Skip to main content
SpringerLink
Log in

A blockchain-based system for patient data privacy and security

  • Published:
Multimedia Tools and Applications Aims and scope Submit manuscript

Abstract

The integration of wireless body sensor networks with cloud computing introduces numerous challenges in ensuring the privacy and security of patient data, including access control, scalability, privacy, data confidentiality, authorization rights management, multiple access control policies, audit control, and the availability of personal health information (PHI). Traditional sensor-cloud infrastructure (S-CI) architectures, typically reliant on a single trusted authority, struggle to address these multifaceted challenges. Recognizing the evolving landscape and the need for robust security measures, Blockchain technology has emerged as a promising solution, showcasing significant advancements in various domains, especially healthcare. This study presents a detailed examination of the complex challenges within the S-CI paradigm and propose a comprehensive blockchain-based system designed to enhance the privacy and security of patient data. Our approach surpasses conventional architectures by introducing an innovative Blockchain-Based Access Control Model (BBACM). This model is specifically tailored to effectively manage authorization rights for accessing both patient physiological parameters (PPPs) and PHI. To validate the practicality and effectiveness of proposed BBACM, a real use case scenario involving a paralysis patient is implemented. Experimental results showcase that our model significantly improves fine-grained access control, security, privacy, scalability, and availability of PHI. By leveraging the decentralized and tamper-resistant nature of blockchain, our system provides a robust framework for addressing the identified challenges in S-CI. The introduced BBACM establishes a foundation for secure and privacy-preserving healthcare data management, offering a promising solution to the intricate security and privacy issues associated with the integration of wireless body sensor networks and cloud computing.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7

Similar content being viewed by others

Data availability

Data sharing not applicable to this article as no datasets were generated or analyzed during the current study.

References

  1. Sajid A, Abbas H (2016) Data privacy in cloud-assisted healthcare systems: state of the art and future challenges. J Med Syst 40(6):1–16 (in English)

    Article  Google Scholar 

  2. Li J, Zhang Y, Chen X, Xiang Y (2018) Secure attribute-based data sharing for resource-limited users in cloud computing. Comput Secur 72(218):1–12

    Article  Google Scholar 

  3. Zhang P, White J, Schmidt DC, Lenz G, Rosenbloom ST (2018) FHIRChain: applying blockchain to securely and scalably share clinical data. Comput Struct Biotechnol J 16:267–278

    Article  Google Scholar 

  4. Ullah I et al (2021) Global context-aware multi-scale features aggregative network for salient object detection. Neurocomputing 455:139–153

    Article  Google Scholar 

  5. Benarous L, Kadri B, Bouridane A (2020) Blockchain-based privacy-aware pseudonym management framework for vehicular networks. Arab J Sci Eng 12:1–7

    Google Scholar 

  6. Khalid S, Maqbool A, Rana T, Naheed A (2020) A blockchain-based solution to control power losses in Pakistan. Arab J Sci Eng 18:1

    Google Scholar 

  7. Kudva S, Badsha S, Sengupta S, Khalil I, Zomaya A (2021) Towards secure and practical consensus for blockchain based VANET. Inf Sci 545(2021):170–187

    Article  MathSciNet  Google Scholar 

  8. Boysen GN, Nystr M, Christensson L, Herlitz J, Sundstr BW (2017) Trust in the early chain of healthcare: lifeworld hermeneutics from the patient’s perspective. Int J Qual Stud Health Well-being 12(1):1–12

    Google Scholar 

  9. Khan MA, Salah K (2018) IoT security: review, blockchain solutions, and open challenges. Future Gener Comput Syst 82(2018):395–411

    Article  Google Scholar 

  10. Masood I, Wang Y, Daud A, Aljohani NR, Dawood H (2019) Towards smart healthcare: patient data privacy and security in sensor-cloud infrastructure. Wirel Commun Mob Comput 2018:1–23

    Article  Google Scholar 

  11. Ramya A, Anandh A, Muthulakshmi K, Janani S, Gayathri N (2022) Blockchain-powered healthcare information exchange systems to support various stakeholders. In: EAI/Springer Innovations in Communication and Computing Cham, Ed. (EAISICC). Springer, pp 189–206

  12. Zaabar B, Cheikhrouhou O, Jamild F, Ammie M, Abida M (2021) HealthBlock: a secure blockchain-based healthcare data management system. Comput Netw 200:108500

    Article  Google Scholar 

  13. Tanwar S, Parekh K, Evans R (2020) Blockchain-based electronic healthcare record system for healthcare 4.0 applications. J Inf Secur Appl 50:102407

    Google Scholar 

  14. McGhin T (2019) Blockchain in healthcare applications: research challenges and opportunities. J Netw Comput Appl 2019(135):62–75

    Article  Google Scholar 

  15. Shi S, He D, Li L, Kumar N, Khan MK, Choo KK (2020) Applications of blockchain in ensuring the security and privacy of electronic health record systems: a survey. Comput Secur 15:101966

    Article  Google Scholar 

  16. Rajput AR, Li Q, TalebyAhvanooey M, Masood I (2019) EACMS: emergency access control management system for personal health record based on blockchain. IEEE Access 7:84304–84317

    Article  Google Scholar 

  17. Zyskind G, Nathan O, Pentland AS (2015) Decentralizing privacy: using blockchain to protect personal data. In: Proceedings of the 2015 IEEE Security and Privacy Workshops (SPW 2015). San Jose, CA, USA, pp 180–184

  18. Farouk A, Alahmadi A, Ghose S, Mashatan A (2020) Blockchain platform for industrial healthcare: vision and future opportunities. Comput Commun 154:223–235

    Article  Google Scholar 

  19. Aggarwal S, Kumar N (2021) Basics of blockchain. Adv Comput 121:129–146

    Article  Google Scholar 

  20. Liang X, Zhao J, Shetty S, Liu J, Li D (2017) Integrating blockchain for data sharing and collaboration in mobile healthcare applications. In: The 28th Annual IEEE International Symposium on Personal, Indoor and Mobile Radio Communications (IEEE PIMRC 2017), Montreal, Quebec, Canada. IEEE, pp 1–5

  21. Ichikawa D, Kashiyama M, Ueno T (2017) Tamper-resistant mobile health using blockchain technology. JMIR Mhealth Uhealth 5(7):1–10

    Article  Google Scholar 

  22. Dubovitskaya A, Xu Z, Ryu S, Schumacher M, Wang F (2017) Secure and trustable electronic medical records sharing using blockchain. In: AMIA 2017 Annual Symposium Proceedings

  23. Xia Q, Sifah EB, Asamoah KO, Gao J, Du X, Guizani M (2017) MeDShare: trust-less medical data sharing among cloud service providers via blockchain. IEEE Access 5(2017):14757–14767

    Article  Google Scholar 

  24. Masood I, Wang Y, Daud A, Aljohani NR, Dawood H (2018) Privacy management of patient physiological parameters. Telemat Inform 35(4):677–701

    Article  Google Scholar 

  25. Hammi MT, Hammi B, Bellot P, Serhrouchni A (2018) Bubbles of trust: a decentralized blockchain-based authentication system for IoT. Comput Secur 78(2018):126–142

    Article  Google Scholar 

  26. Chen M, Qian Y, Chen J, Hwang K, Mao S, Hu L (2016) Privacy protection and intrusion avoidance for cloudlet-based medical data sharing. IEEE Trans Cloud Comput PP(9):1–9

    Google Scholar 

  27. Rani AAV, Baburaj E (2016) An efficient secure authentication on cloud based e-health care system in WBAN. Biomed Res-India 27(2016):S53–S59 (in English)

    Google Scholar 

  28. Shynu PG, Singh KJ (2017) An enhanced ABE based secure access control scheme for E-health clouds. Int J Intell Eng Syst 10(5):29–37

    Google Scholar 

  29. Khan FA, Ali A, Abbas H, Haldar NA (2014) A cloud-based healthcare framework for security and patients' data privacy using wireless body area networks. 9th International Conference on Future Networks and Communications (Fnc'14) / the 11th International Conference on Mobile Systems and Pervasive Computing (Mobispc'14) / Affiliated Workshops, vol 34, no 2014, pp 511–517 (in English)

  30. Saha S (2015) Secure sensor data management model in a sensor– cloud integration environment. In: Applications and Innovations in Mobile Computing (AIMoC)

  31. Hu J-X, Chen C-L, Fan C-L, Wang K-H (2017) An intelligent and secure health monitoring scheme using IoT sensor based on cloud computing. J Sens 2017:1–11

    Article  Google Scholar 

  32. Yue X, Wang H, Jin D, Li M, Jiang W (2016) Healthcare data gateways: found healthcare intelligence on blockchain with novel privacy risk control. J Med Syst 40(10):1–8 (in English)

    Article  Google Scholar 

  33. Azaria A, Ekblaw A, Vieira T, Lippman A (2016) MedRec: using blockchain for medical data access and permission management, presented at the IEEE 2016 2nd International Conference on Open and Big Data

  34. Shafagh H, Burkhalter L, Hithnawi A, Duquennoy S (2017) Towards blockchain-based auditable storage and sharing of IoT data. Presented at the CCSW’17

  35. Zhou J, Cao Z, Dong X, Xiong N, Vasilakos AV (2015) 4S: a secure and privacy-preserving key management scheme for cloud-assisted wireless body area network in m-healthcare social networks. Inf Sci 314(2015):255–276

    Article  Google Scholar 

  36. Zhang Y, Kasahara S, Shen Y, Jiang X, Wan J (2018) Smart contract-based access control for the internet of things. arXiv preprint arXiv:1802.04410

  37. Xu R, Chen Y, Blasch E, Chen G (2018) BlendCAC: a blockchain-enabled decentralized capability-based access control for IoTs. 1804.09267v1 [cs.NI] 24 Apr 2018

  38. Novo O (2018) Blockchain meets IoT: an architecture for scalable access management in IoT. IEEE Internet Things J 5(2):1184–1195

    Article  Google Scholar 

  39. Outchakoucht A, Es-Samaali H, Leroy JP (2017) Dynamic access control policy based on blockchain and machine learning for the internet of things. Int J Adv Comput Sci Appl 8(7):417–424

    Google Scholar 

  40. Laurence T (2023) Blockchain for dummies. John Wiley & Sons

    Google Scholar 

  41. Cachin C (2016) Architecture of the hyperledger blockchain fabric. In: Workshop on distributed cryptocurrencies and consensus ledgers (vol 310, no. 4, pp 1–4)

  42. Maitra T, S Roy (2017) SecPMS: an efficient and secure communication protocol for continuous patient monitoring system using body sensors. In: 9th International Conference on Communication Systems and Networks (COMSNETS). IEEE

  43. He H, Zhang J, Gu J, Hu Y, Xu F (2017) A fine-grained and lightweight data access control scheme for WSN-integrated cloud computing. Cluster Comput 2017(20):1457–1472

    Article  Google Scholar 

  44. Huang K, Zhang X, Mu Y, Rezaeibagh F, Due X (2021) Scalable and redactable blockchain with update and anonymity. Inf Sci 546:25–41

    Article  Google Scholar 

  45. Luu L, Narayanan V, Baweja K, Zheng C, Gilbert S, Saxena P (2015) SCP: a computationally-scalable byzantine consensus protocol for blockchains. IACR Cryptol ePrint Arch 1168:1–16

    Google Scholar 

  46. Zhou J, Cao Z, Dong X, Lin X (2015) PPDM: a privacy-preserving protocol for cloud-assisted e-Healthcare systems. IEEE J Sel Top Signal Process 9(7):1332–1344

    Article  Google Scholar 

  47. Chunlin L, Jingpan B, Zhao W, Yang X (2019) Community detection using hierarchical clustering based on edge-weighted similarity in cloud environment. Inf Process Manag 56(1):91–109

    Article  Google Scholar 

  48. Desiato D et al (2018) A methodology for GDPR compliant data processing. Proceedings of the 26th Italian Symposium on Advanced Database Systems, Castellaneta Marina (Taranto), Italy, June 24–27, vol 2161

  49. Caruccio L et al (2020) GDPR compliant information confidentiality preservation in big data processing. IEEE Access 8:205034–205050

    Article  Google Scholar 

  50. Caruccio L et al (2022) A decision-support framework for data anonymization with application to machine learning processes. Inf Sci 613:1–32

    Article  Google Scholar 

  51. Cauteruccio F et al (2019) Short-long term anomaly detection in wireless sensor networks based on machine learning and multi-parameterized edit distance. Information Fusion 52:13–30. https://doi.org/10.1016/j.inffus.2018.11.010

    Article  Google Scholar 

  52. Calimeri F et al (2019) A logic-based framework leveraging neural networks for studying the evolution of neurological disorders. Theory Pract Logic Program 21(1):80–124. https://doi.org/10.1017/s1471068419000449

    Article  MathSciNet  Google Scholar 

  53. Malik HAM, Shah AA, Muhammad A, Kananah A, Aslam A (2022) Resolving security issues in the IoT using blockchain. Electronics 11:3950. https://doi.org/10.3390/electronics11233950

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Computer Science and Engineering, Nanjing University of Science and Technology, Nanjing, 210000, China

    Isma Masood & Yongli Wang

  2. Faculty of Resilience, Rabdan Academy, Abu Dhabi, United Arab Emirates

    Ali Daud

  3. Department of Information Systems and Technology, College of Computer Science and Engineering, University of Jeddah, Jeddah, Saudi Arabia

    Ameen Banjar & Riad Alharbey

Authors
  1. Isma Masood
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ali Daud
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Yongli Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ameen Banjar
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Riad Alharbey
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Ali Daud.

Ethics declarations

Conflict of interest

The authors declare that they have no conflict of interest.

Additional information

Publisher's Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Masood, I., Daud, A., Wang, Y. et al. A blockchain-based system for patient data privacy and security. Multimed Tools Appl 83, 60443–60467 (2024). https://doi.org/10.1007/s11042-023-17941-y

Download citation

  • Received:

  • Revised:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s11042-023-17941-y

Keywords

Search

Navigation