implementation | |
| US20120157790A1 (en) | Physical examination method using mobile terminal, and gateway and mobile terminal for physical examination | |
| KR101359483B1 (en) | Cooperating System supported by Extensible Communication And Joint Gateway Device, and Data unification Processing Method thereof | |
| KR20140096245A (en) | A security system and a method for communicating data having biometric data | |
| Alqudah | The internet of things in healthcare: a survey for architecture, current and future applications, mobile application, and security | |
| Celestina et al. | An auction based health monitoring scheme using group management techniques in wireless sensor network | |
| KR101398902B1 (en) | encryption data transfering method of Wireless Module Embedded Blood Glucose Test Meter and system using thereof | |
| KR101543783B1 (en) | The methods and apparatus of login to home health tele-monitoring device with personal device | |
| Ahmed et al. | Integration of wireless sensor network with medical service provider for ubiquitous e-healthcare | |
| Velez et al. | Taxonomy of current medical devices for POCT applications and the potential acceptance of Bluetooth technology for secure interoperable applications | |
| KR101129450B1 (en) | Relay apparatus and method for managing measurement data using therof | |
| Kumbhare et al. | Wireless body area sensor network authentication using hmac function | |
| Lee et al. | A design of U-health system on smart phone using ISO/IEEE 11073 PHD standard | |
| US20230377703A1 (en) | Coordinating Gateway Component of Digital Healthcare Platform | |
| KR20120012204A (en) | Method for processing alwayson signal in a packet switchboard system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150114 |