Medical Data Management on Blockchain with Privacy
- 431 Downloads
Medical data are important in diagnosis, treatment, recovery, and medical accident investigation. The integrity and availability of medical data are the basic guarantee for the smooth operation of these activities. The privacy of medical data is a natural demand from the sensitivity of medical data. At present, there are mainly two ways to protect the privacy of medical data. One way is to store medical data in a local database and set up an access control strategy of the database. The other way is to encrypt medical data with the patient’s key and to share the key when needed. The problem with the first method is that the data in the local database may be modified or deleted. The problem with the second method is that the key cannot be shared when the patient dies during the diagnosis and treatment. These two problems will damage the availability of data. This paper proposes to establish a shared key that could be reconstructed by the legitimate parties before the process of diagnosis and treatment begins. The data in the diagnosis and treatment process is encrypted and stored in a blockchain using the shared key. The proposal meets the integrity, availability and privacy requirements of medical data. It uses the sibling intractable function families (SIFF) to establish a shared key, and uses the Hyperledger Fabric to store encrypted data. The simulation shows that the system has good efficiency. Additionally, it is the first time to introduce SIFF to a blockchain application.
KeywordsMedical data Privacy Integrity Availability Blockchain
This work is supported by the National Key R&D Program of China (2017YFB0802500), Supported by Guangxi Key Laboratory of Cryptography and Information Security (No.GCIS201711), Natural Science Foundation of China (61672550), Fundamental Research Funds for the Central Universities (No. 17lgjc45).
- 1.Bazemore, N.: Does your doctor have malpractice claims? How to find out, https://www.forbes.com/sites/amino/2016/04/19/does-your-doctor-have-malpractice-claims-how-to-find-out/#54189b955a64, Accessed July 2018
- 2.Wiki: Medical malpractice in the United States. https://en.wikipedia.org/wiki/Medical_malpractice_in_the_United_States. Accessed July 2018
- 3.Omar, A. A., Rahman, M. S., Basu, A., and Kiyomoto, S.: MediBchain: a blockchain based privacy preserving platform for Healthcare Data. In: International Conference on Security, Privacy and Anonymity in Computation, Communication and Storage, pp. 534–543, 2017.Google Scholar
- 5.Dubovitskaya, A., Xu, Z., Ryu, S., Schumacher, M., and Wang, F.: Secure and trustable electronic medical records sharing using Blockchain, arXiv preprint arXiv:1709.06528, 2017
- 7.Zheng, Y., Hardjono, T., and Pieprzyk, J.: Sibling intractable function families and their applications. In: International Conference on the Theory and Application of Cryptology, pp. 124–138 , 1991.Google Scholar
- 8.Azaria, A., Ekblaw, A., Vieira, T., and Lippman, A.: MedRec: using blockchain for medical data access and permission management. In: International Conference on Open and Big Data, pp. 25–30, 2016.Google Scholar
- 9.Gem, Gem Health, https://gem.co/, Accessed February 2018
- 10.Kannan, S., and Smith, M.: GemOS Platform Whitepaper, https://211hzr1wjznm2pclk01j90ly-wpengine.netdna-ssl.com/wp-content/uploads/2016/10/GemOSPlatformWhitepaper.pdf, Accessed July 2018
- 11.Xia, Q., Sifah, E. B., Asamoah, K. O., Gao, J., Du, X., and Guizani, M., MeDShare: trustless medical data sharing among cloud service providers via blockchain. IEEE Access PP(99):1–1, 2017.Google Scholar
- 12.Hyperledger, A blockchain platform for the enterprise, http://hyperledger-fabric.readthedocs.io/en/release-1.2/, Accessed July 2018
- 13.Network Working Group, Traceable Anonymous Certificate, https://tools.ietf.org/html/rfc5636, Accessed August 2018