Acta Informatica Pragensia 2024, 13(1), 1-23 | DOI: 10.18267/j.aip.225754

Blockchain-Based Framework for Privacy Preservation and Securing EHR with Patient-Centric Access Control

Reval Prabhu Puneeth ORCID...1,2, Govindaswamy Parthasarathy ORCID...1
1 School of Computing and Information Technology, REVA University, Karnataka, India
2 Department of Computer Science and Engineering, NMAM Institute of Technology – affiliated to NITTE (Deemed to be University), India

The technological advancements in the field of E-healthcare have resulted in unprecedented generation of medical data which increases the risk of data security and privacy. Ensuring the privacy of Electronic Health Records (EHR) has become challenging due to outsourcing of healthcare information in the cloud. This increases the chance of data leakage to unauthorized users and affects the privacy and integrity of the user data. It requires a trustworthy central authority to protect the sensitive patient information from both internal and external attacks. This paper presents a blockchain based privacy preservation framework for securing EHR data. The proposed framework integrates the immutability and decentralized nature of blockchain with advanced cryptographic techniques to ensure the confidentiality, integrity and availability of EHR. The EHR data are stored in an InterPlanetary File System (IPFS) which is encrypted using a hybrid cryptographic algorithm. In addition, a novel smart contact based patient-centric access control is designed in this paper using a blockchain-based SHA-256 hashing algorithm to protect the privacy of patient data. The experimental results show that the proposed framework enables secure sharing of health information between network users with improved data privacy and security. Furthermore, the optimized search process reduces the time and space complexity compared to the traditional search process. Through the utilization of smart contracts, this framework enforces patient-centric access controls and allows patients to manage and authorize access to their medical data.

Keywords: Cryptography; Electronic health records; Encryption; Privacy; Patient-centric access control; Optimized search.

Received: May 24, 2023; Revised: November 22, 2023; Accepted: November 29, 2023; Prepublished online: January 19, 2024; Published: April 15, 2024  Show citation

ACS AIP APA ASA Harvard Chicago IEEE ISO690 MLA NLM Turabian Vancouver
Puneeth, R.P., & Parthasarathy, G. (2024). Blockchain-Based Framework for Privacy Preservation and Securing EHR with Patient-Centric Access Control. Acta Informatica Pragensia13(1), 1-23. doi: 10.18267/j.aip.225
Download citation
  • BibTeX (.bib)
  • Bookends (.ris)
  • EasyBib (.ris)
  • EndNote (.enw)
  • EndNote 8 (.xml)
  • ISI WoS (.isi)
  • Medlars (.medlars)
  • Mendeley (.ris)
  • MODS (.xml)
  • Papers (.ris)
  • RefWorks (.txt)
  • RefManager (.ris)
  • RIS (.ris)
  • MS Word (.xml)
  • Zotero (.ris)
    • Open full article

    References

    1. Abunadi, I., & Kumar, R. L. (2021). BSF-EHR: Blockchain security framework for electronic health records of patients. Sensors, 21(8), 2865. https://doi.org/10.3390/s21082865 Go to original source...
    2. Hasib, K. T. a. M., Chowdhury, I., Sakib, S., Khan, M. M., Alsufyani, N., Alsufyani, A., & Bourouis, S. (2022). Electronic health record monitoring system and data security using blockchain technology. Security and Communication Networks, 2022, e2366632. https://doi.org/10.1155/2022/2366632 Go to original source...
    3. Awotunde, J. B., Jimoh, R. G., Folorunso, S. O., Adeniyi, E. A., Abiodun, K. M., & Banjo, O. O. (2021). Privacy and security concerns in IoT-based healthcare systems. In Internet of things (pp. 105-134). Springer. https://doi.org/10.1007/978-3-030-75220-0_6 Go to original source...
    4. Bamakan, S. M. H., Motavali, A., & Babaei Bondarti, A. B. (2020). A survey of blockchain consensus algorithms performance evaluation criteria. Expert Systems with Applications, 154, 113385. https://doi.org/10.1016/j.eswa.2020.113385 Go to original source...
    5. Boumezbeur, I., & Zarour, K. (2022). Privacy preservation and access control for sharing electronic health records using blockchain technology. Acta Informatica Pragensia, 11(1), 105-122. https://doi.org/10.18267/j.aip.176 Go to original source...
    6. Cerchione, R., Centobelli, P., Riccio, E., Abbate, S., & Oropallo, E. (2023). Blockchain's coming to hospital to digitalize healthcare services: Designing a distributed electronic health record ecosystem. Technovation, 120, 102480. https://doi.org/10.1016/j.technovation.2022.102480 Go to original source...
    7. Chelladurai, U., & Pandian, S. (2022). A novel blockchain based electronic health record automation system for healthcare. Journal of Ambient Intelligence and Humanized Computing, 13(1), 693-703. https://doi.org/10.1007/s12652-021-03163-3 Go to original source...
    8. Chenthara, S., Ahmed, K., Wang, H., & Whittaker, F. (2019). Security and privacy-preserving challenges of e-health solutions in cloud computing. IEEE Access, 7, 74361-74382. https://doi.org/10.1109/ACCESS.2019.2919982 Go to original source...
    9. Escorcia-Gutierrez, J., Mansour, R. F., Leal, E., Villanueva, J. A., Jiménez-Cabas, J., Soto, C. Y., & Soto-Díaz, R. (2023). Privacy Preserving Blockchain with Energy Aware Clustering Scheme for IoT Healthcare Systems. Mobile Networks and Applications, (in press). https://doi.org/10.1007/s11036-023-02115-9 Go to original source...
    10. Garcia, R. D., Ramachandran, G., & Ueyama, J. (2022). Exploiting smart contracts in PBFT-based blockchains: A case study in medical prescription system. Computer Networks, 211, 109003. https://doi.org/10.1016/j.comnet.2022.109003 Go to original source...
    11. Genç, Y., & Afacan, E. (2021). Design and implementation of an efficient elliptic curve digital signature algorithm (ECDSA). In 2021 IEEE International IOT, Electronics and Mechatronics Conference (IEMTRONICS). IEEE. https://doi.org/10.1109/IEMTRONICS52119.2021.9422589 Go to original source...
    12. Ghayvat, H., Pandya, S., Bhattacharya, P., Zuhair, M., Rashid, M., Hakak, S., & Dev, K. (2022). CP-BDHCA: Blockchain-Based Confidentiality-Privacy Preserving Big Data Scheme for Healthcare clouds and applications. IEEE Journal of Biomedical and Health Informatics, 26(5), 1937-1948. https://doi.org/10.1109/jbhi.2021.3097237 Go to original source...
    13. Gopinath, S., & Olmsted, A. (2022). Mitigating the effects of ransomware attacks on healthcare systems. arXiv (Cornell University). https://doi.org/10.48550/arxiv.2202.06108 Go to original source...
    14. Guo, H., & Yu, X. (2022). A survey on blockchain technology and its security. Blockchain: Research and Applications, 3(2), 100067. https://doi.org/10.1016/j.bcra.2022.100067 Go to original source...
    15. Gupta, B. B., Gaurav, A., & Panigrahi, P. K. (2023). Analysis of security and privacy issues of information management of big data in B2B based healthcare systems. Journal of Business Research, 162, 113859. https://doi.org/10.1016/j.jbusres.2023.113859 Go to original source...
    16. Hathaliya, J. J., & Tanwar, S. (2020). An exhaustive survey on security and privacy issues in Healthcare 4.0. Computer Communications, 153, 311-335. https://doi.org/10.1016/j.comcom.2020.02.018 Go to original source...
    17. Jin, H., Luo, Y., Li, P., & Mathew, J. (2019). A review of secure and privacy-preserving medical data sharing. IEEE Access, 7, 61656-61669. https://doi.org/10.1109/ACCESS.2019.2916503 Go to original source...
    18. Joe, C. V., & Raj, J. S. (2021). Deniable authentication encryption for privacy protection using blockchain. Journal of Artificial Intelligence and Capsule Networks, 3(3), 259-271. https://doi.org/10.36548/jaicn.2021.3.008 Go to original source...
    19. John, J., & Norman, J. (2019). Major vulnerabilities and their prevention methods in cloud computing. In Advances in big data and cloud computing. In Advances in Big Data and Cloud Computing. Advances in Intelligent Systems and Computing, (pp. 11-26). Springer. https://doi.org/10.1007/978-981-13-1882-5_2 Go to original source...
    20. Keshta, I., & Odeh, A. (2021). Security and privacy of electronic health records: Concerns and challenges. Egyptian Informatics Journal, 22(2), 177-183. https://doi.org/10.1016/j.eij.2020.07.003 Go to original source...
    21. Kruse, C. S., Mileski, M., Vijaykumar, A. G., Viswanathan, S. V., Suskandla, U., & Chidambaram, Y. (2017). Impact of electronic health records on long-term care facilities: Systematic review. JMIR Medical Informatics, 5(3), e35. https://doi.org/10.2196/medinform.7958 Go to original source...
    22. Lakhan, A., Mastoi, Q. U. A., Elhoseny, M., Memon, M. S., & Mohammed, M. A. (2022a). Deep neural network-based application partitioning and scheduling for hospitals and medical enterprises using IoT assisted mobile fog cloud. Enterprise Information Systems, 16(7), 1883122. https://doi.org/10.1080/17517575.2021.1883122 Go to original source...
    23. Lakhan, A., Mohammed, M. A., Nedoma, J., Martínek, R., Tiwari, P., & Kumar, N. (2023). Blockchain-Enabled Cybersecurity Efficient IIOHT Cyber-Physical System for medical applications. IEEE Transactions on Network Science and Engineering, 10(5), 2466-2479. https://doi.org/10.1109/tnse.2022.3213651 Go to original source...
    24. Lakhan, A., Mohammed, M. A., Elhoseny, M., Alshehri, M. D., & Abdulkareem, K. H. (2022c). Blockchain multi-objective optimization approach-enabled secure and cost-efficient scheduling for the Internet of Medical Things (IoMT) in fog-cloud system. Soft Computing, 26(13), 6429-6442. https://doi.org/10.1007/s00500-022-07167-9 Go to original source...
    25. Lakhan, A., Mohammed, M. A., Nedoma, J., Martinek, R., Tiwari, P., & Kumar, N. (2023). DRLBTS: Deep reinforcement learning-aware blockchain-based healthcare system. Scientific Reports, 13(1), 4124. https://doi.org/10.1038/s41598-023-29170-2 Go to original source...
    26. Lee, Y. L., Lee, H. A., Hsu, C. Y., Kung, H. H., & Chiu, H. W. (2022). SEMRES-A triple security protected blockchain based medical record exchange structure. Computer Methods and Programs in Biomedicine, 215, 106595. https://doi.org/10.1016/j.cmpb.2021.106595 Go to original source...
    27. Luong, D. A., & Park, J. H. (2022). Privacy-preserving blockchain-based healthcare system for IoT devices using zk-SNARK. IEEE Access, 10, 55739-55752. https://doi.org/10.1109/access.2022.3177211 Go to original source...
    28. Mikula, T., & Jacobsen, R. H. (2018). Identity and Access Management with Blockchain in Electronic Healthcare Records. In 2018 21st Euromicro Conference on Digital System Design (DSD), IEEE. https://doi.org/10.1109/DSD.2018.00008 Go to original source...
    29. Mohammed, M. A., Lakhan, A., Abdulkareem, K. H., Zebari, D. A., Nedoma, J., Martinek, R., Kadry, S., & Garcia-Zapirain, B. (2023). Energy-efficient distributed federated learning offloading and scheduling healthcare system in blockchain based networks. Internet of Things, 22, 100815. https://doi.org/10.1016/j.iot.2023.100815 Go to original source...
    30. Naser, M., Naser, M. M., Shehata, L. H., & Nassr, T. (2022). Cybersecurity in health systems: Challenges, and proposals. International Journal of Progressive Sciences and Technologies, 35(1), 195-208.
    31. Nath, S. S., Sadagopan, S., Babu, D. V., Kumar, R. D., Jonnala, P., & Murthy, M. Y. B. (2023). Block chain-based security and privacy framework for point of care health care IoT devices. Soft Computing, (in press). https://doi.org/10.1007/s00500-023-07932-4 Go to original source...
    32. Pal, O., Alam, B., Thakur, V., & Singh, S. (2021). Key management for blockchain technology. ICT Express, 7(1), 76-80. https://doi.org/10.1016/j.icte.2019.08.002 Go to original source...
    33. Patel, V. (2019). A framework for secure and decentralized sharing of medical imaging data via blockchain consensus. Health Informatics Journal, 25(4), 1398-1411. https://doi.org/10.1177/1460458218769699 Go to original source...
    34. Paul, M., Maglaras, L., Ferrag, M. A., & Almomani, I. (2023). Digitization of healthcare sector: A study on privacy and security concerns. ICT Express. https://doi.org/10.1016/j.icte.2023.02.007 Go to original source...
    35. Pourvahab, M., & Ekbatanifard, G. (2019). Digital forensics architecture for evidence collection and provenance preservation in IaaS cloud environment using SDN and blockchain technology. IEEE Access, 7, 153349-153364. https://doi.org/10.1109/ACCESS.2019.2946978 Go to original source...
    36. Puneeth, R. P., & Parthasarathy, G. (2023). Survey on Security and Interoperability of Electronic health record sharing using Blockchain Technology. Acta Informatica Pragensia, 12(1), 160-178. https://doi.org/10.18267/j.aip.187 Go to original source...
    37. Puneeth, R.P., & Parthasarathy, G. (2021). A Comprehensive Survey on Privacy-Security and Scalability Solutions for Blockchain Technology. In Smart Intelligent Computing and Communication Technology (pp. 173-178). IOS Press. https://doi.org/10.3233/APC210031 Go to original source...
    38. Raj, A., & Prakash, S. (2023). Privacy preservation of the internet of medical things using blockchain. Health Services and Outcomes Research Methodology, (in press). https://doi.org/10.1007/s10742-023-00306-1 Go to original source...
    39. Rao, K.P.N., & Manvi, S. (2023). Survey on Electronic Health Record Management Using Amalgamation of Artificial Intelligence and Blockchain Technologies. Acta Informatica Pragensia, 12(1), 179-199. https://doi.org/10.18267/j.aip.194 Go to original source...
    40. Rijanto, A. (2021). Blockchain technology adoption in supply chain finance. Journal of Theoretical and Applied Electronic Commerce Research, 16(7), 3078-3098. https://doi.org/10.3390/jtaer16070168 Go to original source...
    41. Sharma, P., Namasudra, S., Gonzalez Crespo, R., Parra-Fuente, J., & Chandra Trivedi, M. C. (2023a). EHDHE: Enhancing security of healthcare documents in IoT-enabled digital healthcare ecosystems using blockchain. Information Sciences, 629, 703-718. https://doi.org/10.1016/j.ins.2023.01.148 Go to original source...
    42. Sharma, P., Namasudra, S., Chilamkurti, N., Kim, B., & Gonzalez Crespo, R. (2023b). Blockchain-Based Privacy Preservation for IoT-Enabled Healthcare System. ACM Transactions on Sensor Networks, 19(3), 1-17. https://doi.org/10.1145/3577926 Go to original source...
    43. Sharma, S., & Chopra, V. (2017). Data encryption using advanced encryption standard with key generation by elliptic curve Diffie-Hellman. International Journal of Security and its Applications, 11(3), 17-28. https://doi.org/10.14257/ijsia.2017.11.3.02 Go to original source...
    44. Singh, A. K., Anand, A., Lv, Z., Ko, H., & Mohan, A. (2021). A survey on healthcare data: A security perspective. ACM Transactions on Multimedia Computing, Communications, and Applications, 17(2s), 1-26. https://doi.org/10.1145/3422816 Go to original source...
    45. Singh, S., Rathore, S., Alfarraj, O., Tolba, A., & Yoon, B. (2022). A framework for privacy-preservation of IoT healthcare data using Federated Learning and blockchain technology. Future Generation Computer Systems, 129, 380-388. https://doi.org/10.1016/j.future.2021.11.028 Go to original source...
    46. Thamer, N., & Alubady, R. (2021). A survey of ransomware attacks for healthcare systems: Risks, challenges, solutions and opportunity of research. In 1st Babylon International Conference on Information Technology and Science (BICITS). IEEE. https://doi.org/10.1109/BICITS51482.2021.9509877 Go to original source...
    47. Thwin, T. T., & Vasupongayya, S. (2019). Blockchain-based access control model to preserve privacy for personal health record systems. Security and Communication Networks, 2019, 8315614. https://doi.org/10.1155/2019/8315614 Go to original source...
    48. Velmurugadass, P., Dhanasekaran, S., Shasi Anand, S., & Vasudevan, V. (2021). Enhancing Blockchain security in cloud computing with IoT environment using ECIES and cryptography hash algorithm. Materials Today: Proceedings, 37, 2653-2659. https://doi.org/10.1016/j.matpr.2020.08.519 Go to original source...
    49. Wang, H., & Song, Y. (2018). Secure cloud-based EHR system using attribute-based cryptosystem and blockchain. Journal of Medical Systems, 42(8), 152. https://doi.org/10.1007/s10916-018-0994-6 Go to original source...
    50. Xiang, T., Zeng, H., Chen, B., & Guo, S. (2023). BMIF: Privacy-preserving blockchain-based medical image fusion. ACM Transactions on Multimedia Computing, Communications, and Applications, 19(1s), 1-23. https://doi.org/10.1145/3531016 Go to original source...
    51. Yaqoob, I., Salah, K., Jayaraman, R., & Al-Hammadi, Y. (2021). Blockchain for healthcare data management: opportunities, challenges, and future recommendations. Neural Computing and Applications, 34(14), 11475-11490. https://doi.org/10.1007/s00521-020-05519-w Go to original source...
    52. Zhai, S., Yang, Y., Li, J., Qiu, C., & Zhao, J. (2019). Research on the application of cryptography on the blockchain. Journal of Physics: Conference Series, 1168(3), 032077. https://doi.org/10.1088/1742-6596/1168/3/032077 Go to original source...
    53. Zhu, C., Li, J., Zhong, Z., Yue, C., & Zhang, M. (2023). A survey on the integration of blockchains and databases. Data Science and Engineering, 8(2), 196-219. https://doi.org/10.1007/s41019-023-00212-z Go to original source...

    This is an open access article distributed under the terms of the Creative Commons Attribution 4.0 International License (CC BY 4.0), which permits use, distribution, and reproduction in any medium, provided the original publication is properly cited. No use, distribution or reproduction is permitted which does not comply with these terms.


    Return to the content