基于联盟链的可搜索电子病历双重授权共享方案

doi:10.3969/j.issn.0255-8297.2023.05.013

应用科学学报 ›› 2023, Vol. 41 ›› Issue (5): 881-895.doi: 10.3969/j.issn.0255-8297.2023.05.013

• 计算机科学与应用 • 上一篇

基于联盟链的可搜索电子病历双重授权共享方案

马雪^1,2,4, 潘恒^1,2, 姚中原^1,2, 斯雪明^1,2,3

1. 中原工学院前沿信息技术研究院, 河南郑州 450007;
2. 河南省区块链数据共享国际联合实验室, 河南郑州 450007;
3. 复旦大学计算机学院, 上海 201203;
4. 郑州经贸学院大数据与人工智能学院, 河南郑州 450007

收稿日期:2021-11-12 发布日期:2023-09-28
通信作者: 潘恒,教授,研究方向为网络系统安全态势评估、区块链等。E-mail:panheng@zut.edu.cn E-mail:panheng@zut.edu.cn
基金资助:
河南省重大公益专项基金（No.201300210300）；河南省网络密码技术重点实验室开放课题基金（No.LNCT2019-A07）；嵩山实验室预言项目基金（No.YYJC032022021）资助

Dual Authorization Sharing Scheme of Searchable Electronic Medical Data Based on Consortium Blockchain

MA Xue^1,2,4, PAN Heng^1,2, YAO Zhongyuan^1,2, SI Xueming^1,2,3

1. The Frontier Information Technology Research Institute, Zhongyuan University of Technology, Zhengzhou 450007, Henan, China;
2. Henan International Joint Laboratory of Blockchain and Data Sharing, Zhengzhou 450007, Henan, China;
3. School of Computer Science, Fudan University, Shanghai 201203, China;
4. Big Data and Artificial Intelligence Institute, Zhengzhou University of Economics and Business, Zhengzhou 450007, Henan, China

Received:2021-11-12 Published:2023-09-28

摘要/Abstract

摘要： 在云环境下检索电子病历存在安全问题和患者隐私数据泄露问题，为此提出了一种支持链上关键字密文检索的电子病历双重授权共享方案。将原始病历密文存储在云端，借助可搜索加密技术构造病历关键词索引信息并将其存储在区块链上。在获取医院检索权限的前提下，利用分布式条件下的关键字检索算法实现病历密文数据的安全检索。基于可搜索代理重加密算法提出了电子病历链上授权方法，保证了患者对所属病历的访问控制权，实现了医院和患者对共享病历的双重授权。最后，采用随机预言机模型验证了该方案在n-QBDH假设下的语义安全性，并通过实验证明了该方案在计算开销方面的优越性。

关键词: 联盟链, 病历安全共享, 可搜索加密, 代理重加密, 双重授权, 访问控制

Abstract: Retrieval of electronic medical record (EMR) in cloud environments induces security problems and patient privacy data leakage problems. To this end, a dual-authorization sharing scheme for EMR that supports on-chain keyword ciphertext retrieval is proposed. In the scheme, original medical data ciphertexts are stored in a cloud, and the information of medical data keyword index is constructed with searchable encryption technology and stored on the blockchain. On the premise of obtaining the hospital retrieval authority, a keyword retrieval algorithm under distributed conditions is used to realize the secure re trieval of the medical data ciphertexts. Based on searchable proxy re-encryption algorithm, an authorization on-chain method for the electronic medical data is proposed, which en sures the access control of patients’ medical data and realizes a double authorization of the shared medical data by the hospital and patients. Finally, random oracle model is used to verify the semantic security of the scheme under the assumption of n-QBDH, and the superiority of the scheme in terms of computational cost is proved by experiments.

Key words: consortium blockchain, medical data security sharing, searchable encryption, proxy re-encryption, dual authorization, access control

中图分类号:

TP309.7

马雪, 潘恒, 姚中原, 斯雪明. 基于联盟链的可搜索电子病历双重授权共享方案[J]. 应用科学学报, 2023, 41(5): 881-895.

MA Xue, PAN Heng, YAO Zhongyuan, SI Xueming. Dual Authorization Sharing Scheme of Searchable Electronic Medical Data Based on Consortium Blockchain[J]. Journal of Applied Sciences, 2023, 41(5): 881-895.

参考文献

[1] Kruse C S, Stein A, Thomas H, et al. The use of electronic health records to support population health:a systematic review of the literature[J]. Journal of Medical Systems, 2018, 42(11):1-16.
[2] 马锡坤, 杨国斌, 于京杰. 国内电子病历发展与应用现状分析[J]. 计算机应用与软件, 2015, 32(1):10-12. Ma X K, Yang G B, Yu J J. Analysing the development and application status of electronic medical records in China[J]. Computer Applications and Software, 2015, 32(1):10-12. (in Chinese)
[3] Jin H, Luo Y, Li P, et al. A review of secure and privacy-preserving medical data sharing[J]. IEEE Access, 2019, 7:61656-61669.
[4] Khan K M, Malluhi Q. Establishing trust in cloud computing[J]. IT Professional, 2010, 12(5):20-27.
[5] Ren K, Wang C, Wang Q. Security challenges for the public cloud[J]. IEEE Internet Com puting, 2012, 16(1):69-73.
[6] Kishigami J, Fujimura S, Watanabe H, et al. The blockchain-based digital content distribu tion system[C]//2015 IEEE Fifth International Conference on Big Data and Cloud Computing (BDCloud), 2015.
[7] Cao S, Zhang G, Liu P, et al. Cloud-assisted secure eHealth system for tamper-proofing EHR via blockchain[J]. Information Sciences, 2019, 485:427-440.
[8] Zheng X, Mukkamala R R, Vatrapu R, et al. Blockchain-based personal health data sharing system using cloud storage[C]//2018 IEEE 20th International Conference on e-Health Network ing, Applications and Services (Healthcom), 2018:1-6.
[9] Liu X, Wang Z, Jin C, et al. A blockchain-based medical data sharing and protection scheme[J]. IEEE Access, 2019, 7:118943-118953.
[10] Manzoor A, Liyanage M, Braeke A, et al. Blockchain based proxy re-encryption scheme for secure IoT data sharing[C]//2019 IEEE International Conference on Blockchain and Cryptocurrency, 2019:99-103.
[11] Song D X, Wagner D, Perrig A. Practical techniques for searches on encrypted data[C]//Proceeding 2000 IEEE Symposium on Security and Privacy, 2000:44-55.
[12] Curtmola R, Garay J, Kamara S, et al. Searchable symmetric encryption:improved definitions and efficient constructions[J]. Journal of Computer Security, 2011, 19(5):895-934.
[13] Boneh D, Di Crescenzo G, Ostrovsky R, et al. Public key encryption with keyword search[C]//International Conference on the Theory and Applications of Cryptographic Techniques. Berlin, Heidelberg:Springer, 2004:506-522.
[14] Liu X, Xia Y, Yang W, et al. Secure and efficient querying over personal health records in cloud computing[J]. Neurocomputing, 2018, 274:99-105.
[15] Lee C C, Li C T, Chen C L, et al. A searchable hierarchical conditional proxy re-encryption scheme for cloud storage services[J]. Information Technology and Control, 2016, 45(3):289-299.
[16] Chen L, Lee W K, Chang C C, et al. Blockchain based searchable encryption for electronic health record sharing[J]. Future Generation Computer Systems, 2019, 95:420-429.
[17] 牛淑芬, 刘文科, 陈俐霞, 等. 基于联盟链的可搜索加密电子病历数据共享方案[J]. 通信学报, 2020, 41(8):204-214. Niu S F, Liu W K, Chen L X, et al. Electronic medical record data sharing scheme based on searchable encryption via consortium blockchain[J]. Journal on Communications, 2020, 41(8):204-214. (in Chinese)
[18] Zhang Y, Wen L, Zhang Y, et al. Deniably authenticated searchable encryption scheme based on blockchain for medical image data sharing[J]. Multimedia Tools and Applications, 2020, 79(37):27075-27090.
[19] Wang Y, Zhang A, Zhang P, et al. Cloud-assisted EHR sharing with security and privacy preservation via consortium blockchain[J]. IEEE Access, 2019, 7:136704-136719.
[20] 李晓蓉, 宋子夜, 任婧怡, 等. 云计算中基于属性的可搜索加密电子病历系统[J]. 计算机科学, 2017, 44(增刊2):342-347. Li X R, Song Z Y, Ren J Y, et al. Attribute-based searchable encryption of electronic medical records in cloud computing[J]. Computer Science, 2017, 44(Suppl.2):342-347. (in Chinese)
[21] 张磊, 郑志勇, 袁勇. 基于区块链的电子医疗病历可控共享模型[J]. 自动化学报, 2021, 47(9):2143-2153. Zhang L, Zheng Z Y, Yuan Y. A controllable sharing model for electronic health records based on blockchain[J]. Acta Automatica Sinica, 2021, 47(9):2143-2153. (in Chinese)
[22] Chen Y, Meng L, Zhou H, et al. A blockchain-based medical data sharing mechanism with attribute-based access control and privacy protection[J]. Wireless Communications and Mobile Computing, 2021(5):1-12.
[23] Huang H, Sun X, Xiao F, et al. Blockchain-based eHealth system for auditable EHRs manipulation in cloud environments[J]. Journal of Parallel and Distributed Computing, 2021, 148:46-57.
[24] 周正强, 陈玉玲, 李涛, 等. 基于联盟链的医疗数据安全共享方案[J]. 应用科学学报, 2021, 39(1):123-134. Zhou Z Q, Chen Y L, Li T, et al. Medical data security sharing scheme based on consortium blockchain[J]. Journal of Applied Sciences, 2021, 39(1):123-134. (in Chinese)
[25] Zheng Z, Xie S, Dai H, et al. An overview of blockchain technology:architecture, consensus, and future trends[C]//2017 IEEE International Congress on Big Data, 2017:557-564.
[26] 郭上铜, 王瑞锦, 张凤荔. 区块链技术原理与应用综述[J]. 计算机科学, 2021, 48(2):271-281. Guo S T, Wang R J, Zhang F L. Summary of principle and application of blockchain[J]. Computer Science, 2021, 48(2):271-281. (in Chinese)

基于联盟链的可搜索电子病历双重授权共享方案

Dual Authorization Sharing Scheme of Searchable Electronic Medical Data Based on Consortium Blockchain

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 10

编辑推荐

Metrics

本文评价

[1]	曹浩浩, 刘扬, 李向阳, 刘鑫磊, 王耀启, 张元. 基于多链融合的粮食供应链溯源系统[J]. 应用科学学报, 2023, 41(4): 563-576.
[2]	王微渊, 毕远伟, 陈霄汉, 李传彪. 一种面向联盟链优化的PBFT共识算法[J]. 应用科学学报, 2023, 41(4): 577-589.
[3]	张勇, 姚中原, 王超, 郭尚坤, 郭晓涵, 斯雪明. 面向复杂应用场景的联盟链多链协同方案[J]. 应用科学学报, 2023, 41(4): 601-613.
[4]	赵海鸿, 姚中原, 祝卫华, 朱自强, 潘长风, 斯雪明. 一种基于区块链的电子合同共享方案[J]. 应用科学学报, 2023, 41(2): 359-368.
[5]	王捷, 李晶, 罗影. 面向移动云服务的分级访问控制的认证协议[J]. 应用科学学报, 2022, 40(6): 1006-1018.
[6]	朱自强, 姚中原, 祝卫华, 赵海鸿, 潘长风, 斯雪明. 匿名可追溯的区块链数据交易方案[J]. 应用科学学报, 2022, 40(4): 653-665.
[7]	刘乐钰, 汪祖民, 郑祖朋, 秦静, 季长清. 基于RF的无线传感器网络的MAC协议设计[J]. 应用科学学报, 2021, 39(4): 672-684.
[8]	王思源, 邹仕洪. 多域物联网中基于区块链和权能的访问控制机制[J]. 应用科学学报, 2021, 39(1): 55-69.
[9]	周正强, 陈玉玲, 李涛, 任晓军, 卿欣艺. 基于联盟链的医疗数据安全共享方案[J]. 应用科学学报, 2021, 39(1): 123-134.
[10]	哈进兵, 胡文斌, 严仰光. 异地电源制造中的动态访问控制研究与应用[J]. 应用科学学报, 2004, 22(3): 365-369.