JP2024003174A - Data utilization method, system, and program using bcn (block chain network) - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a new data utilization system that enables individuals to use and utilize their own personal data autonomously while ensuring data security and concealment.

SOLUTION: An information processing apparatus, which is used by an individual, has a function of transmitting data relating to an address on a block chain network used by the individual via a network to a provider side information processing apparatus having a storage device serving as a provider of data related to information about the individual, a function of referring to access data (ACT) including data relating to the address on the block chain network issued to the address of the block chain network from the provider side information processing apparatus, and data for identifying the provider of the data, and a function of acquiring data related to the information about the individual from the provider side storage device based on the access data (ACT) and storing the data in at least a memory or a storage device of the individual.

SELECTED DRAWING: Figure 1

COPYRIGHT: (C)2024,JPO&INPIT

Description

The present invention relates to a data utilization method, system, and program using BCN (block chain network).

With the development of information processing and communication, personal information is being electronically stored as data on a daily basis, based on users' daily activities and regular or continuous monitoring.

The information is diverse, such as data related to the user's health, personal medical data such as hospital treatment and drug administration, daily shopping history information, and daily access information for searching favorite information. .

Such information is stored as data together with time information and can be treated as so-called personal history data.

Various types of data generated in response to such various activities and periodic or continuous monitoring are stored in storages used by processing systems that provide each service, depending on the service related to the activity. For example, shopping information is stored in a scattered manner depending on the type of purchase, that is, each service, such as shopping with credit, shopping with cash, shopping with debit card, etc.

In other words, such historical data is managed only by the company that provided the service, and the individual user does not allow other institutions or companies to use past historical data in other ways.

Therefore, historical data for each service may have extremely biased contents. Furthermore, even in today's highly developed information systems, historical data related to each other's services can be separated by the systems providing those individual services, and can be used as mutually related data. hindered.

Moreover, the content of an individual's activities changes from moment to moment depending on the environment in which the individual is placed, and it is not uncommon for the individual to switch to the services of a different provider. If this data is divided into different services, it will be difficult for both the individual and the companies and organizations looking to make new use of it to utilize it fully.

On the other hand, personal data must be handled extremely carefully to protect its privacy. Merely disseminating information may cause damage to others due to misuse of that individual's information or impersonation. In addition, significant damage can occur if information is falsified.

Patent Application Publication No. 2016-218633

The present invention has been made with attention to this problem.

Therefore, the present invention provides a data utilization system and utilization method that allows individuals to proactively use and utilize their own personal data, and furthermore, allows the data to be kept confidential. .

Further, although the present invention does not limit its purpose or data subject, for example, medical data, which is personal information, is also an individual's asset. Patients often receive treatment at multiple hospitals for a number of reasons, such as having multiple illnesses or changing their place of residence.

Treatment data from multiple different medical institutions is an important treatment asset for the patient, but if it can be integrated and managed as medical data, it can be used in a variety of ways. Conversely, if such medical data is divided among medical institutions, the treatment that is originally needed will be overlooked.

For example, information about how a patient has or has not recovered as a result of continuous treatment or drug administration for a certain disease is valuable not only to the patient but also to many medical institutions. This is important information that will allow us to provide further and improved treatments for other patients with similar diseases.

On the other hand, medical data is personal information and must be strictly managed. Furthermore, the reliability and confidentiality of authentic personal data and the reliability and confidentiality of medical activities between medical institutions and individuals (for example, treatment methods, medication methods, etc.) are also extremely important.

Therefore, the present invention provides a new method for distributing genuine information by genuine individuals, and provides a new method for making it possible to utilize this important information.

Further, the present invention provides a distribution infrastructure for appropriately processing existing personal data related to medical care, etc., and safely utilizing the data.

According to the present invention, there is provided a method for enabling an information processing device used by an individual to acquire and utilize data related to the information of the individual, and in which data regarding an address on a blockchain network used by the individual is access data (ACT) including data regarding the address and data for identifying the data provider, from the provider via a network to a provider of data related to the information. The step of issuing and registering the data to the address of the blockchain network, and identifying the data provider by referring to the access data (ACT) from the address of the blockchain network, and sending the data from the identified provider to the individual. Discloses a data utilization method consisting of the steps of acquiring data related to the information.

This makes it possible to use highly confidential personal information while taking advantage of the reliability of blockchain network addresses.

Furthermore, according to the present invention, the data provided by the provider includes identification information of an individual authorized for use by the information processing device, identification information of the information processing device used by the individual, or identification information of the provider. At least one of them is included.

Furthermore, according to the present invention, the data provided by the provider includes information indicating the generation time of the data, making it possible to refer to the temporal history of the data.

Further, according to the present invention, the data provided by the provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of data that is historical data regarding an individual.

Further, according to the present invention, in the data utilization method, each of the plurality of data items is configured to indicate the latest data in the dataset of historical data, and can be provided as the latest latest information. can.

Further, according to the present invention, at least data related to personal information is hashed using a hash function and registered in a ledger on the blockchain.

The present invention further provides a system that enables an information processing device used by an individual to acquire and utilize data related to the individual's information.

The information processing device of the system according to the present invention has at least a memory or a storage device connected to the information processing device, and stores data regarding an address on a blockchain network used by an individual related to information of the individual. A function to send data via a network to a provider-side information processing device that has a storage device that serves as a data provider, and a blockchain network address issued from the provider-side information processing device to a blockchain network address. A function to refer to access data (ACT) that includes data related to personal information and data for identifying the data provider, and a function to refer to data related to the individual's information based on the access data (ACT). from the storage device of the person and store it in at least the personal memory or storage device.

Further, according to the present invention, the data provided by the provider includes identification information of an individual whose use is authorized by the information processing device.

Furthermore, the data provided by the provider includes at least identification information of the information processing device used by the individual, identification information of the provider, and information indicating the data generation time.

The data provided by the above provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of data that is historical data regarding an individual. For example, each of the plurality of data items is Shows the latest data in the data set.

Furthermore, at least data related to personal information is hashed using a hash function.

Furthermore, the present invention provides a program for acquiring data related to information of an individual, which is stored in an information processing device used by the individual and executed by a first information processing device. The method includes the step of providing the blockchain address to another information processing device, and the access data (ACT) containing blockchain address information sent from the other information processing device based on the blockchain address. The information processing apparatus is configured to acquire data related to the personal information generated in another information processing apparatus or a storage device used by the information processing apparatus.

Further, the data related to the above-mentioned personal information includes identification information of an individual who is authorized to use the information processing device.

Furthermore, the data related to the individual's information includes at least identification information of the information processing device used by the individual, identification information of the provider, and information indicating the data generation time.

1 is a schematic diagram showing an embodiment of a personal asset data utilization system according to the present invention. A conceptual diagram is shown in which personal data is updated in a storage device serving as an information providing resource in FIG. 1 and a storage device used by a user. An example of the data structure of an access ticket (Access tacket) (abbreviated as “ACT”) that is issued as access data when personal data is provided to a system other than the system that manages the personal data in the storage device of FIG. 1 is shown. ing. An example of the data structure of master data (MA) and transaction data (TR) related to personal information created in each storage device in FIG. 2 is shown. 5 shows an example of the data structure of a data portion which is a data component of master data (MA) and transaction data (TR) in FIG. 4. FIG. An example of the data structure of an additional data section which is a data component of master data (MA) and transaction data (TR) in FIG. 4 is shown. 1 is a schematic diagram showing an embodiment of a personal asset data utilization system according to the present invention, and is a schematic diagram showing an embodiment of providing received master data (MA) to other parties (individuals, institutions, organizations, etc.). be. 2 is a conceptual diagram showing the interrelationship between a user, a storage device of a data provider, and access tickets whose issuance history is chained in a blockchain 50. FIG. A conceptual diagram of generating master data from different types of transaction data occurring in time series and a conceptual diagram of combining different types of master data (MA) are shown. It is a conceptual diagram when medical data is applied to the personal asset data utilization system according to the present invention. An example of a data body portion of transaction data (TR) and master data (MA) generated therefrom is shown. An example of a data body part of master data (MA) newly generated from different types of transaction data is shown.

The present invention utilizes blockchain, which is the core technology of virtual currencies such as Bitcoin. Blockchain is a distributed ledger that records records (blocks) of transactions that occur within a network as a chain of blocks. In addition to the transaction contents, each transaction block stores the hash value of the contents of the block generated before it, so that it is recorded in the ledger as a legitimate block in a chain. Ru.

When adding a new block to the blockchain, it is ensured that a chain of blocks whose validity has been verified is formed by having miners perform mining.

By forming a consensus through mining, a chain of legitimate blocks is distributed and stored in a database, preventing tampering and ensuring data security. It is known that mining participants who are the first to confirm that there is no fraud in their transactions are rewarded and given the authority to update the database. The method is not limited; any mining method can be used as long as a consensus on its validity can be reached and there is a small possibility that a fraudulent block will be inserted into the chain.

In addition to open (or public) blockchains such as those used in Bitcoin, there are also closed (private) blockchains that limit the number of participants. Any type of blockchain may be used with the present invention. As described above, there are various forms of blockchain, but the invention is not limited to blockchain as long as the present invention can be implemented.

Individual transactions can be performed using, for example, P2P communications. P2P communication can use, for example, the Internet, a mobile communication network, a dedicated communication line, or the like. However, this is just an example, and communication other than P2P communication may be used. Further, as an information processing device for conducting transactions, a personal computer, a portable smartphone, a tablet, or other information processing device can be used, but the information processing device is not limited thereto.

Blockchain technology is used in the virtual currency Bitcoin, but in the transaction ledger of that virtual currency, blocks of virtual currency transaction data (for example, the amount of virtual currency to be traded, the user The payment address of the virtual currency, the public key used to generate the user's payment address, and the hash value of the basic capital of that currency, etc.) are created and posted on-chain within the blockchain network. recorded in

The security of transaction data is ensured by using the hash value and public key cryptography. In addition, the transaction data is widely distributed to allow miners to verify its validity, thereby monitoring its validity.

By using the blockchain, the present invention utilizes the validity of the blocks recorded in the blockchain ledger while promoting the use of data referenced by the blocks. For example, by using blockchain, in order to ensure the validity of data transaction history and to ensure data confidentiality, it is possible to Restrictions may also be placed on the information processing device. As data stored in the blockchain, the actual transaction target data does not exist in that block, but the block has a structure or data, such as a pointer, that can refer to the actual transaction target data. You can do it like this.

FIG. 1 shows an example of the configuration of an asset data utilization system 1 according to the present invention.

As a premise, between the user of the information processing device 20 for the user and the user of the information processing device 10, the usage used or managed by the information processing device 10 for the provider is provided for the user. It is necessary to obtain the consent of the person to provide information.

By forming this consent, the information processing device 10 provider can provide the user's activity data to the user.

The information processing device 20 used by the user has completed the authentication registration of the user in advance, is assigned a user identifier (UID) that is the user's identification information, and is further assigned information for the user. A terminal (device) identifier DID, which is identification information of the processing device 20, is uniquely registered in the information processing device 20 for the user.

Furthermore, the user has registered in advance a blockchain address (also referred to as "BCN address" or "BCN Add" for simplicity) that enables ledger entry on the blockchain (BCN50 in Figure 1). has been done. The information processing device 20 for the user and the information processing device 10 for the provider are set up to enable electronic data communication between the user and the provider.

The steps for providing the user with the user's individual activity data will be described below.

In parallel with or before or after step (3), the user discloses his/her BCN address (BNC Ads) on the blockchain network (BCN50) to the provider in order to disclose his or her address on the blockchain network (BCN50) to the provider. It is transmitted from the information processing device 20 for the user to the information processing device 10 for the provider (step (1)).

Assuming that data related to a user is stored in a certain storage device 90, in response to step (1) or independently of step (1), the data is transferred from the storage device 90 where it is stored. The user's data is acquired by the provider's information processing device 10 (step (3)). Then, from the received data, a data set of actual values (data) corresponding to one or more data items is generated according to a predetermined data format (step (2)-1), and the data set is It is stored (uploaded) in the storage device 30 as transaction data (TR) (step (2)-2).

What items are added as elements of the data set can be determined as appropriate depending on the content of the agreement between the user and the provider, or the conditions such as the items that the provider can provide and the items that the user desires.

The information processing device 10 for the provider and the information processing device 20 for the user store selection application programs for providing the data in their memories, and each application program is executed by the respective processing device. The data items to be executed and added to the transaction data (TR) are selected. Then, in accordance with the selection, data corresponding to the data item is dropped into transaction data (TR) in accordance with a predetermined format.

As transaction data (TR), the contents of the actual data that has been dropped are written in a format that can be read in accordance with the data items, so that it can be used in addition to the information processing device 10 for the provider. It can be read by the information processing device 20 for personal use or by a third party's terminal. For example, the JSON format can be used as the format.

The information processing device 10 for the provider further includes a program for generating transaction data (TR) and generating master data (MA) from the transaction data (TR). Note that the provider information processing device 10 is the side that provides data to the user, and the user is the side that receives the data. However, as will be explained later, the user can also be the one who can provide the received data. Therefore, although the functions of the application programs of the information processing device 20 for the user and the information processing device 10 for the provider may be different, it is not necessary to have application programs with different functions, and the applications have the same function. - It may have a program or an application program for executing any of the functions described below. That is, it should be recognized that the functions described for a certain information processing device may also be provided in other information processing devices for the purpose of use. Further, some execution, for example, generation of transaction data (TR) and master data (MA), may be taken over by the storage device.

In step (1), upon receiving the user's BCN address (BCN Add), the provider information processing device 10 receives the BCN address (BCN Add) and a data resource identifier (SID) for identifying the data resource. ) is transmitted to the storage device 30, and the provider information processing device 10 that receives it generates an access ticket (ACT). Note that if the data provider can be identified, the data resource identifier (SID) is not limited to the terminal (device) identifier DID of the information processing apparatus 20 for the user, but may also be the identifier of the storage apparatus 30. It's okay. In addition, storage devices may be widely distributed such as secret sharing storage devices, but if the data in the storage device can be referenced, what kind of identifier can be used as a data resource identifier (SID)? There may be.

This access ticket (ACT) is the data to be recorded on the user's blockchain.

FIG. 3 is a data configuration diagram of an access ticket (ACT) according to an embodiment of the present invention.

An access ticket (ACT) is a hash value of predetermined data to be compatible with the blockchain. The data elements are the hash value of the user's BCN address (BCN Add), the data resource identifier (SID), and the secret string corresponding to the data resource identifier (SID), which are processed using a hash function. Hash it. For example, MD5 is used as the hash function, resulting in a 128-bit hash value. As a result, it is recorded in the blockchain network (BCN) as a fixed-length access ticket (ACT). Although not shown in FIG. 1, the provider's information processing device 10 may separately notify the user's information processing device 20 of the issuance of an access ticket (ACT). Further, registration to the blockchain network (BCN) may be performed via the information processing device 20 for the user.

Issuance of this data indicates that the data from the data resource identifier (SID) is available to the user and that the user is authorized to obtain the data.

The access ticket (ACT) allows the user to access the transaction data (TR) in the storage device 30 managed by the provider's information processing device 10 and the master data (MA) generated from the transaction data (TR). It becomes possible.

Transaction data (TR) and master data (MA) have a predetermined format in order to enable a user to refer to and manipulate the data, as well as to provide the data to another third party.

Here, the original data provided by the provider often includes separate activity data of users at different times. Therefore, a plurality of transaction data (TR) of the same type but corresponding to each original data may be prepared. Further, the original data provided by the provider includes different types of activity data, and there are cases where the recording items of each data are different. Therefore, different transaction data (TR) having the same basic format but different record lengths and recorded data items may be prepared.

In addition, requests for personal data from the information processing device 20 for users are not necessarily made once, but are sent to providers at intervals so that they can receive personal data generated for each activity. The request may be made to the information processing device 10 multiple times.

In this way, transaction data (TR) generated in the storage device 30 can be generated as one or more transaction data (TR).

In FIG. 1, in order to simplify the explanation, an example will be described in which one piece of master data (MA) is created from one piece of transaction data (TR) and provided to the user.

The storage device 30 has programs or macro instructions stored in a memory (not shown), and the programs or macro instructions are executed by a processing device included in the storage device 30. Note that the program includes macro instructions, and the macro instructions are only used separately here for convenience and clarity.

When the program or macro instruction receives a BCN address (BCN Add) and a data resource identifier (SID) indicating the data provider of data to the user information processing device 20 from the provider information processing device 10, An access ticket (ACT) is generated based on the information (step (4)). Note that the storage device 30 may generate master data (MA) based on the transaction data (TR) (step (5)). Then, the access ticket (ACT) is returned to the information processing device 10 for the provider (step (4)-1).

As already explained, the access ticket (ACT) gives the user the authority to refer to and download the data used or managed by the information processing device 10 for the provider, and provides information for the provider. It is issued via the processing device 10 (step (4)-2).

The destination of the access ticket (ACT) is the user's BCN address (BCN Add) provided by the information processing device 20. By accessing the BCN 50, the user can obtain an access ticket (ACT) through the user information processing device 20 (step (6)).

Since a data resource identifier (SID) is stored in the acquired access ticket (ACT), the user can use the information to access the storage via the provider's information processing device 10 or directly. By referring to the information of the master data (MA) stored in the device 30, the master data (MA) can be downloaded to the memory 21 of the information processing device 20 for the user (step (7)).

As already explained, there is not necessarily one transaction data (TR), but there may be a plurality of transaction data TR(1) to TR(n) generated in chronological order. Further, a plurality of data requests R1 to Rn may be received at intervals of time based on individual requests from users. FIG. 2 shows a conceptual diagram in which master data MA(1) to MA(n) are generated by receiving a plurality of data requests R1 to Rn and performing generation processing of G1 to Gn corresponding to the respective data requests.

Each of the generated master data MA(1) to MA(n) is provided to the user as an added asset, and an access ticket is generated in response to the data request R1 to Rn so that the user can refer to and obtain it. (ACT) may be sent to the BCN address (BCN Add), allowing the user to access each master data MA(1) to MA(n).

In Bitcoin, by issuing transaction tokens to BCN, a blockchain of the tokens is formed as a ledger, and blocks are chained in the chronological order of transactions. On the other hand, in the example according to the present invention, a chain of blocks of access tickets (ACT) is registered in a ledger, and the blocks are chained in chronological order.

FIG. 4 is a data configuration diagram of transaction data (TR) and master data (MA) in one embodiment according to the present invention.

The transaction data (TR) and master data (MA) components include the contents of the access ticket (ACT) issued for the user to indicate that the data was generated in response to the user's request. It will be done.

The user can obtain access rights to the master data (MA) using the information processing device 10 for the provider using an access ticket (ACT). The access ticket (ACT) includes data resource identifier (SID) information (see FIG. 3), and the user information processing device 20 can access the data by referring to it. becomes.

The basic components of master data (MA) and transaction data (TR) include a data section and an additional data section in addition to the access ticket (ACT) (see FIG. 4).

FIG. 5A shows the constituent elements of the data section. The data section can be divided into a data header section and a data body section.

The data header section is composed of a user identifier (UID), a terminal (device) identifier DID, and a data resource identifier (SID).

On the other hand, the data body section is composed of data (values) for each item of individuals, with the number of items being 1 to k. The value of k is an arbitrary number, so the data length of the data part does not need to be fixed. The data body section is further provided with a time stamp indicating the date and time when this transaction data (TR) or master data (MA) was created. This makes it possible to manage transaction data (TR) and master data (MA) in the order of generation.

FIG. 5B further shows additional data. The additional data includes a transmission address indicating the data transmission destination (for example, the user's BCN address) and ACL conditions that define the data viewing conditions (access conditions).

The ACL condition consists of a "start time" indicating the first accessible time, an "end time" indicating the last accessible time, and a "number of times" limiting the number of views. Note that this access condition is an example, and may be configured from various access conditions or a combination thereof. Further, the information processing device may be provided with an application program that can provide an interface through which the user can input so that the user can set these conditions.

Note that although both transaction data (TR) and master data (MA) have been described, both data do not necessarily have to have the same configuration. Further, a data type item may be added to each of them to facilitate the distinction between data indicating transaction data (TR) and data indicating master data (MA). Further, the additional data may not be included in the data structure of the transaction data (TR) and master data (MA), but may be separately stored in the storage device 30. When the additional data is separated, it is made possible to associate it with the transaction data (TR) or master data (MA), and is managed by the program of the storage device 30 or the application program of the information processing device 10.

Up to now, the explanation has been based on the assumption that the individual has already been authenticated, but the information processing device 10 for the provider and the information processing device 20 for the user can be It has a function to authenticate the user. For example, the information processing device 20 for the user has a biometric authentication function such as fingerprint authentication, vocal cord authentication, or blood vessel authentication, and uniquely associates the authentication data with the individual for personal authentication. The application program installed in the information processing device 20 is allowed to run if personal authentication is performed and the user is identified as a legitimate user.

As shown in FIG. 1, the asset data utilization system 1 uses an information processing device 10 for a data provider and an information processing device 20 for a user to transfer data from the information processing device 10 to the information processing device 20. It provides the following data.

Furthermore, as shown in FIG. 6, when data is provided to the information processing device 20 for the user, it has an information processing device 60 for a third party to further provide the data. Also good. The provision of data from the user's information processing device 20 to the third party's information processing device 60 is basically the same as the provision of data from the provider's information processing device 10 to the user's information processing device 20. The process remains the same. If the purpose is simply to provide data, the BCN address (BCN Add) should be the BCN address (BCN Add) used by the user, and the access ticket (ACT) should be the one used by the user's storage device. This is the access ticket (ACT) created in step 40.

The BCN address (BCN Add) is generated by the application program of the information processing device 20 for the user, and the access ticket (ACT) is generated from the information of the terminal (device) identifier DID of the information processing device 20 for the user. can be generated. Specifically, at a relatively early stage before data is provided by the user, a BCN address (BCN Add) and an access ticket (ACT) are generated as follows.

First, the local application program of the user information processing device 20 transmits a user identifier (UID) to the user storage device 40 and instructs the generation of a private key. The program or macro instruction stored in the user storage device 40 generates a public key and a private key in response to the instruction. Upon receiving the generation of the public key and private key, the application program of the information processing device 20 for the user generates a BCN address (BCN Add). The user storage device 40 receives the generated BCN address (BCN Add), hashes it, and creates the hash value and a data resource identifier (device) identifier DID of the user information processing device 20. SID), and a hash value of that data resource identifier (SID) with a secret character string is generated and used as an access ticket (ACT). As already explained with regard to the storage device 30, if the data in the user storage device 40 can be referenced, the data resource identifier (SID) is necessarily the terminal (device) identifier DID of the information processing device 20 itself. It is not necessary, and it may be an identifier of the storage device itself, or information that can identify data depending on the secret sharing storage may be used.

Returning to the topic of data transmission from the user's information processing device 20 to the third party's information processing device 60, the access ticket (ACT) can be notified to the third party's information processing device 60. At the same time, master data (MA) to be provided to the third party information processing device 60 is generated from the transaction data (TR).

The third party information processing device 60 can obtain master data (MA) data in the user storage device 40 via the BCN address (BCN Add). A third party can store the data in the storage device used by the information processing device 60 and share the data, if necessary.

FIG. 7 shows the access ticket (ACT) registered in the blockchain 50, the terminal (device) identifier DID and user identifier (UID) of the information processing apparatus 20 for the user, and the master data ( This shows the mutual linking relationship based on the contents of MA).

A data resource identifier (SID) is written in a plurality of access tickets (ACT) linked in a chain, and this actually specifies the storage device 30 managed by the information processing device 10 for the provider. Functions as a pointer. Furthermore, in the master data (MA) recorded in the storage device 30, a user identifier (UID) and a terminal (device) identifier DID are described as elements of the data header section. The information processing device 20 functions as a pointer. The information processing device 20 authenticates the user using the user identifier (UID), generates a BCN address (BCN Add) using the user identifier (UID), and generates an access ticket ( It is also a pointer to ACT).

Such a relationship is maintained and the validity of the access ticket (ACT) is established on the BCN address (BCN Add). Furthermore, the storage devices 30 and 40 that store transaction data (TR) and master data (MA) are preferably secret sharing storage devices, and since the data is managed in a distributed manner, data confidentiality and security can be maintained. The sex is further maintained.

The information processing device 20 for users has already set up an environment for providing data on the blockchain 50, and each time data in a predetermined form based on the specifications is posted to the blockchain 50, the information processing device 20 A data chain is formed using the hash value above, ensuring data security.

Since the size of data provided on the data chain is limited, actual data corresponding to the data can be stored in the storage device 30 or the user storage device 40.

FIG. 8 is a conceptual diagram of generating master data from different types of transaction data that occur in chronological order, and further merging the different types of master data (MA) to generate new master data (MA). .

The vertical axis shows the passage of time. This time can be, for example, the time of generation of each transaction data (TR) and master data (MA) and is indicated by its data element timestamp. Two types of transaction data (TR) are generated: TR_A(m) and TR_B(n) (m and n indicate numbers in order of elapsed time). Every time transaction data TR_A(m) and TR_B(n) are generated, master data MA_A(m) and MA_B(n) are generated. Furthermore, when different types of master data (MA) are generated, the generated master data (MA) are merged and new master data is created, MA_C(h) (h is the number in order of elapsed time. ) is generated. As can be understood from this, the master data (MA) is also used as transaction data (TR) to generate the next master data (MA).

Referring to FIG. 1, the transaction data TR_A(m) and TR_B(n) may be generated in the storage device 30 used by the information processing device 10, but may be generated in different storage devices used by different information processing devices. There is also a possibility that it will be generated. It depends on how user data is managed externally.

When different types of transaction data TR_A(m) and TR_B(n) are generated in the same storage device, for example, master data MA_C( h), or by using the master data (MA) obtained from the same type of transaction data (TR) (e.g. MA_A(2) and MA_B(1)) by the method already described. Master data (MA) (for example, MA_C(1)) may be generated by storing the master data (MA) in the storage device 40 used by the information processing device 20 for use in the storage device 40 and by name matching therein.

The merged master data (MA) is different from conventional data resources because the storage device that generated it becomes a new resource. Therefore, the data resource identifier (SID) is changed to a data resource identifier (SID) that can refer to the newly generated master data (MA).

In this way, multiple types of transaction data (TR) can be acquired from the same data resource or from multiple data resources. By enabling acquisition from multiple data resources, it is possible to use new data that complements each other's data. Further, the rules for name matching differ depending on the type of data, and may be determined as appropriate depending on the data item. For example, new master data (MA) may be created in which a new data item indicating a different index is created from data items of one type of master data (MA) and another type of master data (MA). Generating this new data item means, for example, merging data from a data resource related to exercise data and a data resource related to dietary data to generate new data including calorie calculation. .

As understood from FIGS. 1 and 6 and their descriptions, the application program of the information processing device 20 for the user receives data from the information processing device 10 (including the storage device 30) for the provider. and the provision of data to third parties. In order to receive the data, information processing for the user is performed by referring to the access ticket (ACT) sent via the blockchain from the information processing device 10 for the provider or the history of the access ticket (ACT). It is possible to acquire data from the device 10, or to upload data owned by the own processing device to a storage device (preferably, secret sharing storage, hereinafter the same) used by the own processing device. It is. In addition, as already explained, the information processing device 20 for the user can also provide data in the same way as the information processing device 10 for the provider. (BCN Add) to generate data and provide it to a third party, it can also have a function to provide data using the other party's BCN address (BCN Add). Furthermore, the user may be able to check the distributed slips that are chained using his or her own BCN address (BCN Add) and even preview their history.

It is not desirable to have ordinary users perform such detailed processing steps. Therefore, in order to avoid complication for the user, a series of procedures may be grouped on the display screen of the information processing device 20 for that user so that they can be performed with a single button, or by a simple operation. A user interface that can be used is provided by the application program.

FIG. 9 is a conceptual diagram of a medical information utilization system for utilizing medical data as one of the embodiments of the present invention. The configuration is such that multiple types of transaction data (TR) as shown in FIG. 8 are acquired from different institutions.

The center part shows the users, and the medical institutions, medical data clouds, and healthcare business companies on the left are the medical organizations used (activated) by the users. Normally, each type of data has different medical data, which is acquired into the user's secret sharing storage, and if necessary, the data is merged to generate new master data (MA).

There are many different types of medical data regarding an individual's mind and body. For example, medical data stored in in-house databases of medical institutions such as hospitals, medical data stored in medical data clouds that medical institutions access and use, and even medical data stored in medical data clouds that medical institutions access and use, as well as business companies that provide personal healthcare (for example, There is data stored by companies that provide services that support health measures and lifestyle-related disease countermeasures.

First, in order to enable individuals to centralize and manage their own medical data that is scattered across various locations/services, we need to establish a system in advance for the exchange of electronic data with cloud systems and database systems that serve as information resources for these medical data. Build consensus. Note that medical data may include a wide range of medical data regardless of its type or content as long as it has information regarding the health of the individual.

The data stored in the user's private secret sharing storage based on consent will be agreed with the medical institution or healthcare business company on the right, and the requested data will be transferred from the user's secret sharing storage to the medical institution or healthcare business company. It becomes possible to provide the information to the company.

Blockchain networks will be used to ensure that consent is properly maintained, authenticating authentic individuals and ensuring that data is authentic and unaltered. Chaining makes it virtually impossible to tamper with the data, ensuring data reliability. In addition, the data to the blockchain is not actually medical data, but the medical data is indicated by a pointer recorded in a ledger on the blockchain network, and the point of that pointer is secret sharing storage. is decentralized, ensuring confidentiality and difficulty in tampering, and even if the data is partially damaged or lost, it can be handled.

Data can be summarized in units of data resource provision, and even if new data or data updates are added, it can be composed of a single record using blockchain, and an individual's medical data from the past to the latest can be stored. It can be made viewable.

For example, since Mr. A's regular medical checkup data can be referenced in one record on the BCN, it is possible to go back and browse from the latest medical checkup to past medical checkup data.

Furthermore, as already explained as name merging, new data can be generated by combining different data, and pointers that refer to the past data and new data are connected in a chain on the blockchain network (BCN). This also makes it possible to prevent the loss of medical data, since the reference pointers for that data, including new data and past data, are not destroyed.

With reference to FIGS. 10A and 10B, generation of transaction data (TR) and master data (MA) generated therefrom will be explained using medical data as an example.

10A and 10B show only the data body portions of transaction data (TR) and master data (MA). The data body portion may have only one item, but normally there are multiple data items as in this example.

In the example of FIG. 10A, there are two types of transaction data TR_A and TR_B. Each item is numbered in parentheses in the order of its occurrence to facilitate understanding. Note that here, transaction data TR_A is biodata obtained based on "physical measurements", and transaction data TR_B is biodata obtained based on measurements of "vitals".

Therefore, each type of transaction data TR_A and TR_B consists of different data items, and each data item has personal data (or value). Note that portions where personal data is not obtained are indicated by "null". In other words, transaction data (TR) is a data set in which data of a plurality of items related to an individual are combined, and the plurality of transaction data (TR) indicates the history thereof.

What each item indicates and in what units it is expressed are managed by the application program installed on the information processing device, or by the memory or storage device of the information processing device. The data of the data item is associated with the data of the item.

Master data (MA) is generated for each transaction data (TR). Here, they are shown using the same numbers so that their correspondence can be understood.

Since it is preferable that the latest data of the master data (MA) indicates the latest data of the individual, here, for each data item, the latest master data (MA) is the past transaction data (TR). ) are rules and programmed to show the latest data. However, the "null" part is ignored because its data is not obtained. That is, in a plurality of datasets (TR) that are histories related to individuals, each item indicates the latest data in the dataset of historical data.
For example, first transaction data TR(1) is used to generate master data MA(1). In the next transaction data TR(2), the MA(2) generated corresponding to the transaction data TR(2) is a combination of the transaction data TR(2) and the previous master data MA(1). The latest data is shown for each data item, while ignoring the "null" part.

When receiving an instruction to generate master data (MA), the program generates master data (MA) according to such rules. FIG. 10A shows the data contents of the transaction data (TR) and master data (MA).

In addition to updating the master data (MA), the program also has a name merge function, that is, a join processing function for master data (MA). An example is shown in FIG. 10B.

“Generated master data (MA)” in FIG. 10B is the master data (MA_A and MA_B) generated corresponding to each transaction data (TR) in the order of occurrence of the two types of transaction data TR_A and TR_B in FIG. 10A. ) are listed.

"Newly generated master data (MA)" indicates newly generated master data MA_C in the order in which they are arranged. The rules for generating master data MA_C here are the same as those in FIG. 10A.

Note that multiple types of master data (MA) may be obtained from different data resource identifiers, but if you refer to the user identifier (UID) that exists in the master data (MA), you can find master data of the same user. (MA) can be combined to generate new master data (MA).

Combined generation using master data (MA) may be programmed to be more advanced processing than simply reading the contents (data) of the corresponding data items. The data items of transaction data (TR) are body fat weight (kg) and body weight (kg), and the combination generation program includes a calculation program of body fat weight (kg) ÷ body weight (kg) x 100. The body fat percentage (%), which is the calculation result, may be used as data of a newly generated data item. In this way, a combination generation program may be provided as appropriate depending on the purpose, and even more advanced data utilization is possible by performing data combination generation from different user identifiers (UIDs). .

As can be understood from the above explanation, the user writes the identifier of the storage device he/she uses or the processing device 20 that manages it in the content of the access ticket (ACT), and sends it to his/her BCN address. If the data is recorded in a ledger, the latest data and past data can be referenced from the storage device. In addition, users will be able to provide their own data to third parties, and in order to make these processes easier for users, for example, there will be a button for ``test results'', ``pass to doctor'', ``past results'', etc. Buttons such as the above may be provided on the operation screen as a user interface.

In addition, in order to securely exchange data between providers and third parties via the blockchain network (BCN), the blockchain address (BCN Add) is converted into a QR code (registered trademark) and the application - The program may read the QR code (registered trademark) with a camera installed in the information processing device and transmit it to the other party as a BCN address.

It is further disclosed below.
(Item 1)
A method for acquiring and utilizing data related to information of an individual by an information processing device used by the individual, the method comprising:
transmitting data regarding an address on a blockchain network used by the individual to a provider of data related to the individual's information via the network;
issuing and registering access data (ACT) from the provider to the address in the blockchain network, including data regarding the address and data for identifying the source of the data;
Referring to the access data (ACT) from the address of the blockchain network, identifying a data provider, and acquiring data related to the personal information from the identified provider;
Data utilization method consisting of.
(Item 2)
The data utilization method according to item 1, wherein the data provided by the provider includes identification information of an individual whose use is authorized by the information processing device.
(Item 3)
The data utilization method according to any one of items 1 to 2, wherein the data provided by the provider includes identification information of an information processing device used by the individual.
(Item 4)
4. The data utilization method according to any one of items 1 to 3, wherein the data provided by the provider includes identification information of the provider.
(Item 5)
5. The data utilization method according to any one of items 1 to 4, wherein the data provided by the provider includes information indicating the generation time of the data.
(Item 6)
The data (MA) provided by the provider includes items 1 to 5, which are data sets consisting of data regarding each of a plurality of data items generated based on a plurality of data (TR) that is historical data regarding the individual. The data utilization method described in any of the above.
(Item 7)
The data utilization method according to item 6, wherein each of the plurality of data items indicates the latest data in the data set of the historical data.
(Item 8)
8. The data utilization method according to any one of items 1 to 7, wherein at least the data related to the personal information is hashed using a hash function.
(Item 9)
A system for enabling an information processing device used by an individual to acquire and utilize data related to the information of the individual, the system comprising the information processing device,
The information processing device has at least a memory or a storage device connected to the information processing device,
The information processing device transmits data regarding the address on the blockchain network used by the individual via the network to a provider-side information processing device that has a storage device that serves as a provider of data related to the individual's information. and the ability to
Refer to access data (ACT) that is issued from the provider side information processing device to the address of the blockchain network and includes data regarding the address and data for identifying the data provider. function and
a function of acquiring data related to the individual's information from the provider's storage device based on the access data (ACT) and storing it in at least the individual's memory or storage device;
A data utilization system with
(Item 10)
The data utilization system according to item 9, wherein the data provided by the provider includes identification information of an individual whose use is authorized by the information processing device.
(Item 11)
Items 9 to 10, wherein the data provided by the provider includes at least identification information of an information processing device used by the individual, identification information of the provider, and information indicating data generation time. A data utilization system described in any of the above.
(Item 12)
The data (MA) provided by the provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of data (TR) that is historical data regarding the individual, items 9 to 11. A data utilization system described in any of the above.
(Item 13)
The data utilization system according to item 12, wherein each of the plurality of data items indicates the latest data in the data set of the historical data.
(Item 14)
14. The data utilization system according to any one of items 9 to 13, wherein at least the data related to the personal information is hashed using a hash function.
(Item 15)
A program for acquiring data related to information of an individual, which is stored in an information processing device used by the individual and executed by a first information processing device,
providing the blockchain address to another information processing device;
The other information processing device or a storage device used by the information processing device based on access data (ACT) including information on the blockchain address transmitted from the other information processing device based on the blockchain address. A program that obtains data related to the personal information generated by.
(Item 16)
16. The program according to item 15, wherein the data related to personal information includes identification information of an individual whose use is authorized by the information processing device.
(Item 17)
Items 15 to 16, wherein the data related to the individual's information includes at least identification information of the information processing device used by the individual, identification information of the provider, and information indicating data generation time. Any program listed in any of the above.

1. Asset data usage system 10. Information processing device 20 for provider. Information processing devices 30, 40 for users. Storage device (secret sharing storage device)
50. blockchain network

Claims (15)

A method for acquiring and utilizing data related to information of an individual by an information processing device used by the individual, the method comprising:
transmitting data regarding an address on a blockchain network used by the individual to a provider of data related to the individual's information via the network;
registering access data (ACT) including data for identifying the location of the data provided by the data provider on the blockchain network;
obtaining data related to the personal information by referring to the access data (ACT);
A method consisting of The method according to claim 1, wherein the data provided by the provider includes identification information of the individual. The data provided by the provider includes at least any of the following: identification information of an information processing device used by the individual, identification information of the provider, and information indicating data generation time. The method according to any one of Items 1 to 2. The data (MA) provided by the provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of data (TR) that is historical data regarding the individual. 3. The method described in any one of 3. 5. The method of claim 4, wherein each of the plurality of data items represents the most recent data in the dataset of historical data. 6. The method according to claim 1, wherein at least the data related to the personal information is hashed using a hash function. A system consisting of an information processing device used by an individual, which enables the information processing device to acquire and utilize data related to the individual's information,
The information processing device has at least a memory or a storage device connected to the information processing device,
The information processing device has a function of transmitting data regarding an address on a blockchain network used by the individual to an information processing device on a provider side of data related to the information of the individual, via a network;
a function of referencing access data (ACT) that includes data for specifying the location of the data provided by the provider of the data from the provider-side information processing device;
a function of acquiring data related to the personal information based on the access data (ACT);
A system with 8. The system according to claim 7, wherein the data provided by the provider includes identification information of an individual whose use is authorized. Claims 7 to 7, wherein the data provided by the provider includes at least identification information of an information processing device used by the individual, identification information of the provider, and information indicating data generation time. 8. The system according to any one of 8. Claims 7 to 7, wherein the data (MA) provided by the provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of data (TR) that is historical data regarding the individual. 9. The system according to any one of 9. 11. The system of claim 10, wherein each of the plurality of data items represents the most recent data in the dataset of historical data. The system according to any one of claims 7 to 11, wherein at least the data related to the personal information is hashed using a hash function. A storage medium that stores a program executed by an information processing device used by an individual to acquire data related to the individual's information,
The program can be used by at least the information processing device or another information processing device by referring to access data (ACT) registered on the blockchain network based on the blockchain address provided by the information processing device. A storage medium that causes the information processing device to execute an operation so as to be able to acquire data related to the personal information stored in a storage device. 14. The storage medium according to claim 13, wherein the data related to the individual's information includes identification information of the individual. Claims 13 to 13, wherein the data related to the individual's information includes at least identification information of an information processing device used by the individual, identification information of the provider, and information indicating data generation time. 15. The storage medium according to any one of 14.