Amanuensis: Information provenance for health-data systems

Mobile health (mHealth) apps and devices are increasingly popular for health research, clinical treatment, and personal wellness, as they offer the ability to continuously monitor aspects of individuals’ health as they go about their everyday activities. Combining the data produced by these mHealth devices may give healthcare providers a more holistic view of a patient’s health, increase the level of patient care, and reduce operating costs. Creating a trusted and secure data sharing ecosystem for mHealth devices is difficult, however, as devices are implemented with different technologies and managed by different organizations. To address these issues, we present Amanuensis: a concept for a secure, integrated healthcare data system that leverages Blockchain and Trusted Execution Environment (TEE) technologies to achieve information provenance for mHealth data. By using a blockchain to record and enforce dataaccess policies, we remove the need to trust a single entity with gate-keeping the health data. Instead, participating organizations form a consortium to share responsibility for verifying data integrity and enforcing access policies for data stored in private data silos. Data accesses and computations take place inside of TEEs to preserve data confidentiality and to provide a verifiable attestation report that can be stored on the blockchain for the purpose of information provenance. We also present and evaluate a prototype implementation of our healthcare data system on Intel SGX trusted execution hardware and the VeChain Thor blockchain.

[1]  Yubin Xia,et al.  ShadowEth: Private Smart Contract on Public Blockchain , 2018, Journal of Computer Science and Technology.

[2]  Shanlin Yang,et al.  Blockchain-Based Medical Records Secure Storage and Medical Service Framework , 2018, Journal of Medical Systems.

[3]  A. Khatoon A Blockchain-Based Smart Contract System for Healthcare Management , 2020, Electronics.

[4]  Alexander Mense,et al.  Concept for Sharing Distributed Personal Health Records with Blockchains , 2018, ICIMTH.

[5]  Fan Zhang,et al.  Tesseract: Real-Time Cryptocurrency Exchange using Trusted Hardware , 2017, IACR Cryptol. ePrint Arch..

[6]  Leslie Mertz,et al.  (Block) Chain Reaction: A Blockchain Revolution Sweeps into Health Care, Offering the Possibility for a Much-Needed Data Solution , 2018, IEEE Pulse.

[7]  Kim-Kwang Raymond Choo,et al.  Blockchain: A Panacea for Healthcare Cloud-Based Data Security and Privacy? , 2018, IEEE Cloud Computing.

[8]  Rune Hylsberg Jacobsen,et al.  Identity and Access Management with Blockchain in Electronic Healthcare Records , 2018, 2018 21st Euromicro Conference on Digital System Design (DSD).

[9]  Isabel de la Torre Díez,et al.  Proposing New Blockchain Challenges in eHealth , 2019, Journal of Medical Systems.

[10]  Nenghai Yu,et al.  Healthchain: A Blockchain-Based Privacy Preserving Scheme for Large-Scale Health Data , 2019, IEEE Internet of Things Journal.

[11]  David Brindley,et al.  Implementing Blockchains for Efficient Health Care: Systematic Review , 2019, Journal of medical Internet research.

[12]  Mohsen Guizani,et al.  BPDS: A Blockchain Based Privacy-Preserving Data Sharing for Electronic Medical Records , 2018, 2018 IEEE Global Communications Conference (GLOBECOM).

[13]  Khalifa Toumi,et al.  A novel data exploitation framework based on blockchain , 2020, Pervasive Mob. Comput..

[14]  Amir Herzberg,et al.  Blockchain Access Privacy: Challenges and Directions , 2018, IEEE Security & Privacy.

[15]  Sachin Shetty,et al.  Integrating blockchain for data sharing and collaboration in mobile healthcare applications , 2017, 2017 IEEE 28th Annual International Symposium on Personal, Indoor, and Mobile Radio Communications (PIMRC).

[16]  Sheng Liu,et al.  Blockchain-Based Data Preservation System for Medical Data , 2018, Journal of Medical Systems.

[17]  D. Upton,et al.  Improving data transparency in clinical trials using blockchain smart contracts , 2016, F1000Research.

[18]  John D. Ainsworth,et al.  Enabling Patient Control of Personal Electronic Health Records Through Distributed Ledger Technology , 2017, MedInfo.

[19]  Christoforos Ntantogian,et al.  CUREX: seCUre and pRivate hEalth data eXchange , 2019, WI.

[20]  Elaine Shi,et al.  Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts , 2016, 2016 IEEE Symposium on Security and Privacy (SP).

[21]  Robert Likić,et al.  Opportunities for Use of Blockchain Technology in Medicine , 2018, Applied Health Economics and Health Policy.

[22]  E. Rodríguez‐Merchán,et al.  How blockchain technology can change medicine , 2018, Postgraduate medicine.

[23]  A. A. Zaidan,et al.  A Systematic Review for Enabling of Develop a Blockchain Technology in Healthcare Application: Taxonomy, Substantially Analysis, Motivations, Challenges, Recommendations and Future Direction , 2019, Journal of Medical Systems.

[24]  Latifur Khan,et al.  Decentralized IoT Data Management Using BlockChain and Trusted Execution Environment , 2018, 2018 IEEE International Conference on Information Reuse and Integration (IRI).

[25]  Andrew Stranieri,et al.  Continuous Patient Monitoring With a Patient Centric Agent: A Block Architecture , 2018, IEEE Access.

[26]  Sachin Shetty,et al.  ProvChain: A Blockchain-Based Data Provenance Architecture in Cloud Environment with Enhanced Privacy and Availability , 2017, 2017 17th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGRID).

[27]  Kai Fan,et al.  MedBlock: Efficient and Secure Medical Data Sharing Via Blockchain , 2018, Journal of Medical Systems.

[28]  Andrew Lippman,et al.  MedRec: Using Blockchain for Medical Data Access and Permission Management , 2016, 2016 2nd International Conference on Open and Big Data (OBD).

[29]  David Kotz,et al.  Secure Sharing of mHealth Data Streams through Cryptographically-Enforced Access Control. , 2019, Smart health.

[30]  Rüdiger Kapitza,et al.  Blockchain and Trusted Computing: Problems, Pitfalls, and a Solution for Hyperledger Fabric , 2018, ArXiv.

[31]  Kim-Kwang Raymond Choo,et al.  SDTE: A Secure Blockchain-Based Data Trading Ecosystem , 2020, IEEE Transactions on Information Forensics and Security.

[32]  Hao Wang,et al.  Secure Cloud-Based EHR System Using Attribute-Based Cryptosystem and Blockchain , 2018, Journal of Medical Systems.

[33]  Fan Zhang,et al.  Ekiden: A Platform for Confidentiality-Preserving, Trustworthy, and Performant Smart Contracts , 2018, 2019 IEEE European Symposium on Security and Privacy (EuroS&P).

[34]  Fulong Chen,et al.  Design of a Secure Medical Data Sharing Scheme Based on Blockchain , 2020, Journal of Medical Systems.

[35]  Dawn Xiaodong Song,et al.  A Demonstration of Sterling: A Privacy-Preserving Data Marketplace , 2018, Proc. VLDB Endow..

[36]  Sarah Meiklejohn,et al.  Top Ten Obstacles along Distributed Ledgers Path to Adoption , 2018, IEEE Security & Privacy.

[37]  Dan Alistarh,et al.  DataBright: Towards a Global Exchange for Decentralized Data Ownership and Trusted Computation , 2018, ArXiv.

[38]  Marko Hölbl,et al.  A Systematic Review of the Use of Blockchain in Healthcare , 2018, Symmetry.

[39]  Praneeth Babu Marella,et al.  Ancile: Privacy-Preserving Framework for Access Control and Interoperability of Electronic Health Records Using Blockchain Technology , 2018 .

[40]  Taylor Hardin,et al.  Blockchain in Health Data Systems: A Survey , 2019, 2019 Sixth International Conference on Internet of Things: Systems, Management and Security (IOTSMS).

[41]  Donald E. Porter,et al.  Graphene-SGX: A Practical Library OS for Unmodified Applications on SGX , 2017, USENIX Annual Technical Conference.

[42]  H. Krumholz,et al.  Blockchain Technology: Applications in Health Care , 2017, Circulation. Cardiovascular quality and outcomes.

[43]  Daniel Davis Wood,et al.  ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER , 2014 .

[44]  Andrew Stranieri,et al.  Blockchain leveraged decentralized IoT eHealth framework , 2020, Internet Things.

[45]  Xiaoming Zeng,et al.  A Blockchain Framework for Patient-Centered Health Records and Exchange (HealthChain): Evaluation and Proof-of-Concept Study , 2019, Journal of medical Internet research.

[46]  Prateek Saxena,et al.  Obscuro: A Bitcoin Mixer using Trusted Execution Environments , 2018, IACR Cryptol. ePrint Arch..

[47]  Mohsen Guizani,et al.  MeDShare: Trust-Less Medical Data Sharing Among Cloud Service Providers via Blockchain , 2017, IEEE Access.

[48]  Sachin Shetty,et al.  Towards Decentralized Accountability and Self-sovereignty in Healthcare Systems , 2017, ICICS.

[49]  Minho Shin,et al.  Challenges in Data Quality Assurance in Pervasive Health Monitoring Systems , 2009 .