摘要
根据国家信息安全等级保护制度和卫生部相关文件的要求,结合医院信息系统的分类和特点,提出了医院信息系统的定级建议,并对医院信息系统等级保护实施过程中的各个阶段分别进行了讨论。提出要采取措施同时保证系统的业务安全和信息安全,并运用PDCA持续改进的理念,确保医院信息系统的持续安全运行。
In this paper, we put forward the suggestions for grading the hospital information system (HIS) according to national classified information security protection system and the requirement of related documents of the Ministry of Health and in combination with the classification and characteristics of HIS. We also discuss every phase in implementing the classified information security protection on HIS. We point out that both the business safety and the information security should be guaranteed simultaneously, and that to use the concept of PDCA continuous improvement to ensure the continued safe operation of HIS.
出处
《计算机应用与软件》
CSCD
北大核心
2013年第1期206-208,共3页
Computer Applications and Software
关键词
信息安全等级保护
医院信息系统
实施
Classified information security protection Hospital information system Implementation