Abstract
The integration of wireless body sensor networks with cloud computing introduces numerous challenges in ensuring the privacy and security of patient data, including access control, scalability, privacy, data confidentiality, authorization rights management, multiple access control policies, audit control, and the availability of personal health information (PHI). Traditional sensor-cloud infrastructure (S-CI) architectures, typically reliant on a single trusted authority, struggle to address these multifaceted challenges. Recognizing the evolving landscape and the need for robust security measures, Blockchain technology has emerged as a promising solution, showcasing significant advancements in various domains, especially healthcare. This study presents a detailed examination of the complex challenges within the S-CI paradigm and propose a comprehensive blockchain-based system designed to enhance the privacy and security of patient data. Our approach surpasses conventional architectures by introducing an innovative Blockchain-Based Access Control Model (BBACM). This model is specifically tailored to effectively manage authorization rights for accessing both patient physiological parameters (PPPs) and PHI. To validate the practicality and effectiveness of proposed BBACM, a real use case scenario involving a paralysis patient is implemented. Experimental results showcase that our model significantly improves fine-grained access control, security, privacy, scalability, and availability of PHI. By leveraging the decentralized and tamper-resistant nature of blockchain, our system provides a robust framework for addressing the identified challenges in S-CI. The introduced BBACM establishes a foundation for secure and privacy-preserving healthcare data management, offering a promising solution to the intricate security and privacy issues associated with the integration of wireless body sensor networks and cloud computing.
Similar content being viewed by others
Data availability
Data sharing not applicable to this article as no datasets were generated or analyzed during the current study.
References
Sajid A, Abbas H (2016) Data privacy in cloud-assisted healthcare systems: state of the art and future challenges. J Med Syst 40(6):1–16 (in English)
Li J, Zhang Y, Chen X, Xiang Y (2018) Secure attribute-based data sharing for resource-limited users in cloud computing. Comput Secur 72(218):1–12
Zhang P, White J, Schmidt DC, Lenz G, Rosenbloom ST (2018) FHIRChain: applying blockchain to securely and scalably share clinical data. Comput Struct Biotechnol J 16:267–278
Ullah I et al (2021) Global context-aware multi-scale features aggregative network for salient object detection. Neurocomputing 455:139–153
Benarous L, Kadri B, Bouridane A (2020) Blockchain-based privacy-aware pseudonym management framework for vehicular networks. Arab J Sci Eng 12:1–7
Khalid S, Maqbool A, Rana T, Naheed A (2020) A blockchain-based solution to control power losses in Pakistan. Arab J Sci Eng 18:1
Kudva S, Badsha S, Sengupta S, Khalil I, Zomaya A (2021) Towards secure and practical consensus for blockchain based VANET. Inf Sci 545(2021):170–187
Boysen GN, Nystr M, Christensson L, Herlitz J, Sundstr BW (2017) Trust in the early chain of healthcare: lifeworld hermeneutics from the patient’s perspective. Int J Qual Stud Health Well-being 12(1):1–12
Khan MA, Salah K (2018) IoT security: review, blockchain solutions, and open challenges. Future Gener Comput Syst 82(2018):395–411
Masood I, Wang Y, Daud A, Aljohani NR, Dawood H (2019) Towards smart healthcare: patient data privacy and security in sensor-cloud infrastructure. Wirel Commun Mob Comput 2018:1–23
Ramya A, Anandh A, Muthulakshmi K, Janani S, Gayathri N (2022) Blockchain-powered healthcare information exchange systems to support various stakeholders. In: EAI/Springer Innovations in Communication and Computing Cham, Ed. (EAISICC). Springer, pp 189–206
Zaabar B, Cheikhrouhou O, Jamild F, Ammie M, Abida M (2021) HealthBlock: a secure blockchain-based healthcare data management system. Comput Netw 200:108500
Tanwar S, Parekh K, Evans R (2020) Blockchain-based electronic healthcare record system for healthcare 4.0 applications. J Inf Secur Appl 50:102407
McGhin T (2019) Blockchain in healthcare applications: research challenges and opportunities. J Netw Comput Appl 2019(135):62–75
Shi S, He D, Li L, Kumar N, Khan MK, Choo KK (2020) Applications of blockchain in ensuring the security and privacy of electronic health record systems: a survey. Comput Secur 15:101966
Rajput AR, Li Q, TalebyAhvanooey M, Masood I (2019) EACMS: emergency access control management system for personal health record based on blockchain. IEEE Access 7:84304–84317
Zyskind G, Nathan O, Pentland AS (2015) Decentralizing privacy: using blockchain to protect personal data. In: Proceedings of the 2015 IEEE Security and Privacy Workshops (SPW 2015). San Jose, CA, USA, pp 180–184
Farouk A, Alahmadi A, Ghose S, Mashatan A (2020) Blockchain platform for industrial healthcare: vision and future opportunities. Comput Commun 154:223–235
Aggarwal S, Kumar N (2021) Basics of blockchain. Adv Comput 121:129–146
Liang X, Zhao J, Shetty S, Liu J, Li D (2017) Integrating blockchain for data sharing and collaboration in mobile healthcare applications. In: The 28th Annual IEEE International Symposium on Personal, Indoor and Mobile Radio Communications (IEEE PIMRC 2017), Montreal, Quebec, Canada. IEEE, pp 1–5
Ichikawa D, Kashiyama M, Ueno T (2017) Tamper-resistant mobile health using blockchain technology. JMIR Mhealth Uhealth 5(7):1–10
Dubovitskaya A, Xu Z, Ryu S, Schumacher M, Wang F (2017) Secure and trustable electronic medical records sharing using blockchain. In: AMIA 2017 Annual Symposium Proceedings
Xia Q, Sifah EB, Asamoah KO, Gao J, Du X, Guizani M (2017) MeDShare: trust-less medical data sharing among cloud service providers via blockchain. IEEE Access 5(2017):14757–14767
Masood I, Wang Y, Daud A, Aljohani NR, Dawood H (2018) Privacy management of patient physiological parameters. Telemat Inform 35(4):677–701
Hammi MT, Hammi B, Bellot P, Serhrouchni A (2018) Bubbles of trust: a decentralized blockchain-based authentication system for IoT. Comput Secur 78(2018):126–142
Chen M, Qian Y, Chen J, Hwang K, Mao S, Hu L (2016) Privacy protection and intrusion avoidance for cloudlet-based medical data sharing. IEEE Trans Cloud Comput PP(9):1–9
Rani AAV, Baburaj E (2016) An efficient secure authentication on cloud based e-health care system in WBAN. Biomed Res-India 27(2016):S53–S59 (in English)
Shynu PG, Singh KJ (2017) An enhanced ABE based secure access control scheme for E-health clouds. Int J Intell Eng Syst 10(5):29–37
Khan FA, Ali A, Abbas H, Haldar NA (2014) A cloud-based healthcare framework for security and patients' data privacy using wireless body area networks. 9th International Conference on Future Networks and Communications (Fnc'14) / the 11th International Conference on Mobile Systems and Pervasive Computing (Mobispc'14) / Affiliated Workshops, vol 34, no 2014, pp 511–517 (in English)
Saha S (2015) Secure sensor data management model in a sensor– cloud integration environment. In: Applications and Innovations in Mobile Computing (AIMoC)
Hu J-X, Chen C-L, Fan C-L, Wang K-H (2017) An intelligent and secure health monitoring scheme using IoT sensor based on cloud computing. J Sens 2017:1–11
Yue X, Wang H, Jin D, Li M, Jiang W (2016) Healthcare data gateways: found healthcare intelligence on blockchain with novel privacy risk control. J Med Syst 40(10):1–8 (in English)
Azaria A, Ekblaw A, Vieira T, Lippman A (2016) MedRec: using blockchain for medical data access and permission management, presented at the IEEE 2016 2nd International Conference on Open and Big Data
Shafagh H, Burkhalter L, Hithnawi A, Duquennoy S (2017) Towards blockchain-based auditable storage and sharing of IoT data. Presented at the CCSW’17
Zhou J, Cao Z, Dong X, Xiong N, Vasilakos AV (2015) 4S: a secure and privacy-preserving key management scheme for cloud-assisted wireless body area network in m-healthcare social networks. Inf Sci 314(2015):255–276
Zhang Y, Kasahara S, Shen Y, Jiang X, Wan J (2018) Smart contract-based access control for the internet of things. arXiv preprint arXiv:1802.04410
Xu R, Chen Y, Blasch E, Chen G (2018) BlendCAC: a blockchain-enabled decentralized capability-based access control for IoTs. 1804.09267v1 [cs.NI] 24 Apr 2018
Novo O (2018) Blockchain meets IoT: an architecture for scalable access management in IoT. IEEE Internet Things J 5(2):1184–1195
Outchakoucht A, Es-Samaali H, Leroy JP (2017) Dynamic access control policy based on blockchain and machine learning for the internet of things. Int J Adv Comput Sci Appl 8(7):417–424
Laurence T (2023) Blockchain for dummies. John Wiley & Sons
Cachin C (2016) Architecture of the hyperledger blockchain fabric. In: Workshop on distributed cryptocurrencies and consensus ledgers (vol 310, no. 4, pp 1–4)
Maitra T, S Roy (2017) SecPMS: an efficient and secure communication protocol for continuous patient monitoring system using body sensors. In: 9th International Conference on Communication Systems and Networks (COMSNETS). IEEE
He H, Zhang J, Gu J, Hu Y, Xu F (2017) A fine-grained and lightweight data access control scheme for WSN-integrated cloud computing. Cluster Comput 2017(20):1457–1472
Huang K, Zhang X, Mu Y, Rezaeibagh F, Due X (2021) Scalable and redactable blockchain with update and anonymity. Inf Sci 546:25–41
Luu L, Narayanan V, Baweja K, Zheng C, Gilbert S, Saxena P (2015) SCP: a computationally-scalable byzantine consensus protocol for blockchains. IACR Cryptol ePrint Arch 1168:1–16
Zhou J, Cao Z, Dong X, Lin X (2015) PPDM: a privacy-preserving protocol for cloud-assisted e-Healthcare systems. IEEE J Sel Top Signal Process 9(7):1332–1344
Chunlin L, Jingpan B, Zhao W, Yang X (2019) Community detection using hierarchical clustering based on edge-weighted similarity in cloud environment. Inf Process Manag 56(1):91–109
Desiato D et al (2018) A methodology for GDPR compliant data processing. Proceedings of the 26th Italian Symposium on Advanced Database Systems, Castellaneta Marina (Taranto), Italy, June 24–27, vol 2161
Caruccio L et al (2020) GDPR compliant information confidentiality preservation in big data processing. IEEE Access 8:205034–205050
Caruccio L et al (2022) A decision-support framework for data anonymization with application to machine learning processes. Inf Sci 613:1–32
Cauteruccio F et al (2019) Short-long term anomaly detection in wireless sensor networks based on machine learning and multi-parameterized edit distance. Information Fusion 52:13–30. https://doi.org/10.1016/j.inffus.2018.11.010
Calimeri F et al (2019) A logic-based framework leveraging neural networks for studying the evolution of neurological disorders. Theory Pract Logic Program 21(1):80–124. https://doi.org/10.1017/s1471068419000449
Malik HAM, Shah AA, Muhammad A, Kananah A, Aslam A (2022) Resolving security issues in the IoT using blockchain. Electronics 11:3950. https://doi.org/10.3390/electronics11233950
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Conflict of interest
The authors declare that they have no conflict of interest.
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.
About this article
Cite this article
Masood, I., Daud, A., Wang, Y. et al. A blockchain-based system for patient data privacy and security. Multimed Tools Appl 83, 60443–60467 (2024). https://doi.org/10.1007/s11042-023-17941-y
Received:
Revised:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s11042-023-17941-y