基于区块链的医疗数据分类加密共享方案

doi:10.3969/j.issn.0255-8297.2024.04.005

摘要/Abstract

摘要： 针对医疗数据共享时，存在共享数据多于需求数据，以及加密大量元数据会产生较大的计算开销问题，提出一种基于区块链的医疗数据分类加密共享方案，结合基于属性的加密和区块链实现对医疗数据的访问控制和数据共享。首先，按照基本信息、医疗科室、疾病类型将完整医疗数据分类划分为医疗元数据，对数据进行细粒度访问控制。其次，提出数据访问策略分类算法，将数据访问策略划分为属性加密策略和区块链访问策略，合并多个元数据的属性加密策略用以降低基于属性加密时构建访问结构树的计算开销；智能合约依据区块链访问策略对链上数据进行访问控制，并通过修改区块链策略实现权限撤销。最后，通过安全性分析和仿真实验表明该方案具有可行性和较高的效率。

关键词: 区块链, 属性基加密, 智能合约, 访问控制, 数据共享

Abstract: When sharing medical data, the volume of shared data often exceeds the necessary amount, leading to significant computational overhead when encrypting a large number of metadata. This paper proposes a medical data classification encryption and sharing scheme based on blockchain, which integrates attribute-based encryption and blockchain to facilitate access control and data sharing of medical information. First, the entire medical dataset is classified into medical metadata according to the basic information, medical departments and disease types, enabling fine-grained access control. Then, a data access strategy classification algorithm is proposed, which divides the data access strategy into attribute encryption strategy and blockchain access strategy. Multiple attribute encryption strategies are combined to reduce the computational cost of constructing the access structure tree. Smart contract controls the access of the data on the chain according to the blockchain access policy, and the authority is revoked by modifying the blockchain policy. Finally, the security analysis and simulation experiments validate the feasibility and efficiency of the proposed scheme.

Key words: blockchain, attribute-based encryption, smart contract, access control, data sharing

中图分类号:

TP309

夏晓亮, 秦智, 万武南, 张仕斌, 张金全. 基于区块链的医疗数据分类加密共享方案[J]. 应用科学学报, 2024, 42(4): 613-628.

XIA Xiaoliang, QIN Zhi, WAN Wunan, ZHANG Shibin, ZHANG Jinquan. Medical Data Classification Encryption Sharing Scheme Based on Blockchain[J]. Journal of Applied Sciences, 2024, 42(4): 613-628.

参考文献

[1] Hulsen T. Sharing is caring-data sharing initiatives in healthcare [J]. International Journal of Environmental Research and Public Health, 2020, 17(9): 3046.
[2] 张静瑜, 聂宇贤, 张宇波, 等. 临床真实世界数据科研共享现状研究[J]. 中国医院, 2022, 26(11): 49-52.Zhang J Y, Nie Y X, Zhang Y B, et al. Research on the situation of scientific sharing of real-world clinical data [J]. Chinese Hospitals, 2022, 26(11): 49-52. (in Chinese)
[3] 郭子菁, 罗玉川, 蔡志平, 等. 医疗健康大数据隐私保护综述[J]. 计算机科学与探索, 2021, 15(3): 389-402. Guo Z J, Luo Y C, Cai Z P, et al. Overview of privacy protection technology of big data in healthcare [J]. Journal of Frontiers of Computer Science and Technology, 2021, 15(3): 389-402. (in Chinese)
[4] 刘振峰. 区块链在医疗领域应用探讨[J]. 网络安全技术与应用, 2021, 243(3): 107-108. Liu Z F. Exploration of blockchain application in the medical field [J]. Network Security Technology and Application, 2021, 243(3): 107-108. (in Chinese)
[5] Elangovan D, Long C S, Bakrin F S, et al. The use of blockchain technology in the health care sector: systematic review [J]. JMIR Medical Informatics, 2022, 10(1): e17278.
[6] Yaqoob I, Salah K, Jayaraman R, et al. Blockchain for healthcare data management: opportunities, challenges, and future recommendations [J]. Neural Computing and Applications, 2022, 34(14): 11475-11490.
[7] Xi P, Zhang X, Wang L, et al. A review of blockchain-based secure sharing of healthcare data [J]. Applied Sciences-Basel, 2022, 12(15): 7912.
[8] Liu X G, Wang Z Q, Jin C H, et al. A blockchain-based medical data sharing and protection scheme [J]. IEEE Access, 2019, 7: 118943-118953.
[9] Li C R, Liu J S, Qian G Y, et al. Double chain system for online and offline medical data sharing via private and consortium blockchain: a system design study [J]. Frontiers in Public Health, 2022: 1012202.
[10] Cao Y, Sun Y, Min J. RETRACTED: hybrid blockchain-based privacy-preserving electronic medical records sharing scheme across medical information control system [J]. Measurement and Control, 2020, 53(7/8): 1286-1299.
[11] Jayabalan J, Jeyanthi N. Scalable blockchain model using off-chain IPFS storage for healthcare data security and privacy [J]. Journal of Parallel and Distributed Computing, 2022, 164: 152-167.
[12] Sahai A, Waters B. Fuzzy identity-based encryption [C]// 24th Annual International Conference on the Theory and Applications of Cryptographic Techniques, 2005: 457-473.
[13] Yang Y, Shi R, Li K, et al. Multiple access control scheme for EHRs combining edge computing with smart contracts [J]. Future Generation Computer Systems, 2022, 129: 453-463.
[14] Zhang L, Peng M, Wang W, et al. Secure and efficient data storage and sharing scheme based on double blockchain [J]. CMC-Computers, Materials & Continua, 2021, 66(1): 499-515.
[15] 曹萌, 余孙婕, 曾辉, 等. 基于区块链的医疗数据分级访问控制与共享系统[J]. 计算机应用, 2023, 43(5): 1518-1526. Cao M, Yu S J, Zeng H, et al. Hierarchical access control and sharing system of medical data based on blockchain [J]. Journal of Computer Applications, 2023, 43(5): 1518-1526. (in Chinese)
[16] 薛庆水, 时雪磊, 王俊华, 等. 基于属性加密的个人医疗数据共享方案[J]. 计算机应用研究, 2023, 40(2): 589-594, 600. Xue Q S, Shi X L, Wang J H, et al. Personal medical data sharing scheme based on attribute encryption [J]. Application Research of Computers, 2023, 40(2): 589-594, 600. (in Chinese)
[17] 汪玉江, 曹成堂, 游林. 基于区块链和属性基加密的个人隐私数据保护方案[J]. 密码学报, 2021, 8(1): 14-27. Wang Y J, Cao C T, You L. A novel personal privacy data protection scheme based on blockchain and attribute-based encryption [J]. Journal of Cryptologic Research. 2021, 8(1): 14- 27. (in Chinese)
[18] Zhang R, Xue R, Liu L. Security and privacy for healthcare blockchains [J]. IEEE Transactions on Services Computing, 2021, 15(6): 3668-3686.
[19] 夏清, 窦文生, 郭凯文, 等. 区块链共识协议综述[J]. 软件学报, 2021, 32(2): 277-299. Xia Q, Dou W S, Guo K W, et al. Overview of blockchain consensus protocol [J]. Journal of Software, 2021, 32(2): 277-299. (in Chinese)
[20] 傅丽玉, 陆歌皓, 吴义明, 等. 区块链技术的研究及其发展综述[J]. 计算机科学, 2022, 49(6A): 447-461. Fu L Y, Lu G H, Wu Y M, et al. Overview of research and development of blockchain technology [J]. Computer Science, 2022, 49(6A): 447-461. (in Chinese)
[21] 代闯闯, 栾海晶, 杨雪莹, 等. 区块链技术研究综述[J]. 计算机科学, 2021, 48(11A): 500-508. Dai C C, Luan H J, Yang X Y, et al. Overview of blockchain technology [J]. Computer Science, 2021, 48(11A): 500-508. (in Chinese)
[22] Androulaki E, Barger A, Bortnikov V, et al. Hyperledger Fabric: a distributed operating system for permissioned blockchains [C]//Thirteenth EuroSys Conference, 2018: 1-15.
[23] 贺海武, 延安, 陈泽华. 基于区块链的智能合约技术与应用综述[J]. 计算机研究与发展, 2018, 55(11): 2452-2466. He H W, Yan A, Chen Z H. Survey of smart contract technology and application based on blockchain [J]. Journal of Computer Research and Development, 2018, 55(11): 2452-2466. (in Chinese)
[24] Bethencourt J, Sahai A, Waters B. Ciphertext-policy attribute-based encryption [C]//IEEE Symposium on Security and Privacy, 2007: 321-334.
[25] Fan C, Ghaemi S, Khazaei H, et al. Performance evaluation of blockchain systems: a systematic survey [J]. IEEE Access, 2020, 8: 126927-126950.