File(s) under permanent embargo

A smart contract based access control framework for cloud smart healthcare system

journal contribution
posted on 2021-01-01, 00:00 authored by Akanksha Saini, Qingyi Zhu, Navneet Singh, Yong XiangYong Xiang, Longxiang Gao, Yushu Zhang
In current healthcare systems, electronic medical records (EMRs) are always located in different hospitals and controlled by a centralized cloud provider. However, it leads to single point of failure as patients being the real owner lose track of their private and sensitive EMRs. Hence, this article aims to build an access control framework based on smart contract, which is built on the top of distributed ledger (blockchain), to secure the sharing of EMRs among different entities involved in the smart healthcare system. For this, we propose four forms of smart contracts for user verification, access authorization, misbehavior detection, and access revocation, respectively. In this framework, considering the block size of ledger and huge amount of patient data, the EMRs are stored in cloud after being encrypted through the cryptographic functions of elliptic curve cryptography (ECC) and Edwards-curve digital signature algorithm (EdDSA), while their corresponding hashes are packed into blockchain. The performance evaluation based on a private Ethereum system is used to verify the efficiency of proposed access control framework in the real-time smart healthcare system.

History

Journal

IEEE Internet of Things journal

Volume

8

Issue

7

Pagination

5914 - 5925

Publisher

Institute of Electrical and Electronics Engineers

Location

Piscataway, N.J.

ISSN

2327-4662

eISSN

2372-2541

Language

eng

Publication classification

C1 Refereed article in a scholarly journal