基于多云多链协同的医疗数据安全共享机制

doi:10.3969/j.issn.1671-1122.2022.01.002

信息网络安全 ›› 2022, Vol. 22 ›› Issue (1): 9-18.doi: 10.3969/j.issn.1671-1122.2022.01.002

基于多云多链协同的医疗数据安全共享机制

冯景瑜(), 汪涛, 于婷婷, 张文波

西安邮电大学无线网络安全技术国家工程实验室,西安 710121

收稿日期:2021-09-13 出版日期:2022-01-10 发布日期:2022-02-16
通讯作者: 冯景瑜 E-mail:fengjy@xupt.edu.cn
作者简介:冯景瑜（1984—）,男,甘肃,副教授,博士,主要研究方向为物联网安全、区块链、网络攻防|汪涛（1998—）,男,江西,硕士研究生,主要研究方向为物联网安全、区块链|于婷（1997—）,女,河南,硕士研究生,主要研究方向为物联网安全、区块链|张文波（1983—）,男,山东,讲师,博士,主要研究方向为物联网安全、隐私保护
基金资助:
国家自然科学基金(62102311)

A Secure Medical Data Sharing Scheme Based on Multi-clouds and Multi-chains Collaboration

FENG Jingyu(), WANG Tao, YU Tingting, ZHANG Wenbo

National Engineering Laboratory for Wireless Security, Xi'an University of Posts and Telecommunications, Xi'an 710121, China

Received:2021-09-13 Online:2022-01-10 Published:2022-02-16
Contact: FENG Jingyu E-mail:fengjy@xupt.edu.cn

摘要/Abstract

摘要：

针对区块链难以满足音视频等大容量医疗数据存储的缺陷,文章采用多云多链协同模式,进行医疗数据的安全共享。为阻断身份隐私扩散泄露,提出了一种身份多匿名化方法,匿名存储医院公钥加密的医疗数据于专有云。基于多链区分记录方式,按照患者就医服务类型,提取投影打包到相应区块链上。为预防医院矿工服务器劫持,按链评估信任值,抗击多链共识中潜在的不同矿工行为攻击,设计出一种机密性中转访问控制协议。联盟用户之间可以在不直接访问的条件下,实现医疗数据的安全共享。安全性分析与仿真结果表明,文章提出的方案能有效防范患者身份隐私泄露,可防止医疗数据的窃取和篡改,以较低成本保障共识的精确性。

关键词: 云储存, 区块链, 医疗数据, DMB攻击, 安全共享

Abstract:

In view of the defect that blockchain cannot meet the requirements of large-capacity medical data storage such as video and audio, this paper adopted the multi-cloud and multi-chain collaborative mode to share medical data safely. In order to prevent proliferation and leakage, an identity multi-anonymization method was proposed to anonymously store medical data encrypted by hospital’s public key in a private cloud. Based on the multi-chains distinguishing record method, the projection will be extracted and packaged on the corresponding blockchain in terms of the patient’s medical service type. To avoid the hijacking of hospital miner server, the trust value is evaluated according to the relevant blockchain, so as to fight against the diverse miners behaviors (DMB) attacks that may exist in the multi-chains consensus. A confidentiality relay access control protocol is designed to achieve the security of medical data sharing among alliance users without direct access. Security analysis and simulation results show that this scheme can effectively prevent the leakage of patient identity privacy, the theft and tampering of medical data. Meanwhile, the accuracy of consensus can be guaranteed at a lower cost.

Key words: cloud storage, blockchain, medical data, DMB attack, security sharing

中图分类号:

TP309

冯景瑜, 汪涛, 于婷婷, 张文波. 基于多云多链协同的医疗数据安全共享机制[J]. 信息网络安全, 2022, 22(1): 9-18.

FENG Jingyu, WANG Tao, YU Tingting, ZHANG Wenbo. A Secure Medical Data Sharing Scheme Based on Multi-clouds and Multi-chains Collaboration[J]. Netinfo Security, 2022, 22(1): 9-18.

图/表 13

图1

图2

图3

图4

图5

图6

图7

图8

表1

图9

图10

图11

图12

参考文献 18

[1]	WANG Ruijin, YU Suzhe, LI Yue, et al. Medical Blockchain of Privacy Data Sharing Model Based on Ring Signature[J], Journal of University of Electronic Science and Technology, 2019, 48(6):886-892.
	王瑞锦, 余苏喆, 李悦, 等. 基于环签名的医疗区块链隐私数据共享模型[J]. 电子科技大学学报, 2019, 48(6):886-892.
[2]	QIU Yu, WANG Chi, QI Kaiyue, et al. A Survey of Smart Health: System Design from the Cloud to the Edge[J]. Journal of Computer Research and Development, 2020, 57(1):53-73.
	邱宇, 王持, 齐开悦, 等. 智慧健康研究综述:从云端到边缘的系统[J]. 计算机研究与发展, 2020, 57(1):53-73.
[3]	CHEN Yanxi, ZHAO Qi, GONG Yucheng, et al. Discussion on Electric Vehicle Charging Transaction Based on Blockchain Technology[J]. Power Engineering Technology, 2020, 39(6):2-7.
	陈妍希, 赵奇, 龚育成, 等. 基于区块链技术的电动汽车充电交易探讨[J]. 电力工程技术, 2020, 39(6):2-7.
[4]	LIU Jingwei, LIANG Tianyu, SUN Rong, et al. A Privacy-preserving Medical Data Sharing Scheme Based on Consortium Blockchain[C]//IEEE. GLOBECOM 2020-2020 IEEE Global Communications Conference, December 7-11, 2020, Taipei, Taiwan, China. Piscataway: IEEE, 2020: 1-6.
[5]	LIU Zi’ang, HUANG Yuanyuan, MA Jiali, et al. Design and Implementation of Monitoring Platform for Medical Data Abuse Based on Blockchain[J]. Netinfo Security, 2021, 21(5):58-66.
	刘子昂, 黄缘缘, 马佳利, 等. 基于区块链的医疗数据滥用监控平台设计与实现[J]. 信息网络安全, 2021, 21(5):58-66.
[6]	ZHAI Sheping, WANG Yijing, CHEN Siji. Research on the Application of Blockchain Technology in the Sharing of Electronic Medical Records[J]. Journal of Xidian University, 2020, 47(5):103-112.
	翟社平, 汪一景, 陈思吉. 区块链技术在电子病历共享的应用研究[J]. 西安电子科技大学学报, 2020, 47(5):103-112.
[7]	ZHENG Zibin, XIE Shaoan, DAI Hongning, et al. Blockchain Challenges and Opportunities: A Survey[J]. International Journal of Web and Grid Services, 2018, 14(4):352-375. doi: 10.1504/IJWGS.2018.095647 URL
[8]	XU Chunlei, YU Jing. Regional Control Technology Support System Based on Cloud Technology[J]. Power Engineering Technology, 2015, 34(3):5-9.
	徐春雷, 余璟. 基于云技术的区域调控技术支撑系统[J]. 电力工程技术, 2015, 34(3):5-9.
[9]	CAO Sheng, ZHANG Gexiang, LIU Pengfei, et al. Cloud-assisted Secure eHealth Systems for Tamper-proofing EHR via Blockchain[J]. Information Sciences, 2019, 485(25):427-440. doi: 10.1016/j.ins.2019.02.038 URL
[10]	GAI Keke, GUO Jinnan, ZHU Liehuang, et al. Blockchain Meets Cloud Computing: A Survey[J]. IEEE Communications Surveys & Tutorials, 2020, 22(3):2009-2030.
[11]	HUANG Haiping, ZHU Peng, XIAO Fu, et al. A Blockchain-based Scheme for Privacy-preserving and Secure Sharing of Medical Data[J]. Computers & Security, 2020, 99(12):102010-102022. doi: 10.1016/j.cose.2020.102010 URL
[12]	SHEN Meng, DUAN Junxian, ZHU Liehuang, et al. Blockchain-based Incentives for Secure and Collaborative Data Sharing in Multiple Clouds[J]. IEEE Journal on Selected Areas in Communications, 2020, 38(6):1229-1241. doi: 10.1109/JSAC.49 URL
[13]	ZHENG Xiaochen, MUKKAMALA R R, VATRAPU R, et al. Blockchain-based Personal Health Data Sharing System Using Cloud Storage[C]//IEEE. 2018 IEEE 20th International Conference on E-Health Networking, Applications and Services (Healthcom), September 17-20, 2018, Ostrava, Czech Republic. Piscataway: IEEE, 2018: 1-6.
[14]	FENG Jingyu, WANG Tao, XIONG Naixue, et al. PoDT: A Secure Multi-chains Consensus Scheme Against Diverse Miners Behaviors Attacks in Blockchain Networks[EB/OL]. https://arxiv.org/abs/2106.02383, 2021-09-04.
[15]	LI Dawei, SONG Chunxiao, LI Bin, et al. Power Blockchain Infrastructure Architecture and Its Design and Implementation[J]. Power Engineering Technology, 2021, 40(2):93-100.
	李大伟, 宋春晓, 李斌, 等. 电力区块链基础设施架构及其设计与实现[J]. 电力工程技术, 2021, 40(2):93-100.
[16]	SATOSHI N. Bitcoin: A Peer-to-peer Electronic Cash System[EB/OL]. https://bitcoin.org/bitcoin.pdf, 2021-09-06.
[17]	CASTRO M, LISKOV B. Practical Byzantine Fault Tolerance and Proactive Recovery[J], ACM Transactions on Computer Systems (TOCS), 2002, 20(4):398-461. doi: 10.1145/571637.571640 URL
[18]	JOSANG A, ISMAIL R. The Beta Reputation System[EB/OL]. https://folk.universitetetioslo.no/josang/papers/JI2002-Bled.pdf, 2002-06-17.

参数	含义	设置值
N_H	HBM的数量	200
N_c	区块链数量	6
cycle	仿真轮数	100
δ	信任值阈值	0.5
p	攻击者所占百分比	10%~50%

基于多云多链协同的医疗数据安全共享机制

A Secure Medical Data Sharing Scheme Based on Multi-clouds and Multi-chains Collaboration

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 13

参考文献 18

相关文章 15

编辑推荐

Metrics

本文评价

[1]	王健, 张蕴嘉, 刘吉强, 陈志浩. 基于区块链的司法数据管理及电子证据存储机制[J]. 信息网络安全, 2022, 22(2): 21-31.
[2]	刘峰, 杨成意, 於欣澄, 齐佳音. 面向去中心化双重差分隐私的谱图卷积神经网络[J]. 信息网络安全, 2022, 22(2): 39-46.
[3]	侯雨桐, 马兆丰, 罗守山. 基于区块链的数据安全共享与受控分发技术研究与实现[J]. 信息网络安全, 2022, 22(2): 55-63.
[4]	刘忻, 王家寅, 杨浩睿, 张瑞生. 一种基于区块链和secGear框架的车联网认证协议[J]. 信息网络安全, 2022, 22(1): 27-36.
[5]	孙力. 区块链+在线教育资源联盟信息保护机制研究与应用[J]. 信息网络安全, 2021, 21(9): 32-39.
[6]	陈凯杰, 熊焰, 黄文超, 武建双. 一种基于拜占庭容错的PoS共识协议形式化分析方法[J]. 信息网络安全, 2021, 21(8): 35-42.
[7]	任涛, 金若辰, 罗咏梅. 融合区块链与联邦学习的网络入侵检测算法[J]. 信息网络安全, 2021, 21(7): 27-34.
[8]	吴奕, 仲盛. 区块链共识算法Raft研究[J]. 信息网络安全, 2021, 21(6): 36-44.
[9]	李鹏, 郑田甜, 徐鹤, 朱枫. 基于区块链技术的RFID安全认证协议[J]. 信息网络安全, 2021, 21(5): 1-11.
[10]	周由胜, 钟天琦. 基于区块链的公平交换方案[J]. 信息网络安全, 2021, 21(5): 19-30.
[11]	刘子昂, 黄缘缘, 马佳利, 周睿. 基于区块链的医疗数据滥用监控平台设计与实现[J]. 信息网络安全, 2021, 21(5): 58-66.
[12]	芦效峰, 付淞兵. 属性基加密和区块链结合的可信数据访问控制方案[J]. 信息网络安全, 2021, 21(3): 7-8.
[13]	张应辉, 朱甜, 郑东. 基于区块链的多关键字细粒度可搜索加密方案[J]. 信息网络安全, 2021, 21(2): 34-44.
[14]	储志强, 仵冀颖, 徐磊, 杜聪. 基于区块链的分布式离链存储框架设计[J]. 信息网络安全, 2021, 21(2): 87-93.
[15]	王健, 于航, 韩臻, 韩磊. 基于智能合约的云存储共享数据访问控制方法[J]. 信息网络安全, 2021, 21(11): 40-47.