Patients-Controlled Secure and Privacy-Preserving EHRs Sharing Scheme Based on Consortium Blockchain

The large-scale deployment of eHealth systems has brought deep impact on human society. However, the centralized Electronic health records (EHRs) outsourcing system faces some critical security and privacy issues, which have raised wide concerns in both academia and industry. Moreover, the patients lose control of their health data. There is a need to construct a decentralized and secure EHRs with more flexible control by patients themselves instead of the third party. Fortunately, we observe that the characteristics of blockchain technology such as decentralization, immutability, and auditability perfectly match these aforementioned requirements. Specifically, to satisfy our application requirements, we build a consortium blockchain (PESchain) which is maintained by a set of medical institutions. The EHRs of patients are encrypted and stored in the medical institutions by local cloud while the corresponding hash values are stored on PESchain. Moreover, to enable privacy- preserving EHRs sharing, we construct a stealth authorization scheme to achieve access authorization delivery on the blockchain. Besides, we pack the transactions according to different types to guarantee efficient block deletion. The security analysis and performance evaluation show that PESchain is secure and practical for EHRs sharing.

[1]  Gexiang Zhang,et al.  Cloud-assisted secure eHealth systems for tamper-proofing EHR via blockchain , 2019, Inf. Sci..

[2]  Alfred Menezes,et al.  Guide to Elliptic Curve Cryptography , 2004, Springer Professional Computing.

[3]  Daniel Davis Wood,et al.  ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER , 2014 .

[4]  Ruoyu Wu,et al.  Secure sharing of electronic health records in clouds , 2012, 8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom).

[5]  Xiaodong Lin,et al.  HealthDep: An Efficient and Secure Deduplication Scheme for Cloud-Assisted eHealth Systems , 2018, IEEE Transactions on Industrial Informatics.

[6]  Hyeon-Eui Kim,et al.  Blockchain distributed ledger technologies for biomedical and health care applications , 2017, J. Am. Medical Informatics Assoc..

[7]  Yuguang Fang,et al.  Cross-Domain Data Sharing in Distributed Electronic Health Record Systems , 2010, IEEE Transactions on Parallel and Distributed Systems.

[8]  Satoshi Nakamoto Bitcoin : A Peer-to-Peer Electronic Cash System , 2009 .

[9]  Lucila Ohno-Machado,et al.  ModelChain: Decentralized Privacy-Preserving Healthcare Predictive Modeling Framework on Private Blockchain Networks , 2018, ArXiv.

[10]  Seong-Moo Yoo,et al.  Verifiable Search Meets Blockchain: A Privacy-Preserving Framework for Outsourced Encrypted Data , 2019, ICC 2019 - 2019 IEEE International Conference on Communications (ICC).

[11]  Yuguang Fang,et al.  An anonymous and accountable authentication scheme for Wi-Fi hotspot access with the Bitcoin blockchain , 2017, 2017 IEEE/CIC International Conference on Communications in China (ICCC).

[12]  Yuguang Fang,et al.  A Privacy-Preserving Networked Hospitality Service with the Bitcoin Blockchain , 2018, WASA.

[13]  S. Brunak,et al.  Mining electronic health records: towards better research applications and clinical care , 2012, Nature Reviews Genetics.

[14]  Andrew Lippman,et al.  MedRec: Using Blockchain for Medical Data Access and Permission Management , 2016, 2016 2nd International Conference on Open and Big Data (OBD).