Blockchain-Enabled Privacy-Preserving Access Control for Data Publishing and Sharing in the Internet of Medical Things

被引:32
|
作者
Wu, Guangjun [1 ]
Wang, Shupeng [1 ]
Ning, Zhaolong [2 ]
Li, Jun [1 ]
机构
[1] Chinese Acad Sci, Inst Informat Engn, Beijing 100093, Peoples R China
[2] Dalian Univ Technol, Sch Software, Dalian 116620, Peoples R China
来源
IEEE INTERNET OF THINGS JOURNAL | 2022年 / 9卷 / 11期
基金
中国国家自然科学基金;
关键词
Blockchains; Privacy; Access control; Medical services; Security; Medical diagnostic imaging; Measurement; Blockchain; electronic medical records (EMRs); Internet of Medical Things (IoMT); privacy-preserving information; ALLOCATION;
D O I
10.1109/JIOT.2021.3138104
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Recently, the rapid developments in the Internet of Medical Things (IoMT) enable smart devices to generate and transmit massive personal electronic medical records (EMRs). However, there are many sensitive attributes in an EMR, which could be accessed by external or internal unauthorized users for malicious purposes. In this article, we present a triple subject purpose-based access control (TS-PBAC) model, which is compatible with a blockchain-enabled reliable transaction network, and design an individual-centric security and privacy-preserving mechanism for access control with different purposes and roles in IoMT scenarios. Specifically, we design hierarchical purpose tree (HPT) and related policies to guarantee the legality of an external user with different purposes. To improve the privacy for sensitive attributes against an internal attacker, we design a local differential privacy (LDP)-based policy and role-based access control scheme in an edge computing paradigm to grant fine-granularity rights for authorized users. In addition, we introduce mutual evaluation metrics to evaluate data quality from a patient-and-medical-service level in an open anonymous network, only using logs kept in the blockchain. We test our approach by real-world EMRs with 100000 patients. The experimental results show that the proposed privacy-preserving scheme can better protect patient's privacy than traditional access control policies in IoMT environments, and can make reliable and stable access control decisions between data publishers and data requesters with different purposes.
引用
收藏
页码:8091 / 8104
页数:14
相关论文
共 50 条
  • [31] Blockchain-Enabled Privacy-Preserving Internet of Vehicles: Decentralized and Reputation-Based Network Architecture
    Ma, Xinshu
    Ge, Chunpeng
    Liu, Zhe
    [J]. NETWORK AND SYSTEM SECURITY, NSS 2019, 2019, 11928 : 336 - 351
  • [32] Blockchain-enabled Secure Privacy-preserving System for Public Health-center Data
    Islam, Md Shohidul
    Ameedeen, Mohamed Ariff Bin
    Ajra, Husnul
    Ismail, Zahian Binti
    [J]. INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2023, 14 (05) : 1147 - 1154
  • [33] Blockchain-Enabled Secure and Privacy-Preserving Data Aggregation for Fog-Based ITS
    Chen, Siguang
    Yang, Li
    Shi, Yanhang
    Wang, Qian
    [J]. CMC-COMPUTERS MATERIALS & CONTINUA, 2023, 75 (02): : 3781 - 3796
  • [34] MedShare: A Privacy-Preserving Medical Data Sharing System by Using Blockchain
    Wang, Mingyue
    Guo, Yu
    Zhang, Chen
    Wang, Cong
    Huang, Hejiao
    Jia, Xiaohua
    [J]. IEEE TRANSACTIONS ON SERVICES COMPUTING, 2023, 16 (01) : 438 - 451
  • [35] A Lightweight Access Control Scheme with Attribute Policy for Blockchain-Enabled Internet of Things
    Ullah, Syed Sajid
    Oleshchuk, Vladimir
    Pussewalage, Harsha S. Gardiyawasam
    [J]. PROCEEDINGS OF THE 20TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY, SECRYPT 2023, 2023, : 528 - 539
  • [36] A Secure and Privacy-Preserving Medical Data Sharing via Consortium Blockchain
    Zhang, Duo
    Wang, Shangping
    Zhang, Yinglong
    Zhang, Qian
    Zhang, Yaling
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2022, 2022
  • [37] A Privacy-Preserving Medical Data Sharing Scheme Based on Consortium Blockchain
    Liu, Jingwei
    Liang, Tianyu
    Sun, Rong
    Du, Xiaojiang
    Guizani, Mohsen
    [J]. 2020 IEEE GLOBAL COMMUNICATIONS CONFERENCE (GLOBECOM), 2020,
  • [38] Blockchain-Based Auditable Privacy-Preserving Data Classification for Internet of Things
    Zhao, Yanqi
    Yang, Xiaoyi
    Yu, Yong
    Qin, Baodong
    Du, Xiaojiang
    Guizani, Mohsen
    [J]. IEEE INTERNET OF THINGS JOURNAL, 2022, 9 (04) : 2468 - 2484
  • [39] Redactable Blockchain-Enabled Hierarchical Access Control Framework for Data Sharing in Electronic Medical Records
    Zhang, Tianshuai
    Zhang, Leyou
    Wu, Qing
    Mu, Yi
    Rezaeibagha, Fatemeh
    [J]. IEEE SYSTEMS JOURNAL, 2023, 17 (02): : 1962 - 1973
  • [40] Secure Data Sharing: Blockchain-Enabled Data Access Control Framework for IoT
    Wei, Xin
    Yan, Yong
    Guo, Shaoyong
    Qiu, Xuesong
    Qi, Feng
    [J]. IEEE INTERNET OF THINGS JOURNAL, 2022, 9 (11) : 8143 - 8153