基于区块链的电子医疗病历共享方案  被引量：49

作　　者：罗文俊[1] 闻胜莲 程雨 LUO Wenjun;WEN Shenglian;CHENG Yu(School of Cyber Security and Information Law,Chongqing University of Posts and Telecommunications,Chongqing 400065,China)

机构地区：[1]重庆邮电大学计算机科学与技术学院

出　　处：《计算机应用》2020年第1期157-161,共5页journal of Computer Applications

基　　金：国家自然科学基金资助项目(61672004,61702067)~~

摘　　要：针对当前各医疗相关机构间数据共享困难、数据隐私易泄露等问题,提出了一个基于区块链的电子医疗病历(EHR)共享方案。首先,基于区块链不可篡改、去中心化、分布式存储的特点,设计了基于区块链的EHR数据共享模型,采用区块链网络和分布式数据库共同存储加密的EHR及相关访问控制策略,防止EHR数据被篡改和泄露;其次,将分布式密钥生成(DKG)技术与基于身份的代理重加密(IBPRE)技术相结合,设计了数据安全共享协议,协议使用委托权益证明(DPOS)算法选取代理节点,重加密EHR,实现单对用户间的数据共享。安全性分析表明,所提方案能够抵抗身份伪装和重放攻击。仿真实验与对比分析表明,DPOS算法的效率高于工作量证明(POW)算法,略低于实用拜占庭容错(PBFT)算法,但所提方案去中心化程度更高,耗费算力较小。To solve the problems such as data sharing difficulty, data privacy disclosure of data sharing between medical institutions, a blockchain-based Electronic Health Record(EHR) sharing scheme was proposed. Firstly, based on the blockchain characteristics of non-tampering, decentralization and distributed storage, a blockchain-based EHR data sharing model was designed. The blockchain network and distributed database were used to jointly store the encrypted EHR and the related access control policies, preventing the modification and leakage of EHR data. Secondly, the Distributed Key Generation(DKG) and Identity-Based Proxy Re-Encryption(IBPRE) were combined to design a data secure sharing protocol. The Delegated Proof of Stake(DPOS) algorithm was used in this protocol to select the proxy node, which re-encrypted the EHR to achieve the data sharing between single pair of users. The safety analyses show that the proposed scheme can resist the fake identity and the replay attack. Simulation experiments and comparative analyses show that DPOS algorithm has the efficiency higher than Proof of Work(POW) algorithm, and slightly lower than the Practical Byzantine Fault Tolerance(PBFT) algorithm, but the proposed scheme is more decentralized and costs less computing power.

关 键 词：电子医疗病历 区块链 基于身份的代理重加密 分布式密钥生成 数据共享 

分 类 号：TP309.2[自动化与计算机技术—计算机系统结构]