1. A Smart-Contract-Based Access Control Framework for Cloud Smart Healthcare System
- Author
-
Qingyi Zhu, Yong Xiang, Yushu Zhang, Navneet Singh, Longxiang Gao, and Akanksha Saini
- Subjects
020205 medical informatics ,Smart contract ,Computer Networks and Communications ,Computer science ,business.industry ,020206 networking & telecommunications ,Cloud computing ,Access control ,Cryptography ,02 engineering and technology ,Encryption ,Computer security ,computer.software_genre ,Computer Science Applications ,InformationSystems_GENERAL ,Hardware and Architecture ,Signal Processing ,0202 electrical engineering, electronic engineering, information engineering ,Single point of failure ,Elliptic curve cryptography ,business ,Cloud storage ,computer ,Information Systems - Abstract
In current healthcare systems, electronic medical records (EMRs) are always located in different hospitals and controlled by a centralized cloud provider. However, it leads to single point of failure as patients being the real owner lose track of their private and sensitive EMRs. Hence, this article aims to build an access control framework based on smart contract, which is built on the top of distributed ledger (blockchain), to secure the sharing of EMRs among different entities involved in the smart healthcare system. For this, we propose four forms of smart contracts for user verification, access authorization, misbehavior detection, and access revocation, respectively. In this framework, considering the block size of ledger and huge amount of patient data, the EMRs are stored in cloud after being encrypted through the cryptographic functions of elliptic curve cryptography (ECC) and Edwards-curve digital signature algorithm (EdDSA), while their corresponding hashes are packed into blockchain. The performance evaluation based on a private Ethereum system is used to verify the efficiency of proposed access control framework in the real-time smart healthcare system.
- Published
- 2021