基于智能化监测平台的医疗数据交互风险治理研究

Purpose/Significance This study focuses on the construction of an intelligent risk monitoring platform for medical institutions in API data interaction scenarios, identify high-risk vulnerabilities, prevent data leakage, and strengthen data exchange security. Method/Process Using Data Plane Development Kit technology to achieve bypass flow analysis and real-time monitoring of the access behavior of a tertiary comprehensive hospitals business system. Establish a multidimensional risk assessment model based on top 10 API security vulnerabilities published by OWASP, combined with daily data security operations, building a Analysis Monitoring Evaluation Traceability Data Interaction Security Guarantee System. Result/Conclusion The hospital has carried out special rectification for API security vulnerabilities, data leakage risks, web attack risks, and account security risks detected by the platform, avoiding the occurrence of data leaks and improving the hospitals data interaction monitoring level and security protection capabilities.