计算机应用 ›› 2019, Vol. 39 ›› Issue (5): 1500-1506.DOI: 10.11772/j.issn.1001-9081.2018102241

• 应用前沿、交叉与综合 • 上一篇    下一篇

基于区块链网络的医疗记录安全储存访问方案

徐健1,2, 陈志德1,2, 龚平1, 王可可1,3   

  1. 1. 福建师范大学 数学与信息学院, 福州 350007;
    2. 福建省网络安全与密码技术重点实验室(福建师范大学), 福州 350007;
    3. 闽江学院 电子信息与控制福建省高校工程研究中心, 福州 350007
  • 收稿日期:2018-11-07 修回日期:2018-12-11 出版日期:2019-05-10 发布日期:2019-05-14
  • 通讯作者: 徐健
  • 作者简介:徐健(1995-),男,湖北荆州人,硕士研究生,主要研究方向:网络与信息安全;陈志德(1976-),男,福建泉州人,教授,博士,主要研究方向:网络安全与密码学、分布式计算;龚平(1982-),男,福建福州人,副教授,博士,主要研究方向:形式化建模与分析、业务过程管理与监控;王可可(1992-),男,河南汝州人,硕士研究生,主要研究方向:网络与信息安全。
  • 基金资助:
    国家自然科学基金资助项目(61841701);福建省自然科学基金资助项目(2016J01287,2018J01781);电子信息与控制福建省高校工程研究中心开放基金资助项目(EIC1703)。

Secure storage and access scheme for medical records based on blockchain

XU Jian1,2, CHEN Zhide1,2, GONG Ping1, WANG Keke1,3   

  1. 1. College of Mathematics and Informatics, Fujian Normal University, Fuzhou Fujian 350007, China;
    2. Fujian Provincial Key Laboratory of Network Security and Cryptology(Fujian Normal University), Fuzhou Fujian 350007, China;
    3. Electronic Information and Control of Fujian University Engineering Research Center, Minjiang University, Fuzhou Fujian 350007, China
  • Received:2018-11-07 Revised:2018-12-11 Online:2019-05-10 Published:2019-05-14
  • Supported by:
    This work is partially supported by the National Natural Science Foundation of China (61841701), the Natural Science Foundation of Fujian Province (2016J01287, 2018J01781), the Open Fund of Electronic Information and Control Foundation of Fujian University Engineering Research Center (EIC1703).

摘要: 针对在当前医疗系统中医疗记录授权流程繁琐、记录分享效率低下和身份验证困难问题,提出一种结合区块链技术与密码学的非对称加密技术的方法,将非对称加密技术的安全性高、多方协作简单等特性应用到区块链技术构成的点对点网络中,实现医疗记录跨域分享的可追踪、数据的不可篡改和身份验证的简化。首先,基于区块链技术的不可篡改性结合非对称加密技术,设计了文件同步合约和授权合约,其分布式储存优势保证了用户医疗信息隐私。其次,跨域获取合约的设计能够有效验证数据分享双方身份以及提高身份验证效率,不需要第三方公证机构便可安全过滤非合法用户。仿真实验结果显示,所提出的方案相比传统使用云计算方法解决医疗记录分享问题的方案,在数据防盗窃、多方身份验证和节约系统开销方面有明显优势。该方案对利用区块链的去中心化、可审计等优点解决数据分享过程中的安全问题提供了参考,为解决数据跨域分享、跨域身份验证问题提供了借鉴思路。

关键词: 区块链, 医疗记录, 去中心化, 隐私保护, 智能合约

Abstract: To solve the problems of the cumbersome process in medical record authorization, the low efficiency in record sharing and the difficulty in identity authentication in current medical systems, a method of asymmetric encryption technology combining with blockchain technology was proposed to make medical records cross-domain sharing traceable, data tamper-resistant and identity authentication simplified by applying charatistics of asymmetric encryption technology like high safety and simple cooperation to the peer-to-peer network constructed by blockchain technology. Firstly, based on the anti-tampering of blockchain technology and with asymmetric encryption technology combined, file synchronization contract and authorization contract were designed, in which the distributed storage advantages secure the privacy of user's medical information. Secondly, cross-domain acquisition contracts were designed to validate the identity of both parties and improve authentication efficiency, so that non-legitimate users can be securely filtered without third-party notary agency. The experimental and analysis results show that the proposed scheme has obvious advantages in data guard against theft, multi-party authentication and data access control compared with the traditional scheme of using cloud computing method to solve medical record sharing problem. The proposed method provides a good application demonstration for solving the security problems in the data sharing process across medical institutions and a reference for cross-domain identity verification in the process of sharing data by using decentralization and auditability of blockchain technology.

Key words: Blockchain, electronic medical records, decentralization, privacy protection, smart contracts

中图分类号: