CN117577248A - Medical data sharing method and system integrating blockchain and privacy intersection technology - Google Patents
Medical data sharing method and system integrating blockchain and privacy intersection technology Download PDFInfo
- Publication number
- CN117577248A CN117577248A CN202410052287.6A CN202410052287A CN117577248A CN 117577248 A CN117577248 A CN 117577248A CN 202410052287 A CN202410052287 A CN 202410052287A CN 117577248 A CN117577248 A CN 117577248A
- Authority
- CN
- China
- Prior art keywords
- medical
- data
- medical data
- abstract
- institution
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 61
- 238000005516 engineering process Methods 0.000 title claims abstract description 42
- 238000012216 screening Methods 0.000 claims abstract description 37
- 230000006870 function Effects 0.000 claims abstract description 29
- 230000005540 biological transmission Effects 0.000 claims description 23
- 230000007246 mechanism Effects 0.000 claims description 13
- 238000004422 calculation algorithm Methods 0.000 claims description 11
- 230000004927 fusion Effects 0.000 claims description 9
- 238000012546 transfer Methods 0.000 claims description 5
- 230000002427 irreversible effect Effects 0.000 claims description 3
- 230000001105 regulatory effect Effects 0.000 claims description 3
- 238000004891 communication Methods 0.000 abstract description 3
- 238000012545 processing Methods 0.000 description 10
- 201000010099 disease Diseases 0.000 description 7
- 208000037265 diseases, disorders, signs and symptoms Diseases 0.000 description 7
- 230000008569 process Effects 0.000 description 6
- 238000010586 diagram Methods 0.000 description 5
- 229940079593 drug Drugs 0.000 description 3
- 239000003814 drug Substances 0.000 description 3
- 230000036541 health Effects 0.000 description 3
- 230000008520 organization Effects 0.000 description 3
- 238000012795 verification Methods 0.000 description 3
- 238000004590 computer program Methods 0.000 description 2
- 230000007547 defect Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000011160 research Methods 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000006806 disease prevention Effects 0.000 description 1
- 239000004744 fabric Substances 0.000 description 1
- 230000008821 health effect Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- RWZVFCIPMBYBCY-UHFFFAOYSA-N methyl 2,2-dihydroxyoctadecanoate Chemical compound CCCCCCCCCCCCCCCCC(O)(O)C(=O)OC RWZVFCIPMBYBCY-UHFFFAOYSA-N 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 239000013610 patient sample Substances 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
- 238000007789 sealing Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G16—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR SPECIFIC APPLICATION FIELDS
- G16H—HEALTHCARE INFORMATICS, i.e. INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR THE HANDLING OR PROCESSING OF MEDICAL OR HEALTHCARE DATA
- G16H10/00—ICT specially adapted for the handling or processing of patient-related medical or healthcare data
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/27—Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- General Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Bioethics (AREA)
- Databases & Information Systems (AREA)
- Physics & Mathematics (AREA)
- Medical Informatics (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Data Mining & Analysis (AREA)
- Primary Health Care (AREA)
- Epidemiology (AREA)
- Computing Systems (AREA)
- Public Health (AREA)
- Medical Treatment And Welfare Office Work (AREA)
Abstract
The invention discloses a medical data sharing method and a system for fusing a blockchain and a privacy intersection technology. The invention realizes the unified searching and screening functions of multi-center data on the blockchain and the matching and aligning functions of the multi-center data by introducing the searchable encryption technology and the privacy set intersection technology, enriches the functionality of medical data sharing, and truly realizes the data communication and intercommunication among the multi-centers under the security privacy condition.
Description
Technical Field
The invention belongs to the technical field of medical information, and particularly relates to a medical data sharing method and system integrating blockchain and privacy intersection technology.
Background
The medical data refers to all data sets related to medical health and life health activities, relates to multiple aspects of medical services, disease prevention and control, health protection, health care and the like, and has the characteristics of large data volume, multiple data types, high value, quick generation and the like. However, in reality, medical data is often not utilized effectively, so the value of the medical data cannot be fully developed. The reasons for this are mainly the following two points: first, critical medical data is often created and maintained by different medical institutions or departments, scattered among multiple centers, resulting in inconvenience and inefficiency in sharing medical data between medical institutions. In addition, the medical data is highly sensitive and contains a large amount of private information of patients, and the leakage of the private information can cause serious consequences, so that most medical institutions often do not want to share the data, and the improvement of medical service quality and the development of high-precision researches are hindered. Thus, it remains a significant challenge for medical institutions and related departments to achieve the collection, sharing, and efficient use of multi-center medical data in a secure and private environment.
The blockchain technology is used as a safe distributed ledger and platform, is gradually applied to the medical field, and provides a potential solution for multi-center medical data sharing. For large-scale medical data, the blockchain can be combined with emerging security technologies such as privacy calculation and the like, a brand new mode is provided for storing and exchanging medical data elements, reliable sharing and safe utilization of the medical data are ensured, and the problem that cross-institution medical data are not dared to use is solved.
At present, the most similar technical scheme with the application is as follows: (1) based on the medical block chain of data transmission, the block chain stores encrypted medical data ciphertext on the block chain, and only users with corresponding decryption means can receive the data, wherein the block chain is mainly used as a medium for data security transmission. Li Patrick et al devised an off-centered drug management system named DMMS for management of patient medication history. The Hyperledger Fabric network is utilized to upload detailed information of prescriptors, patients receiving prescriptions and medicines to the blockchain, and an asymmetric encryption mode is adopted to realize privacy protection and authority control, so that the problems of difficulty in transmitting medical data and unsafe of the centralized network are solved. (2) Based on the medical blockchain of authority verification, the blockchain of the type stores specific medical data locally, the hash value of the medical data is stored on the chain, and the safe storage of the data is realized by utilizing the tamper-proof characteristic of the blockchain. Zhang J et al devised a blockchain sharing scheme for electronic rehabilitation medical records, and utilized technologies such as hybrid P2P network, asymmetric encryption algorithm, raft consensus algorithm, etc., to realize distributed storage and privacy protection in the sharing process, and store summary information on a alliance blockchain in a blockchain data structure, so as to realize point-to-point query of medical data among different hospitals.
The existing medical block chain mode has corresponding defects. (1) In a traditional data transfer based medical blockchain, the medical institution needs to upload all data to the blockchain, but in practice the blockchain has limited storage capacity, while for different recipients, the sender needs to re-encrypt and upload the data again. With the increase of data uploading, the performance and efficiency of the blockchain are greatly reduced, so that the storage capacity of the blockchain is a great test. (2) In a conventional rights verification-based medical blockchain, medical data needs to be stored locally and data hash values stored on the blockchain. This approach, while reducing the overhead of on-chain storage, also results in the problem of insufficient functionality of the medical blockchain during sharing of medical data. Simple data hash values enable only simple data exchanges, and there are some studies on simple search functions for data by storing digests on the blockchain. However, in practical application, the medical data is complex and changeable, so how to break the information island of a single medical institution, and it is important to realize unified searching, alignment and matching of multi-center medical data in a true sense by using a blockchain.
Disclosure of Invention
The invention aims to provide a medical data sharing method and system for fusing a blockchain and a privacy intersection technology aiming at the defects of the prior art.
The invention aims at realizing the following technical scheme:
according to a first aspect of the present specification, there is provided a medical data sharing method of fusing blockchain and privacy intersection technologies, the method comprising:
establishing a medical blockchain system, the medical blockchain system including two independent parallel blockchains: a summary search chain and a data transmission chain;
extracting medical data stored locally by a medical institution into a summary form, and uploading the medical data summary to a summary search chain through a consensus mechanism;
searching the medical data abstract in the abstract search chain, screening the medical data abstract according to the search conditions provided by a searcher, and returning the screening structure to a medical institution to which the medical data belongs;
matching and aligning a plurality of medical institutions based on a privacy intersection technology on the screened medical data abstract, and returning an alignment result to the medical institution to which the medical data belongs;
and if the medical institutions receiving the screening or aligning results agree to share the medical data, uploading the medical data to be shared to a data transmission chain through an attribute encryption method based on a ciphertext strategy, and decrypting and obtaining the medical data by a searcher meeting attribute conditions.
Further, the abstract search chain consists of nodes of a medical institution and a supervision institution, stores medical data abstracts uploaded by the medical institution, and uses a supervision platform as an external client of a search function;
the data transmission chain is composed of nodes of medical institutions, supervision institutions and third-party institutions, medical data uploaded after screening and alignment of the medical institutions are stored, the supervision institutions are responsible for authority management of the third-party institutions, and data sharing among the medical institutions and the third-party institutions is completed.
Further, the uploading of the medical data abstract specifically includes:
the medical data stored locally by the medical institution is extracted into a contracted abstract form, blocks are created periodically by the medical institution and connected in time sequence, and the created blocks complete the uplink of medical data abstracts through the consensus among the nodes of the medical institution.
Further, the searching and screening of the medical data abstract specifically comprises the following steps:
the medical institution determines safety parameters according to the safety level and generates a public key and a private key of the medical institution;
the medical institution encrypts the medical data abstract to be uplinked through the public key of the medical institution to generate ciphertext, and uplinks the ciphertext of all the medical data abstracts;
when a searcher searches the medical data abstract through an intermediate platform provided by a supervision mechanism, the supervision mechanism sends the search condition of the searcher to all medical institutions participating in consensus on an abstract search chain;
each medical institution generates trapdoors through private keys of the medical institutions according to the search conditions;
the intelligent contract searches all the encrypted abstracts of the medical institutions stored on the chain according to the trapdoor of the medical institutions, compares the trapdoor with each encrypted abstract, and screens out the encrypted abstracts meeting the searching conditions;
the intelligent contract informs the medical institution to which the screened encrypted abstract belongs of the encrypted abstract, and the medical institution decrypts the encrypted abstract through the private key of the medical institution to obtain the decrypted medical data abstract.
Furthermore, the matching and alignment of the medical data digests adopt a privacy intersection technology based on a Diffie-Hellman key exchange algorithm, and encryption operation of exchanging encryption sequences for two times is realized through an exchangeable encryption function, so that the parties involved in the matching and alignment obtain the identical irreversible ciphertext for intersection data.
Further, for any two medical institutions to be subjected to medical data summary matching and alignment, respectively denoted as a and B, the matching and alignment flow is as follows:
for medical institution A, a random number α is selected as the private key, for each screenPerforming hash operation on the medical data abstract, and encrypting the hash value by using the private key alpha to generate ciphertextUplink, cipher text->The data are sent to a medical institution B through a supervision institution node;
for medical institution B, selecting a random number beta as a private key, carrying out hash operation on each screened medical data abstract, and encrypting the hash value by using the private key beta to generate ciphertextUplink, cipher text->The medical institution A is sent to the medical institution A through the supervision institution node;
medical institution B receives ciphertextGenerating ciphertext +_ by secondary encryption using private key β>And re-chaining; medical institution A is for the ciphertext received +.>Generating ciphertext +_ by secondary encryption using private key α>And re-chaining;
comparing ciphertext via intelligent contracts deployed on summary search chainsAnd->,/>And->The medical data summary consistent with the data is intersection data->。
Further, the sharing of the medical data is specifically:
a medical institution participating in data sharing generates a public key and a master key according to the security parameters;
for the medical data to be shared, the medical institution generates an access structure according to the requirement specified by the searching party to be shared, encrypts and protects the medical data to be shared by combining the public key to generate a ciphertext, and the medical institution uploads the generated ciphertext to a data transmission chain through consensus;
and each searching party combines the attribute owned by the searching party with the master key to generate a private key for decryption, and for the searching party meeting the attribute condition, the generated private key is used for decrypting the encrypted medical data to obtain the medical data meeting the search condition, so that the safe sharing of the medical data is completed.
According to a second aspect of the present specification, there is provided a medical data sharing system that fuses blockchain and privacy intersection techniques, the system comprising:
a blockchain framework module: establishing a medical blockchain system, the medical blockchain system including two independent parallel blockchains: a summary search chain and a data transmission chain;
and a data abstract uploading module: extracting medical data stored locally by a medical institution into a summary form, and uploading the medical data summary to a summary search chain through a consensus mechanism;
and a data abstract searching and screening module: searching the medical data abstract in the abstract search chain, screening the medical data abstract according to the search conditions provided by a searcher, and returning the screening structure to a medical institution to which the medical data belongs;
and a data abstract matching and aligning module: matching and aligning a plurality of medical institutions based on a privacy intersection technology on the screened medical data abstract, and returning an alignment result to the medical institution to which the medical data belongs;
data transfer and sharing module: and if the medical institutions receiving the screening or aligning results agree to share the medical data, uploading the medical data to be shared to a data transmission chain through an attribute encryption method based on a ciphertext strategy, and decrypting and obtaining the medical data by a searcher meeting attribute conditions.
According to a third aspect of the present specification, there is provided a medical data sharing device for fusing blockchain and privacy intersection techniques, comprising a memory and one or more processors, the memory storing executable code, the processors implementing the medical data sharing method for fusing blockchain and privacy intersection techniques as described in the first aspect when executing the executable code.
According to a fourth aspect of the present specification, there is provided a computer-readable storage medium having stored thereon a program which, when executed by a processor, implements a medical data sharing method of fusing blockchain and privacy intersection technology as described in the first aspect.
The beneficial effects of the invention are as follows:
1. according to the invention, through designing a double-chain parallel blockchain system structure, firstly, through two independent parallel medical blockchains, the on-chain searching of medical data abstracts and the on-chain sharing of corresponding medical data are realized, only necessary and key data are stored, and the problems of insufficient storage space and bloated blockchain volume in the medical blockchain based on data transmission are solved; secondly, the blockchain is combined with the attribute encryption technology, and abstract retrieval and data transmission are independently carried out, so that a data sharing mode of one-time uploading and multiple times sharing and many-to-many data sharing are realized, the problems of multiple requests and repeated sharing of data sharing in the medical blockchain based on authority verification are avoided, and the problem of low multi-center data sharing efficiency is solved.
2. The invention realizes the unified searching and screening functions of multi-center data on the block chain and the matching and alignment functions of the multi-center data by introducing the searchable encryption technology and the privacy set intersection technology and organically combining the searchable encryption technology and the privacy set intersection technology. The problem that the traditional medical block chain has insufficient functionality, and each center has certain sealing performance and cutting performance in the data sharing process is solved, and the data communication and intercommunication among multiple centers under the condition of ensuring safety privacy is truly realized.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a schematic diagram illustrating a medical data sharing method implementation of a fused blockchain and privacy intersection technique in accordance with an exemplary embodiment;
FIG. 2 is a diagram of a double-chain based healthcare blockchain system architecture shown in an exemplary embodiment;
FIG. 3 is a block chain and privacy interaction technique fused medical data sharing system architecture diagram shown in an exemplary embodiment;
FIG. 4 is a block chain and privacy interaction technique fused medical data sharing device architecture diagram shown in an exemplary embodiment.
Detailed Description
For a better understanding of the technical solutions of the present application, embodiments of the present application are described in detail below with reference to the accompanying drawings.
It should be understood that the described embodiments are merely some, but not all, of the embodiments of the present application. All other embodiments, based on the embodiments herein, which would be apparent to one of ordinary skill in the art without making any inventive effort, are intended to be within the scope of the present application.
The terminology used in the embodiments of the application is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used in this application and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise.
The invention provides a medical data sharing method for fusing a blockchain and a privacy intersection technology, as shown in fig. 1, the method comprises the steps of establishing a double-chain-based medical blockchain system, uploading a data abstract, searching and screening the data abstract, matching and aligning the data abstract, transferring and sharing the data and the like, and the specific implementation flow of each part is described in detail below.
1. Establishing a double-chain based medical blockchain system
Unlike conventional medical blockchain systems, as shown in fig. 2, the medical blockchain system of the present invention is composed of two independent parallel blockchains, each of which functions is different, and the functions, positions and numbers of nodes participating therein are also different. The nodes participating in the medical blockchain system of the invention are of three types:
(1) medical institutions, such as hospitals and the like. The nodes are all nodes, have data uploading and consensus functions, are mainly responsible for uploading and downloading medical data abstracts and required data, and are defaulted to be completely credible in a system;
(2) third party institutions such as universities, scientific centers, pharmaceutical companies, insurance companies, private clinics, and the like. The main purpose in the system is to acquire the needed medical data and participate in part of the consensus function under certain conditions, and the nodes are defaulted to be semi-trusted nodes;
(3) the supervision mechanism is responsible for the management and approval of the authority and the admission of the third party in the blockchain, is used as an intermediate functional platform for data searching and alignment matching, and does not participate in a consensus mechanism.
The three above classes of nodes will together constitute two blockchains: summary search chains and data transmission chains.
(1) The abstract search chain consists of medical institution nodes and supervision institution nodes, wherein the medical institution nodes store medical data abstracts uploaded by each medical institution, the supervision platform is used as an external client of the search function, and the third party institution nodes do not participate in the work of the chain.
(2) The data transmission chain consists of all three types of nodes, the data uploaded after the medical institutions are screened and aligned according to corresponding requirements is stored, data sharing among the medical institutions and third-party institutions is completed, and the nodes of the third-party institutions participate in consensus in the part.
2. Data digest upload
In order to ensure the safety of data on a blockchain and overcome the limitation of storage space and performance bottleneck of the blockchain, the invention uses a storage mode of combining the uplink and the downlink of the chain, and specific detailed medical data is stored in a local server of a medical institution, and medical data is stored on the chain in a contracted abstract form on an abstract search chain, and blocks are created periodically by the medical institution and are connected in time sequence. Each block is composed of two parts: block heads and blocks. The block header contains necessary information such as block hash, time stamp, merck root and the like; the merck tree of the block is the key of the abstract, and mainly comprises information such as medical institution ID, patient ID, disease type, medical data format, medical time and the like, so that the medical data can be finely searched and screened, and the data alignment of different conditions such as patient samples or disease types can be further realized. For example, the data alignment can be performed according to the patient level, specifically, a patient has medical records in a plurality of medical institutions, and all the medical information of the patient in the plurality of medical institutions can be acquired at one time in a fixed time interval through a screening and alignment mechanism; or aligning data according to the disease type level, specifically, researching the potential relation between the disease A and the disease B by a certain scientific research institution, and finding out the patients suffering from the disease A and the disease B in each medical institution and the treatment information thereof by screening and aligning mechanisms.
The block created by the medical institution completes the uplink of the summary data through the consensus among the nodes, and only the medical institution nodes participate in the consensus in this step, because the medical institution nodes are completely trusted by default, the consensus here adopts a Raft consensus algorithm to improve the consensus efficiency, and the number of the nodes supporting the maximum fault tolerance is (N-1)/2, wherein N is the total number of the nodes in the cluster. The general flow of the Raft consensus algorithm is as follows: first, a leader is selected, then the leader is given complete right to manage writing of the blocks, and after receiving a writing request of the blocks, the leader completes writing operation, generates the blocks and copies the blocks to other nodes.
3. Data summary search and screening
In order to ensure the safety and privacy of data in the searching and screening processes, the invention adopts a public key searchable encryption (Public Key Encryption With Searching, PEKS) method to realize the searching function. The complete data summary searching and screening flow is as follows:
(1) Medical institutions determine security parameters based on their respective security levelsAnd generates a public key belonging to itself +.>And private key->;
Wherein the method comprises the steps ofA function is generated for the key.
(2) For data abstracts to be uplinkThe medical institution encrypts the medical institution through its own public key to generate ciphertext;
Wherein the method comprises the steps ofIs an encryption function; go on all ciphertext of the data abstractA chain.
(3) When the searcher searches the medical data abstract through the intermediate functional platform of the supervision organization, the supervision organization searches the search conditions of the searcherTo all medical institutions participating in consensus on the summary search chain, e.g. search criteria +.>The method comprises the following steps: all of the patient ID's visit information within a fixed time interval;
each medical institution based on the search conditionsBy private key of oneself->Generating corresponding trapdoor->;
Wherein the method comprises the steps ofAs a trapdoor function.
(4) Intelligent contracts deployed on summary search chain are based on trapdoors of each medical institution's uplinkAll encryption digests for the medical institution stored on the chain +.>Search against trapdoor->And each encryption summary->Judging search condition->And data summary->If match, return each encryption digest +.>Comparison result +.>If not matchIf it matches->;
Wherein the method comprises the steps ofIs a matching function.
(5) After searching, the intelligent contract will meet the encryption abstract of the screening requirementInforming the medical institution and the searching party to which the medical institution belongs, and the medical institution adds the encryption abstract to the medical institution>Decrypting through the private key of the user to obtain a decrypted data abstractFor subsequent matching alignment;
wherein the method comprises the steps ofIs a decryption function.
4. Data digest matching and alignment
After the preliminary data screening is completed, the screened data are further matched and aligned, and medical data meeting common requirements are acquired at multiple centers, namely multiple medical institutions. The invention introduces a privacy set intersection (Private Set Intersection, PSI) technique to obtain intersections of multi-center medical data without exposing data outside the intersections. This step will be accomplished by the supervisor node for communication and the intelligent contracts deployed on the summary search chain. In order to facilitate the combination with the searchable encryption and thus realize the private exchange on the blockchain, the invention adopts the PSI scheme based on the Diffie-Hellman key exchange algorithm, and the scheme is based on the thought of the Diffie-Hellman key exchange protocol, and realizes the encryption operation of exchanging the encryption sequence twice through the exchangeable encryption function, so that the parties involved in the encryption exchange data, and the identical irreversible ciphertext is obtained. For the present invention, taking privacy exchange between medical institution a and medical institution B as an example, the data summary matching and alignment flow is as follows:
assume that the data summary meeting the requirements in the medical institution A after the preliminary search and screening of the data summary is completed isThe data summary meeting the requirements in medical institution B is +.>Wherein the exchangeable encryption function is defined as follows:
wherein,for data that need to be encrypted->Two encryption operations.
For medical institution A, a random number is selectedAs a private key. For each data summary +.>Medical institution a hashes it +.>Then encrypt it with private key based on its hash value, generate ciphertext ++>Uplink and add this ciphertext->And sent to medical institution B via the regulatory institution node.
For medical institution B, a random number is selectedAs a private key. For each data summary +.>Medical institution B hashes it +.>Then encrypt it with private key based on its hash value, generate ciphertext ++>Uplink and add this ciphertext->And sent to medical institution a via the regulatory institution node.
Ciphertext of medical institution B for received medical institution AUse its private key +.>Performing secondary encryption to generate ciphertext ++>And is again wound up.
Ciphertext of medical institution A for received medical institution BUse its private key +.>Performing secondary encryption to generate ciphertext ++>And is again wound up.
Comparing the encrypted ciphertext of medical institutions A and B through intelligent contracts deployed on the abstract search chainAnd->. If the medical institutions A and B have the same data abstract, the ciphertext obtained by two encryption is consistent, so +.>Andthe consistent data abstract is the intersection data U of the two.
Wherein the method comprises the steps ofRepresenting a set intersection operation.
If multi-center data digest matching and alignment are needed, the data digest matching and alignment of every two medical institutions are implemented for multiple times according to the steps. Specifically, in the case of screening out more than two medical institutions, for example, screening out medical institution A, B, C, data alignment may be performed on medical institution A, B first, and then the alignment result is data aligned with medical institution C, so as to obtain medical data digests that all three medical institutions meet the screening requirements.
5. Data transfer and sharing module
After the data summary search and screening, and data summary matching and alignment are completed, specific data meeting the requirements needs to be shared between the medical institutions and the third-party institutions. This step is accomplished by a second blockchain-data transmission chain that is parallel and independent of the digest search chain. In order to ensure the efficiency and privacy in the data sharing process, the invention introduces an attribute encryption (KP-ABE) method based on a ciphertext policy, thereby realizing safe many-to-many sharing. The shared flow is as follows:
(1) Medical institutions involved in data sharing based on security parametersGenerating public key->And master key->;
Wherein the method comprises the steps ofA function is generated for the key.
(2) For the medical data to be shared, the medical institution will generate an access structure T according to the requirements specified by the searching party to be shared and combine the public keyEncryption protection is carried out on medical data D to be shared, and ciphertext is generated>;
Wherein the method comprises the steps ofIs an encryption function; ciphertext to be generated by medical institutions through consensus +.>Uploading to a data transmission chain.
(3) For attribute encryption, different access structures correspond to different attributes, and decryption can only be performed if the attribute S satisfies the access structure T. For ciphertext generated by access structure TEach searcher will own the property S and master key +.>In connection with generating a private key for decryption +.>;
Wherein the method comprises the steps ofA function is generated for the key.
(4) And for the searcher meeting the attribute conditions, the generated private key can be used for decrypting the encrypted medical data to obtain the medical data meeting the search conditions, so that the safe sharing of the medical data is completed. When a plurality of searching parties exist, the ciphertext can be decrypted only by possessing the attribute meeting the access structure, so that space occupation and efficiency reduction caused by multiple times of encryption are avoided;
wherein the method comprises the steps ofIs a decryption function.
The searcher may be a third party institution or other medical institution. The third party organization belongs to a semi-trusted node in the medical block chain system, and the common recognition algorithm of the data transmission chain adopts a practical Bayesian fault tolerance algorithm (Practical Byzantine Fault Tolerance, PBFT) in consideration of instability of the semi-trusted node. The PBFT algorithm provides fault tolerance of (n-1)/3 on the premise of ensuring availability and safety, namely in a blockchain system containing n nodes, the nodes which are not more than (n-1)/3 can be tolerated as malicious nodes, so that the fault tolerance of the consensus algorithm is greatly improved, malicious attacks are resisted, and the consistency of the system is protected.
The invention also provides a medical data sharing system integrating the blockchain and the privacy intersection technology, as shown in fig. 3, the system mainly comprises the following five modules:
a blockchain framework module: establishing a medical block chain system, providing bottom layer support, distributing and confirming functions and positions of all nodes in the block chain, and providing a trusted security environment and privacy protection for medical data exchange; specifically, the established medical blockchain system includes two independent parallel blockchains: a summary search chain and a data transmission chain;
and a data abstract uploading module: extracting medical data stored locally by a medical institution into a summary form, and uploading the medical data summary to a summary search chain through a consensus mechanism;
and a data abstract searching and screening module: searching the medical data abstract in the abstract search chain, screening the medical data abstract according to the search conditions provided by a searcher, and returning the screening structure to a medical institution to which the medical data belongs;
and a data abstract matching and aligning module: matching and aligning a plurality of medical institutions based on a privacy intersection technology on the screened medical data abstract, and returning an alignment result to the medical institution to which the medical data belongs;
data transfer and sharing module: and if the medical institutions receiving the screening or aligning results agree to share the medical data, uploading the medical data to be shared to a data transmission chain through an attribute encryption method based on a ciphertext strategy, and decrypting and obtaining the medical data by a searcher meeting attribute conditions.
All relevant contents of each step related to the above method embodiment may be cited to the functional descriptions of the corresponding functional modules, which are not described herein.
Corresponding to the embodiment of the medical data sharing method of the fusion blockchain and privacy intersection technology, the invention further provides an embodiment of medical data sharing equipment of the fusion blockchain and privacy intersection technology.
Referring to fig. 4, a medical data sharing device for fusing blockchain and privacy intersection technology provided by the embodiment of the invention includes a memory and one or more processors, wherein executable codes are stored in the memory, and when the processor executes the executable codes, the processor is used for implementing the medical data sharing method for fusing blockchain and privacy intersection technology in the above embodiment.
The embodiment of the medical data sharing device integrating the blockchain and the privacy intersection technology can be applied to any device with data processing capability, and the device with the data processing capability can be a device or a device such as a computer. The device embodiments may be implemented by software, or may be implemented by hardware or a combination of hardware and software. Taking software implementation as an example, the device in a logic sense is formed by reading corresponding computer program instructions in a nonvolatile memory into a memory through a processor of any device with data processing capability. In terms of hardware, as shown in fig. 4, a hardware structure diagram of an arbitrary device with data processing capability where a medical data sharing device with a blockchain and privacy intersection technology provided by the present invention is located is shown in fig. 4, and in addition to a processor, a memory, a network interface, and a nonvolatile memory shown in fig. 4, the arbitrary device with data processing capability where the device is located in an embodiment generally includes other hardware according to an actual function of the arbitrary device with data processing capability, which is not described herein again.
The implementation process of the functions and roles of each unit in the above-mentioned device is specifically detailed in the implementation process of the corresponding steps in the above-mentioned method, and will not be described herein again.
For the device embodiments, reference is made to the description of the method embodiments for the relevant points, since they essentially correspond to the method embodiments. The above described embodiments of the apparatus are only illustrative, wherein the elements illustrated as separate elements may or may not be physically separate, and the elements shown as elements may or may not be physical elements, may be located in one place, or may be distributed over a plurality of network elements. Some or all of the modules may be selected according to actual needs to achieve the purposes of the present invention. Those of ordinary skill in the art will understand and implement the present invention without undue burden.
The embodiment of the invention also provides a computer readable storage medium, wherein a program is stored on the computer readable storage medium, and when the program is executed by a processor, the medical data sharing method of the fusion blockchain and privacy intersection technology in the embodiment is realized.
The computer readable storage medium may be an internal storage unit, such as a hard disk or a memory, of any of the data processing enabled devices described in any of the previous embodiments. The computer readable storage medium may be any external storage device that has data processing capability, such as a plug-in hard disk, a Smart Media Card (SMC), an SD Card, a Flash memory Card (Flash Card), or the like, which are provided on the device. Further, the computer readable storage medium may include both internal storage units and external storage devices of any data processing device. The computer readable storage medium is used for storing the computer program and other programs and data required by the arbitrary data processing apparatus, and may also be used for temporarily storing data that has been output or is to be output.
The above-described embodiments are intended to illustrate the present invention, not to limit it, and any modifications and variations made thereto are within the spirit of the invention and the scope of the appended claims.
Claims (10)
1. A medical data sharing method integrating a blockchain and a privacy intersection technology is characterized by comprising the following steps:
establishing a medical blockchain system, the medical blockchain system including two independent parallel blockchains: a summary search chain and a data transmission chain;
extracting medical data stored locally by a medical institution into a summary form, and uploading the medical data summary to a summary search chain through a consensus mechanism;
searching the medical data abstract in the abstract search chain, screening the medical data abstract according to the search conditions provided by a searcher, and returning the screening structure to a medical institution to which the medical data belongs;
matching and aligning a plurality of medical institutions based on a privacy intersection technology on the screened medical data abstract, and returning an alignment result to the medical institution to which the medical data belongs;
and if the medical institutions receiving the screening or aligning results agree to share the medical data, uploading the medical data to be shared to a data transmission chain through an attribute encryption method based on a ciphertext strategy, and decrypting and obtaining the medical data by a searcher meeting attribute conditions.
2. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 1, wherein the abstract search chain consists of a medical institution and a supervision institution node, stores medical data abstracts uploaded by the medical institution, and uses a supervision platform as an external client of a search function;
the data transmission chain is composed of nodes of medical institutions, supervision institutions and third-party institutions, medical data uploaded after screening and alignment of the medical institutions are stored, the supervision institutions are responsible for authority management of the third-party institutions, and data sharing among the medical institutions and the third-party institutions is completed.
3. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 1, wherein the uploading of the medical data summary is specifically:
the medical data stored locally by the medical institution is extracted into a contracted abstract form, blocks are created periodically by the medical institution and connected in time sequence, and the created blocks complete the uplink of medical data abstracts through the consensus among the nodes of the medical institution.
4. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 1, wherein the searching and screening of the medical data summary specifically comprises:
the medical institution determines safety parameters according to the safety level and generates a public key and a private key of the medical institution;
the medical institution encrypts the medical data abstract to be uplinked through the public key of the medical institution to generate ciphertext, and uplinks the ciphertext of all the medical data abstracts;
when a searcher searches the medical data abstract through an intermediate platform provided by a supervision mechanism, the supervision mechanism sends the search condition of the searcher to all medical institutions participating in consensus on an abstract search chain;
each medical institution generates trapdoors through private keys of the medical institutions according to the search conditions;
the intelligent contract searches all the encrypted abstracts of the medical institutions stored on the chain according to the trapdoor of the medical institutions, compares the trapdoor with each encrypted abstract, and screens out the encrypted abstracts meeting the searching conditions;
the intelligent contract informs the medical institution to which the screened encrypted abstract belongs of the encrypted abstract, and the medical institution decrypts the encrypted abstract through the private key of the medical institution to obtain the decrypted medical data abstract.
5. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 1, wherein matching and alignment of medical data abstracts adopts a privacy intersection technology based on a Diffie-Hellman key exchange algorithm, and encryption operation of exchanging encryption sequences twice is achieved through an exchangeable encryption function, so that the participating parties obtain identical irreversible ciphertext for intersection data.
6. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 5, wherein for any two medical institutions to be subjected to medical data digest matching and alignment, respectively denoted as a and B, the matching and alignment flow is as follows:
for medical institution A, selecting a random number alpha as a private key, carrying out hash operation on each screened medical data abstract, and encrypting the hash value by using the private key alpha to generate ciphertextUplink, cipher text->Node issuing by a regulatory agencyTo a medical institution B;
for medical institution B, selecting a random number beta as a private key, carrying out hash operation on each screened medical data abstract, and encrypting the hash value by using the private key beta to generate ciphertextUplink, cipher text->The medical institution A is sent to the medical institution A through the supervision institution node;
medical institution B receives ciphertextGenerating ciphertext +_ by secondary encryption using private key β>And re-chaining; medical institution A is for the ciphertext received +.>Generating ciphertext +_ by secondary encryption using private key α>And re-chaining;
comparing ciphertext via intelligent contracts deployed on summary search chainsAnd->,/>And->The medical data summary consistent with the data is intersection data->。
7. The medical data sharing method of the fusion blockchain and privacy intersection technology according to claim 1, wherein the sharing of the medical data is specifically:
a medical institution participating in data sharing generates a public key and a master key according to the security parameters;
for the medical data to be shared, the medical institution generates an access structure according to the requirement specified by the searching party to be shared, encrypts and protects the medical data to be shared by combining the public key to generate a ciphertext, and the medical institution uploads the generated ciphertext to a data transmission chain through consensus;
and each searching party combines the attribute owned by the searching party with the master key to generate a private key for decryption, and for the searching party meeting the attribute condition, the generated private key is used for decrypting the encrypted medical data to obtain the medical data meeting the search condition, so that the safe sharing of the medical data is completed.
8. A medical data sharing system that fuses blockchain and privacy intersection techniques, comprising:
a blockchain framework module: establishing a medical blockchain system, the medical blockchain system including two independent parallel blockchains: a summary search chain and a data transmission chain;
and a data abstract uploading module: extracting medical data stored locally by a medical institution into a summary form, and uploading the medical data summary to a summary search chain through a consensus mechanism;
and a data abstract searching and screening module: searching the medical data abstract in the abstract search chain, screening the medical data abstract according to the search conditions provided by a searcher, and returning the screening structure to a medical institution to which the medical data belongs;
and a data abstract matching and aligning module: matching and aligning a plurality of medical institutions based on a privacy intersection technology on the screened medical data abstract, and returning an alignment result to the medical institution to which the medical data belongs;
data transfer and sharing module: and if the medical institutions receiving the screening or aligning results agree to share the medical data, uploading the medical data to be shared to a data transmission chain through an attribute encryption method based on a ciphertext strategy, and decrypting and obtaining the medical data by a searcher meeting attribute conditions.
9. A medical data sharing device for fusing blockchain and privacy intersection technologies, comprising a memory and one or more processors, wherein executable codes are stored in the memory, and the medical data sharing device is characterized in that the processor realizes the medical data sharing method for fusing blockchain and privacy intersection technologies according to any one of claims 1-7 when executing the executable codes.
10. A computer readable storage medium having a program stored thereon, wherein the program, when executed by a processor, implements a medical data sharing method of fusing blockchain and privacy intersection techniques as defined in any of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410052287.6A CN117577248B (en) | 2024-01-15 | 2024-01-15 | Medical data sharing method and system integrating blockchain and privacy intersection technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410052287.6A CN117577248B (en) | 2024-01-15 | 2024-01-15 | Medical data sharing method and system integrating blockchain and privacy intersection technology |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN117577248A true CN117577248A (en) | 2024-02-20 |
| CN117577248B CN117577248B (en) | 2024-04-05 |
Family
ID=89886493
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410052287.6A Active CN117577248B (en) | 2024-01-15 | 2024-01-15 | Medical data sharing method and system integrating blockchain and privacy intersection technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117577248B (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113553615A (en) * | 2021-07-07 | 2021-10-26 | 深圳前海新心数字科技有限公司 | Matching query method of private data sharing system |
| CN116032647A (en) * | 2023-01-11 | 2023-04-28 | 新晨科技股份有限公司 | Method, device and storage medium for realizing high-frequency privacy query on blockchain |
| WO2023098294A1 (en) * | 2021-12-02 | 2023-06-08 | 深圳前海微众银行股份有限公司 | Heterogeneous data processing method and apparatus, and electronic device |
| CN116633522A (en) * | 2023-05-30 | 2023-08-22 | 同济大学 | Two-party privacy intersection method and system based on blockchain |
| CN116702209A (en) * | 2023-06-25 | 2023-09-05 | 重庆邮电大学 | Verifiable privacy protection set intersection method for medical data |
| CN116842557A (en) * | 2023-04-07 | 2023-10-03 | 浙江大学 | Image supervision platform and method based on privacy intersection and blockchain |
| CN117035571A (en) * | 2023-08-16 | 2023-11-10 | 南京鼓楼医院 | Multi-center hospital scientific research data modeling method based on federal learning |
-
2024
- 2024-01-15 CN CN202410052287.6A patent/CN117577248B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113553615A (en) * | 2021-07-07 | 2021-10-26 | 深圳前海新心数字科技有限公司 | Matching query method of private data sharing system |
| WO2023098294A1 (en) * | 2021-12-02 | 2023-06-08 | 深圳前海微众银行股份有限公司 | Heterogeneous data processing method and apparatus, and electronic device |
| CN116032647A (en) * | 2023-01-11 | 2023-04-28 | 新晨科技股份有限公司 | Method, device and storage medium for realizing high-frequency privacy query on blockchain |
| CN116842557A (en) * | 2023-04-07 | 2023-10-03 | 浙江大学 | Image supervision platform and method based on privacy intersection and blockchain |
| CN116633522A (en) * | 2023-05-30 | 2023-08-22 | 同济大学 | Two-party privacy intersection method and system based on blockchain |
| CN116702209A (en) * | 2023-06-25 | 2023-09-05 | 重庆邮电大学 | Verifiable privacy protection set intersection method for medical data |
| CN117035571A (en) * | 2023-08-16 | 2023-11-10 | 南京鼓楼医院 | Multi-center hospital scientific research data modeling method based on federal learning |
Also Published As
| Publication number | Publication date |
|---|---|
| CN117577248B (en) | 2024-04-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110321721B (en) | Block chain-based electronic medical record access control method | |
| WO2021179661A1 (en) | Cross-blockchain data mutual storage method, apparatus and device, and storage medium | |
| Fabian et al. | Collaborative and secure sharing of healthcare data in multi-clouds | |
| BR112020016151A2 (en) | METHOD FOR PROCESSING DATA PROCESSING, METHOD FOR PROCESSING DATA, MANAGEMENT END APPLIANCE, USER END APPLIANCE AND COMPUTER-READABLE MEDIA | |
| Sabu et al. | Implementation of a secure and privacy-aware E-Health record and IoT data sharing using blockchain | |
| CN106203146A (en) | A kind of big data safety management system | |
| CN111563128B (en) | Medical information safe storage cooperation system based on block chain | |
| Rai | PcBEHR: patient-controlled blockchain enabled electronic health records for healthcare 4.0 | |
| CN110545273B (en) | Resource allocation method and system based on block chain application | |
| Tang et al. | A secure and trustworthy medical record sharing scheme based on searchable encryption and blockchain | |
| KR102465467B1 (en) | The decentralized user data storage and sharing system based on DID | |
| Yu et al. | Blockchain-based multi-role healthcare data sharing system | |
| Li et al. | Electronic medical record sharing system based on hyperledger fabric and interplanetary file system | |
| Liu et al. | A consortium medical blockchain data storage and sharing model based on ipfs | |
| Chen et al. | A privacy protection method based on key encapsulation mechanism in medical blockchain | |
| Thamrin et al. | Cloud-based blockchains for secure and reliable big data storage service in healthcare systems | |
| Jia | Research on medical system based on blockchain technology | |
| Wen et al. | A Blockchain‐Based Privacy Preservation Scheme in Mobile Medical | |
| CN117577248B (en) | Medical data sharing method and system integrating blockchain and privacy intersection technology | |
| Thamrin et al. | Hierarchical cloud-based consortium blockchains for healthcare data storage | |
| Al-Kaabi et al. | A survey: medical health record data security based on interplanetary file system and blockchain technologies | |
| Estrela et al. | Blockchain technology enabling better services in the healthcare domain | |
| Parmar et al. | Reinforcing security of medical data using blockchain | |
| Nimer et al. | Implementation of a peer-to-peer network using blockchain to manage and secure electronic medical records | |
| Saraswat et al. | Health chain-block chain based electronic healthcare record system with access and permission management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |