JP2018109994A - Data utilization method, system, and program using bcn (block chain network) - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a new data utilization system that enables individuals to use and utilize their own personal data autonomously while ensuring data security and concealment.SOLUTION: An information processing apparatus, which is used by an individual, has a function of transmitting data relating to an address on a block chain network used by the individual via a network to a provider side information processing apparatus having a storage device serving as a provider of data related to information about the individual, a function of referring to access data (ACT) including data relating to the address on the block chain network issued to the address of the block chain network from the provider side information processing apparatus, and data for identifying the provider of the data, and a function of acquiring data related to the information about the individual from the provider side storage device based on the access data (ACT) and storing the data in at least a memory or a storage device of the individual.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a data utilization method, system and program using BCN (block chain network).

  With the development of information processing and communication, personal information is stored electronically as daily data through daily activities of users and regular or continuous monitoring.

  The information is diverse, for example, data on user health, personal medical data such as hospital treatment, drug administration, daily shopping history information, daily access information for searching favorite information, etc. .

  Such information is stored as data together with time information and can be handled as so-called personal history data.

  Various data generated according to such various activities and periodic or continuous monitoring are stored in a storage used by a processing system that provides each service according to a service related to the activity. For example, the shopping information is stored in the form of purchase, that is, scattered in each service, such as shopping with credit, shopping with cash, shopping with a debit card, and the like.

  That is, such history data is managed only by the service provider who provided the service, and the individual user does not have the past history data used in another form by other organizations or businesses.

  Therefore, there is a possibility that the history data for each service is very biased. Furthermore, even in today's highly developed information systems, historical data related to each other's services can be divided by the systems that provide the individual services and used as data that is related to each other. It is hindered.

  In addition, the content of an individual's activities changes from moment to moment depending on the environment in which the individual is placed, and it is not uncommon for people to move to the services of different vendors. If the data is divided by the different services, it will hinder the full use of the data for individuals or companies and institutions that are trying to use them.

  On the other hand, personal data must be handled very carefully to protect its privacy. If the information is simply diffused, the personal information will be misused or the other will be damaged by impersonation. In addition, tampering with information can cause major damage.

Japanese Patent Application Publication No. 2006-218633

  The present invention has been made paying attention to such a problem.

  Accordingly, the present invention provides a data utilization system and utilization method that enables an individual to actively use and use his / her own personal data and further conceal the data. .

  Furthermore, the present invention does not limit the object and the object of data, but for example, medical data that is personal information is also a personal asset. Patients often receive treatment across multiple hospitals for a number of reasons, including multiple illnesses and / or changing places of residence.

  Treatment data at a plurality of different medical institutions is an important treatment asset for the patient, but if they can be integrated and managed as medical data, they can be used in various ways. On the other hand, if such medical data is divided by a medical institution or the like, the necessary treatment is overlooked.

  For example, information about how a patient recovered or did not recover as a result of continuous treatment or drug administration for the purpose of treating a disease is not only for the patient but also for many medical institutions. This is important information, and it makes it possible to provide further improved healing methods for other patients with similar diseases.

  On the other hand, medical data is personal information and must be strictly managed. Furthermore, the reliability and confidentiality of authentic personal data, and the reliability and confidentiality of medical activity contents (for example, treatment methods, medication methods, etc.) between medical institutions and individuals are also very important.

  Therefore, the present invention provides a new technique that can circulate genuine information by an authentic individual and provides a new technique so that the important information can be utilized.

  Furthermore, the present invention provides a distribution base for appropriately processing existing personal data related to medical treatment and the like and safely using it.

  According to the present invention, there is provided a method for obtaining and utilizing data related to personal information by an information processing apparatus used by the individual, wherein the data related to the address on the blockchain network used by the individual is The data for access (ACT) including the step of transmitting the data related to the information to the provider of the data via the network, the data related to the address from the provider, and the data for identifying the provider of the data Is issued to the blockchain network address and registered, and access data (ACT) is referred to from the blockchain network address, the data provider is identified, and the individual is identified from the identified provider. To obtain data related to the information, and how to use the data To disclose.

  This makes it possible to use highly confidential personal information while utilizing the reliability through the address of the blockchain network.

  Further, according to the present invention, the data provided from the provider includes identification information of an individual authorized to use the information processing apparatus, identification information of the information processing apparatus used by the individual, or identification information of the provider. At least one of them is included.

  Furthermore, according to the present invention, the data provided from the provider includes information indicating the generation time of the data, and the temporal history of the data can be referred to.

  Further, according to the present invention, the data provided from the provider is a data set composed of data relating to each of a plurality of data items generated based on a plurality of data which is history data relating to an individual.

  Furthermore, according to the present invention, in the data utilization method, each of the plurality of data items is configured to indicate the latest data in the data set of the history data, and can be provided as the latest latest information. it can.

  Further, according to the present invention, at least data related to personal information is hashed by a hash function and is registered in the block chain as a ledger.

  The present invention further provides a system for acquiring and utilizing data related to personal information by an information processing apparatus used by the individual.

  The information processing apparatus of the system according to the present invention has at least a memory or a storage device connected to the information processing apparatus, and relates data related to an address on a blockchain network used by an individual to the personal information. The function of transmitting to the provider side information processing apparatus having the storage device as the data provider via the network, and the block chain network address issued by the provider side information processing apparatus to the block chain network address Providing data related to personal information based on access data (ACT) and a function for referring to access data (ACT) including data related to data and data for identifying the data provider Get at least that personal note from your storage device Or it has a function of storing in the storage device.

  Further, according to the present invention, the data provided from the provider includes identification information of an individual authorized to use the information processing apparatus.

  Further, the data provided from the provider includes at least identification information of the information processing apparatus used by the individual, identification information of the provider, and information indicating the data generation time.

  The data provided from the provider is a data set composed of data relating to each of a plurality of data items generated based on a plurality of data that is history data relating to an individual. For example, each of the plurality of data items includes a history The latest data in the data set of data is shown.

  At least data related to personal information is hashed by a hash function.

  Furthermore, the present invention provides a program for acquiring data related to personal information stored in an information processing apparatus used by the individual and executed by the first information processing apparatus. Is based on the step of providing the block chain address to another information processing device, and the access data (ACT) including the block chain address information transmitted from the other information processing device based on the block chain address. Data related to the personal information generated in another information processing apparatus or a storage device used by the information processing apparatus is acquired.

  Further, the data related to the personal information includes identification information of individuals authorized to use the information processing apparatus.

  Further, the data related to the personal information includes at least identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating a data generation time.

It is the schematic which showed embodiment of the personal asset data utilization system by this invention. FIG. 2 is a conceptual diagram in the case where personal data is updated in the storage device serving as the information providing resource in FIG. 1 and the storage device used by the user. 1 shows an example of the data structure of an access ticket (“ACT” for short) issued as access data when personal data is provided to a system other than the system that manages the personal data in the storage device of FIG. ing. 3 shows an example of the data configuration of master data (MA) and transaction data (TR) related to personal information created in each storage device of FIG. FIG. 5 shows an example of the data configuration of a data portion that is a data component of master data (MA) and transaction data (TR) in FIG. 4. FIG. 5 shows an example of the data configuration of an additional data section that is a data component of master data (MA) and transaction data (TR) in FIG. 4. It is the schematic which showed embodiment of the personal asset data utilization system by this invention, and is the schematic diagram which showed embodiment which provides received master data (MA) to another person (individual, organization, group, etc.). is there. FIG. 4 is a conceptual diagram showing the interrelationship between a user, a storage device of the data providing source, and an access ticket in which issuance histories are chained in the block chain 50. The conceptual diagram which produces | generates master data from the different types of transaction data which generate | occur | produce in time series, and the conceptual diagram which couple | bonds different types of master data (MA) are shown. It is a conceptual diagram at the time of applying medical data to the personal asset data utilization system by this invention. An example of the data body part of transaction data (TR) and master data (MA) produced | generated from it is shown. An example of the data body part of the master data (MA) newly produced | generated from the transaction data of a different kind is shown.

  The present invention uses a block chain, which is a core technology such as bit coin, which is a virtual currency. The block chain is a distributed ledger for recording records (blocks) of transactions that occur in the network as chain-like blocks. Each transaction block is recorded in the ledger as a legitimate block chained in a chain by storing the hash value of the previously generated block content in addition to the transaction content. The

  When a new block is added to the block chain, mining by a minor is performed to ensure that a chain of verified blocks is formed.

  By building consensus by mining, chains of legitimate blocks are distributed and accumulated in the database, preventing falsification and ensuring data security. In addition, there is a known method of giving rewards and updating authority to the database for mining participants who first confirmed whether there are fraudulent transactions. The method is not limited, and any mining method can be adopted as long as consensus can be reached and the possibility that an illegal block is inserted into the chain is small.

  In addition to the open type (or public type) used for bit coins, closed type (private type) block chains that limit participants are known as block chains. Any type of blockchain may be used in the present invention. As described above, the block chain has various forms, but the block chain is not limited as long as the present invention can be implemented.

  Individual transactions can be performed using, for example, P2P communication. P2P communication can use, for example, the Internet, a mobile communication network, a dedicated communication line, or the like. However, this is merely an example, and communication other than P2P communication may be used. In addition, as an information processing apparatus for performing a transaction, an information processing apparatus such as a personal computer or a portable smartphone or tablet can be used, but the present invention is not limited to this.

  The technology using the block chain is used in bit coins, which are virtual currencies. However, in the virtual currency transaction ledger, the block of virtual currency transaction data (for example, the amount of virtual currency to be traded, the user The payment address of the virtual currency, the public key used to generate the payment address of the user, and the hash value of the basic resources of the currency, etc.) are created on the chain in the blockchain network Is recorded.

  The transaction data is secured by using the hash value and the public key cryptosystem. In addition, the transaction data is widely distributed in order to verify the validity by the minor, and the validity of the transaction data is monitored.

  The present invention uses the block chain to promote the use of data referenced by the block while utilizing the validity of the block recorded in the block chain ledger. For example, by using a blockchain, in order to ensure the secrecy of data while ensuring the legitimacy of the history of data transactions, a specific authorized specific user or a specific user and a specific user You may make it restrict | limit to an information processing apparatus. As data stored in the block chain, the actual transaction target data does not exist in the block, and the block has a structure or data that can refer to the actual transaction target data, for example, a pointer. Can be.

  FIG. 1 shows an example of the configuration of an asset data utilization system 1 according to the present invention.

  As a premise, between the user of the information processing apparatus 20 for the user and the user of the information processing apparatus 10, the user uses or manages the information in the information processing apparatus 10 for the provider. It is necessary that an agreement for the provision of information is made.

  By forming this consent, the provider of the information processing apparatus 10 can provide the user's activity data to the user.

  The information processing apparatus 20 used by the user has already been authenticated and registered in advance, and is assigned a user identifier (UID), which is user identification information, and information for the user. A terminal (device) identifier DID that is identification information of the processing device 20 is uniquely registered in the information processing device 20 for the user.

  Furthermore, a block chain address (also referred to as “BCN address” or “BCN Add” for simplification) that enables registering a ledger on the block chain (BCN 50 in FIG. 1) is registered in advance to the user. Has been. Each of the user and the provider is set up so that data communication can be electronically performed by the information processing device 20 for the user and the information processing device 10 for the provider.

  The steps for providing individual user activity data to the user are described below.

  In parallel with or before or after step (3), the user provides his / her BCN address (BNC Ads) in order to disclose his address on the blockchain network (BCN 50) to the provider. The information is transmitted from the user information processing device 20 to the provider information processing device 10 (step (1)).

  If data related to a user is stored in a certain storage device 90, in response to step (1) or independently of the step (1), the storage device 90 is the storage location. User data is acquired by the information processing apparatus 10 for the provider (step (3)). Then, a data set of actual values (data) corresponding to one or a plurality of data items is generated from the received data in accordance with a predetermined data format (step (2) -1). The transaction data (TR) is stored (uploaded) in the storage device 30 (step (2) -2).

  Which items are added as elements of the data set is appropriately determined according to the contents of the agreement between the user and the provider, or the conditions such as items that the provider can provide and items that the user desires.

  In the information processing apparatus 10 for the provider and the information processing apparatus 20 for the user, a selection application program for providing the data is stored in each other's memory, and each application program is executed by each processing apparatus. When executed, the data items to be added to the transaction data (TR) are selected. Then, according to the selection, data corresponding to the data item is dropped into transaction data (TR) corresponding to a predetermined format.

  As transaction data (TR), the contents of the dropped actual data are described in a format that can be read in correspondence with the data item, so that the information processing apparatus 10 for the provider can be used. It can be read by an information processing device 20 for a person or a third party terminal. As the format, for example, the JSON format can be used.

  The information processing apparatus 10 for a provider further has a program for generating transaction data (TR) and generating master data (MA) from the transaction data (TR). The provider information processing apparatus 10 is a side that provides data to the user, and the user is a side that receives data. However, as will be described later, the user can be a side that can provide the received data. Therefore, the functions of the application program of the information processing apparatus 20 for the user and the information processing apparatus 10 for the provider may be different, but it is not always necessary to have an application program having a different function, and an application having the same function. A program or an application program for executing any of the functions described later may be included. In other words, it should be recognized that the functions described for one information processing apparatus may be included in another information processing apparatus for the purpose of use. Further, a part of execution, for example, generation of transaction data (TR) and master data (MA) may be taken over by the storage apparatus.

  Upon receiving the user's BCN address (BCN Add) in step (1), the provider information processing apparatus 10 and the data resource identifier (SID) for identifying the BCN address (BCN Add) and the data resource. ) Is transmitted to the storage apparatus 30, and the information processing apparatus 10 for the provider that receives it generates an access ticket (ACT). If the data provider can be specified, the data resource identifier (SID) is not limited to the terminal (device) identifier DID of the information processing apparatus 20 for the user, but is the identifier of the storage apparatus 30. There may be. In addition, there are cases where the storage device exists widely distributed like a secret sharing storage device, but if the data in the storage device can be referred to, the data resource identifier (SID) is any identifier. There may be.

  This access ticket (ACT) is data to be recorded on the user's block chain.

  FIG. 3 is a data configuration diagram of an access ticket (ACT) according to an embodiment of the present invention.

  The access ticket (ACT) is a hash value of predetermined data so as to conform to the block chain. The element data is a hash value of the user's BCN address (BCN Add), a data resource identifier (SID), and a secret character string corresponding to the data resource identifier (SID). Hash. As a hash function, for example, MD5 is used to obtain a 128-bit hash value. As a result, a fixed-length access ticket (ACT) is recorded in the block chain network (BCN). Although not shown in FIG. 1, the information processing apparatus 10 for the provider may notify the information processing apparatus 20 for the user separately from issuing the access ticket (ACT). Further, registration to the block chain network (BCN) may be performed via the information processing apparatus 20 for the user.

  When this data is issued, data from the data resource identifier (SID) is prepared for the user, indicating that the user has the authority to obtain the data.

  The user can use the access ticket (ACT) to access the transaction data (TR) in the storage device 30 managed by the provider information processing device 10 and the master data (MA) generated therefrom. It becomes possible.

  The transaction data (TR) and the master data (MA) have a predetermined format to enable the user to refer to and manipulate the data, and to provide the data to other third parties.

  Here, the original data for providing data by the provider often exists separately as activity data at different times of the user. Therefore, a plurality of transaction data (TR) corresponding to each original data may be prepared although the types are the same. In addition, the original data for providing data by the provider includes activity data of different types, and there are cases where the recorded items of the data are different. Therefore, other transaction data (TR) having the same basic format but different record length and different data items to be recorded may be prepared.

  In addition, the request for personal data from the information processing apparatus 20 for the user is not necessarily once, but for the provider at a time so that the personal data generated for each activity can be received. The information processing apparatus 10 may be requested a plurality of times.

  As described above, the transaction data (TR) generated in the storage device 30 can be generated as one or a plurality of transaction data (TR).

  In FIG. 1, in order to simplify the description, an example in which one master data (MA) is created from one transaction data (TR) and provided to the user will be described.

  The storage device 30 has a program or macro instruction stored in a memory (not shown), and the program or macro instruction is executed by the processing device of the storage device 30. The program includes a macro instruction, and here, only the macro instruction is used separately for the sake of convenience.

  When a program or macro instruction receives a BCN address (BCN Add) or a data resource identifier (SID) indicating a data provider of data to the information processing apparatus 20 for the user from the information processing apparatus 10 for the provider, An access ticket (ACT) is generated based on the information (step (4)). Note that the storage apparatus 30 may generate master data (MA) based on the transaction data (TR) (step (5)). And an access ticket (ACT) is returned to the information processing apparatus 10 for providers (step (4) -1).

  As described above, the access ticket (ACT) gives the authority for the user to refer to and download the data used or managed by the information processing apparatus 10 for the provider. It is issued through the processing device 10 (step (4) -2).

  The transmission destination of the access ticket (ACT) is the user's BCN address (BCN Add) provided from the information processing apparatus 20. The user can obtain an access ticket (ACT) through the user information processing device 20 by accessing the BCN 50 (step (6)).

  Since the acquired access ticket (ACT) stores the data resource identifier (SID), the user can store the information directly or via the information processing apparatus 10 for the provider based on the information. With reference to the master data (MA) information stored in the device 30, the master data (MA) can be downloaded to the memory 21 of the information processing device 20 for the user (step (7)).

  As already described, there is not necessarily one transaction data (TR), but there can be a plurality of transaction data TR (1) to TR (n) generated in time series. In addition, a plurality of data requests R1 to Rn may be received at a time according to individual requests from the user. FIG. 2 shows a conceptual diagram in which master data MA (1) to MA (n) are generated by receiving a plurality of data requests R1 to Rn and generating corresponding G1 to Gn.

  Each of the generated master data MA (1) to MA (n) is provided to the user as an added asset, and an access ticket is provided according to the data requests R1 to Rn so that the user can refer to and acquire it. (ACT) may be transmitted to the BCN address (BCN Add), and the user may be able to access each of the master data MA (1) to MA (n).

  In Bitcoin, by issuing a transaction token to BCN, a block chain of the token is formed as a ledger, and the blocks are chained in time series of the transaction. On the other hand, in the example according to the present invention, a chain of blocks of an access ticket (ACT) is registered in the ledger, and the blocks are chained in time series.

  FIG. 4 is a data configuration diagram of transaction data (TR) and master data (MA) according to an embodiment of the present invention.

  The components of the transaction data (TR) and master data (MA) include the contents of the access ticket (ACT) issued for the user to indicate that the data is generated in response to the user's request. It is.

  The user can obtain the access right of the master data (MA) by the access ticket (ACT) by the information processing apparatus 10 for the provider. The access ticket (ACT) includes data resource identifier (SID) information (see FIG. 3), and the information processing apparatus 20 for users can access the data by referring to the information. It becomes.

  The basic components of master data (MA) and transaction data (TR) have a data part and an additional data part in addition to the access ticket (ACT) (see FIG. 4).

  FIG. 5A shows the components of the data part. The data part can be divided into a data header part and a data body part.

  The data header part includes a user identifier (UID), a terminal (device) identifier DID, and a data resource identifier (SID).

  On the other hand, the data body part is composed of data (values) of items of 1 to k individuals. The value of k is an arbitrary number, and therefore the data length of the data part does not need to be fixed. The data body portion is further provided with a time stamp indicating the date and time when the transaction data (TR) or master data (MA) was created. As a result, transaction data (TR) and master data (MA) can be managed in the order of generation.

  FIG. 5B further shows additional data. The additional data is composed of a transmission address indicating a data transmission destination (for example, a user's BCN address) and an ACL condition for defining a data browsing condition (access condition).

  The ACL condition includes “start time” indicating the first accessible time, “end time” indicating the last accessible time, and “number of times” for limiting the number of times of browsing. This access condition is an example, and it may be configured from various access conditions or combinations thereof. The information processing apparatus may be provided with an application program that can provide an interface that can be input by the user so that the user can set these conditions.

  Although both the transaction data (TR) and the master data (MA) have been described, the data does not necessarily have the same configuration. In addition, a data type item for facilitating distinction between data indicating transaction data (TR) or data indicating master data (MA) may be added to each. Further, the additional data may not be included in the data structure of the transaction data (TR) and the master data (MA), but may be separately separated and stored in the storage device 30. When the additional data is separated, the additional data is associated with the transaction data (TR) or the master data (MA) and managed by the program of the storage device 30 or the application program of the information processing device 10.

  Until now, the description has been made on the assumption that personal authentication has already been performed. However, the information processing apparatus 10 for a provider and the information processing apparatus 20 for a user are legitimate if a person who intends to use the terminal is authorized. It has a function to authenticate whether it is a user. For example, the information processing apparatus 20 for a user has a biometric authentication function such as fingerprint, vocal cord authentication, or blood vessel authentication, and performs personal authentication by uniquely associating the authentication data with an individual. The application program installed in the information processing apparatus 20 is permitted to be executed when personal authentication is performed and it is specified that the user is a valid user.

  As shown in FIG. 1, the asset data utilization system 1 uses an information processing apparatus 10 for a data provider and an information processing apparatus 20 for a user to transfer the information from the information processing apparatus 10 to the information processing apparatus 20. Data.

  Furthermore, as shown in FIG. 6, when data is provided to the information processing apparatus 20 for the user, it has an information processing apparatus 60 for a third party for providing the data separately. Also good. The provision of data from the user information processing apparatus 20 to the third party information processing apparatus 60 is basically the same as the provision of data from the provider information processing apparatus 10 to the user information processing apparatus 20. The process does not change. If the data is simply provided, the BCN address (BCN Add) may be the BCN address (BCN Add) used by the user, and the access ticket (ACT) is the user storage device. This is the access ticket (ACT) created at 40.

  The BCN address (BCN Add) is generated by the application program of the information processing apparatus 20 for the user, and the access ticket (ACT) is obtained from the information of the terminal (device) identifier DID of the information processing apparatus 20 for the user. Can be generated. Specifically, a BCN address (BCN Add) and an access ticket (ACT) are generated as follows in a relatively early stage before providing data from the user.

  First, the local application program of the user information processing apparatus 20 transmits a user identifier (UID) to the user storage apparatus 40 and instructs generation of a secret key. The program or macro instruction stored in the user storage device 40 generates a public key and a secret key in response to the instruction. When receiving the generation of the public key and the secret key, the application program of the information processing apparatus 20 for the user generates a BCN address (BCN Add). The user storage device 40 receives the generated BCN address (BCN Add) and hashes it, and the hash value and a data resource identifier (ID) indicating the terminal (device) identifier DID of the information processing device 20 for the user. (SID) and a hash value of the data resource identifier (SID) and a secret character string are generated to obtain an access ticket (ACT). As already described in the storage apparatus 30, if the data of the user storage apparatus 40 can be referred to, the data resource identifier (SID) is not necessarily the terminal (device) identifier DID of the information processing apparatus 20 itself. There is no need, and the identifier of the storage device itself may be used, or information that can identify data may be used according to the secret sharing storage.

  Returning to the data transmission from the information processing device 20 for the user to the information processing device 60 for the third party, the access ticket (ACT) can be notified to the information processing device 60 for the third party. At the same time, master data (MA) to be provided to the information processing apparatus 60 for a third party is generated from the transaction data (TR).

  The information processing device 60 for a third party can obtain master data (MA) data in the user storage device 40 via a BCN address (BCN Add). A third party can store the data in a storage device used by the information processing device 60 as needed, and can share the data.

  7 shows an access ticket (ACT) registered in the block chain 50, a terminal (device) identifier DID and a user identifier (UID) of the information processing apparatus 20 for the user, and master data ( MA) shows the relationship of mutual linking according to the content of MA.

  A data resource identifier (SID) is described in a plurality of access tickets (ACT) chained in a chain, which substantially specifies the storage device 30 managed by the information processing device 10 for the provider. Acts as a pointer. Further, in the master data (MA) recorded in the storage device 30, a user identifier (UID) and a terminal (device) identifier DID are described as elements of the data header portion. It functions as a pointer of the information processing apparatus 20. The information processing apparatus 20 authenticates the user with the user identifier (UID) and generates a BCN address (BCN Add) with the user identifier (UID), which is an access ticket (BCN address) on the BCN address (BCN Add). ACT) pointer.

  Such a relationship is maintained, and the validity of the access ticket (ACT) is agreed upon on the BCN address (BCN Add). Further, it is preferable that the storage device 30 and the storage device 40 for storing transaction data (TR) and master data (MA) are secret sharing storage devices. Sexuality is further maintained.

  The information processing apparatus 20 for users has already prepared an environment for providing data on the block chain 50, and every time data of a predetermined form based on the specifications is posted to the block chain 50, the block chain 50 In the above, a data chain is formed by the hash value, and the security of the data is ensured.

  Since the size of data provided on the data chain is limited, actual data corresponding to the data can be stored in the storage device 30 or the user storage device 40.

  FIG. 8 is a conceptual diagram of generating new master data (MA) by generating master data from different types of transaction data generated in time series, further identifying the different types of master data (MA). .

  The vertical axis shows the passage of time. This time can be, for example, when each transaction data (TR) and master data (MA) is generated, and is indicated by a time stamp that is a data element thereof. As transaction data (TR), two types of transaction data TR_A (m) and TR_B (n) (m and n indicate numbers in order of elapsed time) are generated. Each time transaction data TR_A (m) and TR_B (n) are generated, master data MA_A (m) and MA_B (n) are generated. Further, when different types of master data (MA) are respectively generated, the generated master data (MA) is named, and new master data MA_C (h) (h is a number in order of elapsed time). Is generated). As can be understood, the master data (MA) is also used as transaction data (TR) for generating the next master data (MA).

  Referring to FIG. 1, the transaction data TR_A (m) and TR_B (n) may be generated in the storage apparatus 30 used by the information processing apparatus 10, but different storage apparatuses used by different information processing apparatuses. May also be generated. It depends on how user data is managed externally.

  When different types of transaction data TR_A (m) and TR_B (n) are generated in the same storage device, for example, master data MA_C (named with the same user identifier (UID) in the same storage device. h) may be generated, or the master data (MA) (for example, MA_A (2) and MA_B (1)) obtained from the same type of transaction data (TR) by the method described above is used by the user. The master data (MA) (for example, MA_C (1)) stored in the storage device 40 used by the information processing device 20 for use in the information processing device 20 may be generated.

  Named master data (MA) is different from conventional data resources because the generated storage apparatus side becomes a new resource. Therefore, the data resource identifier (SID) is changed to a data resource identifier (SID) that can refer to the newly generated master data (MA).

  Thus, a plurality of types of transaction data (TR) can be obtained from the same data resource or from a plurality of data resources. By enabling acquisition from a plurality of data resources, it can be used as new data that complements each other's data. Further, the name identification rules differ depending on the type of data, and may be determined as appropriate according to the data items. For example, new master data (MA) in which a new data item indicating another index is created from data items of a certain master data (MA) and another type of master data (MA) can be used. The generation of this new data item includes, for example, generating new data including calorie calculation by merging data from data resources related to exercise data and data resources related to meal data. .

  As can be understood from FIGS. 1 and 6 and the description thereof, the application program of the information processing apparatus 20 for the user receives data from the information processing apparatus 10 for the provider (including the storage apparatus 30). And two major functions of providing data to third parties. The data is received by referring to the access ticket (ACT) transmitted from the provider information processing apparatus 10 via the block chain or the history of the access ticket (ACT), and processing information for the user. It is possible to acquire data from the device 10 or upload data held by the processing device to a storage device (preferably secret sharing storage, hereinafter the same) used by the processing device. It is. Further, as already described, the user information processing apparatus 20 can also provide data in the same manner as the provider information processing apparatus 10, and there is simply a BCN address owned by itself. Not only can the data be generated using (BCN Add) and provided to a third party, but the data can be provided using the BCN address (BCN Add) of the other party. Further, it may be possible to check a distributed slip chained with its own BCN address (BCN Add) and preview its history.

  It is not preferable to have a normal user perform such detailed steps. Therefore, in order not to become complicated for the user, a series of procedures can be grouped on the display display screen of the information processing apparatus 20 for the user so that the user can perform it with a single button, or by a simple operation. A user interface is provided by the application program.

  FIG. 9 is a conceptual diagram of a medical information utilization system for utilizing medical data as one embodiment according to the present invention. A plurality of types of transaction data (TR) as shown in FIG. 8 are obtained from different institutions.

  The center part shows users, and the medical institution, medical data cloud, and healthcare business company on the left are medical organizations that are used (acted) by the users. Normally, each has different medical data, which is acquired in the secret sharing storage of the user, and new master data (MA) is generated by naming the data as necessary.

  There are a plurality of various types of medical data relating to an individual's mind and body. For example, medical data stored as an in-hospital database of a medical institution such as a hospital, medical data stored in a medical data cloud accessed and used by a medical institution, or a business company that performs personal healthcare (for example, mental health care) There are data stored by companies that provide services that support measures for health and lifestyle-related diseases.

  First, in order to allow individuals to aggregate and manage their own medical data scattered in various places / services, it is necessary to advance electronic data exchange with cloud systems and database systems that are information resources for these medical data. Consensus building. In addition, as long as it has the information regarding the personal health, medical data may be widely included as medical data regardless of its type and content.

  The data stored in the secret shared storage based on the consent formation is agreed with the right medical institution or healthcare business company to provide data, and the required data is transferred from the user's secret shared storage to the medical institution or healthcare business. It can be provided to the company.

  Blockchain networks are used to ensure authenticity and authenticity of authentic individuals and authenticity that has not been tampered with so that consent formation is properly maintained. Data reliability is ensured by making it impossible to tamper with data by chaining. In addition, the data to the blockchain is not actually medical data, and the medical data is indicated by a pointer recorded in the blockchain network, and the pointer destination is the secret distributed storage. Are distributed, ensuring confidentiality and difficulty of falsification, and even if data is partially damaged or lost, it is possible to cope with it.

  Data can be collected in units of data resource provision, and even if new data or data updates are added, it can be composed of one record by blockchain. Can be viewed.

  For example, Mr. A's periodic examination data can be referred to by one record on the BCN, so that it is possible to browse from the latest examination to the past examination data.

  Furthermore, as already described as name identification, different data can be combined to generate new data, and pointers that refer to the past data and the new data are chained on the block chain network (BCN). In addition, since the reference pointer of the data including new data and past data is not broken, it is possible to suppress the loss of medical data.

  With reference to FIGS. 10A and 10B, generation of transaction data (TR) and master data (MA) generated therefrom will be described using medical data as an example.

  10A and 10B show only the data body portions of transaction data (TR) and master data (MA). The data body part may be a single item, but usually there are a plurality of data items as in this example.

  In the example of FIG. 10A, there are two types of transaction data TR_A and TR_B. Each is numbered in parentheses in order of time of occurrence for ease of understanding. Here, transaction data TR_A is biodata obtained based on “physical measurement”, and transaction data TR_B is biodata obtained based on measurement of “vital”.

  Accordingly, each type of transaction data TR_A and TR_B includes different data items, and each data item has personal data (or value). A portion where personal data is not obtained is indicated by “null”. That is, the transaction data (TR) is a data set in which a plurality of items of data related to individuals are combined, and the plurality of transaction data (TR) indicates the history.

  What each item indicates and in what unit is managed by the application program installed in the information processing device or the memory or storage device of the information processing device. The data item data is associated with what item data indicates.

  Master data (MA) is generated for each transaction data (TR). Here, the same numbers are used so that the correspondence relationship can be understood.

Since the latest data of the master data (MA) preferably indicates the latest data of the individual data, here, for each data item, the latest master data (MA) is the past transaction data (TR). ) Are ruled and programmed to show the latest data. However, the “null” part is ignored because the data is not obtained. That is, in a plurality of data sets (TR) that are histories about an individual, each item indicates the latest data in the data set of the history data.
For example, in the first transaction data TR (1), master data MA (1) is generated using the data. In the next transaction data TR (2), MA (2) generated corresponding to the transaction data TR (2) is a combination of the transaction data TR (2) and the previous master data MA (1). The latest data is shown for each data item while ignoring the “null” part.

  When receiving an instruction to generate master data (MA), the program generates master data (MA) according to such rules. FIG. 10A shows the data contents of the transaction data (TR) and master data (MA).

  In addition to the update to the master data (MA), as a function of the program, there is a name identification, that is, a combination processing function between the master data (MA). An example is shown in FIG. 10B.

  The “generated master data (MA)” in FIG. 10B is the master data (MA_A and MA_B) generated corresponding to each transaction data (TR) in the order of generation of the two types of transaction data TR_A and TR_B in FIG. 10A. ) Are arranged.

  The “newly generated master data (MA)” indicates the newly generated master data MA_C in the arranged order. The rule for generating the master data MA_C here is the same as in FIG. 10A.

  The plural types of master data (MA) may be obtained from different data resource identifiers, but by referring to the user identifier (UID) existing in the master data (MA), the master data of the same user is obtained. It is possible to generate new master data (MA) by combining only (MA).

  The combination generation based on the master data (MA) may be programmed not only to read the contents (data) of the corresponding data item but also to be more advanced processing. The data items of transaction data (TR) are body fat weight (kg) and body weight (kg), and the combined generation program includes a calculation program of body fat weight (kg) ÷ body weight (kg) × 100. It is good also as the data of the data item which provided and the body fat rate (%) which is the calculation result newly produced | generated. In this way, a combination generation program may be provided as appropriate according to the purpose, and by performing data combination generation from different user identifiers (UIDs), further advanced data utilization is possible. .

  As can be understood from the above description, the user describes the identifier of the storage device used by the user or the processing device 20 managing the user in the content of the access ticket (ACT), and corresponds to the own BCN address. If it is recorded in the ledger, it is possible to refer to its latest data and past data from the storage device. In addition, it will be possible to provide its own data to a third party, so that the user can easily operate these processes, for example, "test result" button, "pass to the doctor" "past results", These buttons may be prepared on the operation screen as a user interface.

  In addition, in order to securely perform mutual data with a provider or a third party via the block chain network (BCN), the block chain address (BCN Add) is converted into a QR code (registered trademark), and the application The program may read the QR code (registered trademark) with a camera provided in the information processing apparatus and transmit the QR code (registered trademark) to the partner as a BCN address.

Further disclosed below.
(Item 1)
A method for acquiring and utilizing data related to personal information by an information processing device used by the individual,
Transmitting data related to an address on the blockchain network used by the individual to a provider of data related to the personal information via the network;
Issuing and registering access data (ACT) including data relating to the address and data for identifying a data provider from the provider to the address of the blockchain network; and
Referring to the access data (ACT) from the address of the blockchain network, identifying a data provider, and obtaining data related to the personal information from the identified provider;
Data utilization method consisting of
(Item 2)
The data utilization method according to Item 1, wherein the data provided from the provider includes identification information of an individual authorized to use the information processing apparatus.
(Item 3)
3. The data utilization method according to any one of items 1 to 2, wherein the data provided from the provider includes identification information of an information processing apparatus used by the individual.
(Item 4)
4. The data utilization method according to any one of items 1 to 3, wherein the data provided from the provider includes identification information of the provider.
(Item 5)
The data utilization method according to any one of items 1 to 4, wherein the data provided from the provider includes information indicating a generation time of the data.
(Item 6)
The data (MA) provided from the provider is a data set composed of data relating to each of a plurality of data items generated based on a plurality of data (TR) which is history data relating to the individual. The data utilization method described in any of the above.
(Item 7)
The data utilization method according to item 6, wherein each of the plurality of data items indicates the latest data in the history data set.
(Item 8)
8. The data utilization method according to any one of items 1 to 7, wherein at least data related to the personal information is hashed by a hash function.
(Item 9)
A system for obtaining and utilizing data related to personal information by an information processing device used by the individual, the system comprising the information processing device,
The information processing device has at least a memory or a storage device connected to the information processing device,
The information processing apparatus transmits data related to an address on the block chain network used by the individual to a provider side information processing apparatus having a storage device that is a source of data related to the personal information via the network Function to
Reference is made to access data (ACT) issued from the provider-side information processing apparatus to the address of the blockchain network, including data relating to the address and data for identifying the data provider. Function and
A function of acquiring data related to the personal information from the providing storage device based on the access data (ACT) and storing the data in at least the personal memory or storage device;
Data utilization system with
(Item 10)
10. The data utilization system according to item 9, wherein the data provided from the provider includes identification information of an individual authorized to use the information processing apparatus.
(Item 11)
The data provided from the provider includes at least identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating data generation time, items 9 to 10 The data utilization system described in any of the above.
(Item 12)
The data (MA) provided from the provider is a data set composed of data relating to each of a plurality of data items generated based on a plurality of data (TR) which is history data relating to the individual. The data utilization system described in any of the above.
(Item 13)
13. The data utilization system according to item 12, wherein each of the plurality of data items indicates the latest data in the history data set.
(Item 14)
14. The data utilization system according to any one of items 9 to 13, wherein at least data related to the personal information is hashed by a hash function.
(Item 15)
A program for acquiring data related to personal information stored in an information processing apparatus used by an individual and executed by the first information processing apparatus,
Providing a blockchain address to another information processing apparatus;
Based on access data (ACT) including information on the block chain address transmitted from the other information processing device based on the block chain address, the other information processing device or a storage device used by the information processing device The program which acquires the data relevant to the said personal information produced | generated in (1).
(Item 16)
16. The program according to item 15, wherein the data related to the personal information includes identification information of an individual authorized to use the information processing apparatus.
(Item 17)
Items 15 to 16 include at least identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating a data generation time, in the data related to the personal information. A program according to any of the above.

1. Asset data utilization system 10. Information processing apparatus for provider 20. Information processing devices 30 and 40 for users. Storage device (secret sharing storage device)
50. Blockchain network

Claims (15)

A method for acquiring and utilizing data related to personal information by an information processing device used by the individual,
Transmitting data related to an address on the blockchain network used by the individual to a provider of data related to the personal information via the network;
Registering access data (ACT) including data for specifying the location of data provided from the data provider on the block chain network;
Referring to the access data (ACT) to obtain data related to the personal information;
A method consisting of:   The method according to claim 1, wherein the data provided from the provider includes identification information of the individual.   The data provided from the provider includes at least one of identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating a data generation time. Item 3. The method according to any one of Items 1 to 2.   The data (MA) provided from the provider is a data set including data relating to each of a plurality of data items generated based on a plurality of data (TR) which is history data relating to the individual. 4. The method according to any one of 3.   5. The method of claim 4, wherein each of the plurality of data items represents the latest data in the historical data data set.   The method according to claim 1, wherein at least data related to the personal information is hashed by a hash function. An information processing apparatus used by an individual, and a system for acquiring and utilizing data related to the personal information by the information processing apparatus,
The information processing device has at least a memory or a storage device connected to the information processing device,
The information processing apparatus has a function of transmitting data related to an address on a blockchain network used by the individual to a provider-side information processing apparatus of data related to the personal information via the network;
A function of referring to data for specifying the location of data provided from the provider of the data and access data (ACT) included from the provider-side information processing device;
A function of acquiring data related to the personal information based on the access data (ACT);
Having a system.   The system according to claim 7, wherein the data provided from the provider includes identification information of an individual authorized to use.   The data provided from the provider includes at least identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating a data generation time. 9. The system according to any one of 8.   The data (MA) provided from the provider is a data set including data relating to each of a plurality of data items generated based on a plurality of data (TR) which is history data relating to the individual. 10. The system according to any one of 9.   11. The system of claim 10, wherein each of the plurality of data items indicates the latest data in the historical data data set.   The system according to claim 7, wherein at least data related to the personal information is hashed by a hash function. A storage medium storing a program for acquiring data related to personal information, which is executed by an information processing apparatus used by the individual,
The program can be used by at least the information processing apparatus or other information processing apparatus with reference to access data (ACT) registered on the block chain network based on the block chain address provided from the information processing apparatus A storage medium that causes the information processing apparatus to execute data related to the personal information stored in a storage device.   The storage medium according to claim 13, wherein the data related to the personal information includes the personal identification information.   The data related to the personal information includes at least identification information of an information processing apparatus used by the individual, identification information of the provider, and information indicating a data generation time. 14. The storage medium according to any one of 14.