A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection

The rapid development of wearable sensors and the 5G network empowers traditional medical treatment with the ability to collect patients’ information remotely for monitoring and diagnosing purposes. Meanwhile, the health-related mobile apps and devices also generate a large amount of medical data, w...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Wireless communications and mobile computing 2021, Vol.2021 (1)
Hauptverfasser: Chen, Yingwen, Meng, Linghang, Zhou, Huan, Xue, Guangtao
Format: Artikel
Sprache:eng
Schlagworte:
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue 1
container_start_page
container_title Wireless communications and mobile computing
container_volume 2021
creator Chen, Yingwen
Meng, Linghang
Zhou, Huan
Xue, Guangtao
description The rapid development of wearable sensors and the 5G network empowers traditional medical treatment with the ability to collect patients’ information remotely for monitoring and diagnosing purposes. Meanwhile, the health-related mobile apps and devices also generate a large amount of medical data, which is critical for promoting disease research and diagnosis. However, medical data is too sensitive to share, which is also a common issue for IoT (Internet of Things) data. The traditional centralized cloud-based medical data sharing schemes have to rely on a single trusted third party. Therefore, the schemes suffer from single-point failure and lack of privacy protection and access control for the data. Blockchain is an emerging technique to provide an approach for managing data in a decentralized manner. Especially, the blockchain-based smart contract technique enables the programmability for participants to access the data. All the interactions are authenticated and recorded by the other participants of the blockchain network, which is tamper resistant. In this paper, we leverage the K-anonymity and searchable encryption techniques and propose a blockchain-based privacy-preserving scheme for medical data sharing among medical institutions and data users. To be specific, the consortium blockchain, Hyperledger Fabric, is adopted to allow data users to search for encrypted medical data records. The smart contract, i.e., the chaincode, implements the attribute-based access control mechanisms to guarantee that the data can only be accessed by the user with proper attributes. The K-anonymity and searchable encryption ensure that the medical data is shared without privacy leaking, i.e., figuring out an individual patient from queries. We implement a prototype system using the chaincode of Hyperledger Fabric. From the functional perspective, security analysis shows that the proposed scheme satisfies security goals and precedes others. From the performance perspective, we conduct experiments by simulating different numbers of medical institutions. The experimental results demonstrate that the scalability and performance of our scheme are practical.
doi_str_mv 10.1155/2021/6685762
format Article
fullrecord <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_2550177037</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2550177037</sourcerecordid><originalsourceid>FETCH-LOGICAL-c337t-7173b3081adb2ca780a2a134048f3edea5a6b4a241ad4e9e891cf7bdf162534c3</originalsourceid><addsrcrecordid>eNp90E1LAzEQBuAgCtbqzR8Q8Khr87HZbI9t_QRFQT0vs9msm7pNapJa-u9NafHoaYbhmRl4ETqn5JpSIUaMMDoqilLIgh2gARWcZGUh5eFfX4yP0UkIc0IIT3iA-gme9k59qQ6MzaYQdIOfdWMU9PgGIuC3Dryxn2mYiDVhgdcmdngSozf1Kur9zkQpHQKeORu96zHYBr968wNqk6qLWkXj7Ck6aqEP-mxfh-jj7vZ99pA9vdw_ziZPmeJcxkxSyWtOSgpNzRTIkgADynOSly3XjQYBRZ0DyxPI9ViXY6paWTctLZjgueJDdLG7u_Tue6VDrOZu5W16WTEhCJWScJnU1U4p70Lwuq2W3izAbypKqm2e1TbPap9n4pc73hnbwNr8r38BMdl0nw</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2550177037</pqid></control><display><type>article</type><title>A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection</title><source>EZB-FREE-00999 freely available EZB journals</source><source>Wiley Online Library (Open Access Collection)</source><source>Alma/SFX Local Collection</source><creator>Chen, Yingwen ; Meng, Linghang ; Zhou, Huan ; Xue, Guangtao</creator><contributor>Lin, Yaguang ; Yaguang Lin</contributor><creatorcontrib>Chen, Yingwen ; Meng, Linghang ; Zhou, Huan ; Xue, Guangtao ; Lin, Yaguang ; Yaguang Lin</creatorcontrib><description>The rapid development of wearable sensors and the 5G network empowers traditional medical treatment with the ability to collect patients’ information remotely for monitoring and diagnosing purposes. Meanwhile, the health-related mobile apps and devices also generate a large amount of medical data, which is critical for promoting disease research and diagnosis. However, medical data is too sensitive to share, which is also a common issue for IoT (Internet of Things) data. The traditional centralized cloud-based medical data sharing schemes have to rely on a single trusted third party. Therefore, the schemes suffer from single-point failure and lack of privacy protection and access control for the data. Blockchain is an emerging technique to provide an approach for managing data in a decentralized manner. Especially, the blockchain-based smart contract technique enables the programmability for participants to access the data. All the interactions are authenticated and recorded by the other participants of the blockchain network, which is tamper resistant. In this paper, we leverage the K-anonymity and searchable encryption techniques and propose a blockchain-based privacy-preserving scheme for medical data sharing among medical institutions and data users. To be specific, the consortium blockchain, Hyperledger Fabric, is adopted to allow data users to search for encrypted medical data records. The smart contract, i.e., the chaincode, implements the attribute-based access control mechanisms to guarantee that the data can only be accessed by the user with proper attributes. The K-anonymity and searchable encryption ensure that the medical data is shared without privacy leaking, i.e., figuring out an individual patient from queries. We implement a prototype system using the chaincode of Hyperledger Fabric. From the functional perspective, security analysis shows that the proposed scheme satisfies security goals and precedes others. From the performance perspective, we conduct experiments by simulating different numbers of medical institutions. The experimental results demonstrate that the scalability and performance of our scheme are practical.</description><identifier>ISSN: 1530-8669</identifier><identifier>EISSN: 1530-8677</identifier><identifier>DOI: 10.1155/2021/6685762</identifier><language>eng</language><publisher>Oxford: Hindawi</publisher><subject>Access control ; Applications programs ; Blockchain ; Consortia ; Cryptography ; Data integrity ; Data retrieval ; Data search ; Datasets ; Electronic devices ; Encryption ; Health care facilities ; Health services ; Information sharing ; Internet of Things ; Medical research ; Mobile computing ; Privacy ; Remote monitoring ; Security ; Trusted third parties</subject><ispartof>Wireless communications and mobile computing, 2021, Vol.2021 (1)</ispartof><rights>Copyright © 2021 Yingwen Chen et al.</rights><rights>Copyright © 2021 Yingwen Chen et al. This work is licensed under http://creativecommons.org/licenses/by/4.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c337t-7173b3081adb2ca780a2a134048f3edea5a6b4a241ad4e9e891cf7bdf162534c3</citedby><cites>FETCH-LOGICAL-c337t-7173b3081adb2ca780a2a134048f3edea5a6b4a241ad4e9e891cf7bdf162534c3</cites><orcidid>0000-0003-2319-4103</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,780,784,4024,27923,27924,27925</link.rule.ids></links><search><contributor>Lin, Yaguang</contributor><contributor>Yaguang Lin</contributor><creatorcontrib>Chen, Yingwen</creatorcontrib><creatorcontrib>Meng, Linghang</creatorcontrib><creatorcontrib>Zhou, Huan</creatorcontrib><creatorcontrib>Xue, Guangtao</creatorcontrib><title>A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection</title><title>Wireless communications and mobile computing</title><description>The rapid development of wearable sensors and the 5G network empowers traditional medical treatment with the ability to collect patients’ information remotely for monitoring and diagnosing purposes. Meanwhile, the health-related mobile apps and devices also generate a large amount of medical data, which is critical for promoting disease research and diagnosis. However, medical data is too sensitive to share, which is also a common issue for IoT (Internet of Things) data. The traditional centralized cloud-based medical data sharing schemes have to rely on a single trusted third party. Therefore, the schemes suffer from single-point failure and lack of privacy protection and access control for the data. Blockchain is an emerging technique to provide an approach for managing data in a decentralized manner. Especially, the blockchain-based smart contract technique enables the programmability for participants to access the data. All the interactions are authenticated and recorded by the other participants of the blockchain network, which is tamper resistant. In this paper, we leverage the K-anonymity and searchable encryption techniques and propose a blockchain-based privacy-preserving scheme for medical data sharing among medical institutions and data users. To be specific, the consortium blockchain, Hyperledger Fabric, is adopted to allow data users to search for encrypted medical data records. The smart contract, i.e., the chaincode, implements the attribute-based access control mechanisms to guarantee that the data can only be accessed by the user with proper attributes. The K-anonymity and searchable encryption ensure that the medical data is shared without privacy leaking, i.e., figuring out an individual patient from queries. We implement a prototype system using the chaincode of Hyperledger Fabric. From the functional perspective, security analysis shows that the proposed scheme satisfies security goals and precedes others. From the performance perspective, we conduct experiments by simulating different numbers of medical institutions. The experimental results demonstrate that the scalability and performance of our scheme are practical.</description><subject>Access control</subject><subject>Applications programs</subject><subject>Blockchain</subject><subject>Consortia</subject><subject>Cryptography</subject><subject>Data integrity</subject><subject>Data retrieval</subject><subject>Data search</subject><subject>Datasets</subject><subject>Electronic devices</subject><subject>Encryption</subject><subject>Health care facilities</subject><subject>Health services</subject><subject>Information sharing</subject><subject>Internet of Things</subject><subject>Medical research</subject><subject>Mobile computing</subject><subject>Privacy</subject><subject>Remote monitoring</subject><subject>Security</subject><subject>Trusted third parties</subject><issn>1530-8669</issn><issn>1530-8677</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2021</creationdate><recordtype>article</recordtype><sourceid>RHX</sourceid><sourceid>ABUWG</sourceid><sourceid>AFKRA</sourceid><sourceid>AZQEC</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><sourceid>GNUQQ</sourceid><recordid>eNp90E1LAzEQBuAgCtbqzR8Q8Khr87HZbI9t_QRFQT0vs9msm7pNapJa-u9NafHoaYbhmRl4ETqn5JpSIUaMMDoqilLIgh2gARWcZGUh5eFfX4yP0UkIc0IIT3iA-gme9k59qQ6MzaYQdIOfdWMU9PgGIuC3Dryxn2mYiDVhgdcmdngSozf1Kur9zkQpHQKeORu96zHYBr968wNqk6qLWkXj7Ck6aqEP-mxfh-jj7vZ99pA9vdw_ziZPmeJcxkxSyWtOSgpNzRTIkgADynOSly3XjQYBRZ0DyxPI9ViXY6paWTctLZjgueJDdLG7u_Tue6VDrOZu5W16WTEhCJWScJnU1U4p70Lwuq2W3izAbypKqm2e1TbPap9n4pc73hnbwNr8r38BMdl0nw</recordid><startdate>2021</startdate><enddate>2021</enddate><creator>Chen, Yingwen</creator><creator>Meng, Linghang</creator><creator>Zhou, Huan</creator><creator>Xue, Guangtao</creator><general>Hindawi</general><general>Hindawi Limited</general><scope>RHU</scope><scope>RHW</scope><scope>RHX</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>7XB</scope><scope>8FD</scope><scope>8FE</scope><scope>8FG</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>ARAPS</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>COVID</scope><scope>DWQXO</scope><scope>GNUQQ</scope><scope>HCIFZ</scope><scope>JQ2</scope><scope>K7-</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>M0N</scope><scope>P5Z</scope><scope>P62</scope><scope>PIMPY</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>Q9U</scope><orcidid>https://orcid.org/0000-0003-2319-4103</orcidid></search><sort><creationdate>2021</creationdate><title>A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection</title><author>Chen, Yingwen ; Meng, Linghang ; Zhou, Huan ; Xue, Guangtao</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c337t-7173b3081adb2ca780a2a134048f3edea5a6b4a241ad4e9e891cf7bdf162534c3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2021</creationdate><topic>Access control</topic><topic>Applications programs</topic><topic>Blockchain</topic><topic>Consortia</topic><topic>Cryptography</topic><topic>Data integrity</topic><topic>Data retrieval</topic><topic>Data search</topic><topic>Datasets</topic><topic>Electronic devices</topic><topic>Encryption</topic><topic>Health care facilities</topic><topic>Health services</topic><topic>Information sharing</topic><topic>Internet of Things</topic><topic>Medical research</topic><topic>Mobile computing</topic><topic>Privacy</topic><topic>Remote monitoring</topic><topic>Security</topic><topic>Trusted third parties</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Chen, Yingwen</creatorcontrib><creatorcontrib>Meng, Linghang</creatorcontrib><creatorcontrib>Zhou, Huan</creatorcontrib><creatorcontrib>Xue, Guangtao</creatorcontrib><collection>Hindawi Publishing Complete</collection><collection>Hindawi Publishing Subscription Journals</collection><collection>Hindawi Publishing Open Access</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics &amp; Communications Abstracts</collection><collection>ProQuest Central (purchase pre-March 2016)</collection><collection>Technology Research Database</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>Advanced Technologies &amp; Aerospace Collection</collection><collection>ProQuest Central Essentials</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>Coronavirus Research Database</collection><collection>ProQuest Central Korea</collection><collection>ProQuest Central Student</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Computer Science Collection</collection><collection>Computer Science Database</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>Computing Database</collection><collection>Advanced Technologies &amp; Aerospace Database</collection><collection>ProQuest Advanced Technologies &amp; Aerospace Collection</collection><collection>Access via ProQuest (Open Access)</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>ProQuest Central Basic</collection><jtitle>Wireless communications and mobile computing</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Chen, Yingwen</au><au>Meng, Linghang</au><au>Zhou, Huan</au><au>Xue, Guangtao</au><au>Lin, Yaguang</au><au>Yaguang Lin</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection</atitle><jtitle>Wireless communications and mobile computing</jtitle><date>2021</date><risdate>2021</risdate><volume>2021</volume><issue>1</issue><issn>1530-8669</issn><eissn>1530-8677</eissn><abstract>The rapid development of wearable sensors and the 5G network empowers traditional medical treatment with the ability to collect patients’ information remotely for monitoring and diagnosing purposes. Meanwhile, the health-related mobile apps and devices also generate a large amount of medical data, which is critical for promoting disease research and diagnosis. However, medical data is too sensitive to share, which is also a common issue for IoT (Internet of Things) data. The traditional centralized cloud-based medical data sharing schemes have to rely on a single trusted third party. Therefore, the schemes suffer from single-point failure and lack of privacy protection and access control for the data. Blockchain is an emerging technique to provide an approach for managing data in a decentralized manner. Especially, the blockchain-based smart contract technique enables the programmability for participants to access the data. All the interactions are authenticated and recorded by the other participants of the blockchain network, which is tamper resistant. In this paper, we leverage the K-anonymity and searchable encryption techniques and propose a blockchain-based privacy-preserving scheme for medical data sharing among medical institutions and data users. To be specific, the consortium blockchain, Hyperledger Fabric, is adopted to allow data users to search for encrypted medical data records. The smart contract, i.e., the chaincode, implements the attribute-based access control mechanisms to guarantee that the data can only be accessed by the user with proper attributes. The K-anonymity and searchable encryption ensure that the medical data is shared without privacy leaking, i.e., figuring out an individual patient from queries. We implement a prototype system using the chaincode of Hyperledger Fabric. From the functional perspective, security analysis shows that the proposed scheme satisfies security goals and precedes others. From the performance perspective, we conduct experiments by simulating different numbers of medical institutions. The experimental results demonstrate that the scalability and performance of our scheme are practical.</abstract><cop>Oxford</cop><pub>Hindawi</pub><doi>10.1155/2021/6685762</doi><orcidid>https://orcid.org/0000-0003-2319-4103</orcidid><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier ISSN: 1530-8669
ispartof Wireless communications and mobile computing, 2021, Vol.2021 (1)
issn 1530-8669
1530-8677
language eng
recordid cdi_proquest_journals_2550177037
source EZB-FREE-00999 freely available EZB journals; Wiley Online Library (Open Access Collection); Alma/SFX Local Collection
subjects Access control
Applications programs
Blockchain
Consortia
Cryptography
Data integrity
Data retrieval
Data search
Datasets
Electronic devices
Encryption
Health care facilities
Health services
Information sharing
Internet of Things
Medical research
Mobile computing
Privacy
Remote monitoring
Security
Trusted third parties
title A Blockchain-Based Medical Data Sharing Mechanism with Attribute-Based Access Control and Privacy Protection
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-23T12%3A12%3A16IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=A%20Blockchain-Based%20Medical%20Data%20Sharing%20Mechanism%20with%20Attribute-Based%20Access%20Control%20and%20Privacy%20Protection&rft.jtitle=Wireless%20communications%20and%20mobile%20computing&rft.au=Chen,%20Yingwen&rft.date=2021&rft.volume=2021&rft.issue=1&rft.issn=1530-8669&rft.eissn=1530-8677&rft_id=info:doi/10.1155/2021/6685762&rft_dat=%3Cproquest_cross%3E2550177037%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2550177037&rft_id=info:pmid/&rfr_iscdi=true