[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN101521880B - Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method - Google Patents

Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method Download PDF

Info

Publication number
CN101521880B
CN101521880B CN2009100969917A CN200910096991A CN101521880B CN 101521880 B CN101521880 B CN 101521880B CN 2009100969917 A CN2009100969917 A CN 2009100969917A CN 200910096991 A CN200910096991 A CN 200910096991A CN 101521880 B CN101521880 B CN 101521880B
Authority
CN
China
Prior art keywords
module
monitoring computer
data
base
node
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2009100969917A
Other languages
Chinese (zh)
Other versions
CN101521880A (en
Inventor
潘巨龙
张道远
徐展翼
尤存钎
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Taizhou Yijian Technology Co ltd
China Jiliang University
Original Assignee
China Jiliang University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Jiliang University filed Critical China Jiliang University
Priority to CN2009100969917A priority Critical patent/CN101521880B/en
Publication of CN101521880A publication Critical patent/CN101521880A/en
Application granted granted Critical
Publication of CN101521880B publication Critical patent/CN101521880B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Measuring And Recording Apparatus For Diagnosis (AREA)

Abstract

The invention discloses a wireless real-time community medical care monitoring system with a security mechanism and a wireless real-time community medical care monitoring method. The wireless real-time community medical care monitoring system mainly comprises a wireless sensor network and a monitoring computer, wherein the wireless sensor network comprises a terminal node, a route node and a base station node; and the base station node is connected with the monitoring computer by a serial port or network port. The invention has three network formation methods according to different demands. The invention better solves the problem that the elderly and the chronic patient can transmit human physiology parameters to a medical monitoring center in real time; meanwhile, the strengthened security function overcomes the detect that the prior wireless sensor network medical monitoring system can not effectively protect the data, the invention protects the important physiology data during the transmission by adopting an efficient elliptical curve cryptographic algorithm and improves the system safety.

Description

The wireless real-time community medicine devices for interventional and the method for band security mechanism
Technical field
The present invention relates to the medical monitoring technical field, relate in particular to a kind of wireless real-time digitization community medicine devices for interventional and method with security mechanism.
Background technology
At present, medical model is to be the center with the treatment, the patient is to the examination in hospital health, sometimes connect a lot of medical treatment transducer leads on one's body, these leads lead to the bedside monitoring instrument, can collect the physiological characteristic data such as ECG electrocardiosignal, blood pressure, body temperature, blood oxygen saturation of human body like this, tested patients ' psychological is nervous to be influenced the data precision this test mode except causing easily, and the daily life to patient simultaneously also brings inconvenience.Can't bear the heavy load at large hospital, patient's difficult problems such as the expensive and inconvenience of cost of going to a hospital to see a doctor, medical model based on community medicine and family health care rises, the long-range use of wearing custodial care facility of networking, greatly facilitate the patient, make disease find that early early treatment becomes possibility, people's quality of the life is improved, thereby medical model is main to the transformation of putting prevention first from treatment also.
In recent years, wireless sensor network (Wireless Sensor Networks, be called for short WSN) is along with microelectric technique, the communication technology and development of computer have become the focus that scientific research and industrial quarters are used, and it is the important technology of 21 century.The WSN network technology is used for the information perception and the information gathering in a certain zone, can be advantageously applied to family and type community medical sanitary health supervision field.
But in the telemedicine monitoring system design and using, safety problem is the key of restriction WSN network technology extensive use always.At the health care health field, patient disease and physiological parameter are the unusual personal questions of privacy, and the organization and individual that should do not authorized is not known, more can not be known by some inimical rivals.But, because wireless signal aloft transmits, can't guarantee not allow the adversary intercept signal, What is more, and some malice adversary carries out active attack to WSN, causes that data are altered, leakage or systemic breakdown.
The conventional cipher system has two kinds of DSE arithmetic and public-key cryptosystems (or claiming asymmetric cryptosystem).Advantages such as symmetric cryptographic algorithm has fast, computation complexity is low, but shortcoming is a little less than the key management ability, and it makes encryption key distribution and broadcast authentication design complicated.And public key encryption algorithm is to the not free synchronous requirement of node, and key management is simple relatively, but overall computation complexity is higher relatively, needs more computational resource.The public key encryption algorithm of the known WSN of being usually used in is RSA Algorithm and elliptic curve encryption algorithm (EllipticCurve Cryptography is called for short the ECC algorithm) at present.Same fail safe when the ECC algorithm uses short key can reach the longer password of RSA Algorithm can be suitable with 1024 RSA Algorithm as 160 ECC algorithm for encryption effects.Therefore, the ECC algorithm has bigger advantage on arithmetic speed and transmission speed, and especially such as the WSN environment, all under the condition of limited, it is more suitable that the ECC algorithm seems for sensor network nodes storage resources and computational speed, and the present invention adopts ECC algorithm efficiently.
Summary of the invention
The objective of the invention is at the deficiencies in the prior art, a kind of wireless real-time community medicine devices for interventional and method with security mechanism is provided.
The objective of the invention is to be achieved through the following technical solutions: a kind of wireless real-time community medicine devices for interventional with security mechanism is characterized in that it mainly is made up of wireless sensor network and supervisory control comuter; Wherein, described wireless sensor network comprises terminal node, routing node and base-station node; Base-station node is connected with the monitoring computer by serial ports or network interface.
Further, terminal node mainly is made up of wireless module, CPU module, encrypting module, power module and sensing module.Described wireless module, encrypting module, power module and sensing module all link to each other with CPU module, and power module links to each other with sensing module with wireless module respectively.CPU module has a memory; Described routing node mainly is made up of wireless module, CPU module and power module.Described wireless module links to each other with power module respectively with CPU module, and wireless module links to each other by bus with CPU module.CPU module has a memory; Described base-station node comprises the node module and the gateway processes module that is used for computer network communication and storage that are used for the wireless receiving and dispatching data.Wherein, node module mainly is made up of wireless module, second CPU module and power module, and wireless module links to each other with power module respectively with second CPU module, and wireless module links to each other by bus with second CPU module.The gateway processes module mainly is made up of first CPU module and Ethernet interface/serial ports, first CPU module links to each other by bus with Ethernet interface/serial ports, the first processor module links to each other by bus with second processor module, and first CPU module links to each other with power module.The first processor module and second processor module all have a memory.
Further, described monitoring computer is this locality monitoring computer of band deciphering module and local data base.Base-station node is connected with local monitoring computer by serial ports or network interface.
Further, described monitoring computer is the long distance monitoring computer of band deciphering module and remote data base.Base-station node is connected with the long distance monitoring computer by serial ports or network interface.
Further, described monitoring computer is this locality monitoring computer of band deciphering module and local data base and the long distance monitoring computer of band deciphering module and remote data base; Base-station node is connected with local monitoring computer or long distance monitoring computer by serial ports or network interface, and local monitoring computer links to each other by wired with the long distance monitoring computer.
A kind of method for supervising of using the wireless real-time community medicine devices for interventional of above-mentioned band security mechanism, this method may further comprise the steps:
(1) terminal node selects a random number to produce the private key of terminal node, and this private key safety is kept in the memory of terminal node;
(2) utilize elliptic curve cryptosystem, terminal node is according to corresponding public key of private key regeneration of harsh one-tenth;
(3) sensing module of terminal node is gathered physiological data, and physiological data is sent in the memory;
(4) encrypting module of terminal node utilizes elliptic curve cryptosystem to carry out encryption to the physiological data in the memory;
(5) terminal node sends terminal node PKI and data encrypted bag to base-station node by its wireless module channel.If terminal node can not directly be communicated by letter with base-station node, can communicate by letter with base-station node in the multi-hop mode by guarding in the zone other terminal node or routing node;
(6) mass data of arrival base-station node is stored in the memory of base-station node temporarily;
(7) if the monitoring computer is guarded computer for this locality of band deciphering module and local data base, base-station node is sent to local monitoring computer by serial ports or network interface with the data that receive; Local monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; Local monitoring computer extracts, analyzes the relevant field through the data after the deciphering and operation such as conversion, and the storage after will changing is in local data base.Local monitoring computer access is positioned at the local data base on the local monitoring computer, and data are guarded, analyze, added up and background process such as alarm;
(8) if the monitoring computer is the long distance monitoring computer of band deciphering module and remote data base, base-station node is sent to the long distance monitoring computer by serial ports or network interface with the data that receive; The long distance monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; The long distance monitoring computer is to extracting, analyze through the relevant field of data after the deciphering and operation such as conversion, and the storage after will changing is in remote data base.The long distance monitoring computer access is positioned at the remote data base on the long distance monitoring computer, and data are guarded, analyze, added up and background process such as alarm;
(9) if the monitoring computer is this locality monitoring computer of band deciphering module and local data base and the long distance monitoring computer of band deciphering module and remote data base, base-station node is sent to local monitoring computer by serial ports or network interface with the data that receive; Local monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; Local monitoring computer extracts, analyzes the relevant field through the data after the deciphering and operation such as conversion, and the storage after will changing is in local data base.Local monitoring computer access is positioned at the local data base on the local monitoring computer, and data are guarded, analyze, added up and background process such as alarm.The long distance monitoring computer is by the computer network access local data base, and it is synchronous to carry out remote data base and local data base; Local data base with all data backups to remote data base; Local data base is only preserved the part local data in the setting-up time section, and other data beyond this time period are kept at remote data base.
The invention has the beneficial effects as follows:
1. the present invention utilizes wireless multi-channel data transmission means, make people be in or community in just can be human body relevant physiological characteristic signal, transmit to Local or Remote monitoring computer center in real time by WSN network and computer network, the monitoring center can be different according to sufferer feedbacks such as patient's condition loopback alarm signal, diagnostic result and medication guide, feedback information can be selected note, phone or network mail advice method for use.The wireless real-time Transmission mode of this employing WSN, can reduce or remove the line between bedside monitoring instrument and the medical-therapeutic treatment of human body transducer, make children under guardianship can have more free activity space, under the situation that does not influence daily life, obtain physiological parameter more accurately, sufferer just can be enjoyed and at home in the same treatment service of hospital, both save medical expense, realized the monitoring of patient under unconstrained state simultaneously again, improved patient's rehabilitation rate and quality of life.
2. system adopts the elliptic curve encryption algorithm in the public-key cryptosystem to carry out key management, can select for use symmetric cryptographic algorithm to realize the Hybrid Encryption pattern, can select for use simple xor operation to carry out effective encryption and decryption algorithm.Sensitive datas such as assurance human body physiological characteristics signal transmit with encrypted test mode, can effectively prevent external attacks such as eavesdropping.Simultaneously, in the transmission of Information process, use Message Authentication Code MAC (MessageAuthentication Code) to prevent that information from being altered by malice and abandon, make native system certain defense reaction also be arranged to internaling attack, thereby ensure the privacy of patient data and the fail safe of system, the present invention can be applicable to the wireless real time medical devices for interventional of family, community, sanatorium and hospitals at different levels.
Description of drawings
Fig. 1 is the wireless real-time community medicine devices for interventional structural representation block diagram of band security mechanism;
Fig. 2 is the terminal node structured flowchart;
Fig. 3 is the routing node structured flowchart;
Fig. 4 is the base-station node structured flowchart;
Fig. 5 is local monitoring computer network mode configuration block diagram;
Fig. 6 is local monitoring computer network mode data FB(flow block);
Fig. 7 is a long distance monitoring computer network mode configuration block diagram;
Fig. 8 is a long distance monitoring computer network mode data FB(flow block);
Fig. 9 mixes monitoring computer network mode data FB(flow block);
Figure 10 terminal node cryptographic algorithm FB(flow block);
Figure 11 guards decryption computer algorithm flow block diagram.
Embodiment
(as family, community, sanatorium and hospitals at different levels etc.) form a wireless sensor network by three kinds of dissimilar nodes in the surveyed area of native system, they are terminal node, routing node and base-station node, carry out mutual communication by wireless channel between each node, wireless signal can select for use the whole world of 2.4GHz to disclose wireless free frequency range.Terminal node can be worn on the human body, (encrypting module is realized by elliptic curve encryption algorithm to detect human body physiological characteristics signal after concurrent warp let-off elliptic curve cryptosystem is encrypted, the cryptographic algorithm flow process is seen shown in Figure 10), be sent to base-station node through route node multi-hop, or terminal node directly sends to base-station node, the patient can freely walk about in the monitored area, does not influence their daily life; Routing node is compared the few physiological parameter sensors module of terminal node, and it mainly plays packet forwarding effect, generally by a plurality of routing node stationary distribution in the monitored area; Base-station node is responsible for collecting all data of wireless sensor network in the monitored area, carry out the data centralization operation, base-station node is connected with local monitoring computer by serial ports or network interface, base-station node also can be connected with the long distance monitoring computer by network interface, a plurality of surveyed areas are shared a long distance monitoring computer, carry out the collection and the control of teledata.More than the different nodes of three classes can constitute a wireless self-organization network, inner networking mode can be selected the XMesh wireless sensor networking mode of U.S. Crossbow company for use.
Native system adopts wireless sensor network as local data collection and treatment system, adopt a kind of public-key cryptosystem---elliptic curve cryptography ECC algorithm, guarantee data integrity and fail safe in the wireless sensor network internal transmission through the suitable sensor network after the lightweight.Simultaneously, in wired computer network transmission, local monitoring computer can be selected fire compartment wall, IPSec, SSL and other traditional computer network security measure for use, strengthens data transmission security between this locality monitoring computer and long distance monitoring computer.
As shown in Figure 1, the medical monitoring system based on wireless sensor network of band security mechanism of the present invention has used three category nodes: terminal node, routing node and base-station node, form wireless self-organization network between each node, constitute the data acquisition in family or community monitoring zone and the wireless sensor network of forwarding.The terminal node collection is also encrypted after each body weight for humans wants physiological data, pass on or directly be sent to base-station node through the route node and focus on, data encrypted is delivered to Local or Remote monitoring computer at last and is decrypted that (deciphering module is realized by elliptic curve encryption algorithm, the decipherment algorithm flow process is seen shown in Figure 11), local monitoring computer and long distance monitoring computer can be selected wired connection for use.Base-station node, local monitoring computer and long distance monitoring computer are formed wired computer network.Local monitoring computer and long distance monitoring computer to each Human Physiology data that collect be decrypted, store, analyze, operation such as processing, and make corresponding conclusion, by modes such as printing and screen displays, allow Local or Remote medical advice expert can conveniently make correlated judgment, last result can select for use modes such as note, phone or mail to notify patient or its family members.
Terminal node is carried by guardianship, can detect data such as subject's physiological data such as blood pressure, blood oxygen saturation, ECG electrocardiosignal and body temperature, and terminal node has the identifier ID that is used for indicating by the guardianship identity.The terminal node device is made miniaturization, light weight, low energy consumption and portability, and has the fail safe, stability, anti-interference of wireless transmission and to the adaptability under the adverse circumstances.As shown in Figure 2, terminal node mainly is made up of wireless module, CPU module, encrypting module, power module and sensing module, wireless module, encrypting module, power module and sensing module all link to each other with CPU module, and power module links to each other with sensing module with wireless module respectively provides energy.CPU module has memory, sensing module provides blood pressure, multiple physiology transducing signals such as blood oxygen saturation and ECG electrocardio, can select according to actual needs, as selecting the blood oxygen saturation module of the auspicious Electronics Co., Ltd. of sea cowry for use, sensing module can select for use the UART serial line interface to link to each other with central processor CPU, the Human Physiology data that collect are encrypted (the cryptographic algorithm flow process is seen Figure 10) by encrypting module, in node, be packaged into the packet of set form, by wireless module transmission encrypted data, other packet of node is is also received and dispatched by wireless module, CPU module links to each other by bus with wireless module, these two modules can be selected the MICAz platform of U.S. Crossbow company for use, this platform CPU selects the ATMega128L of Atmel company for use, dominant frequency is the 8-bit microprocessor of 8MHz, has the 128KB space encoder, 4KB RAM, the communication module operating frequency is 2.4GHz, and transmission rate can be up to 250kbps.The terminal node power module can adopt 2 joint AA powered battery.Terminal node operating system can be selected TinyOS for use, and transducer communication UART driving, network route and elliptic curve encryption algorithm can be selected the NesC Programming with Pascal Language for use.
Routing node is responsible for multi-hop and is transmitted the packet of terminal node to base-station node, in community or family's monitoring wireless sensor network, can be according to certain network topology structure, in the monitoring district, arrange the fixed route node of respective numbers, the rational routing node of distribution density can make and reduce the data packet loss by terminal node transceive data bag stably in the monitoring zone.As shown in Figure 3, routing node mainly is made up of wireless module, CPU module and power module, wireless module links to each other with power module respectively with CPU module, and wireless module links to each other by bus with CPU module, and CPU module has memory.The wireless module of routing node is identical with terminal node with the design of CPU module, can select the MICAz platform of U.S. Crossbow company for use.Power module can adopt 2 joint AA powered battery, perhaps can adopt powered by direct current, and long-term power supply service is provided.
As shown in Figure 4, base-station node comprises the node module and the gateway processes module that is used for computer network communication and storage that are used for the wireless receiving and dispatching data, node module mainly is made up of wireless module, second CPU module and power module, wireless module links to each other with power module respectively with second CPU module, and wireless module links to each other by bus with second CPU module; The gateway processes module mainly is made up of first CPU module, Ethernet interface/serial ports, first CPU module links to each other by bus with Ethernet interface/serial ports, the first processor module links to each other by bus with second processor module, and first CPU module links to each other with power module.First CPU module and second CPU module all have memory.Node module in the base-station node is identical with routing node hardware, can select the MICAz platform of U.S. Crossbow company for use, wireless module is used for the transceive data bag, second CPU module is used for data are handled, and power module is by direct current or adopts POE (Power Over Ethernet) technology to realize power supply.The gateway processes module is connected by bus with the node processing module, the configuration mass storage, and the packet that storage great amount of terminals node sends over can be selected the U.S. MIB600 of Crossbow company Ethernet interface plate for use.The Ethernet interface that configures can directly link to each other with this locality or long distance monitoring computer by the RJ45 cable and carry out transceive data, and Ethernet interface is supported ARP, UDP/IP, TCP/TP, Telnet, DHCP, BOOTP, agreements such as TFTP and HTTP.The gateway processes module also can provide serial line interface and local monitoring compunication, can select the U.S. MIB520 of Crossbow company USB interface plate for use.
System's monitoring networking model of the present invention has three kinds of different modes, and they are respectively local monitoring computer network pattern, long distance monitoring computer network pattern and mix monitoring computer network pattern, describe in detail below.
A. local monitoring computer network pattern
In the local monitoring network pattern of Fig. 5, wireless sensor monitoring network and local monitoring computer are formed a simple local wireless real-time digitization community medicine devices for interventional, local monitoring computer band deciphering module and local data base, data decryption is handled in this locality monitoring computer and is realized, deciphering module is by elliptic curve cryptography system specific implementation, and the decipherment algorithm flow process is seen shown in Figure 11.This system is fit to a small community and hospital internal health care monitoring network, and local monitoring computer development platform can be selected VisualStudio 2005 and PostgreSQL database for use.
In this locality monitoring computer network pattern, all data processing and monitoring instruction are all finished dealing with in this locality, do not need to provide external network interface, the Human Physiology data are in wireless sensor network internal transmission process, the important physiological data of transmission all is a data encrypted, they deposit local data base (the decipherment algorithm flow process is seen Figure 11) in after being decrypted on this locality monitoring computer, local then monitoring computer carries out background process to data.Whole process is safe and reliable, and the monitoring personnel can guard in this locality and operate relevant information in the computer after examining by identity.
As shown in Figure 6, the specific implementation method of local monitoring computer network pattern may further comprise the steps:
At first, start base-station node, each routing node and terminal node, form a wireless sensor monitoring network.
Steps A-1, terminal node selects a random number to produce the private key of terminal node according to oval cryptographic algorithm, and this private key safety is kept in the memory of terminal node.
Steps A-2 is utilized elliptic curve cryptosystem, and terminal node is according to corresponding public key of private key regeneration of harsh one-tenth.
Steps A-3, sensing module is gathered physiological data (as signals such as human body blood oxygen, blood pressure and electrocardios), and physiological data is sent in the memory.
Steps A-4, the encrypting module in the terminal node utilizes elliptic curve cryptosystem to carry out encryption (the cryptographic algorithm flow process is seen Figure 10) to the physiological data in the memory.Can select for use simple xor operation to do cryptographic algorithm.Elliptic curve cryptosystem is used for the PKI that cryptographic algorithm need be used base-station node, and it is inserted in the terminal node memory in the burned process of terminal node program code in advance.
Steps A-5 sends terminal node PKI and data encrypted bag to base-station node by the wireless module channel.If terminal node can not directly be communicated by letter with base-station node, can communicate by letter with base-station node in the multi-hop mode by guarding in the zone other terminal node or routing node.
Steps A-6, the mass data that arrives base-station node is stored in the memory of base-station node temporarily.For accelerating the reception packet ability of base-station node, promote whole wireless sensor network data transmission speed, base-station node is not decrypted processing to enciphered data.
Steps A-7, base-station node is sent to local monitoring computer by serial ports or Ethernet interface and the communication of local monitoring computer with the data that receive.
Steps A-8, local monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing, can select for use simple xor operation to do decipherment algorithm (the decipherment algorithm flow process is seen Figure 11).
Steps A-9, local monitoring computer are extracted, are analyzed the relevant field through sensing data after the deciphering and wireless sensor network data bag and operation such as conversion, and the storage after will changing is in local data base.
Steps A-10, local monitoring computer access is positioned at the local database server on the local monitoring computer, and data are guarded, analyze, added up and background process such as alarm.
B. long distance monitoring computer network pattern
In the long distance monitoring computer network pattern of Fig. 7, one or more wireless sensor networks and a long distance monitoring computer can be formed a simple long distance wireless real-time digitization community medicine devices for interventional, and the long distance monitoring computer has deciphering module and remote data base.Deciphering module is by elliptic curve cryptography system specific implementation, and concrete decipherment algorithm FB(flow block) is seen shown in Figure 11.This pattern is characterised in that, do not need local monitoring computer, one or more families and community wireless sensor network monitoring gained physiological data are after terminal node is encrypted, data are directly delivered to the centralized and unified processing of long distance monitoring computer center by base-station node, when transmitting via computer network, because important physical data terminal node encryption (the cryptographic algorithm flow process is seen Figure 10) can transmit getting final product in the traditional computer network, network security is had not a particular requirement.Get final product so only at the long distance monitoring computer the important physiological data of receiving is carried out corresponding decryption processing, deciphering back uniform data is stored in remote data base.Long distance monitoring computer development platform can be selected VisualStudio 2005 and PostgreSQL database for use.
A plurality of radio sensor network monitorings zone is positioned at this locality, the collection in worksite physiological data; And long distance monitoring computer, deciphering module and remote data base all are deployed in remote monitoring center.The base-station node of local data acquisition zone and gateway can be selected the U.S. MIB600 of Crossbow company Ethernet interface plate for use, the Ethernet interface service is provided, this kind interface is supported ARP, UDP/IP, TCP/TP, Telnet, DHCP, BOOTP, TFTP and http protocol, can be connected on HUB, switch or the router, the remote monitoring computer is directly connected to gateway by computer network.The real-time transmission of data depends on the stability of this cable network connected mode.
The specific implementation method of long distance monitoring computer network pattern shown in Figure 8 may further comprise the steps:
At first, start base-station node, each routing node and terminal node, form wireless sensor monitoring network.
Do and steps A-1 to steps A-6 is operated equally.
Step B-7, base-station node via wired computer network and long distance monitoring compunication, is sent to long distance monitoring computer with the physiological data after the encryption that receives by the Ethernet interface on the base-station node gateway.It all is through the elliptic curve cryptosystem ciphered data that the body weight for humans of transmitting in wireless sensor monitoring network inside and computer network is wanted physiological data, has high security.The Ethernet interface of gateway provides the interface of multiple standards communication protocol, can make things convenient for long distance monitoring computer access and management, and stable connection and data transport service is provided.
Step B-8, long distance monitoring computer receive the packet that the base-station node gateway sends, in the centralized and unified memory that is stored in the long distance monitoring computer.
Step B-9, long distance monitoring computer utilize the private key and the terminal node PKI of base-station node, and enciphered data is decrypted processing, can select for use simple xor operation to do decipherment algorithm (the decipherment algorithm flow process is seen Figure 11).
Step B-10, long distance monitoring computer are to through the physiological data after the deciphering with the relevant field of wireless sensor network data bag extracts, analyzes and operation such as conversion, and the uniform data after will changing is stored in the remote data base.
Step B-11, the long distance monitoring computer access is positioned at the remote database server on the long distance monitoring computer, and data are guarded, analyze, added up and operation is handled in alarm etc.
C. mix monitoring computer network pattern
In the mixing monitoring computer network pattern of Fig. 1, physiological data the local data base is deciphered and be stored in to one or more local monitoring computers to what obtain from community and family's surveyed area, can pass through traditional computer network security technologys such as fire compartment wall, SSL and IPSec, be sent to the centralized and unified processing of long distance monitoring computer safely, make that simultaneously each local data base and remote data base are synchronous, and data decryption is handled both can to have guarded in this locality and is realized in the computer, also can directly deliver to the long distance monitoring computer by base-station node and be decrypted processing.Deciphering module is by elliptic curve cryptography system specific implementation, and the decipherment algorithm flow process is seen shown in Figure 11.This mixed mode helps local Medical Technologist and carries out rapidly and efficiently protected activity, also can provide remote medical specialist to carry out centralized and unified protected activity, improves the flexibility of whole system.
Above-mentioned this mixing monitoring computer network pattern can be carried out operations such as fast decryption, extraction, analysis, conversion and storage earlier with a large amount of wireless sensor network data bags in this locality, improve the processing speed of whole system.Utilize traditional computer network safety prevention measure, can guarantee that physiological data is in the fail safe of computer network transmission course.This mixing monitoring computer network pattern is made up of a plurality of wireless sensor monitoring networks, one or more local monitoring computers and a long distance monitoring computer.Each local monitoring computer can independently monitor and control a certain local monitoring district, and the long distance monitoring computer is convenient to the remote medical center unification and is carried out remote real time monitoring to a plurality of by the monitoring district, medication guide is provided and sends control command.Local and remote monitoring computer development platform can be selected Visual Studio 2005 and PostgreSQL database technique for use.
The specific implementation method of mixing monitoring computer network pattern shown in Figure 9 may further comprise the steps:
At first, start base-station node, each routing node and terminal node, form wireless sensor monitoring network.
Do and steps A-1 to steps A-6 is operated equally.
Step C-7, base-station node, are sent to local monitoring computer with the data that receive, and are stored in the memory with this locality monitoring compunication by Ethernet interface on the gateway or serial line interface.
Step C-8, local monitoring computer utilizes the private key and the terminal node PKI of base-station node, and enciphered data is carried out corresponding decryption processing, can select for use simple xor operation to do decipherment algorithm (concrete decipherment algorithm flow process is seen Figure 11).
Step C-9, local monitoring computer extract, analyze the relevant field through physiological data after the deciphering and wireless sensor network data bag and operation such as conversion, and the storage after will changing is in local data base.
Step C-10, local monitoring computer access is positioned at the local database server on the local monitoring computer, and data are guarded, analyze, added up and operation is handled in alarm etc.This step is to dispose monitor system on the local monitoring computer, constitutes an independently local monitor system.
Step C-11, long distance monitoring computer be by the computer network access local database server, and it is synchronous to carry out remote database server and local database server.Local database server with all data backups to the remote database server that is arranged in central hospital or other long-range large-scale monitoring center.Local database server is only preserved the part local data in the setting-up time section, and other data beyond this time period are kept at remote database server.Local monitoring computer links to each other by wired computer network with the long distance monitoring computer, in order to improve the whole system fail safe, can guard computer security technology commonly used such as computer terminal and long distance monitoring computer terminal configuring firewalls, SSL and IPSec etc. in this locality, provide safe network to connect.
Step C-12, when carrying out above-mentioned steps C-7, base-station node without this locality monitoring computer and by Ethernet interface via wired computer network and long distance monitoring compunication, the data that receive directly are sent to the long distance monitoring computer, and uniform data is stored in the memory of long distance monitoring computer.Corresponding decrypted program in the long distance monitoring computer run elliptic curve cryptosystem, utilize the private key and the terminal node PKI of base-station node, enciphered data is decrypted processing, can selects for use simple xor operation to do decipherment algorithm (the decipherment algorithm flow process is seen Figure 11).To through the transducer physiological data after the deciphering with the dependent segment of wireless sensor network data bag extracts, analyzes and operation such as conversion, and the uniform data after will changing is stored in the remote data base.
Step C-13, the long distance monitoring computer access is positioned at the remote database server on the long distance monitoring computer, and the data that collect are guarded, analyze, added up and operation is handled in alarm etc.And each local monitoring computer can carry out operations such as corresponding local analytics, statistics and alarm.
These mixed mode characteristics are, can have simultaneously one or more local monitoring computers and long-range monitoring computers in the system, and the monitoring program can be carried out Local or Remote monitoring, analysis, statistics and alarm etc. to data and be processed operation, improves system flexibility.

Claims (1)

1. a method for supervising of using the wireless real-time community medicine devices for interventional of band security mechanism is with the wireless real-time community medicine devices for interventional of security mechanism to be made up of wireless sensor network and monitoring computer; Wherein, described wireless sensor network comprises terminal node, routing node and base-station node, and base-station node is connected with the monitoring computer by serial ports or network interface; Described terminal node is made up of wireless module, CPU module, encrypting module, power module and sensing module, wireless module, encrypting module, power module and sensing module all link to each other with CPU module, power module links to each other with sensing module with wireless module respectively, and CPU module has a memory; Described routing node is made up of wireless module, CPU module and power module, wireless module links to each other with power module respectively with CPU module, wireless module links to each other by bus with CPU module, and CPU module has a memory; Described base-station node comprises the node module and the gateway processes module that is used for computer network communication and storage that are used for the wireless receiving and dispatching data, node module is made up of wireless module, second CPU module and power module, wireless module links to each other with power module respectively with second CPU module, and wireless module links to each other by bus with second CPU module; The gateway processes module is made up of first CPU module and Ethernet interface/serial ports, first CPU module links to each other by bus with Ethernet interface/serial ports, the first processor module links to each other by bus with second processor module, first CPU module links to each other with power module, and the first processor module and second processor module all have a memory; Described monitoring computer is for this locality monitoring computer of band deciphering module and local data base and/or for being with the long distance monitoring computer of deciphering module and remote data base; It is characterized in that this method may further comprise the steps:
(1) terminal node selects a random number to produce the private key of terminal node, and this private key safety is kept in the memory of terminal node;
(2) utilize elliptic curve cryptosystem, terminal node is according to corresponding public key of private key regeneration of harsh one-tenth;
(3) sensing module of terminal node is gathered physiological data, and physiological data is sent in the memory;
(4) encrypting module of terminal node utilizes elliptic curve cryptosystem to carry out encryption to the physiological data in the memory;
(5) terminal node sends terminal node PKI and data encrypted bag to base-station node by its wireless module channel; If terminal node can not directly be communicated by letter with base-station node, just communicate by letter with base-station node in the multi-hop mode by guarding in the zone other terminal node or routing node;
(6) mass data of arrival base-station node is stored in the memory of base-station node temporarily;
(7) if the monitoring computer is guarded computer for this locality of band deciphering module and local data base, base-station node is sent to local monitoring computer by serial ports or network interface with the data that receive; Local monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; Local monitoring computer to the relevant field through the data after the deciphering extract, analysis and conversion operations, and the storage after will changing is in local data base; Local monitoring computer access is positioned at the local data base on the local monitoring computer, and background process is guarded, analyzes, adds up and alarmed to data;
(8) if the monitoring computer is the long distance monitoring computer of band deciphering module and remote data base, base-station node is sent to the long distance monitoring computer by serial ports or network interface with the data that receive; The long distance monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; The long distance monitoring computer to extract through the relevant field of data after the deciphering, analysis and conversion operations, and the storage after will changing is in remote data base; The long distance monitoring computer access is positioned at the remote data base on the long distance monitoring computer, and background process is guarded, analyzes, adds up and alarmed to data;
(9) if the monitoring computer is this locality monitoring computer of band deciphering module and local data base and/or the long distance monitoring computer of band deciphering module and remote data base, base-station node is sent to local monitoring computer by serial ports or network interface with the data that receive; Local monitoring computer utilizes base-station node private key and terminal node PKI, and the enciphered data of sending to is decrypted processing; Local monitoring computer to the relevant field through the data after the deciphering extract, analysis and conversion operations, and the storage after will changing is in local data base; Local monitoring computer access is positioned at the local data base on the local monitoring computer, and background process is guarded, analyzes, adds up and alarmed to data; The long distance monitoring computer is by the computer network access local data base, and it is synchronous to carry out remote data base and local data base; Local data base with all data backups to remote data base; Local data base is only preserved the part local data in the setting-up time section, and other data beyond this time period are kept at remote data base.
CN2009100969917A 2009-03-26 2009-03-26 Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method Active CN101521880B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2009100969917A CN101521880B (en) 2009-03-26 2009-03-26 Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2009100969917A CN101521880B (en) 2009-03-26 2009-03-26 Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method

Publications (2)

Publication Number Publication Date
CN101521880A CN101521880A (en) 2009-09-02
CN101521880B true CN101521880B (en) 2011-04-27

Family

ID=41082205

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2009100969917A Active CN101521880B (en) 2009-03-26 2009-03-26 Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method

Country Status (1)

Country Link
CN (1) CN101521880B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107734011A (en) * 2017-09-28 2018-02-23 深圳市晟达机械设计有限公司 Wireless health care costs in community monitoring system in real time

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8798051B2 (en) * 2010-02-18 2014-08-05 Hitachi, Ltd. Information and communication processing system, method, and network node
CN102394746B (en) * 2011-11-01 2014-03-12 上海耀华称重系统有限公司 Data transmission method of weighing system based on digital sensor
CN103312738A (en) * 2012-03-08 2013-09-18 普天信息技术研究院有限公司 Remote wireless secure transmission method and system of medical health information
CA2884970C (en) * 2012-09-18 2021-12-14 Koninklijke Philips N.V. Controlling access to clinical data analyzed by remote computing resources
CN103799990A (en) * 2012-12-25 2014-05-21 常州先进制造技术研究所 Remote monitoring system for health of senior citizens in scientific and technological community
CN103198637A (en) * 2013-04-16 2013-07-10 九江学院 Scheme of wireless sensor network system for on-line environment detection
CN103279665A (en) * 2013-05-29 2013-09-04 美合实业(苏州)有限公司 Multi-user and multi-parameter wireless detection, diagnosis, service and monitoring method
CN103544442A (en) * 2013-10-10 2014-01-29 南京邮电大学 Individual privacy protection method and device for electronic health record data
CN103593554B (en) * 2013-11-01 2017-08-08 王浩锴 Remote emergency system
CN104252577A (en) * 2014-09-11 2014-12-31 来安县新元机电设备设计有限公司 Remote physical sign monitoring method, physical sign monitoring terminal and remote monitoring terminal
CN104483940B (en) * 2014-12-10 2017-04-19 西安理邦科学仪器有限公司 Networking method and device for monitoring system
CN104519133B (en) * 2014-12-24 2018-11-06 刘俊彪 Method and gateway based on Multi-serial port transmission medical detecting Instrument data and system
CA3010116C (en) * 2016-02-23 2024-05-14 nChain Holdings Limited Determining a common secret for the secure exchange of information and hierarchical, deterministic cryptographic keys
CN106388798A (en) * 2016-09-23 2017-02-15 深圳职业技术学院 A Zigbee-based community health monitoring method and system
CN108184258B (en) * 2018-01-03 2021-06-08 杭州康晟健康管理咨询有限公司 Medical intelligent wireless monitoring system
CN108231212B (en) * 2018-01-03 2022-03-04 安徽省信盾科技有限公司 Community medical care monitoring system
CN111107529B (en) * 2019-11-21 2023-07-04 广东健康在线信息技术股份有限公司 Physical examination data transmission and storage method

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1631315A (en) * 2004-11-25 2005-06-29 中国科学院计算技术研究所 Medical treatment monitoring system, apparatus and method based on wireless sensor network
WO2007096810A1 (en) * 2006-02-24 2007-08-30 Koninklijke Philips Electronics N.V. Wireless body sensor network
CN200944602Y (en) * 2006-09-12 2007-09-05 吉林大学 Ethernet application processor
CN101152077A (en) * 2007-07-23 2008-04-02 北京爱心无限医疗技术开发有限公司 Wireless intelligent tutelage system and method for medical treatment
CN101161193A (en) * 2006-10-10 2008-04-16 赵蕴博 A physiological signal monitoring device and method for implementing monitoring

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1631315A (en) * 2004-11-25 2005-06-29 中国科学院计算技术研究所 Medical treatment monitoring system, apparatus and method based on wireless sensor network
WO2007096810A1 (en) * 2006-02-24 2007-08-30 Koninklijke Philips Electronics N.V. Wireless body sensor network
CN200944602Y (en) * 2006-09-12 2007-09-05 吉林大学 Ethernet application processor
CN101161193A (en) * 2006-10-10 2008-04-16 赵蕴博 A physiological signal monitoring device and method for implementing monitoring
CN101152077A (en) * 2007-07-23 2008-04-02 北京爱心无限医疗技术开发有限公司 Wireless intelligent tutelage system and method for medical treatment

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107734011A (en) * 2017-09-28 2018-02-23 深圳市晟达机械设计有限公司 Wireless health care costs in community monitoring system in real time

Also Published As

Publication number Publication date
CN101521880A (en) 2009-09-02

Similar Documents

Publication Publication Date Title
CN101521880B (en) Wireless real-time community medical care monitoring system with security mechanism and wireless real-time community medical care monitoring method
Alromaihi et al. Cyber security challenges of deploying IoT in smart cities for healthcare applications
Huang et al. Pervasive, secure access to a hierarchical sensor-based healthcare monitoring architecture in wireless heterogeneous networks
Ren et al. Monitoring patients via a secure and mobile healthcare system
Mdhaffar et al. IoT-based health monitoring via LoRaWAN
Mana et al. Trust key management scheme for wireless body area networks.
Touati et al. U-healthcare system: State-of-the-art review and challenges
Soufiene et al. RESDA: robust and efficient secure data aggregation scheme in healthcare using the IoT
Georgakakis et al. An analysis of bluetooth, zigbee and bluetooth low energy and their use in wbans
Pan et al. Security mechanism for a wireless-sensor-network-based healthcare monitoring system
CN102802151A (en) Wireless body area network symmetric key negotiation method
Zhao et al. Biometric behavior authentication exploiting propagation characteristics of wireless channel
CN104135727B (en) A kind of wireless body area network safe transmission method
Mišić et al. Implementation of security policy for clinical information systems over wireless sensor networks
CN201409230Y (en) Wireless real-time community medical care monitoring system with safety mechanism
Amini et al. Toward a security model for a body sensor platform
Khader et al. Simplified AES algorithm for healthcare applications on Internet of Thing
Pirbhulal et al. A novel biometric algorithm to body sensor networks
CN212519059U (en) Sleep monitoring belt system based on Internet of things
Mou et al. Network protocols for the Internet of Health Things
Mohanavalli et al. Security architecture for at-home medical care using body sensor network
Sangari et al. Polynomial based light weight security in wireless body area network
Nidhya et al. A study on requirements, challenges and applications of wireless body area network
Abarna et al. Light-weight security architecture for IEEE 802.15. 4 body area networks
Anitha et al. A Technical Aspect of WBAN Security Protocols and Their Challenges: Brief Survey

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CP01 Change in the name or title of a patent holder

Address after: 310018 learning source street, Xiasha Higher Education Park, Hangzhou, Zhejiang

Patentee after: China Jiliang University

Address before: 310018 learning source street, Xiasha Higher Education Park, Hangzhou, Zhejiang

Patentee before: China Jiliang University

CP01 Change in the name or title of a patent holder
TR01 Transfer of patent right

Effective date of registration: 20230116

Address after: 318000 Room 1303, Floor 3, Building 1, No. 188, East Section of Kaifa Avenue, Haihong Street, Taizhou Bay New District, Taizhou City, Zhejiang Province

Patentee after: Taizhou Yijian Technology Co.,Ltd.

Address before: 310018 learning source street, Xiasha Higher Education Park, Hangzhou, Zhejiang

Patentee before: China Jiliang University

TR01 Transfer of patent right