| In recent years, government of our country has invested a lot into the medical informatization technology, so that the Regional Picture Archiving and Communication System(Regional PACS) has been developing fast. Regional PACS is established based on the regional hospitals. It implements the picture unified archiving and communication among the hospitals in community or town. This thesis investigates the security solutions of a regional PACS system – xPACS which works in the health information network.Compared with the traditional PACS which work in the local area network, regional PACS has more security requirements, because it connects to wide area network, serves the users in different hospitals, and archives much more data. This thesis analyzes the framework of the x PACS, defines the security issues that need to be resolved from the system architecture level, and breaks down the security issues into three layers. On the host safety layer, the host redundancy, the high availability and the rapid fault recovery are the key points. Considering that the traditional database solution has the weakness about single point failure and low performance flexibility, this thesis provides the database cluster solution based on the double hot standby and the dynamic virtual IP switching. On the application safety layer, this thesis discusses the necessity of the unified authentication service and the potential problems on identity, such as the data missed, the password leaking and the high concurrent read. To implement the unified authentication service cluster solution, this thesis takes advantage of several technologies include LDAP, HTTPS and Servlet. On the data safety layer, the data flows and the security requirements for the key data are discussed. The solution is based on the security profiles in DICOM protocol, and it can make sure the completeness and the correctness for the key data on transmission and storage.The solutions in this thesis have been tested and used in project. They can not only ensure the data in Regional PACS is secretive, completeness and correctness, but also make sure the system is high available in the long time running. They help xPACS to meet the security requirement of the information system in our country. |
PDF Full Text Request