• Journal of the Korea Society of Computer and Information
• /
• v.10 no.4 s.36
• /
• pp.37-46
• /
• 2005

According to the increasing interests of medical information services for healthy living, the multimedia authoring tools for medical information service contents are strongly required. In this paper, a new multimedia authoring tool supporting user-friendly interfaces is implemented, which is based on SMIL(Synchronized Multimedia Integration Language) producing Web-based multimedia contents. The implemented authoring tool in this paper not only provides functionalities to play, verify and modify the partial contents immediately but also offers capabilities to insert multimedia objects into contents with ease. The multimedia contents containing disparate healthcare and medical information can be easily designed with this tool. The enhanced usability of this tool can contribute to the realization of diverse medical information services.

• Convergence Security Journal
• /
• v.11 no.3
• /
• pp.39-46
• /
• 2011

Smart environment of health information technology, u-Healthcare architecture, ad-hoc networking and wireless communications environment are major factors that increase vulnerability of u-healthcare information systems. Traffic domain is the concept of network route that identifies the u-Healthcare information systems area as the traffic passing and security technologies application. The criterion of division is an area requiring the application of security technology. u-Healthcare information system domains are derived from the intranet section. the public switched network infrastructure, and networking sectors. Domains of health information systems are separated by domain vulnerability reason. In this study, domain-specific security vulnerability assessment system based on the USN in u-Healthcare system is derived. The model used in this study suggests how to establish more effective measurement USN-based health information network security vulnerability which has been vague until now.

• KIISE Transactions on Computing Practices
• /
• v.22 no.9
• /
• pp.441-448
• /
• 2016

RBAC(Role-Based Access Control), which is widely used in Medical Information Systems, is vulnerable to illegal access through abuse/misuse of permissions. In order to solve this problem, treatment based risk assessment of access requests is necessary. In this paper, we propose a risk evaluation method based on treatment information. We use network analysis to determine the correlation between treatment information and access objects. Risk evaluation can detect access that is unrelated to the treatment. It also provides indicators for information disclosure threats of insiders. We verify the validity using large amounts of data in real medical information systems.

• Journal of the Korea Convergence Society
• /
• v.3 no.2
• /
• pp.13-17
• /
• 2012

An integrated medical information system should be equipped for the activation of u-healthcare service. In addition, the integrated medical information system should be based on an authentication system to be implemented in a safe environment. However, several requirements are being developed yet. In this paper, biometric authentication system will be designed and proposed for u-healthcare services for the integrated medical information system to go one step further.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.35 no.6B
• /
• pp.962-969
• /
• 2010

Recently, RFID technology can successfully be used to reduce medical errors. This technology can aid in the accurate matching of patients with their medications and treatments. The enthusiasm for using RFID technology in medical settings has been tempered by privacy concerns. In this paper, we propose a secure and efficient RFID authentication system to not only authenticate patients' authenticity but also protect patients' personal medical informations. The proposed system consists of RFID-based patient authentication protocol and database security protocol. As a result, since the proposed RFID authentication system provides strong security and efficiency, it can be used practically for patient authentication and personal medical information protection on the high technology medical environments such as u-Hospital and u-Healthcare.

• Annual Conference of KIPS
• /
• 2013.11a
• /
• pp.868-870
• /
• 2013

전자의무기록(Electronic Medical Record, EMR) 시스템은 기존에 수기로 작성하던 의무기록을 디지털화 한 것이다. 이는 다양한 장점이 있지만 의료인이 관리 도메인을 통해 환자의 정보를 세밀하게 수집할 수 있는 환자 개인의 프라이버시 침해 문제가 발생하게 된다. 즉, 관계자에 의해 의도적인 유출이 발생하거나 의료정보의 거래, 복제 등 위험성이 존재한다. 특히 일부 의료정보는 고용 차별이나 사회적 차별 등 환자에게 정신적 고통을 안겨줄 수 있다. 이러한 프라이버시 침해는 유전성 질환 유전자를 가진 사람에게 유전적 요인에 근거하는 고용 차별이 발생할 수 있다. 관련연구에서는 환자의 임상적(Clinical) 또는 유전적(Genomic) 정보가 자신의 신원과 연계되어 있다면 프라이버시 침해가 발생할 수 있음을 나타낸다. 이러한 프라이버시 문제로 인해 EMR 시스템에 기반을 둔 전자건강기록(Electronic Health Record, EHR) 시스템 또한 개인 프라이버시 침해의 위험이 존재하게 된다. 따라서 의료정보의 프라이버시 보호를 위해 부당한 고용 차별 보험 차별 사회적 차별로 연결될 수 있는 개인 의료정보의 유출방지, 타인에게 알려지고 싶지 않은 개인 의료정보가 무단으로 거래되지 않는 것을 보장해야 한다. 이를 위해 본 논문에서는 의무기록의 익명화를 통해 환자와 의무기록 간의 관계를 제거하는 여러 방법들을 소개한다.

• Journal of Digital Convergence
• /
• v.10 no.6
• /
• pp.341-347
• /
• 2012

Network Access Control system of medical asset protection solutions that installation and operation on system and network to provide a process that to access internal network after verifying the safety of information communication devices. However, there are still the internal medical-data leakage threats due to spoof of authorized devices and unauthorized using of users are away hours. In this paper, Network 2-Factor Access Control Model proposed for prevention the medical-data leakage by improving the current Network Access Control system. The proposed Network 2-Factor Access Control Model allowed to access the internal network only actual users located in specific place within the organization and used authorized devices. Therefore, the proposed model to provide a safety medical asset environment that protecting medical-data by blocking unauthorized access to the internal network and unnecessary internet access of authorized users and devices.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2010.10a
• /
• pp.453-455
• /
• 2010

HIS(Hospital Information System) is a medical information system to support a variety of tasks in hospitals. currently, Many of the hospitals maintain the medical information through the HIS. But It has a problem that each individual people do not confirm medical information correctly. because Medical information based on HIS is use in hospitals. In this paper, we studied plan for the individual medical information management system by confirming your medical history in a web site.

• Annual Conference of KIPS
• /
• 2004.05a
• /
• pp.491-494
• /
• 2004

개인의 신상 정보와 같은 민감한 정보를 다루는 의료기관의 정보시스템을 스마트 카드를 이용하여 보다 안전하고 효율적인 시스템을 설계 및 구현하고자 한다. 현재 빠르게 보급되고 있는 자바 카드 기술을 이용하여 설계되었으며, 기존의 시스템에 사용자와 의료기관사이의 인터페이스를 스마트 카드로 대체함으로써 보안적 측면의 강화 및 사용자의 중심의 편의성을 높이도록 설계하였다.

• Annual Conference on Human and Language Technology
• /
• 2019.10a
• /
• pp.454-455
• /
• 2019

의료정보 교환을 위한 국제 표준인 HL7 메시지의 처리와 HL7의 다양한 버전 간 호환성 문제를 해결하기 위해 객체 지향적 구조에 기반한 HL7 파서(Parser)가 개발되었다. 그러나 개발된 파서를 의료정보시스템과 연동하여 사용하기 위해서는 의료분야 전문가와 소프트웨어 전문가의 협력이 필수적이다. 또한, 이들 전문가의 협업을 위해서는 각 분야의 전문지식에 대한 상호 이해가 전제되어야 하는데, 이를 위해서는 오랜 시간 상호간의 많은 노력이 필요한 과정이다. 따라서 본 연구에서는 버전 간 호환 가능한 HL7 파서를 기반으로 하여 HL7 메시지의 생성과 변환을 가능하게 하는 HL7 GUI 도구를 설계한다. 이를 통해, 컴퓨터 프로그래밍 언어에 익숙하지 않은 의료 분야의 전문가들도 HL7 GUI 도구를 통해 개념적으로 표현되는 그래프를 직접 디자인하여 의료정보시스템 간의 다양한 버전의 HL7 메시지를 처리하고 교환할 수 있는 환경을 제공한다.