Healthcare data is growing rapidly and data sharing is becoming increasingly important among hospitals. However, traditional methods are prone to data leakage and threaten patient privacy. To ensure data security and realize sharing and access control, combining blockchain technology, attribute-based encryption and ciphertext policy (CP-ABE) and AES symmetric encryption algorithm, this paper proposes a hierarchical attribute-based encryption algorithm based on master-sidechain (MSC-CP-ABE) and a collaborative access control and sharing model with on-chain and off-chain (AC-CSS). The algorithm encrypts hierarchically based on data sensitivity, the ciphertext is stored in the interplanetary file system (IPFS), and the encrypted address and key are stored in the side chain, which is convenient for indexing in the main chain. The vectorized access policy implements policy hiding, combines on-chain and off-chain, saves blockchain space, achieves hierarchical access control, and improves security and efficiency. Simulation experiments show that the main sidechain model proposed in this paper has better performance in terms of transaction delay and throughput. Compared with existing models, the algorithm proposed in this paper has certain advantages in data encryption and decryption time and key generation time.
TingX.U. and GuangjunY.U., A study on the current status of open sharing of domestic healthcare data, China Digital Medicine15(09) (2020), pp. 64-66+103 (In Chinese).
2.
JingjinS., et al., A study on the current status of healthcare data sharing in the maternal and child specialty alliance in the Yangtze River Delta region, China Digital Medicine18(02) (2023), pp. 93–98 (In Chinese).
3.
SandhuR.S. and SamaratiP., Access control: principle and practice, IEEE Communications Magazine32(9) (1994), pp. 40–48.
4.
NohS., FirdausM. and RheeK.H., Commentary: Integrated blockchain-deep learning approach for analyzing the electronic health records recommender system, Frontiers in Public Health (2023), 11.
5.
NakamotoS., Bitcoin: A Peer-to-Peer Electronic Cash System. 2008.
6.
LuY., The blockchain: State-of-the-art and research challenges. Journal of Industrial Information Integration15 (2019), pp. 80–90.
7.
ThangP.C., et al., Multimedia Privacy, Security, and Protection within the Blockchain: A Review. in 2022 5th International Conference on Contemporary Computing and Informatics (IC3I)2022
8.
XieY., et al., Applications of Blockchain in the Medical Field: Narrative Review, Journal of Medical Internet Research23(10), 2021.
MozumderM.A.I., et al., Metaverse for Digital Anti-Aging Healthcare: An Overview of Potential Use Cases Based on Artificial Intelligence, Blockchain, IoT Technologies, Its Challenges, and Future Directions. Applied Sciences-Basel13(8), 2023.
11.
Hope-BailieA. and ThomasS., Interledger: Creating a Standard for Payments, Proceedings of the 25th International Conference Companion on World Wide web, 2016.
12.
BackS.A., et al., Enabling Blockchain Innovations with Pegged. 2014.
13.
BethencourtJ., SahaiA. and WatersB., Ciphertext-Policy Attribute-Based Encryption. in 2007 IEEE Symposium on Security and Privacy (SP ’07)2007.
14.
ChenY.L., et al., An improved P2P File System Scheme based on IPFS and Blockchain. in IEEE International Conference on Big Data (IEEE Big Data)2017. Boston, MA.
15.
FangJ. and LeiK., Blockchain for Edge AI Computing: A Survey, Journal of Applied Sciences38(1) (2020), pp. 1–21.
16.
GaiK.K., et al., Blockchain Meets Cloud Computing: A Survey, IEEE Communications Surveys and Tutorials22(3) (2020), pp. 2009–2030.
17.
DeepaN., et al., A survey on blockchain for big data: Approaches, opportunities, and future directions, Future Generation Computer Systems-the International Journal of Escience131 (2022), pp. 209–226.
18.
LiaoX.R., et al., A Blockchain Enabled Federal Domain Generalization Based Architecture for Dependable Medical Image Segmentation. in 6th IEEE Advanced Information Technology, Electronic and Automation Control Conference (IEEE IAEAC). 2022. Beijing, PEOPLES R CHINA.
19.
ShenC.Z., et al., A Blockchain Based Federal Learning Method for Urban Rail Passenger Flow Prediction. in 23rd IEEE International Conference on Smart Transportation Systems (ITSC). 2020. Electr Network.
20.
JiangR., et al., A trust transitivity model of small and mediumsized manufacturing enterprises under blockchain-based supply chain finance, International Journal of Production Economics247 (2022), pp. 108469.
21.
QiuC., et al., Cloud Computing Assisted Blockchain-Enabled Internet of Things, IEEE Transactions on Cloud Computing10(1) (2022), pp. 247–257.
22.
ZhangY.H., et al., Outsourcing Service Fair Payment Based on Blockchain and Its Applications in Cloud Computing, IEEE Transactions on Services Computing14(4) (2021), pp. 1152–1166.
23.
XiongZ.H., et al., Cloud/Fog Computing Resource Management and Pricing for Blockchain Networks, IEEE Internet of Things Journal6(3) (2019), pp. 4585–4600.
24.
ChenS., et al., Blockchain for Health IoT: A privacypreserving data sharing system, Software: Practice and Experience52 (2022), pp. 2026–2044.
25.
ChengJ.R., et al., PoEC: A Cross-Blockchain Consensus Mechanism for Governing Blockchain by Blockchain, Cmc-Computers Materials & Continua73(1) (2022), pp. 1385–1402.
26.
BhaskarK.B.R., PrasanthA. and SaranyaP., An energyefficient blockchain approach for secure communication in IoTenabled electric vehicles, International Journal of Communication Systems (2022), 35.
27.
JiangR., et al., An access control model for medical big data based on clustering and risk, Information Sciences621 (2023), pp. 691–707.
28.
JiangR., et al., Risk and UCON-based access control model for healthcare big data, Journal of Big Data10(1) (2023), pp. 104.
29.
DelmolinoK., et al., Step by step towards creating a
safe smart contract, in InternationalWorkshops on Financial
Cryptography and Data Security, FC 2016 and 3rd
Workshop on Bitcoin and Blockchain Research, BITCOIN
2016, 1st Workshop on Advances in Secure Electronic
Voting Schemes, VOTING 2016, and 4th Workshop on
Encrypted Computing and Applied Homomorphic Cryptography,
WAHC 2016, K. Rohloff, et al., Editors. 2016,
Springer, pp. 79–94.
30.
XieR., et al., Blockchain-based access control mechanism for data traceability, Journal on Communications41(12), 2020.
31.
LinC., et al., BSeIn: A blockchain-based secure mutual authentication with fine-grained access control system for industry 4.0,
Journal of Network and Computer Applications116 (2018), pp. 42–52.
32.
WangW.Z., et al., Blockchain-Based Reliable and Efficient Certificateless Signature for IIoT Devices, IEEE Transactions on Industrial Informatics18(10) (2022), pp. 7059–7067.
33.
LiZ.Y., et al., An IoT-Applicable Access Control Model Under Double-Layer Blockchain, IEEE Transactions on Circuits and Systems Ii-Express Briefs68(6) (2021), pp. 2102–2106.
34.
GaoS., et al., TrustAccess: A Trustworthy Secure Ciphertext-Policy and Attribute Hiding Access Control Scheme Based on Blockchain, IEEE Transactions on Vehicular Technology69(6) (2020), pp. 5784–5798.
35.
LiF.Q., et al., EHRChain: A Blockchain-Based EHR System Using Attribute-Based and Homomorhic Cryptosystem, IEEE Transactions on Services Computing15(5) (2022), pp. 2755–2765.
36.
QuanquanH., et al., Security Sharing Scheme of medical data based on cross-chain, Computer System Application32(05) (2023) ,pp. 97-104 (In Chinese).
37.
JiangR., et al., An electronic medical record access control model based on intuitionistic fuzzy trust, Information Sciences658 (2024), pp. 120054.
38.
LewkoA. and WatersB., Decentralizing Attribute-Based Encryption. in Advances in Cryptology EUROCRYPT 2011. 2011. Berlin, Heidelberg: Springer Heidelberg.
39.
Ç.K. Koç, Montgomery Arithmetic, in Encyclopedia of Cryptography and Security, H.C.A. van Tilborg and S. Jajodia, Editors. 2011, Springer US: Boston, MA. pp. 799–803.
40.
WangS., et al., An Efficient File Hierarchy Attribute-Based Encryption Scheme in Cloud Computing, IEEE Transactions on Information Forensics and Security11(6) (2016), pp. 1265–1277.
41.
HurJ., Improving Security and Efficiency in Attribute-Based Data Sharing, IEEE Transactions on Knowledge and Data Engineering25(10) (2013), pp. 2271–2282.
