|
1
|
Gong Q, Zhang J, Wei Z, Wang X, Zhang X, Yan X, Liu Y, Dong L. SDACS: Blockchain-Based Secure and Dynamic Access Control Scheme for Internet of Things. Sensors (Basel) 2024; 24:2267. [PMID: 38610478 PMCID: PMC11014075 DOI: 10.3390/s24072267] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Grants] [Track Full Text] [Subscribe] [Scholar Register] [Received: 03/10/2024] [Revised: 03/24/2024] [Accepted: 03/27/2024] [Indexed: 04/14/2024]
Abstract
With the rapid growth of the Internet of Things (IoT), massive terminal devices are connected to the network, generating a large amount of IoT data. The reliable sharing of IoT data is crucial for fields such as smart home and healthcare, as it promotes the intelligence of the IoT and provides faster problem solutions. Traditional data sharing schemes usually rely on a trusted centralized server to achieve each attempted access from users to data, which faces serious challenges of a single point of failure, low reliability, and an opaque access process in current IoT environments. To address these disadvantages, we propose a secure and dynamic access control scheme for the IoT, named SDACS, which enables data owners to achieve decentralized and fine-grained access control in an auditable and reliable way. For access control, attribute-based control (ABAC), Hyperledger Fabric, and interplanetary file system (IPFS) were used, with four kinds of access control contracts deployed on blockchain to coordinate and implement access policies. Additionally, a lightweight, certificateless authentication protocol was proposed to minimize the disclosure of identity information and ensure the double-layer protection of data through secure off-chain identity authentication and message transmission. The experimental and theoretical analysis demonstrated that our scheme can maintain high throughput while achieving high security and stability in IoT data security sharing scenarios.
Collapse
Affiliation(s)
- Qinghua Gong
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Jinnan Zhang
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Zheng Wei
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Xinmin Wang
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Xia Zhang
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Xin Yan
- State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China; (Q.G.); (Z.W.); (X.W.); (X.Z.); (X.Y.)
- School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China
| | - Yang Liu
- School of Automation, Beijing Institute of Technology, Beijing 100876, China;
- Beijing Institute of Astronautical Systems Engineering, Beijing 100876, China
| | - Liming Dong
- Joint Logistics Academy of NDU, China People’s Liberation Army National Defence University, Beijing 100876, China;
| |
Collapse
|
|
2
|
Ataei M, Eghmazi A, Shakerian A, Landry R, Chevrette G. Publish/Subscribe Method for Real-Time Data Processing in Massive IoT Leveraging Blockchain for Secured Storage. Sensors (Basel) 2023; 23:9692. [PMID: 38139538 PMCID: PMC10748069 DOI: 10.3390/s23249692] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Subscribe] [Scholar Register] [Received: 11/14/2023] [Revised: 12/04/2023] [Accepted: 12/06/2023] [Indexed: 12/24/2023]
Abstract
In the Internet of Things (IoT) era, the surge in Machine-Type Devices (MTDs) has introduced Massive IoT (MIoT), opening new horizons in the world of connected devices. However, such proliferation presents challenges, especially in storing and analyzing massive, heterogeneous data streams in real time. In order to manage Massive IoT data streams, we utilize analytical database software such as Apache Druid version 28.0.0 that excels in real-time data processing. Our approach relies on a publish/subscribe mechanism, where device-generated data are relayed to a dedicated broker, effectively functioning as a separate server. This broker enables any application to subscribe to the dataset, promoting a dynamic and responsive data ecosystem. At the core of our data transmission infrastructure lies Apache Kafka version 3.6.1, renowned for its exceptional data flow management performance. Kafka efficiently bridges the gap between MIoT sensors and brokers, enabling parallel clusters of brokers that lead to more scalability. In our pursuit of uninterrupted connectivity, we incorporate a fail-safe mechanism with two Software-Defined Radios (SDR) called Nutaq PicoLTE Release 1.5 within our model. This strategic redundancy enhances data transmission availability, safeguarding against connectivity disruptions. Furthermore, to enhance the data repository security, we utilize blockchain technology, specifically Hyperledger Fabric, known for its high-performance attributes, ensuring data integrity, immutability, and security. Our latency results demonstrate that our platform effectively reduces latency for 100,000 devices, qualifying as an MIoT, to less than 25 milliseconds. Furthermore, our findings on blockchain performance underscore our model as a secure platform, achieving over 800 Transactions Per Second in a dataset comprising 14,000 transactions, thereby demonstrating its high efficiency.
Collapse
Affiliation(s)
- Mohammadhossein Ataei
- Department of Electrical Engineering, École de Technologie Supérieure, Montréal, QC H3C 1K3, Canada; (A.E.); (A.S.); (R.L.J.)
| | - Ali Eghmazi
- Department of Electrical Engineering, École de Technologie Supérieure, Montréal, QC H3C 1K3, Canada; (A.E.); (A.S.); (R.L.J.)
| | - Ali Shakerian
- Department of Electrical Engineering, École de Technologie Supérieure, Montréal, QC H3C 1K3, Canada; (A.E.); (A.S.); (R.L.J.)
| | - Rene Landry
- Department of Electrical Engineering, École de Technologie Supérieure, Montréal, QC H3C 1K3, Canada; (A.E.); (A.S.); (R.L.J.)
| | - Guy Chevrette
- Corporate Office of iMETRIK Global Inc., Montreal, QC J4P 2K7, Canada;
| |
Collapse
|
|
3
|
Kask M, Klementi T, Piho G, Ross P. Preserving Decentralized EHR-s Integrity. Stud Health Technol Inform 2023; 309:296-297. [PMID: 37869862 DOI: 10.3233/shti230801] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [MESH Headings] [Track Full Text] [Journal Information] [Subscribe] [Scholar Register] [Indexed: 10/24/2023]
Abstract
A blockchain and decentralized storage technology-based architecture is proposed to support the integrity of Electronic Health Records (EHRs).
Collapse
Affiliation(s)
- Marten Kask
- TalTech, Dept. of Health Technologies, Akadeemia Str 15A, Tallinn, 12618, Estonia
| | - Toomas Klementi
- TalTech, Dept. of Health Technologies, Akadeemia Str 15A, Tallinn, 12618, Estonia
| | - Gunnar Piho
- TalTech, Dept. of Software Science, Akadeemia Str 15A, Tallinn, 12618, Estonia
| | - Peeter Ross
- TalTech, Dept. of Health Technologies, Akadeemia Str 15A, Tallinn, 12618, Estonia
| |
Collapse
|
|
4
|
Li S, Zhou T, Yang H, Wang P. Blockchain-Based Secure Storage and Access Control Scheme for Supply Chain Ecological Business Data: A Case Study of the Automotive Industry. Sensors (Basel) 2023; 23:7036. [PMID: 37631574 PMCID: PMC10457888 DOI: 10.3390/s23167036] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Grants] [Track Full Text] [Subscribe] [Scholar Register] [Received: 07/05/2023] [Revised: 08/02/2023] [Accepted: 08/07/2023] [Indexed: 08/27/2023]
Abstract
The reliable circulation of automotive supply chain data is crucial for automotive manufacturers and related enterprises as it promotes efficient supply chain operations and enhances their competitiveness and sustainability. However, with the increasing prominence of privacy protection and information security issues, traditional data sharing solutions are no longer able to meet the requirements for highly reliable secure storage and flexible access control. In response to this demand, we propose a secure data storage and access control scheme for the supply chain ecosystem based on the enterprise-level blockchain platform Hyperledger Fabric. The design incorporates a dual-layer attribute-based auditable access control model for access control, with four smart contracts aimed at coordinating and implementing access policies. The experimental results demonstrate that the proposed approach exhibits significant advantages under large-scale data and multi-attribute conditions. It enables fine-grained, dynamic access control under ciphertext and maintains high throughput and security in simulated real-world operational scenarios.
Collapse
Affiliation(s)
- Songjiang Li
- College of Computer Science and Technology, Changchun University of Science and Technology, Changchun 130022, China; (S.L.); (H.Y.); (P.W.)
| | - Tao Zhou
- College of Computer Science and Technology, Changchun University of Science and Technology, Changchun 130022, China; (S.L.); (H.Y.); (P.W.)
| | - Huamin Yang
- College of Computer Science and Technology, Changchun University of Science and Technology, Changchun 130022, China; (S.L.); (H.Y.); (P.W.)
| | - Peng Wang
- College of Computer Science and Technology, Changchun University of Science and Technology, Changchun 130022, China; (S.L.); (H.Y.); (P.W.)
- Chongqing Research Institute, Changchun University of Science and Technology, Chongqing 401120, China
| |
Collapse
|
|
5
|
Pancari S, Rashid A, Zheng J, Patel S, Wang Y, Fu J. A Systematic Comparison between the Ethereum and Hyperledger Fabric Blockchain Platforms for Attribute-Based Access Control in Smart Home IoT Environments. Sensors (Basel) 2023; 23:7046. [PMID: 37631581 PMCID: PMC10457942 DOI: 10.3390/s23167046] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Subscribe] [Scholar Register] [Received: 05/04/2023] [Revised: 07/28/2023] [Accepted: 08/03/2023] [Indexed: 08/27/2023]
Abstract
Despite the lack of blockchain systems being utilized in modern IoT environments, the prevalence of blockchain technology is increasing, due to its high level of security and accountability. The integration of blockchain technology and access control in a decentralized system for smart home networks is a promising solution to this issue. This paper compares the implementation of attribute-based access control (ABAC) with two popular blockchain platforms, Ethereum and Hyperledger Fabric, for a smart home internet of things (IoT) environment. We present a comprehensive summary of access-control and blockchain-access-control methods, to provide the necessary background for this study. Additionally, we present an original ABAC smart contract for Ethereum, and the modification of a pre-existing Hyperledger Fabric ABAC smart contract, for this comparison. Through the simulation of both implementations, the advantages and limitations will be considered, to determine which is better suited for a smart home IoT environment.
Collapse
Affiliation(s)
- Stefan Pancari
- Department of Electrical and Computer Engineering, Manhattan College, Riverdale, NY 10471, USA; (S.P.)
| | - Anik Rashid
- Department of Electrical and Computer Engineering, Manhattan College, Riverdale, NY 10471, USA; (S.P.)
| | - Jason Zheng
- Department of Electrical and Computer Engineering, Manhattan College, Riverdale, NY 10471, USA; (S.P.)
| | - Shirali Patel
- Department of Electrical and Computer Engineering, Manhattan College, Riverdale, NY 10471, USA; (S.P.)
| | - Yi Wang
- Department of Electrical and Computer Engineering, Manhattan College, Riverdale, NY 10471, USA; (S.P.)
| | - Jian Fu
- Department of Electrical Engineering and Computer Science, Alabama A&M University, Huntsville, AL 35762, USA
| |
Collapse
|
|
6
|
Shih DH, Shih PL, Wu TW, Liang SH, Shih MH. An International Federal Hyperledger Fabric Verification Framework for Digital COVID-19 Vaccine Passport. Healthcare (Basel) 2022; 10:healthcare10101950. [PMID: 36292397 PMCID: PMC9601543 DOI: 10.3390/healthcare10101950] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Journal Information] [Subscribe] [Scholar Register] [Received: 09/08/2022] [Revised: 09/30/2022] [Accepted: 10/03/2022] [Indexed: 11/04/2022] Open
Abstract
The COVID-19 virus has been spreading worldwide on a large scale since 2019, and the most effective way to prevent COVID-19 is to vaccinate. In order to prove that vaccination has been administered to allow access to different areas, paper vaccine passports are produced. However, paper vaccine passport records are vulnerable to counterfeiting or abuse. Previous research has suggested that issuing certificates digitally is an easier way to verify them. This study used the consortium blockchain based on Hyperledger Fabric to upload the digital vaccine passport (DVP) to the blockchain network. In order to enable collaboration across multiple systems, networks, and organizations in different trust realms. Federated Identity Management is considered a promising approach to facilitate secure resource sharing between collaborating partners. Therefore, the international federal identity management architecture proposed in this study enables inspectors in any country to verify the authenticity of the DVP of incoming passengers using the consortium blockchain. Through practical construction, the international federal Hyperledger verification framework for the DVP proposed in this study has shown the feasibility of issuing a global DVP in safety analysis and efficacy testing.
Collapse
Affiliation(s)
- Dong-Her Shih
- Department of Information Management, National Yunlin University of Science and Technology, Douliu 64002, Taiwan
- Correspondence:
| | - Pai-Ling Shih
- Department of Information Management, National Chung Cheng University, Chiayi 621301, Taiwan
| | - Ting-Wei Wu
- Department of Information Management, National Yunlin University of Science and Technology, Douliu 64002, Taiwan
| | - Shu-Huai Liang
- Department of Information Management, National Yunlin University of Science and Technology, Douliu 64002, Taiwan
| | - Ming-Hung Shih
- Department of Electrical and Computer Engineering, Iowa State University, 2520 Osborn Drive, Ames, IA 50011, USA
| |
Collapse
|
|
7
|
Ali H, Ahmad J, Jaroucheh Z, Papadopoulos P, Pitropakis N, Lo O, Abramson W, Buchanan WJ. Trusted Threat Intelligence Sharing in Practice and Performance Benchmarking through the Hyperledger Fabric Platform. Entropy (Basel) 2022; 24:1379. [PMID: 37420400 DOI: 10.3390/e24101379] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Subscribe] [Scholar Register] [Received: 08/01/2022] [Revised: 09/18/2022] [Accepted: 09/21/2022] [Indexed: 07/09/2023]
Abstract
Historically, threat information sharing has relied on manual modelling and centralised network systems, which can be inefficient, insecure, and prone to errors. Alternatively, private blockchains are now widely used to address these issues and improve overall organisational security. An organisation's vulnerabilities to attacks might change over time. It is utterly important to find a balance among a current threat, the potential countermeasures, their consequences and costs, and the estimation of the overall risk that this provides to the organisation. For enhancing organisational security and automation, applying threat intelligence technology is critical for detecting, classifying, analysing, and sharing new cyberattack tactics. Trusted partner organisations can then share newly identified threats to improve their defensive capabilities against unknown attacks. On this basis, organisations can help reduce the risk of a cyberattack by providing access to past and current cybersecurity events through blockchain smart contracts and the Interplanetary File System (IPFS). The suggested combination of technologies can make organisational systems more reliable and secure, improving system automation and data quality. This paper outlines a privacy-preserving mechanism for threat information sharing in a trusted way. It proposes a reliable and secure architecture for data automation, quality, and traceability based on the Hyperledger Fabric private-permissioned distributed ledger technology and the MITRE ATT&CK threat intelligence framework. This methodology can also be applied to combat intellectual property theft and industrial espionage.
Collapse
Affiliation(s)
- Hisham Ali
- Blockpass ID Lab, Edinburgh Napier University, Edinburgh EH10 5DT, UK
| | - Jawad Ahmad
- Blockpass ID Lab, Edinburgh Napier University, Edinburgh EH10 5DT, UK
| | - Zakwan Jaroucheh
- Blockpass ID Lab, Edinburgh Napier University, Edinburgh EH10 5DT, UK
| | | | | | - Owen Lo
- Blockpass ID Lab, Edinburgh Napier University, Edinburgh EH10 5DT, UK
| | - Will Abramson
- Blockpass ID Lab, Edinburgh Napier University, Edinburgh EH10 5DT, UK
| | | |
Collapse
|
|
8
|
Zafar S, Hassan SFU, Mohammad A, Al-Ahmadi AA, Ullah N. Implementation of a Distributed Framework for Permissioned Blockchain-Based Secure Automotive Supply Chain Management. Sensors (Basel) 2022; 22:7367. [PMID: 36236466 PMCID: PMC9571533 DOI: 10.3390/s22197367] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Figures] [Subscribe] [Scholar Register] [Received: 07/28/2022] [Revised: 09/20/2022] [Accepted: 09/22/2022] [Indexed: 06/16/2023]
Abstract
An automotive supply chain includes a range of activities from the concept of the product to its final transfer to a customer and subsequent vehicle maintenance. The three distinct stages of this chain are production, sales, and maintenance. In many countries, automobile records are not available to the public and anyone who has access to the central database or government systems can tamper with these records. In addition, used vehicle maintenance and transfer histories remain unavailable or inaccessible. These issues can be overcome by incorporating state-of-the-art blockchain technology into automotive supply chain management. Blockchain technology uses a chain of blocks for distributed transfer and storage of information, creating a decentralized data register that makes records of any digital asset tamper-proof and transparent. In this paper, we implement a permissioned blockchain-based framework for secure and efficient supply chain management of the automobile industry. We employed Hyperledger Fabric; an enterprise-grade distributed ledger platform for developing solutions. In our solution, the blockchain is customized and private in order to ensure system security. We evaluated our system in terms of memory cost, monetary cost, and speed of execution. Our results demonstrate that only 346 MB of extra memory space is required for storing the automotive data of 1 million users, thus rendering the memory cost negligible. The monetary cost is insignificant as all open source blockchain resources are employed, and the speed of record update is also fast. Our results also show that the decentralization of the automotive supply chain using blockchain can implement system security with minor modifications in the established configuration of the web application database.
Collapse
Affiliation(s)
- Saima Zafar
- Department of Electrical Engineering, National University of Computer and Emerging Sciences, Lahore 44000, Pakistan
| | - Syed Faseeh Ul Hassan
- Department of Electrical Engineering, National University of Computer and Emerging Sciences, Lahore 44000, Pakistan
| | - AlSharef Mohammad
- Department of Electrical Engineering, College of Engineering, TAIF University, Taif 11099, Saudi Arabia
| | - Ahmad Aziz Al-Ahmadi
- Department of Electrical Engineering, College of Engineering, TAIF University, Taif 11099, Saudi Arabia
| | - Nasim Ullah
- Department of Electrical Engineering, College of Engineering, TAIF University, Taif 11099, Saudi Arabia
| |
Collapse
|
|
9
|
Honar Pajooh H, Rashid MA, Alam F, Demidenko S. Experimental Performance Analysis of a Scalable Distributed Hyperledger Fabric for a Large-Scale IoT Testbed. Sensors (Basel) 2022; 22:s22134868. [PMID: 35808363 PMCID: PMC9269506 DOI: 10.3390/s22134868] [Citation(s) in RCA: 3] [Impact Index Per Article: 1.5] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Received: 04/26/2022] [Revised: 06/19/2022] [Accepted: 06/20/2022] [Indexed: 02/04/2023]
Abstract
Blockchain technology, with its decentralization characteristics, immutability, and traceability, is well-suited for facilitating secure storage, sharing, and management of data in decentralized Internet of Things (IoT) applications. Despite the increasing development of blockchain platforms, there is still no comprehensive approach for adopting blockchain technology in IoT systems. This is due to the blockchain’s limited capability to process substantial transaction requests from a massive number of IoT devices. Hyperledger Fabric (HLF) is a popular open-source permissioned blockchain platform hosted by the Linux Foundation. This article reports a comprehensive empirical study that measures HLF’s performance and identifies potential performance bottlenecks to better meet the requirements of blockchain-based IoT applications. The study considers the implementation of HLF on distributed large-scale IoT systems. First, a model for monitoring the performance of the HLF platform is presented. It addresses the overhead challenges while delivering more details on system performance and better scalability. Then, the proposed framework is implemented to evaluate the impact of varying network workloads on the performance of the blockchain platform in a large-scale distributed environment. In particular, the performance of the HLF is evaluated in terms of throughput, latency, network size, scalability, and the number of peers serviceable by the platform. The obtained experimental results indicate that the proposed framework can provide detailed real-time performance evaluation of blockchain systems for large-scale IoT applications.
Collapse
Affiliation(s)
- Houshyar Honar Pajooh
- Department of Mechanical and Electrical Engineering, Massey University, Auckland 0632, New Zealand; (M.A.R.); (F.A.); (S.D.)
- Correspondence:
| | - Mohammad A. Rashid
- Department of Mechanical and Electrical Engineering, Massey University, Auckland 0632, New Zealand; (M.A.R.); (F.A.); (S.D.)
| | - Fakhrul Alam
- Department of Mechanical and Electrical Engineering, Massey University, Auckland 0632, New Zealand; (M.A.R.); (F.A.); (S.D.)
- School of Science and Technology, Sunway University, Selangor 47500, Malaysia
| | - Serge Demidenko
- Department of Mechanical and Electrical Engineering, Massey University, Auckland 0632, New Zealand; (M.A.R.); (F.A.); (S.D.)
- School of Science and Technology, Sunway University, Selangor 47500, Malaysia
| |
Collapse
|
|
10
|
Pericherla A, Paul P, Sural S, Vaidya J, Atluri V. Towards Supporting Attribute-Based Access Control in Hyperledger Fabric Blockchain. IFIP Adv Inf Commun Technol 2022; 648:360-76. [PMID: 36544863 DOI: 10.1007/978-3-031-06975-8_21] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Abstract] [Key Words] [Track Full Text] [Subscribe] [Scholar Register] [Indexed: 12/26/2022]
Abstract
Hyperledger Fabric (HLF) is an open-source platform for deploying enterprise-level permissioned blockchains where users from multiple organizations can participate. Preventing unauthorized access to resources in such blockchains is of critical importance. Towards addressing this requirement, HLF supports different access control models. However, support for Attribute-Based Access Control (ABAC) in the current version of HLF is not comprehensive enough to address various requirements that arise when multiple organizations interact in an enterprise setting. To address those shortcomings, in this paper, we develop and present methods for providing full ABAC functionality in Hyperledger Fabric. Performance evaluation under different network configurations using the Hyperledger Caliper benchmarking tool shows that the proposed approach is quite efficient in practice.
Collapse
|
|
11
|
Sivasankari B, Varalakshmi P. Blockchain and IoT Technology in Healthcare: A Review. Stud Health Technol Inform 2022; 294:277-278. [PMID: 35612074 DOI: 10.3233/shti220455] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [MESH Headings] [Track Full Text] [Journal Information] [Subscribe] [Scholar Register] [Indexed: 06/15/2023]
Abstract
The tremendous shift in technology has led to many unconnected things getting interconnected via IoT. IoT is one of the major modes of collecting data from various networked resources and other connected devices. The broad range of IoT, with its huge heterogeneity in handling data, addresses many challenges in the realm of healthcare. Blockchain technology has elevated the use of distributed storage in a positive way. The recent emergence of this technology has paved way for potentially enormous utilization in various fields. Blockchain technology in the fields of IT, finance, industries, government, healthcare, media, and law enforcement has altered the service quality levels to an ethical ideal. Blockchain, in conjunction with IoT, facilitates decentralized collection and storage of data. Integrating blockchain with IoT has emerged as a cutting-edge tool for the decentralized sharing of medical records, monitoring of patients, ensuring the privacy of patient records, predicting the quantum of insurance, and managing supply chains.
Collapse
Affiliation(s)
- B Sivasankari
- Department of Computer Technology, Anna University, MIT Campus, Chennai, India
| | - P Varalakshmi
- Department of Computer Technology, Anna University, MIT Campus, Chennai, India
| |
Collapse
|
|
12
|
Pradhan NR, Singh AP, Verma S, Kavita, Kaur N, Roy DS, Shafi J, Wozniak M, Ijaz MF. A Novel Blockchain-Based Healthcare System Design and Performance Benchmarking on a Multi-Hosted Testbed. Sensors (Basel) 2022; 22:3449. [PMID: 35591142 DOI: 10.3390/s22093449] [Citation(s) in RCA: 5] [Impact Index Per Article: 2.5] [Reference Citation Analysis] [What about the content of this article? (0)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Received: 03/04/2022] [Revised: 04/20/2022] [Accepted: 04/26/2022] [Indexed: 12/10/2022]
Abstract
As a result of the proliferation of digital and network technologies in all facets of modern society, including the healthcare systems, the widespread adoption of Electronic Healthcare Records (EHRs) has become the norm. At the same time, Blockchain has been widely accepted as a potent solution for addressing security issues in any untrusted, distributed, decentralized application and has thus seen a slew of works on Blockchain-enabled EHRs. However, most such prototypes ignore the performance aspects of proposed designs. In this paper, a prototype for a Blockchain-based EHR has been presented that employs smart contracts with Hyperledger Fabric 2.0, which also provides a unified performance analysis with Hyperledger Caliper 0.4.2. The additional contribution of this paper lies in the use of a multi-hosted testbed for the performance analysis in addition to far more realistic Gossip-based traffic scenario analysis with Tcpdump tools. Moreover, the prototype is tested for performance with superior transaction ordering schemes such as Kafka and RAFT, unlike other literature that mostly uses SOLO for the purpose, which accounts for superior fault tolerance. All of these additional unique features make the performance evaluation presented herein much more realistic and hence adds hugely to the credibility of the results obtained. The proposed framework within the multi-host instances continues to behave more successfully with high throughput, low latency, and low utilization of resources for opening, querying, and transferring transactions into a healthcare Blockchain network. The results obtained in various rounds of evaluation demonstrate the superiority of the proposed framework.
Collapse
|
|
13
|
Mak BC, Addeman BT, Chen J, Papp KA, Gooderham MJ, Guenther LC, Liu Y, Broedl UC, Logger ME. Leveraging Blockchain Technology for Informed Consent Process and Patient Engagement in a Clinical Trial Pilot. Blockchain Healthc Today 2021; 4. [PMID: 36777482 DOI: 10.30953/bhty.v4.182] [Citation(s) in RCA: 0] [Impact Index Per Article: 0] [Reference Citation Analysis] [What about the content of this article? (0)] [Abstract] [Key Words] [Track Full Text] [Figures] [Subscribe] [Scholar Register] [Received: 07/07/2021] [Revised: 08/19/2021] [Accepted: 09/07/2021] [Indexed: 11/17/2022]
Abstract
Objective Despite the implementation of quality assurance procedures, current clinical trial management processes are time-consuming, costly, and often susceptible to error. This can result in limited trust, transparency, and process inefficiencies, without true patient empowerment. The objective of this study was to determine whether blockchain technology could enforce trust, transparency, and patient empowerment in the clinical trial data management process, while reducing trial cost. Design In this proof of concept pilot, we deployed a Hyperledger Fabric-based blockchain system in an active clinical trial setting to assess the impact of blockchain technology on mean monitoring visit time and cost, non-compliances, and user experience. Using a parallel study design, we compared differences between blockchain technology and standard methodology. Results A total of 12 trial participants, seven study coordinators and three clinical research associates across five sites participated in the pilot. Blockchain technology significantly reduces total mean monitoring visit time and cost versus standard trial management (475 to 7 min; P = 0.001; €722 to €10; P = 0.001 per participant/visit, respectively), while enhancing patient trust, transparency, and empowerment in 91, 82 and 63% of the patients, respectively. No difference in non-compliances as a marker of trial quality was detected. Conclusion Blockchain technology holds promise to improve patient-centricity and to reduce trial cost compared to conventional clinical trial management. The ability of this technology to improve trial quality warrants further investigation.
Collapse
|
|
14
|
Iftekhar A, Cui X, Tao Q, Zheng C. Hyperledger Fabric Access Control System for Internet of Things Layer in Blockchain-Based Applications. Entropy (Basel) 2021; 23:e23081054. [PMID: 34441194 PMCID: PMC8394655 DOI: 10.3390/e23081054] [Citation(s) in RCA: 13] [Impact Index Per Article: 4.3] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Received: 07/18/2021] [Revised: 08/10/2021] [Accepted: 08/13/2021] [Indexed: 11/16/2022]
Abstract
Blockchain-based applications are gaining traction in various application fields, including supply chain management, health care, and finance. The Internet of Things (IoT) is a critical component of these applications since it allows for data collection from the environment. In this work, we integrate the Hyperledger Fabric blockchain and IoT devices to demonstrate the access control and establish the root of trust for IoT devices. The Hyperledger Fabric is designed to be secure against unwanted access and use through encryption protocols, access restrictions, and cryptography algorithms. An attribute-based access control (ABAC) mechanism was created using Hyperledger Fabric components only to gain access to the IoT device. Single board computers based on the ARM architecture are becoming increasingly powerful and popular in automation applications. In this study, the Raspberry Pi 4 Model B based on ARM64 architecture is used as the IoT device. Because the ARM64 architecture is not supported by default, we build executable binaries and Docker images for the ARM64 architecture, using the Hyperledger Fabric source code. On an IoT device, we run the fabric node in native mode to evaluate the executable binaries generated for the ARM64 architecture. Through effective chaincode execution and testing, we successfully assess the Hyperledger fabric blockchain implementation and access control mechanism on the ARM64 architecture.
Collapse
|
|
15
|
Pawar P, Parolia N, Shinde S, Edoh TO, Singh M. eHealthChain-a blockchain-based personal health information management system. Ann Telecommun 2021; 77:33-45. [PMID: 34248156 PMCID: PMC8260325 DOI: 10.1007/s12243-021-00868-6] [Citation(s) in RCA: 3] [Impact Index Per Article: 1.0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Figures] [Subscribe] [Scholar Register] [Received: 08/03/2020] [Accepted: 06/24/2021] [Indexed: 06/13/2023]
Abstract
Medical IoT devices that use miniature sensors to collect patient's bio-signals and connected medical applications are playing a crucial role in providing pervasive and personalized healthcare. This technological improvement has also created opportunities for the better management of personal health information. The Personal Health Information Management System (PHIMS) supports activities such as acquisition, storage, organization, integration, and privacy-sensitive retrieval of consumer's health information. For usability and wide acceptance, the PHIMS should follow the design principles that guarantee privacy-aware health information sharing, individual information control, integration of information obtained from multiple medical IoT devices, health information security, and flexibility. Recently, blockchain technology has emerged as a lucrative option for the management of personal health information. In this paper, we propose eHealthChain-a blockchain-based PHIMS for managing health data originating from medical IoT devices and connected applications. The eHealthChain architecture consists of four layers, which are a blockchain layer for hosting a blockchain database, an IoT device layer for obtaining personal health data, an application layer for facilitating health data sharing, and an adapter layer, which interfaces the blockchain layer with an application layer. Compared to existing systems, eHealthChain provides complete control to the user in terms of personal health data acquisition, sharing, and self-management. We also present a detailed implementation of a Proof of Concept (PoC) prototype of eHealthChain system built using Hyperledger Fabric platform.
Collapse
Affiliation(s)
- Pravin Pawar
- Department of Computer Science, State University of New York, Korea, Incheon, South Korea
| | - Neeraj Parolia
- Department of Business Analytics and Technology Management, Towson University, Baltimore, MD USA
| | - Sameer Shinde
- Softlabs Technologies and Developments Pvt. Ltd., Mumbai, India
| | - Thierry Oscar Edoh
- Chair for Applied Software Engineering, Technical University of Munich, Munich, Germany
| | - Madhusudan Singh
- Department of Technology Studies, Endicott College of International Studies, Daejeon, South Korea
| |
Collapse
|
|
16
|
Zhou J, Feng Y, Wang Z, Guo D. Using Secure Multi-Party Computation to Protect Privacy on a Permissioned Blockchain. Sensors (Basel) 2021; 21:s21041540. [PMID: 33672175 PMCID: PMC7927103 DOI: 10.3390/s21041540] [Citation(s) in RCA: 8] [Impact Index Per Article: 2.7] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Received: 01/25/2021] [Revised: 02/16/2021] [Accepted: 02/19/2021] [Indexed: 11/16/2022]
Abstract
The development of information technology has brought great convenience to our lives, but at the same time, the unfairness and privacy issues brought about by traditional centralized systems cannot be ignored. Blockchain is a peer-to-peer and decentralized ledger technology that has the characteristics of transparency, consistency, traceability and fairness, but it reveals private information in some scenarios. Secure multi-party computation (MPC) guarantees enhanced privacy and correctness, so many researchers have been trying to combine secure MPC with blockchain to deal with privacy and trust issues. In this paper, we used homomorphic encryption, secret sharing and zero-knowledge proofs to construct a publicly verifiable secure MPC protocol consisting of two parts—an on-chain computation phase and an off-chain preprocessing phase—and we integrated the protocol as part of the chaincode in Hyperledger Fabric to protect the privacy of transaction data. Experiments showed that our solution performed well on a permissioned blockchain. Most of the time taken to complete the protocol was spent on communication, so the performance has a great deal of room to grow.
Collapse
|
|
17
|
Gangula R, Thalla SV, Ikedum I, Okpala C, Sneha S. Leveraging the Hyperledger Fabric for Enhancing the Efficacy of Clinical Decision Support Systems. Blockchain Healthc Today 2021; 4. [PMID: 36777483 DOI: 10.30953/bhty.v4.154] [Citation(s) in RCA: 1] [Impact Index Per Article: 0.3] [Reference Citation Analysis] [What about the content of this article? (0)] [Abstract] [Key Words] [Track Full Text] [Figures] [Subscribe] [Scholar Register] [Received: 10/07/2020] [Revised: 01/24/2021] [Accepted: 01/26/2021] [Indexed: 11/17/2022]
Abstract
Adopting and implementing the Clinical Decision Support System (CDSS) technology is a critical element in an effort to improve national quality initiatives and evidence-based practice at the point of care. CDSS is envisioned to be a potential solution to many current challenges in the healthcare sphere, which includes information overload, practice improvement, eliminating treatment errors, and reducing medical consultation costs. However, the CDSS did not manage to achieve these goals to the desired levels and provide context-appropriate alerts, although integrated with the electronic health records (EHRs) (1). Clinical decision support alerts can save lives, but frequent ones can cause increased cognitive burden to clinicians, worsen alert fatigue, and increase the duplication of tests. This ultimately increases health care costs without refining patient outcomes. Studies show that 49-96% of clinical alerts are ignored, raising questions about the effectiveness of CDSS (1). Blockchain, a decentralized, distributed digital ledger that contains a plethora of continuously updated, time-stamped, and highly encrypted virtual record, can be a key to addressing these challenges (2). The blockchain technology if integrated with the CDSS can serve as a potential solution to eliminating current drawbacks with CDSS (3). This article addresses the most significant and chronic problems facing the successful implementation of CDSS and how leveraging the Hyperledger Fabric can alleviate the clinical alert fatigue and reduce physician's burnout using patient-specific information. The proposed architecture framework for this study is designed to equip the CDSS with overall patient information at the point of care. This then empowers the physicians with the blockchain-integrated CDSS, which holds the potential to reduce clinician's cognitive burden, medical errors, and costs and ultimately enhance patient outcomes. The research study broadly discusses how the blockchain technology can be a potential solution, reasons for selecting the Hyperledger Fabric, and elaborates on how the Hyperledger Fabric can be leveraged to enhance the efficacy of CDSS.
Collapse
|
|
18
|
Stamatellis C, Papadopoulos P, Pitropakis N, Katsikas S, Buchanan WJ. A Privacy-Preserving Healthcare Framework Using Hyperledger Fabric. Sensors (Basel) 2020; 20:E6587. [PMID: 33218022 PMCID: PMC7698751 DOI: 10.3390/s20226587] [Citation(s) in RCA: 24] [Impact Index Per Article: 6.0] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [MESH Headings] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Received: 10/26/2020] [Revised: 11/11/2020] [Accepted: 11/16/2020] [Indexed: 11/30/2022]
Abstract
Electronic health record (EHR) management systems require the adoption of effective technologies when health information is being exchanged. Current management approaches often face risks that may expose medical record storage solutions to common security attack vectors. However, healthcare-oriented blockchain solutions can provide a decentralized, anonymous and secure EHR handling approach. This paper presents PREHEALTH, a privacy-preserving EHR management solution that uses distributed ledger technology and an Identity Mixer (Idemix). The paper describes a proof-of-concept implementation that uses the Hyperledger Fabric's permissioned blockchain framework. The proposed solution is able to store patient records effectively whilst providing anonymity and unlinkability. Experimental performance evaluation results demonstrate the scheme's efficiency and feasibility for real-world scale deployment.
Collapse
Affiliation(s)
- Charalampos Stamatellis
- Blockpass ID Lab, School of Computing, Edinburgh Napier University, Edinburgh EH10 5DT, UK; (C.S.); (N.P.); (W.J.B.)
| | - Pavlos Papadopoulos
- Blockpass ID Lab, School of Computing, Edinburgh Napier University, Edinburgh EH10 5DT, UK; (C.S.); (N.P.); (W.J.B.)
| | - Nikolaos Pitropakis
- Blockpass ID Lab, School of Computing, Edinburgh Napier University, Edinburgh EH10 5DT, UK; (C.S.); (N.P.); (W.J.B.)
- Eight Bells LTD, Nicosia 2002, Cyprus
| | - Sokratis Katsikas
- Department of Information Security and Communication Technology, Norwegian University of Science and Technology, 2815 Gjøvik, Norway
| | - William J. Buchanan
- Blockpass ID Lab, School of Computing, Edinburgh Napier University, Edinburgh EH10 5DT, UK; (C.S.); (N.P.); (W.J.B.)
| |
Collapse
|
|
19
|
Dubovitskaya A, Baig F, Xu Z, Shukla R, Zambani PS, Swaminathan A, Jahangir MM, Chowdhry K, Lachhani R, Idnani N, Schumacher M, Aberer K, Stoller SD, Ryu S, Wang F. ACTION-EHR: Patient-Centric Blockchain-Based Electronic Health Record Data Management for Cancer Care. J Med Internet Res 2020; 22:e13598. [PMID: 32821064 PMCID: PMC7474412 DOI: 10.2196/13598] [Citation(s) in RCA: 47] [Impact Index Per Article: 11.8] [Reference Citation Analysis] [What about the content of this article? (0)] [Affiliation(s)] [Abstract] [Key Words] [Track Full Text] [Figures] [Journal Information] [Subscribe] [Scholar Register] [Received: 02/01/2019] [Revised: 10/05/2019] [Accepted: 05/30/2020] [Indexed: 11/24/2022] Open
Abstract
Background With increased specialization of health care services and high levels of patient mobility, accessing health care services across multiple hospitals or clinics has become very common for diagnosis and treatment, particularly for patients with chronic diseases such as cancer. With informed knowledge of a patient’s history, physicians can make prompt clinical decisions for smarter, safer, and more efficient care. However, due to the privacy and high sensitivity of electronic health records (EHR), most EHR data sharing still happens through fax or mail due to the lack of systematic infrastructure support for secure, trustable health data sharing, which can also cause major delays in patient care. Objective Our goal was to develop a system that will facilitate secure, trustable management, sharing, and aggregation of EHR data. Our patient-centric system allows patients to manage their own health records across multiple hospitals. The system will ensure patient privacy protection and guarantee security with respect to the requirements for health care data management, including the access control policy specified by the patient. Methods We propose a permissioned blockchain-based system for EHR data sharing and integration. Each hospital will provide a blockchain node integrated with its own EHR system to form the blockchain network. A web-based interface will be used for patients and doctors to initiate EHR sharing transactions. We take a hybrid data management approach, where only management metadata will be stored on the chain. Actual EHR data, on the other hand, will be encrypted and stored off-chain in Health Insurance Portability and Accountability Act–compliant cloud-based storage. The system uses public key infrastructure–based asymmetric encryption and digital signatures to secure shared EHR data. Results In collaboration with Stony Brook University Hospital, we developed ACTION-EHR, a system for patient-centric, blockchain-based EHR data sharing and management for patient care, in particular radiation treatment for cancer. The prototype was built on Hyperledger Fabric, an open-source, permissioned blockchain framework. Data sharing transactions were implemented using chaincode and exposed as representational state transfer application programming interfaces used for the web portal for patients and users. The HL7 Fast Healthcare Interoperability Resources standard was adopted to represent shared EHR data, making it easy to interface with hospital EHR systems and integrate a patient’s EHR data. We tested the system in a distributed environment at Stony Brook University using deidentified patient data. Conclusions We studied and developed the critical technology components to enable patient-centric, blockchain-based EHR sharing to support cancer care. The prototype demonstrated the feasibility of our approach as well as some of the major challenges. The next step will be a pilot study with health care providers in both the United States and Switzerland. Our work provides an exemplar testbed to build next-generation EHR sharing infrastructures.
Collapse
Affiliation(s)
- Alevtina Dubovitskaya
- School of Information Technology, Lucerne University of Applied Sciences and Arts, Rotkreuz, Switzerland.,Swisscom, Zurich, Switzerland
| | - Furqan Baig
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Zhigang Xu
- Department of Radiation Oncology, Stony Brook Medicine, Stony Brook, NY, United States
| | - Rohit Shukla
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Pratik Sushil Zambani
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Arun Swaminathan
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Md Majid Jahangir
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Khadija Chowdhry
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Rahul Lachhani
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Nitesh Idnani
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Michael Schumacher
- Applied Intelligent Systems Lab, University of Applied Sciences of Western Switzerland - Valais, Sierre, Switzerland
| | - Karl Aberer
- Polytechnic University of Lausanne, Lausanne, Switzerland
| | - Scott D Stoller
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States
| | - Samuel Ryu
- Department of Radiation Oncology, Stony Brook Medicine, Stony Brook, NY, United States
| | - Fusheng Wang
- Department of Computer Science, Stony Brook University, Stony Brook, NY, United States.,Department of Biomedical Informatics, Stony Brook University, Stony Brook, NY, United States
| |
Collapse
|
|
20
|
Chien W, de Jesus J, Taylor B, Dods V, Alekseyev L, Shoda D, Shieh PB. The Last Mile: DSCSA Solution Through Blockchain Technology: Drug Tracking, Tracing, and Verification at the Last Mile of the Pharmaceutical Supply Chain with BRUINchain. Blockchain Healthc Today 2020; 3. [PMID: 36777051 DOI: 10.30953/bhty.v3.134] [Citation(s) in RCA: 5] [Impact Index Per Article: 1.3] [Reference Citation Analysis] [What about the content of this article? (0)] [Abstract] [Key Words] [Track Full Text] [Download PDF] [Figures] [Subscribe] [Scholar Register] [Indexed: 11/17/2022]
Abstract
Purpose As part of the FDA's DSCSA Pilot Project Program, UCLA and its solution partner, LedgerDomain (collectively referred to as the team hereafter), focused on building a complete, working blockchain-based system, BRUINchain, which would meet all the key objectives of the Drug Supply Chain Security Act (DSCSA) for a dispenser operating solely on commercial off-the-shelf (COTS) technology. Methods The BRUINchain system requirements include scanning the drug package for a correctly formatted 2D barcode, flagging expired products, verifying the product with the manufacturer, and quarantining suspect and illegitimate products at the last mile: pharmacist to patient, the most complex area of the drug supply chain.The authors demonstrate a successful implementation where product-tracing notifications are sent automatically to key stakeholders, resulting in enhanced timeliness and reduction in paperwork burden. At the core of this effort was a blockchain-based solution to track and trace changes in custody of drug. As an immutable, time-stamped, near-real-time (50-millisecond latency), auditable record of transactions, BRUINchain makes it possible for supply chain communities to arrive at a single version of the truth. BRUINchain was tested using real data on real caregivers administering life-saving medications to real patients at one of the busiest pharmacies in the United States. Results In addition to communicating with the manufacturer directly for verification, BRUINchain also initiated suspect product notifications. During the study, a 100% success rate was observed for scanning, expiration detection, and counterfeit detection; and paperwork reduction from approximately 1 hour to less than a minute. Conclusions By automatically interrogating the manufacturer's relational database with our blockchain-based system, our results indicate a projected DSCSA compliance cost of 17 cents per unit, and potentially much more depending on regulatory interpretation and speed of verification. We project that this cost could be reduced with manufacturers' adoption of a highly performant, fully automated end-to-end system based on digital ledger technology (DLT). During an examination of the interoperability of such a system, we elaborate on its capacity to enable verification in real time without keeping humans in the loop, the key feature driving lower compliance cost. With 4.2 billion prescriptions being dispensed each year in the United States, DLT would not only reduce the projected per-unit cost to 13 cents per unit (saving $183 million in annual labor costs), but also serve as a major bulwark against bad or fraudulent transactions, reduce the need for safety stock, and enhance the detection and removal of potentially dangerous drugs from the drug supply chain to protect US consumers.
Collapse
|