JP7005102B2 - Data usage, systems and programs using BCN (Blockchain Network) - Google Patents

Description

The present invention relates to a data utilization method, a system and a program thereof using BCN (blockchain network).

With the development of information processing and communication, personal information is stored electronically as daily data by the daily activities of users and regular or continuous monitoring.

The information is diverse, for example, data on user health, medical treatment at hospitals, personal medical data such as drug administration, daily shopping history information, daily access information for searching favorite information, and the like. ..

Such information is accumulated as data together with time information, and can be treated as so-called personal history data.

Various data generated in response to such various activities and regular or continuous monitoring are stored in the storage used by the processing system that provides each service according to the services related to the activities and the like. For example, shopping information is stored in the form of purchase, that is, scattered in each service, such as shopping by credit, shopping by cash, shopping by debit card, and the like.

That is, such historical data is managed only by the provider that provided the service, and the individual user does not have the past historical data used by other institutions or vendors in another form.

Therefore, the historical data for each service may be very biased. Furthermore, even in today's highly developed information systems, historical data related to each other's services can be divided by the systems that provide the individual services and used as data with mutual relationships. It is hindered.

Moreover, the content of an individual's activities changes from moment to moment depending on the environment in which the individual is placed, and often shifts to the services of different vendors, so it is a very important asset for the individual. If the data is divided by the different services, it will hinder the full utilization of the data, either for the individual or for the company or institutional organization that newly utilizes it.

Personal data, on the other hand, must be treated with extreme caution in order to protect its privacy. By simply spreading information, the personal information will be misused, or spoofing will cause damage to the other. In addition, falsification of information can cause great damage.

Patent Application Publication No. 2016-218633

The present invention has been made focusing on such a problem.

Therefore, the present invention provides a data utilization system and a utilization method in which an individual can independently utilize and utilize his / her own personal data, and further, the data can be concealed. ..

Furthermore, the present invention does not limit the purpose and the object of the data, but for example, medical data which is personal information is also an asset of an individual. Patients are often treated across multiple hospitals for many reasons, including multiple illnesses or relocation.

Treatment data from multiple different medical institutions is an important treatment asset for the patient, but if they can be integrated and managed as medical data, they can be used in various ways. On the contrary, if the medical data is divided by a medical institution or the like, the originally required treatment will be overlooked.

For example, information on how a patient has recovered or has not recovered as a result of continuous treatment or drug administration for the purpose of treating a disease is available not only to the patient but also to many medical institutions. It is important information, which makes it possible to provide a further improved cure for other patients with similar illnesses.

On the other hand, medical data is personal information and needs to be strictly managed. Furthermore, the reliability and confidentiality of genuine personal data, and the reliability and confidentiality of medical activities between medical institutions and individuals (for example, treatment methods, medication methods, etc.) are also very important.

Therefore, the present invention provides a new method capable of distributing genuine information by a genuine individual, and provides a new method so that the important information can be utilized.

Further, the present invention provides a distribution platform for appropriately processing existing personal data related to medical treatment and the like and safely utilizing the data.

According to the present invention, it is a method for acquiring and utilizing data related to the personal information by an information processing device used by the individual, and data on an address on a blockchain network used by the individual is obtained by the individual. Access data (ACT) that includes a step of transmitting data related to the information of the above to a provider of data via a network, and data from the provider regarding the above address and data for identifying the data provider. Is issued to the address of the blockchain network and registered, and the access data (ACT) is referred to from the address of the blockchain network to identify the data provider, and the individual from the specified provider. We will disclose the data utilization method consisting of the steps to acquire the data related to the information in.

This makes it possible to use highly confidential personal information while utilizing the reliability through the address of the blockchain network.

Further, according to the present invention, the data provided by the provider includes identification information of an individual authorized to be used by the information processing device, identification information of the information processing device used by the individual, or identification information of the provider. At least one is included.

Further, according to the present invention, the data provided by the provider includes information indicating the generation time of the data, and it is possible to refer to the temporal history of the data.

Further, according to the present invention, the data provided by the provider is a data set consisting of data related to each of a plurality of data items generated based on a plurality of data which are historical data related to an individual.

Further, according to the present invention, in the data utilization method, each of the above-mentioned plurality of data items is configured to indicate the latest data in the historical data data set, and is provided as the latest latest information. can.

Further, according to the present invention, at least data related to personal information is hashed by a hash function and registered in a ledger in a blockchain.

The present invention further provides a system for acquiring and utilizing data related to the personal information by an information processing device used by the personal.

The information processing device of the system according to the present invention has at least a memory or a storage device connected to the information processing device, and data related to an address on a blockchain network used by an individual is related to the information of the individual. A function to transmit data to a provider-side information processing device that has a storage device that is a data provider, and a blockchain network address issued by the provider-side information processing device to the blockchain network address. The function to refer to the access data (ACT) including the data related to the data and the data for identifying the data provider, and the provider of the data related to the personal information based on the access data (ACT). It has a function of acquiring data from a storage device and storing it in at least its personal memory or storage device.

Further, according to the present invention, the data provided by the provider includes identification information of an individual authorized to be used by the information processing apparatus.

Further, the data provided by the provider includes at least the identification information of the information processing apparatus used by the individual, the identification information of the provider, and the information indicating the data generation time.

The data provided by the provider is a data set consisting of data related to each of a plurality of data items generated based on a plurality of data which are historical data related to an individual. For example, each of the plurality of data items is a history. Shows the latest data in a dataset of data.

Also, at least the data related to personal information is hashed by a hash function.

Further, the present invention provides a program stored in an information processing device used by an individual and executed by the first information processing device for acquiring data related to the personal information. Is based on the step of providing the blockchain address to another information processing device and the access data (ACT) including the information of the blockchain address transmitted from the other information processing device based on the blockchain address. It is configured to acquire data related to the personal information generated in another information processing device or a storage device used by the information processing device.

In addition, the data related to the personal information includes identification information of an individual authorized to be used by the information processing apparatus.

Further, the data related to the personal information includes at least the identification information of the information processing apparatus used by the individual, the identification information of the provider, and the information indicating the data generation time.

It is a schematic diagram which showed the embodiment of the personal asset data utilization system by this invention. A conceptual diagram is shown in the case of updating personal data in the storage device which is the information providing resource of FIG. 1 and the storage device used by the user. In the storage device of FIG. 1, an example of a data structure of an access ticket (abbreviated as “ACT”), which is issued as access data when personal data is provided to a system other than the system that manages the personal data, is shown. ing. An example of the data structure of the master data (MA) and the transaction data (TR) regarding the personal information created in each storage device of FIG. 2 is shown. An example of the data structure of the data part which is a data component of the master data (MA) and the transaction data (TR) of FIG. 4 is shown. An example of the data structure of the additional data part which is a data component of the master data (MA) and the transaction data (TR) of FIG. 4 is shown. It is a schematic diagram which showed the embodiment of the personal asset data utilization system by this invention, and is the schematic diagram which showed the embodiment which provides the received master data (MA) to another person (individual, institution, group, etc.). be. It is a conceptual diagram which showed the mutual relationship between the user, the storage device of the data provider, and the access ticket whose issuance history is chained on the chain in the blockchain 50. A conceptual diagram that generates master data from different types of transaction data that occur in time series and a conceptual diagram that combines different types of master data (MA) are shown. It is a conceptual diagram when medical data is applied to the personal asset data utilization system by this invention. An example of the data body part of the transaction data (TR) and the master data (MA) generated from the transaction data (TR) is shown. An example of the data body part of the master data (MA) newly generated from different types of transaction data is shown.

The present invention utilizes a blockchain, which is a core technology such as Bitcoin, which is a virtual currency. A blockchain is a distributed ledger for recording records (blocks) of transactions that have occurred in a network as chain-shaped blocks. Each block of transactions is recorded in the ledger as a legitimate block chained in a chain by storing the hash value of the contents of the previously generated block in addition to the transaction contents. To.

When a new block is added to the blockchain, mining by a miner is performed to ensure that a chain of blocks whose validity has been verified is formed.

By consensus building by mining, chains with legitimate blocks are distributed and accumulated in the database, preventing tampering and guaranteeing data security. It should be noted that a method is known in which a reward is given to a mining participant who first confirms whether or not the transaction content is fraudulent, and the authority to update the database is given. Any mining method can be adopted as long as the method is not limited and a consensus of legitimacy can be obtained and the possibility that a malicious block is inserted into the chain is small.

Further, as the blockchain, in addition to the open type (or public type) used in Bitcoin, the closed type (private type) blockchain that limits the participants is known. In the present invention, any type of blockchain can be used. As described above, the blockchain has various forms, but the blockchain is not limited as long as the present invention can be implemented.

Individual transactions can be made, for example, using P2P communication. For P2P communication, for example, the Internet, a mobile communication network, a dedicated communication line, or the like can be used. However, this is an example, and communication other than P2P communication may be used. Further, as the information processing device for conducting transactions, an information processing device such as a personal computer or a portable smartphone or tablet can be used, but the information processing device is not limited thereto.

Technology using blockchain is used in Bitcoin, which is a virtual currency, but in the transaction ledger of that virtual currency, a block of transaction data of the virtual currency (for example, the amount of the virtual currency to be traded, the user) The payee address of the virtual currency, the public key used to generate the payee address of the user, and the hash value of the basic resources of the currency) are created and on the chain in the blockchain network. It is recorded in.

The security of transaction data is guaranteed by using the above hash value and public key cryptosystem. In addition, the legitimacy of transaction data is monitored by being widely distributed in order to have miners verify the legitimacy.

The present invention promotes the use of the data referenced in the block while utilizing the legitimacy of the block recorded in the ledger of the blockchain by using the blockchain. For example, by using the blockchain, in order to ensure the confidentiality of data while ensuring the validity of the data transaction history, a specific authorized user or a specific user and a specific user are specified. Restrictions may be placed on the information processing device. As the data stored in the blockchain, the data of the actual transaction target does not exist in the block, and the block has a structure or data such as a pointer so that the data of the actual transaction target can be referred to. Can be done.

FIG. 1 shows an example of the configuration of the asset data utilization system 1 according to the present invention.

As a premise, between the user of the information processing apparatus 20 for the user and the user of the information processing apparatus 10, the use or management of the information processing apparatus 10 for the provider to the user. It is necessary to form a consent to provide the information of the person.

By forming this consent, the information processing apparatus 10 provider can provide the user's activity data to the user.

The information processing device 20 used by the user has completed the authentication registration of the individual user in advance, is assigned the user identifier (UID) which is the identification information of the user, and further provides the information for the user. The terminal (device) identifier DID, which is the identification information of the processing device 20, is uniquely registered in the information processing device 20 for the user.

Further, the user is registered in advance with a blockchain address (also referred to as "BCN address" or "BCN Add" for simplification) that enables ledger entry on the blockchain (BCN50 in FIG. 1). Has been done. Each of the user and the provider is set up so that data communication can be performed electronically by the information processing device 20 for the user and the information processing device 10 for the provider.

The steps for providing the user's individual activity data to the user will be described below.

In parallel with or before and after step (3), the user provides the BCN address (BNC Ads) in order to disclose his address on the blockchain network (BCN50) to the provider. The information processing device 20 for the user transmits the information processing device 10 for the provider (step (1)).

Assuming that data related to the user is stored in a storage device 90, the data is stored from the storage device 90 in which the storage device 90 is stored, either in response to the step (1) or independently of the step (1). The user's data is acquired by the information processing apparatus 10 for the provider (step (3)). Then, from the received data, a data set of actual values (data) corresponding to one or a plurality of data items is generated according to a predetermined data format (step (2) -1), and the data set is generated. It is stored (uploaded) in the storage device 30 as transaction data (TR) (step (2) -2).

What kind of items are added as elements of the data set is appropriately determined according to the consent contents of the user and the provider, the items that the provider can provide, the items that the user wants, and the like.

The information processing device 10 for the provider and the information processing device 20 for the user store the selection application program for providing the data in each other's memory, and each application program is operated by its own processing device. It is executed and the data item to be added to the transaction data (TR) is selected. Then, according to the selection, the data corresponding to the data item is dropped into the transaction data (TR) corresponding to the predetermined format.

As transaction data (TR), the content of the dropped actual data is described in a format that can be read corresponding to the item of the data, so that it can be used in addition to the information processing device 10 for the provider. It can be read by the information processing device 20 for a person or a terminal of a third party. As the format, for example, the JSON format can be used.

The information processing apparatus 10 for the provider further has a transaction data (TR) generation and a master data (MA) generation program from the transaction data (TR). The information processing device 10 for the provider is the side that provides the data to the user, and the user is the side that receives the data. However, as will be explained later, the user can also be the side that can provide the received data. Therefore, the functions of the application programs of the information processing device 20 for the user and the information processing device 10 for the provider may be different, but it is not always necessary to have the application programs having different functions, and the applications having the same functions. It may have a program, or an application program for executing either of the functions described below. That is, it should be recognized that the functions described for one information processing device may also be present in another information processing device for the purpose of its use. Further, the storage device may take over the partial execution, for example, the generation of transaction data (TR) and master data (MA).

Upon receiving the user's BCN address (BCN Add) in step (1), the information processing apparatus 10 for the provider has the BCN address (BCN Add) and a data resource identifier (SID) for identifying the data resource. ) Is transmitted to the storage device 30, and the information processing device 10 for the provider that receives the transmission ticket (ACT) is generated. If the data provider can be specified, the data resource identifier (SID) is not limited to the terminal (device) identifier DID of the information processing device 20 for the user, but is an identifier of the storage device 30. There may be. Further, the storage device may be widely distributed like a secretly distributed storage device, but if the data in the storage device can be referred to, the data resource identifier (SID) may be any identifier. There may be.

This access ticket (ACT) is data to be recorded on the user's blockchain.

FIG. 3 is a data structure diagram of an access ticket (ACT) according to an embodiment of the present invention.

The access ticket (ACT) is a hash value of predetermined data to fit the blockchain. The data that is the element is a hash value of the user's BCN address (BCN Addd), a data resource identifier (SID), and a secret character string corresponding to the data resource identifier (SID), and these are combined by a hash function. Hash. By using, for example, MD5 as the hash function, the hash value is 128 bits. As a result, it is recorded in the blockchain network (BCN) as a fixed-length access ticket (ACT). Although not shown in FIG. 1, the information processing apparatus 10 for the provider may separately notify the information processing apparatus 20 for the user of the issuance of the access ticket (ACT). Further, the registration to the blockchain network (BCN) may be performed via the information processing device 20 for the user.

By issuing this data, the data from the data resource identifier (SID) is prepared for the user, and it is shown that the user has the authority to obtain the data.

Then, the user can access the transaction data (TR) in the storage device 30 managed by the information processing device 10 for the provider and the master data (MA) generated from the transaction data (TR) by the access ticket (ACT). It will be possible.

Transaction data (TR) and master data (MA) have a predetermined format to allow users to browse and manipulate data, as well as to provide data to other third parties.

Here, the original data for the provider to provide the data often exists separately as activity data of the user at different times. Therefore, although the types are the same, a plurality of transaction data (TR) corresponding to each original data may be prepared. In addition, the original data for the provider to provide the data includes different types of activity data, and there are cases where the recorded items of the data are different from each other. Therefore, another transaction data (TR) may be prepared, although the basic format is the same, but the record length and the data items to be recorded are different.

In addition, the request for personal data from the information processing device 20 for the user is not always one time, but for the provider after a while so that the personal data generated for each activity can be received. The information processing device 10 may be requested multiple times.

In this way, the transaction data (TR) generated in the storage device 30 can be generated as one or more transaction data (TR).

In FIG. 1, in order to simplify the explanation, an example will be described in which one master data (MA) is created from one transaction data (TR) and provided to the user.

The storage device 30 has a program or macro instruction stored in a memory (not shown), and the processing device of the storage device 30 executes the program or macro instruction. It should be noted that the program includes macro instructions, and here, for the sake of convenience, the macro instructions are only used separately.

When the program or macro instruction receives the BCN address (BCN Addd) or the data resource identifier (SID) indicating the data provider of the data to the information processing apparatus 20 for the user from the information processing apparatus 10 for the provider, the program or macro instruction receives the data resource identifier (SID). An access ticket (ACT) is generated based on the information (step (4)). The storage device 30 may generate master data (MA) based on transaction data (TR) (step (5)). Then, the access ticket (ACT) is returned to the information processing apparatus 10 for the provider (step (4) -1).

As described above, the access ticket (ACT) gives the user the right to refer to and download the data used or managed by the information processing apparatus 10 for the provider, and the information for the provider. Issued via the processing device 10 (step (4) -2).

The destination of the access ticket (ACT) is the user's BCN address (BCN Add) provided by the information processing apparatus 20. By accessing the BCN 50, the user can obtain an access ticket (ACT) through the information processing device 20 for the user (step (6)).

Since the data resource identifier (SID) is stored in the acquired access ticket (ACT), the user can store the information based on the information via the information processing device 10 for the provider or directly. The information of the master data (MA) stored in the apparatus 30 can be referred to, and the master data (MA) can be downloaded to the memory 21 of the information processing apparatus 20 for the user (step (7)).

As described above, the transaction data (TR) is not necessarily one, and transaction data TR (1) to TR (n) generated in a plurality of time series may exist. Further, a plurality of data requests R1 to Rn may be received at intervals according to individual requests from the user. FIG. 2 shows a conceptual diagram in which master data MA (1) to MA (n) are generated by receiving a plurality of data requests R1 to Rn and generating G1 to Gn corresponding to each.

Each of the generated master data MA (1) to MA (n) is provided to the user as an added asset, and an access ticket is provided according to the data requests R1 to Rn so that the user can refer to and acquire the master data MA (1) to MA (n). (ACT) may be transmitted to the BCN address (BCN Add) to allow the user to access each master data MA (1) to MA (n).

In Bitcoin, by issuing a transaction token to BCN, the blockchain of the token is formed as a ledger, and the blocks are chained in the transaction time series. On the other hand, in the example according to the present invention, a chain of blocks of access tickets (ACT) is registered in the ledger, and the blocks are chained in chronological order.

FIG. 4 is a data structure diagram of transaction data (TR) and master data (MA) according to the embodiment of the present invention.

The components of transaction data (TR) and master data (MA) include the contents of an access ticket (ACT) issued for the user to indicate that the data is generated in response to the user's request. Will be.

The user can obtain the access right of the master data (MA) by the information processing device 10 for the provider by the access ticket (ACT). The access ticket (ACT) contains information on the data resource identifier (SID) (see FIG. 3), and the information processing apparatus 20 for the user can access the data by referring to the information. It becomes.

The basic components of the master data (MA) and the transaction data (TR) include a data unit and an additional data unit in addition to the access ticket (ACT) (see FIG. 4).

FIG. 5A shows the components of the data unit. The data unit can be divided into a data header unit and a data body unit.

The data header unit is composed of a user identifier (UID), a terminal (device) identifier DID, and a data resource identifier (SID).

On the other hand, the data body part is composed of data (values) of each item of 1 to k individuals. The value of k is an arbitrary number, and therefore the data length of the data unit does not have to be fixed. The data body unit is further provided with a time stamp indicating the date and time when the transaction data (TR) or master data (MA) was created. This makes it possible to manage transaction data (TR) and master data (MA) in the order of generation.

FIG. 5B further shows additional data. The additional data is composed of a transmission address indicating a data transmission destination (for example, a user's BCN address) and an ACL condition that defines a data viewing condition (access condition).

The ACL condition consists of a "start time" indicating the first accessible time, an "end time" indicating the last accessible time, and a "number of time" that limits the number of browsings. It should be noted that this access condition is an example, and may be configured from various access conditions or a combination thereof. Further, the information processing apparatus may be provided with an application program capable of providing an interface that can be input by the user so that these conditions can be set by the user.

Although both transaction data (TR) and master data (MA) have been described, both data do not necessarily have the same configuration. Further, a data type item for facilitating the distinction between transaction data (TR) and master data (MA) may be added to each. Further, the additional data may not be included in the data structure of the transaction data (TR) and the master data (MA), but may be separately separated and stored in the storage device 30. When the additional data is separated, it can be associated with the transaction data (TR) or the master data (MA), and is managed by the program of the storage device 30 or the application program of the information processing device 10.

So far, the explanation has been made on the premise that personal authentication has already been performed, but the information processing device 10 for the provider and the information processing device 20 for the user are legitimate to those who intend to use the terminal. It has a function to authenticate whether it is a user. For example, the information processing device 20 for a user has a biometric authentication function such as fingerprint or vocal band authentication or blood vessel authentication, and the authentication data is uniquely associated with an individual to achieve personal authentication. The application program installed in the information processing apparatus 20 is personally authenticated, and when it is identified as a legitimate user, its execution is permitted.

As shown in FIG. 1, the asset data utilization system 1 uses an information processing device 10 for a data provider and an information processing device 20 for a user to change from the information processing device 10 to the information processing device 20. It provides the data of.

Further, as shown in FIG. 6, when the data is provided to the information processing apparatus 20 for the user, the information processing apparatus 60 for a third party for further providing the data is provided. Is also good. The provision of data from the information processing device 20 for the user to the information processing device 60 for a third party is basically the provision of data from the information processing device 10 for the provider to the information processing device 20 for the user. The process does not change. If the data is simply provided, the BCN address (BCN Add) may be the BCN address (BCN Add) used by the user, and the access ticket (ACT) may be a storage device for the user. It is an access ticket (ACT) created in 40.

The BCN address (BCN Add) is generated by the application program of the information processing device 20 for the user, and the access ticket (ACT) is obtained from the information of the terminal (device) identifier DID of the information processing device 20 for the user. Can be generated. Specifically, a BCN address (BCN Addd) and an access ticket (ACT) are generated as follows in a relatively early stage before the data is provided from the user.

First, the local application program of the information processing apparatus 20 for the user transmits the user identifier (UID) to the storage apparatus 40 for the user and instructs the generation of the private key. The program or macro instruction stored in the user storage device 40 generates a public key and a private key in response to the instruction. Upon receiving the generation of the public key and the private key, the application program of the information processing apparatus 20 for the user generates a BCN address (BCN Add). The user storage device 40 receives and hashes the generated BCN address (BCN Add), and indicates the hash value and the terminal (device) identifier DID of the information processing device 20 for the user (data resource identifier (data resource identifier). A hash value of the SID) and the secret character string of the data resource identifier (SID) is generated and used as an access ticket (ACT). As described in the storage device 30, if the data of the user storage device 40 can be referred to, the data resource identifier (SID) is always the terminal (device) identifier DID of the information processing device 20 itself. It is not necessary, and it may be an identifier of the device itself of the storage device, or information that can identify the data according to the secret distributed storage may be used.

Returning to the story of data transmission from the information processing device 20 for the user to the information processing device 60 for the third party, the access ticket (ACT) can notify the information processing device 60 for the third party. At the same time, master data (MA) for providing to the information processing apparatus 60 for a third party is generated from transaction data (TR).

The information processing device 60 for a third party can obtain the data of the master data (MA) in the user storage device 40 via the BCN address (BCN Add). If necessary, a third party can store the data in the storage device used in the information processing device 60 to share the data.

FIG. 7 shows an access ticket (ACT) registered in the blockchain 50, a terminal (device) identifier DID and a user identifier (UID) of the information processing device 20 for the user, and master data of the storage device 30 ( It shows the relationship of mutual association according to the contents of MA).

A data resource identifier (SID) is described in the access ticket (ACT) in which a plurality of elements are chained in a chain shape, which substantially designates a storage device 30 managed by the information processing device 10 for the provider. Functions as a pointer. Further, in the master data (MA) recorded in the storage device 30, a user identifier (UID) and a terminal (device) identifier DID are described as elements of the data header unit, and are used by the user. It functions as a pointer of the information processing apparatus 20 of the above. The information processing apparatus 20 authenticates a user by its user identifier (UID), and generates a BCN address (BCN Addd) by the user identifier (UID), which is an access ticket (BCN Add) on the BCN address (BCN Add). It is also a pointer to ACT).

Such a relationship is maintained, and the legitimacy of the access ticket (ACT) is consensus-builded on the BCN address (BCN Addd). Further, the storage device 30 and the storage device 40 for storing transaction data (TR) and master data (MA) are preferably secret-shared storage devices, and since the data is distributed and managed, the confidentiality and security of the data Sex and sex are further maintained.

The information processing device 20 for users has already been prepared in an environment for providing data on the blockchain 50, and each time data in a predetermined form based on the specifications is posted to the blockchain 50, the blockchain 50 is provided. The hash values above form a chain of data to ensure the security of the data.

Since the size of the data provided on the data chain is limited, the actual data corresponding to the data can be stored in the storage device 30 or the user storage device 40.

FIG. 8 is a conceptual diagram in which master data is generated from different types of transaction data that occur in time series, and the different types of master data (MA) are identified to generate new master data (MA). ..

The vertical axis shows the passage of time. This time can be, for example, the time when each transaction data (TR) and master data (MA) are generated, and is indicated by a time stamp which is a data element thereof. As the transaction data (TR), two types of transaction data TR_A (m) and TR_B (n) (m and n indicate numbers in the order of elapsed time) are generated. Every time the transaction data TR_A (m) and TR_B (n) are generated, the master data MA_A (m) and MA_B (n) are generated. Further, when different types of master data (MA) are generated, the generated master data (MA) is named, and new master data, MA_C (h) (h is a number in the order of elapsed time). Show) is generated. As can be understood from now on, the master data (MA) is also used as transaction data (TR) for generating the next master data (MA).

Referring to FIG. 1, the transaction data TR_A (m) and TR_B (n) may be generated in the storage device 30 used by the information processing device 10, but different storage devices used by different information processing devices. It may be generated in. It depends on how your data is managed externally.

When different types of transaction data TR_A (m) and TR_B (n) are generated in the same storage device, for example, master data MA_C named with the same user identifier (UID) in the same storage device ( h) may be generated, or the master data (MA) (eg, MA_A (2) and MA_B (1)) obtained from the same type of transaction data (TR) may be generated by the method described above. The master data (MA) (for example, MA_C (1)) stored in the storage device 40 used by the information processing device 20 and identified in the storage device 40 may be generated.

The name-identified master data (MA) is different from the conventional data resource because the generated storage device side becomes a new resource. Therefore, the data resource identifier (SID) is changed to a data resource identifier (SID) so that the newly generated master data (MA) can be referred to.

In this way, a plurality of types of transaction data (TR) can be acquired from the same data resource or from a plurality of data resources. By making it possible to acquire from multiple data resources, it can be used as new data that complements each other's data. Further, the rule of name identification differs depending on what kind of data is used, and may be appropriately determined according to the data item. For example, a data item of one master data (MA) and another type of master data (MA) can be a new master data (MA) in which a new data item indicating another index is created. The generation of this new data item is, for example, the generation of new data including calorie calculation by merging the respective data from the data resource related to exercise data and the data resource related to dietary data. ..

As will be understood from FIGS. 1 and 6 and the description thereof, the application program of the information processing device 20 for the user receives data from the information processing device 10 (including the storage device 30) for the provider. And can include two major functions of providing data to a third party. Then, in order to receive the data, the information processing for the user is performed by referring to the history of the access ticket (ACT) or the access ticket (ACT) transmitted from the information processing apparatus 10 for the provider via the blockchain. It is possible to acquire data from the device 10 or upload the data possessed by the own processing device to the storage device used by the own processing device (preferably secret sharing storage, the same shall apply hereinafter). Is. Further, as already described, the information processing device 20 for the user can also provide data in the same manner as the information processing device 10 for the provider, and the BCN address owned by the user is simply provided there. Not only can it generate data using (BCN Add) and provide it to a third party, but it can also have a function of providing data using the BCN address (BCN Add) of the other party. It may also be possible to check the distributed slips chained by their own BCN address (BCN Add) and even preview their history.

It is not preferable to let a normal user perform such detailed steps of processing. Therefore, in order not to be complicated for the user, a series of procedures can be grouped on the display display screen of the information processing apparatus 20 for the user so that the series of procedures can be performed with the touch of a button, or by a simple operation. A user interface that can be done is provided by the application program.

FIG. 9 is a conceptual diagram of a medical information utilization system for utilizing medical data as one of the embodiments according to the present invention. The configuration is such that a plurality of types of transaction data (TR) as shown in FIG. 8 are acquired from different institutions.

The central part shows the user, and the medical institution, medical data cloud, and healthcare business company on the left are the medical organizations used (activities) by the user. Normally, each has different medical data, which is acquired in the user's secret-shared storage, and if necessary, the data is named and new master data (MA) is generated.

There are several different types of medical data related to the mind and body of an individual. For example, medical data stored as an in-hospital database of a medical institution such as a hospital, medical data stored in a medical data cloud accessed and used by a medical institution, and a business company that provides personal health care (for example, mental). There is data stored by companies that provide services that support measures for health and lifestyle diseases.

First, in advance for the transfer of electronic data to cloud systems and database systems, which are information resources for these medical data, so that individuals can centrally manage their own medical data scattered in various places / services. Consent formation. The medical data may be widely included as medical data regardless of the type and content as long as it has information on the health of the individual.

Based on the consent formation, the data stored in your own secretly distributed storage will form a consent formation for data provision with the medical institution or healthcare business company on the right side, and the required data will be transferred from the user's secretly distributed storage to the medical institution or healthcare business. It will be possible to provide to the company.

Blockchain networks are used to authenticate authenticity and to ensure the reliability of legitimate and tampered data so that consensus building is properly maintained. The reliability of the data is ensured by making it virtually impossible to falsify the data by chaining. Also, the data to the blockchain is not actually medical data, and the medical data is indicated by a pointer recorded in the ledger in the blockchain network, and the point of the pointer is the secretly distributed storage, so the data. Is decentralized, and it is possible to maintain confidentiality and ensure the difficulty of falsification, and even if the data is partially damaged or lost, it can be dealt with.

Data can be organized by data resource provision unit, and even if new data or data update is added, it can be composed of one record by blockchain, and the personal medical related data from the past to the latest can be collected. It can be viewed.

For example, since Mr. A's regular examination data can be referred to in one record on BCN, it is possible to browse back from the latest examination to the past examination data.

Furthermore, as already explained as name identification, different data can be combined to generate new data, and pointers that refer to the past data and the new data are chained on the blockchain network (BCN). It is also possible to prevent the loss of medical data because the reference pointer of the data including new data and past data is not broken.

With reference to FIGS. 10A and 10B, the generation of transaction data (TR) and master data (MA) generated from the transaction data (TR) will be described by taking medical data as an example.

10A and 10B show only the data body portion of transaction data (TR) and master data (MA). One item may be used in the data body part, but usually there are a plurality of data items as in this example.

In the example of FIG. 10A, there are two types of transaction data TR_A and TR_B. Each is numbered in parentheses in order of their occurrence time for ease of understanding. Here, the transaction data TR_A is the biodata obtained based on the "body measurement", and the transaction data TR_B is the biodata obtained based on the measurement of the "vital".

Therefore, each type of transaction data TR_A and TR_B is composed of different data items, and each data item has personal data (or a value). The part where personal data is not obtained is indicated by "null". That is, the transaction data (TR) is a data set in which the data of a plurality of items related to an individual are combined, and the plurality of transaction data (TR) show the history.

What each item indicates and what unit it indicates is managed by the application program in which the information processing device is installed, or the memory and storage device of the information processing device. The data of the data item is associated with the data of what item.

Master data (MA) is generated for each transaction data (TR). Here, the same numbers are used so that the correspondence can be understood.

Since it is preferable that the latest data of the master data (MA) indicates the latest data of the personal data, here, for each data item, the latest master data (MA) is the past transaction data (TR). ) Is ruled and programmed to show the latest data. However, the "null" part is ignored because the data has not been obtained. That is, in a plurality of data sets (TR) that are histories about an individual, each item indicates the latest data in the data set of the historical data.
For example, in the first transaction data TR (1), the master data MA (1) is generated using the data. In the next transaction data TR (2), the MA (2) generated corresponding to the transaction data TR (2) is a combination of the transaction data TR (2) and the previous master data MA (1). The latest data is shown for each data item, ignoring the generated "null" part.

Upon being instructed to generate master data (MA), the program will generate master data (MA) according to such rules. FIG. 10A shows the data contents of the transaction data (TR) and the master data (MA).

In addition to updating to master data (MA), the program has a name identification, that is, a function of combining master data (MA) with each other. An example is shown in FIG. 10B.

The “generated master data (MA)” in FIG. 10B is the master data (MA_A and MA_B) generated corresponding to each transaction data (TR) in the order of occurrence of the two types of transaction data TR_A and TR_B in FIG. 10A. ) Are lined up.

The "newly generated master data (MA)" indicates the newly generated master data MA_C in the order in which they are arranged. The rules for generating the master data MA_C here are the same as in FIG. 10A.

Although a plurality of types of master data (MA) may be obtained from different data resource identifiers, the master data of the same user can be obtained by referring to the user identifier (UID) existing in the master data (MA). It is possible to combine only (MA) to generate new master data (MA).

The combination generation by the master data (MA) may not only read the contents (data) of the corresponding data item, but may be programmed to be a more advanced process. The data items of the transaction data (TR) are the weight of body fat (kg) and the body weight (kg), and the binding generation program is a calculation program of the weight of body fat (kg) ÷ body weight (kg) x 100. The body fat percentage (%), which is the result of the calculation, may be used as the data of the newly generated data item. In this way, depending on the purpose, a join generation program may be provided as appropriate, and by generating data joins from different user identifiers (UIDs), even more advanced data utilization becomes possible. ..

As can be understood from the above explanation, the user describes the identifier of the storage device used by the user or the processing device 20 that manages the storage device 20 in the content of the access ticket (ACT), and the user describes the identifier of the storage device 20 that manages the storage device 20 to the BCN address of the user. If you record the ledger, you can refer to your latest data and past data from the storage device. In addition, it will be possible to provide its own data to a third party, so that the user can easily operate these processes, for example, "test result" button, "pass to doctor", "past result", etc. Buttons such as may be prepared on the operation screen as a user interface.

In addition, in order to securely perform mutual data with providers and third parties via the blockchain network (BCN), the blockchain address (BCN Add) is converted into a QR code (registered trademark) and applied. -The program may read the QR code (registered trademark) with a camera provided in the information processing device and send it to the other party as a BCN address.

Further disclosed below.
(Item 1)
It is a method for acquiring and utilizing data related to the personal information by the information processing device used by the personal.
A step of transmitting data about an address on a blockchain network used by an individual to a provider of data related to the individual's information via the network, and
A step of issuing and registering access data (ACT) including data related to the address and data for identifying the data provider to the address of the blockchain network from the provider.
A step of identifying a data provider from the address of the blockchain network with reference to the access data (ACT), and acquiring data related to the personal information from the identified provider.
Data utilization method consisting of.
(Item 2)
The data utilization method according to item 1, wherein the data provided by the provider includes identification information of an individual authorized to be used by the information processing apparatus.
(Item 3)
The data utilization method according to any one of items 1 and 2, wherein the data provided by the provider includes identification information of an information processing device used by the individual.
(Item 4)
The data utilization method according to any one of items 1 to 3, wherein the data provided by the provider includes identification information of the provider.
(Item 5)
The data utilization method according to any one of items 1 to 4, wherein the data provided by the provider includes information indicating the generation time of the data.
(Item 6)
The data (MA) provided by the provider is a data set consisting of data related to each of a plurality of data items generated based on a plurality of data (TR) which are historical data related to the individual, items 1 to 5. Data utilization method described in any of.
(Item 7)
In the data utilization method according to item 6, each of the plurality of data items indicates the latest data in the historical data data set.
(Item 8)
The data utilization method according to any one of items 1 to 7, wherein at least the data related to the personal information is hashed by a hash function.
(Item 9)
It is a system for acquiring and utilizing data related to the personal information by an information processing device used by an individual, and the system comprises the information processing device.
The information processing device has at least a memory or a storage device connected to the information processing device.
The information processing device transmits data related to an address on the blockchain network used by the individual to a provider-side information processing device having a storage device that is a source of data related to the personal information via the network. And the function to do
Referencing access data (ACT) issued from the provider-side information processing device to the address of the blockchain network, including data relating to the address and data for identifying the data provider. Functions and
A function of acquiring data related to the personal information from the providing storage device based on the access data (ACT) and storing the data in at least the personal memory or the storage device.
Data utilization system with.
(Item 10)
The data utilization system according to item 9, wherein the data provided by the provider includes identification information of an individual authorized to be used by the information processing apparatus.
(Item 11)
The data provided by the provider includes at least the identification information of the information processing apparatus used by the individual, the identification information of the provider, and the information indicating the data generation time, items 9 to 10. The data utilization system described in any of.
(Item 12)
The data (MA) provided by the provider is a data set consisting of data related to each of a plurality of data items generated based on a plurality of data (TR) which are historical data related to the individual, items 9 to 11. The data utilization system described in any of.
(Item 13)
In the data utilization system according to item 12, each of the plurality of data items indicates the latest data in the historical data data set.
(Item 14)
The data utilization system according to any one of items 9 to 13, wherein at least the data related to the personal information is hashed by a hash function.
(Item 15)
A program stored in an information processing device used by an individual and executed by the first information processing device for acquiring data related to the personal information.
The step of providing the blockchain address to other information processing devices,
The other information processing device or the storage device used by the information processing device based on the access data (ACT) including the information of the blockchain address transmitted from the other information processing device based on the blockchain address. A program that acquires data related to the personal information generated in.
(Item 16)
The program according to item 15, wherein the data related to the personal information includes identification information of an individual authorized to be used by the information processing apparatus.
(Item 17)
The data related to the personal information includes at least the identification information of the information processing apparatus used by the personal, the identification information of the provider, and the information indicating the data generation time, items 15 to 16. The program described in any of.

1. 1. Asset data utilization system 10. Information processing device for providers 20. Information processing device for users 30, 40. Storage device (secret sharing storage device)
50. Blockchain network

Claims (15)

It is a method for enabling the first information processing device (20) used by the user to manage the first data stored in the storage device (30) that is the source of the data .
A step of registering the second data regarding the address on the blockchain network used by the user by the second information processing apparatus (10) , and
The access data (ACT) for the user to access the first data stored in the storage device (30) provided by the provider is the first information processing device (20) or the said. A step of registering on the blockchain network based on the second data by the second information processing device (10), and
How to have . The method according to claim 1, wherein the first data provided by the provider includes data relating to the identification information of the user . The first data provided by the provider includes at least the identification information of the first information processing device (20) used by the user , the identification information of the storage device (30) of the provider, and the identification information of the storage device (30) of the provider. The method according to any one of claims 1 and 2, wherein the information relating to at least one of the information indicating the generation time of the data is included. The method according to any one of claims 1 to 3, wherein the first data provided from the storage device (30) is composed of historical data of the user . In the method according to claim 4, the first data provided from the storage device (30) is a data set including a plurality of data items generated based on a plurality of data which are historical data. ,Method. The method according to any one of claims 1 to 5, wherein at least the access data (ACT) is hashed by a hash function. It is a system for making it possible to manage the first data stored in the storage device (30) which is a data provider by the first information processing device (20) used by the user .
A function of registering the second data regarding the address on the blockchain network used by the user in the second information processing device (10) used by the provider , and
Access data (ACT) for the user to access the first data stored in the storage device (30) provided by the provider is on the blockchain network based on the second data. A system that has the ability to register with. The system according to claim 7, wherein the first data provided by the provider includes data relating to the identification information of the user . The first data provided by the provider includes at least the identification information of the first information processing device (20) used by the user , the identification information of the storage device (30) of the provider, and the identification information of the storage device (30) of the provider. The system according to any one of claims 7 to 8, wherein the information relating to at least one of the information indicating the generation time of the data is included. The system according to any one of claims 7 to 9, wherein the first data provided from the storage device (30) is composed of historical data of the user . In the system according to claim 10, the first data provided by the storage device (30) is a data set including a plurality of data items generated based on a plurality of data which are historical data. ,system. The system according to any one of claims 7 to 11, wherein at least the access data (ACT) is hashed by a hash function. A storage medium containing a program for allowing the first information processing device (20) used by the user to manage the first data stored in the storage device (30) that is the data provider. ,
The program is
The process of registering the second data regarding the address on the blockchain network used by the user in the second information processing device (10) used by the provider.
To register access data (ACT) for the user to access the first data stored in the storage device (30) provided by the provider on the blockchain network used by the user. In addition, a process of issuing the access data (ACT) based on the second data registered in the second information processing apparatus (10).
Is executed by the second information processing apparatus (10) . The storage medium according to claim 13, wherein the first data provided by the provider includes data relating to the identification information of the user . The first data provided by the provider includes at least the identification information of the first information processing device (20) used by the user , the identification information of the storage device (30) of the provider, and the identification information of the storage device (30) of the provider. The storage medium according to any one of claims 13 to 14, which comprises data relating to at least one of information indicating a data generation time.

Images