MedSBA: a novel and secure scheme to share medical data based on blockchain technology and attribute-based encryption
- PDF / 3,904,352 Bytes
- 29 Pages / 595.276 x 790.866 pts Page_size
- 104 Downloads / 229 Views
ORIGINAL RESEARCH
MedSBA: a novel and secure scheme to share medical data based on blockchain technology and attribute‑based encryption Seyed Morteza Pournaghi1 · Majid Bayat2 · Yaghoub Farjami1 Received: 24 July 2019 / Accepted: 7 January 2020 © Springer-Verlag GmbH Germany, part of Springer Nature 2020
Abstract The development of Electronic Information Technology has made the Electronic Medical Record a commonly used approach to recording and categorizing medical patient data in databases of different hospitals and medical entities so that controlling the shared data is not possible for patients at all. The importance of medical data as possessions of people and the system leads us to be concerned about its security, privacy, and accessibility. How to store and controlling access to medical information is of the most important challenges in the electronic health area. The present paper provides a new, secure, and efficient scheme based on blockchain technology and attribute-based encryption entitled “MedSBA” to record and store medical data, indicating that our proposed scheme protects user privacy and allows fine-grain access control of medical patient data based on General Data Protection Regulation (GDPR). Private blockchains are used in MedSBA to improve the right to revoke instant access which is of the attribute-based encryption challenges. The security and functionality of our proposed scheme are proved within a formal model and based on BAN logic, respectively; simulating the MedSBA scheme in the OPNET software as well as examining its computational complexity and storage indicates the efficiency of the present scheme. Keywords e-Health · Blockchain technology · Attribute-based encryption · Security · BAN logic · OPNET
1 Introduction The provision of health services via using digital technology is called “Electronic Health”. The World Health Organization (WHO) defines Electronic Health in 2005 as follows: “Applying digital data to the health-care field is called Electronic Health used to store and retrieve data within a network to support health care at a local and large scale”. Improving communication between health care providers will help a lot in avoiding unnecessary and duplicate trials, diagnosis, and treatment and reducing medical costs. By increasing the effect and possibility of exchanging information between health centers and joint decision-making for treatment, electronic health leads to an increase in health care quality. * Yaghoub Farjami [email protected] Seyed Morteza Pournaghi [email protected] 1
Department of Computer Engineering, University of Qom, Qom, Iran
Department of Computer Engineering, Shahed University, Tehran, Iran
2
Health care systems collect comprehensive physiological information and medical records, increasing the importance of medical data. Such a comprehensive database makes it possible to discover useful information and environmental factors required for identifying rare disorders and medical treatments (Wu and Tsai 2018). Electronic Health Reco
Data Loading...
