基于联盟链的医疗数据安全共享方案

doi:10.3969/j.issn.0255-8297.2021.01.011

应用科学学报 ›› 2021, Vol. 39 ›› Issue (1): 123-134.doi: 10.3969/j.issn.0255-8297.2021.01.011

• 区块链 • 上一篇

基于联盟链的医疗数据安全共享方案

周正强^1,2, 陈玉玲^1,2, 李涛^1,2, 任晓军³, 卿欣艺^1,2

1. 贵州大学计算机科学与技术学院, 贵州贵阳 550025;
2. 贵州大学公共大数据国家重点实验室, 贵州贵阳 550025;
3. 潍坊科技学院农蔬区块链实验室, 山东寿光 262700

收稿日期:2020-11-12 发布日期:2021-02-04
通信作者: 陈玉玲,副教授,研究方向为大数据安全与隐私保护、区块链等。E-mail:ylchen3@gzu.edu.cn E-mail:ylchen3@gzu.edu.cn
基金资助:
国家自然科学基金（No.61962009）；贵州省科技重大专项计划基金（No.20183001）；贵州省公共大数据重点实验室开放课题基金（No.2018BDKFJJ005，No.2019BDKFJJ011）资助

Medical Data Security Sharing Scheme Based on Consortium Blockchain

ZHOU Zhengqiang^1,2, CHEN Yuling^1,2, LI Tao^1,2, REN Xiaojun³, QING Xinyi^1,2

1. College of Computer Science and Technology, Guizhou University, Guiyang 550025, Guizhou, China;
2. State Key Laboratory of Public Big Data, Guizhou University, Guiyang 550025, Guizhou, China;
3. Blockchain Laboratory of Agricultural Vegetables, Weifang University of Science and Technology, Shouguang 262700, Shandong, China

Received:2020-11-12 Published:2021-02-04

摘要/Abstract

摘要： 基于区块链的医疗数据共享方案并未从时间维度进行访问控制。为解决这一问题，提出了一个基于联盟链的具有时间维度的医疗数据安全共享方案。首先，用云存储器存储医疗数据密文，以联盟链存储元数据，能实现医疗数据的安全存储与共享；其次，将智能合约和密文策略属性加密（ciphertext-policy attribute-based encryption，CP-ABE）技术相结合，设计数据安全共享协议，实现具有时间维度的细粒度访问控制。安全性分析及实验结果表明，该方案可以在安全存储医疗数据的同时实现具有时间维度的细粒度访问控制。

关键词: 医疗联盟链, 属性基加密, 安全存储, 限时访问, 智能合约

Abstract: The existing blockchain-based medical data sharing schemes perform access control without the consideration of time dimension. To solve this problem, this paper proposes a medical data security sharing scheme, based on consortium blockchain in consideration of time dimension to perform access control. Firstly, medical data ciphertext is stored in cloud storage, and the metadata is stored in the consortium blockchain, such that the medical data can be stored and shared safely. Secondly, by combining smart contract with ciphertext-policy attribute-based encryption (CP-ABE), a data security sharing protocol is designed to realize fine-grained access control with time dimension. The security analysis and experimental results show that this scheme could realize fine-grained access control with time dimension, besides ensuring the security of the stored medical data.

Key words: medical consortium blockchain, attribute-based encryption, secure storage, limited time access, smart contract

中图分类号:

TP309.2

周正强, 陈玉玲, 李涛, 任晓军, 卿欣艺. 基于联盟链的医疗数据安全共享方案[J]. 应用科学学报, 2021, 39(1): 123-134.

ZHOU Zhengqiang, CHEN Yuling, LI Tao, REN Xiaojun, QING Xinyi. Medical Data Security Sharing Scheme Based on Consortium Blockchain[J]. Journal of Applied Sciences, 2021, 39(1): 123-134.

参考文献

[1] Tawalbeh L A, Mehmood R, Benkhlifa E, et al. Mobile cloud computing model and big data analysis for healthcare applications[J]. IEEE Access, 2016:6171-6180.
[2] Xia Q, Sifah E B, Asamoah K O, et al. Medshare:trust-less medical data sharing among cloud service providers via blockchain[J]. IEEE Access, 2017:14757-14767.
[3] 侯佳音, 史淳樵. 云计算技术在医院的信息化建设中的应用研究[J]. 电子设计工程, 2016, 24(5):35-39. Hou J Y, Shi C Q. Application of cloud computing technologies in information technology of hospitals[J]. Electronic Design Engineering, 2016, 24(5):35-39.
[4] Xiong N, Vasilakos A V, Wu J, et al. A self-tuning failure detection scheme for cloud computing service[C]//International Parallel and Distributed Processing Symposium, 2012:668-679.
[5] 王崇霞, 丁颜, 刘倩, 等. 云计算环境的联盟身份认证方案设计[J]. 应用科学报, 2015, 33(2):215222. Wang C X, Ding Y, Liu Q, et al. Design of alliance identity authentication scheme in cloud computing environment[J]. Journal of Applied Sciences, 2015, 33(2):215-222. (in Chinese)
[6] Sang Y, Shen H, Tan Y, et al. Efficient protocols for privacy preserving matching against distributed datasets[C]//International Conference on Information and Communication Security, 2006:210-227.
[7] Xhafa F, Li J W, Zhao G, et al. Designing cloud-based electronic health record system with attribute-based encryption[J]. Multimedia Tools Applications, 2015, 74(10):3441-3458.
[8] Lewko A, Okamoto T, Sahai A, et al. Fully secure functional encryption:attribute-based encryption and (hierarchical) inner product encryption[C]//Proceedings of the Annual International Conference on the Theory and Applications of Cryptographic Techniques, Riviera, French, 2010:62-91.
[9] Zhang H L, Yu J, Tian C L, et al. Cloud storage for electronic health records based on secret sharing with verifiable reconstruction outsourcing[J]. IEEE Access, 2018:40713-40722.
[10] Nakamoto S. Bitcoin:a peer-to-peer electronic cash system[EB/OL].[2020-10-15]. https://bitcoin.org/bitcoin.pdf.
[11] 李博, 郑博, 郭子阳, 等. 区块链技术在金融方向应用的发展及展望[J]. 应用科学学报, 2019, 37(2):151-163. Li B, Zheng B, Guo Z Y, et al. The state-of-the-art blockchain applications in finance:progress and trends[J]. Journal of Applied Sciences, 2019, 37(2):151-163. (in Chinese)
[12] 薛腾飞, 傅群超, 王枞. 基于区块链的医疗数据共享模型研究[J]. 自动化学报, 2017, 43(9):15551562. Xue T F, Fu Q C, Wang C, et al. A medical data sharing model via blockchain[J]. Acta Automatica Sinica, 2017, 43(9):1555-1562.
[13] Yue X, Wang H, Jin D, et al. Healthcare data gateways:found healthcare intelligence on blockchain with novel privacy risk control[J]. Journal of Medical Systems, 2016, 40(10):218.
[14] Liu J W, Li X L, Ye L, et al. BPDS:a blockchain based privacy-preserving data sharing for electronic medical records[C]//2018 IEEE Global Communications Conference. Abu Dhabi, United Arab Emirates, 2018:1-6.
[15] Dagher G G, Mohler J, Milojkovic M, et al. Ancile:privacy-preserving framework for access control and interoperability of electronic health records using blockchain technology[J]. Sustainable Cities and Society, 2018, 39:283-297.
[16] Wang S, Zhang D, Zhang Y. Blockchain-based personal health records sharing scheme with data integrity verifiable[J]. IEEE Access, 2019, 7:102887-102901.
[17] Wang H, Song Y. Secure cloud-based HER system using attribute-based cryptosystem and blockchain[J]. Journal of Medical Systems, 2018, 42(8):152-161.
[18] Yang X, Li T, Pei X, et al. Medical data sharing scheme based on attribute cryptosystem and blockchain technology[J]. IEEE Access, 2020, 8:45468-45476.
[19] Zhang R, Liu L, Xue R. Role-based and time-bound access and management of EHR data[J]. Security and Communication Networks, 2014, 7(6):994-1015.
[20] Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption[C]//Proceeding of 2007 IEEE Symposium on Security and Privacy. Piscataway, NJ, USA:IEEE, 2007:321-324.
[21] Szabo N. Smart contracts:building blocks for digital markets[EB/OL].[2020-08-26]. https://ww.fon.hum.uva.nl/rob/Courses/InformationInSpeech/CDROM/Literature/LOTwinterschool2006/szabo.best.vwh.net/smart_contracts_2.html.
[22] Castro M, Liskov B. Practical Byzantine fault tolerance and proactive recovery[J]. ACM Transactions on Computer Systems, 2002, 20(4):398-461.
[23] Azaria A, Ekblaw A, Vieira T, et al. Medrec:using blockchain for medical data access and permission management[C]//IEEE International Conference on Open and Big Data, 2016:25-30.

基于联盟链的医疗数据安全共享方案

Medical Data Security Sharing Scheme Based on Consortium Blockchain

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 5

编辑推荐

Metrics

本文评价

[1]	赵颖琪, 朱雪阳, 李广元, 高雅, 包玉龙. 带时间约束的智能合约验证[J]. 应用科学学报, 2021, 39(1): 1-16.
[2]	王思源, 邹仕洪. 多域物联网中基于区块链和权能的访问控制机制[J]. 应用科学学报, 2021, 39(1): 55-69.
[3]	向伟静, 蔡维德. 法律智能合约平台模型的研究与设计[J]. 应用科学学报, 2021, 39(1): 109-122.
[4]	何正源, 段田田, 张颖, 张瀚文, 孙毅. 物联网中区块链技术的应用与挑战[J]. 应用科学学报, 2020, 38(1): 22-33.
[5]	苑陈娟, 孙国梓, 李华康, 王纪涛. 牌类游戏可信存证链系统[J]. 应用科学学报, 2020, 38(1): 81-92.