重大疫情患者隐私数据保护方案研究

doi:10.3778/j.issn.1673-9418.2106023

计算机科学与探索 ›› 2022, Vol. 16 ›› Issue (2): 359-371.DOI: 10.3778/j.issn.1673-9418.2106023

重大疫情患者隐私数据保护方案研究

韩刚, 吕英泽⁺(), 罗维, 王嘉乾

西安邮电大学网络空间安全学院,西安 710000

收稿日期:2021-06-07 修回日期:2021-08-30 出版日期:2022-02-01 发布日期:2021-09-01
通讯作者: + E-mail: lvyingze0809@163.com
作者简介:韩刚（1990—）,男,陕西宝鸡人,博士,讲师,CCF会员,主要研究方向为公钥密码学、属性基加密。
吕英泽（2000—）,男,河南三门峡人,CCF学生会员,主要研究方向为区块链技术、属性基加密。
罗维（1987—）,男,陕西宝鸡人,博士,讲师,CCF会员,主要研究方向为公钥密码学、云存储数据安全。
王嘉乾（1999—）,男,山西临汾人,CCF学生会员,主要研究方向为区块链技术、云计算。
基金资助:
国家自然科学基金(62102312);陕西省自然科学基础研究计划(2021JQ-722);陕西省高校科协青年人才托举计划(20210119);陕西省教育厅科研计划项目(20JK0906)

Privacy Data Protection Scheme for Patients with Major Outbreaks

HAN Gang, LYU Yingze⁺(), LUO Wei, WANG Jiaqian

School of Cyberspace Security, Xi’an University of Posts and Telecommunications, Xi’an 710000, China

Received:2021-06-07 Revised:2021-08-30 Online:2022-02-01 Published:2021-09-01
About author:HAN Gang, born in 1990, Ph.D., lecturer, member of CCF. His research interests include public key cryptography and attribute-based encryption.
LYU Yingze, born in 2000, student member of CCF. His research interests include blockchain technology and property-based encryption.
LUO Wei, born in 1987, Ph.D., lecturer, member of CCF. His research interests include public key cryptography and cloud storage data security.
WANG Jiaqian, born in 1999, student member of CCF. His research interests include blockchain technology and cloud computing.
Supported by:
National Natural Science Foundation of China(62102312);Natural Science Basic Research Program of Shaanxi Province(2021JQ-722);Young Talent Fund of University Association for Science and Technology in Shaanxi Province(20210119);Scientific Research Program of Shaanxi Provincial Education Department(20JK0906)

摘要/Abstract

摘要：

2020年,新冠肺炎在全球爆发,全球医疗系统受到巨大考验,新冠肺炎患者隐私数据安全是医疗信息系统中极其重要的一环。疫情期间,中国新冠肺炎患者隐私数据泄露的案例层出不穷,给患者带来巨大的困扰。采用委托拜占庭容错机制（dBFT）提出了结合区块链的重大疫情患者隐私数据保护方案。方案以联盟链为基础,将政府机构、医疗机构和民众等不同角色分布在主侧双链模型中,采用侧链技术在主、侧链之间进行信息交互,对患者数据进行安全共享;提出了链上分级数据加密方案（HDES）,采用分级加密技术对链上的患者隐私数据进行细粒度保护。最后,对主侧双链模型的请求数据吞吐量和HDES方案的加解密效率进行了实验分析,并与现有的区块链电子医疗病例方案进行比较。通过比较可得该方案具有一定的高效性、较强的安全性和较高的针对性。

关键词: 区块链, 委托拜占庭容错机制（dBFT）, 分级加密, 隐私保护, 安全共享

Abstract:

In 2020, the global outbreak of COVID-19 made the global healthcare system face huge test, and the security of COVID-19 patients privacy data is an extremely important part of the healthcare information system. During the outbreak, there were numerous cases of privacy data leakage of Chinese patients with COVID-19, which caused great distress to patients. This paper proposes a patient privacy data protection scheme combined with blockchain for major epidemics using delegated Byzantine fault tolerant (dBFT) mechanism. The scheme is based on a federated chain, distributing different players such as government agencies, medical institutions and the public in a dual-chain model of main and side chains, and using side chain technology to interact with information between the main and side chains for secure sharing of patient data. It proposes the on-chain hierarchical data encryption scheme (HDES), which protects the patient privacy data on the chain at a fine-grained level using hierarchical encryption technology. Finally, the requested data throughput of the main-side dual-chain model and the encryption and decryption efficiency of the HDES scheme are experimentally analyzed and compared with the existing blockchain electronic medical case scheme. The comparison results show that this scheme has certain efficiency, strong security and high relevance.

Key words: blockchain, delegated Byzantine fault tolerant (dBFT) mechanism, hierarchical encryption, privacy protection, secure sharing

中图分类号:

TP309.2

韩刚, 吕英泽, 罗维, 王嘉乾. 重大疫情患者隐私数据保护方案研究[J]. 计算机科学与探索, 2022, 16(2): 359-371.

HAN Gang, LYU Yingze, LUO Wei, WANG Jiaqian. Privacy Data Protection Scheme for Patients with Major Outbreaks[J]. Journal of Frontiers of Computer Science and Technology, 2022, 16(2): 359-371.

图/表 13

图1 区块链基本架构

Fig.1 Blockchain basic architecture

图2 系统拓扑图

Fig.2 System topology diagram

图3 主链隐私数据传输流程

Fig.3 Main chain privacy data transfer process

图4 ID结构

Fig.4 ID structure

图5 患者个人数据加密流程

Fig.5 Patient personal data encryption process

图6 患者个人数据解密流程

Fig.6 Patient personal data decryption process

图7 新加入节点共享患者数据流程

Fig.7 Newly joined nodes share patient data process

表1 数据请求确认量

Table 1 Number of data request confirmation

测试时长/s	数据请求确认量/个
100	13 143
200	26 289
300	39 407
400	52 486
500	65 648

图8 加解密及授权时间

Fig.8 Encryption and decryption and authorization time

图9 不同文件大小下的加解密时间

Fig.9 Encryption and decryption time for different file sizes

图10 不同患者人数下的加解密时间

Fig.10 Encryption and decryption time with different number of patients

图11 分批加解密时间

Fig.11 Batch encryption decryption time

表2 方案对比

Table 2 Comparison of programs

方案	算力需求	链结构	所需节点数	区块链类型	加密效率
Azaria等人^[3]	大	单链	多	联盟链	—
薛腾飞等人^[6]	大	单链	121	私链	低
张超等人^[7]	小	单链	≥4	联盟链	—
本文方案	小	双链	≥4	联盟链	高

参考文献 20

[1]	ZYSKIND G, NATHAN O, PENTLAND A. Decentralizing privacy: using blockchain to protect personal data[C]//Pro-ceedings of the 2015 IEEE Symposium on Security and Pri-vacy Workshops, San Jose, May 21-22, 2015. Washington:IEEE Computer Society, 2015: 180-184.
[2]	LAZAROVICH A. Invisible ink: blockchain for data privacy[D]. Massachusetts: Massachusetts Institute of Technology, 2015.
[3]	AZARIA A, EKBLAW A, VIEIRA T, et al. MedRec: using blockchain for medical data access and permission manage-ment[C]//Proceedings of the 2nd International Conference on Open and Big Data, Vienna, Aug 22-24, 2016. Washington: IEEE Computer Society, 2016: 25-30.
[4]	CHEN Y, DING S, XU Z, et al. Blockchain-based medical records secure storage and medical service framework[J]. Journal of Medical Systems, 2019, 43(1):1-9. DOI URL
[5]	OMAR A A, RAHMAN M S, BASU A, et al. MediBchain: a blockchain based privacy preserving platform for health-care data[C]//LNCS 10658: Proceedings of the 2017 Interna-tional Conference on Security, Privacy and Anonymity in Computation, Communication and Storage, Guangzhou, Dec 12-15, 2017. Cham: Springer, 2017: 534-543.
[6]	薛腾飞, 傅群超, 王枞, 等. 基于区块链的医疗数据共享模型研究[J]. 自动化学报, 2017, 43(9):1555-1562.
	XUE T F, FUQ C, WANG C, et al. A medical data sharing model via blockchain[J]. Acta Automatica Sinica, 2017, 43(9):1555-1562.
[7]	张超, 李强, 陈子豪, 等. Medical Chain: 联盟式医疗区块链系统[J]. 自动化学报, 2019, 45(8):1495-1510.
	ZHANG C, LI Q, CHEN Z H, et al. Medical Chain: alliance medical blockchain system[J]. Acta Automatica Sinica, 2019, 45(8):1495-1510.
[8]	WORLEY C R, SKJELLUM A. Blockchain tradeoffs and challenges for current and emerging applications: generaliza-tion, fragmentation, sidechains, and scalability[C]//Proceed-ings of the 2018 IEEE International Conference on Internet of Things and IEEE Green Computing and Communica-tions and IEEE Cyber, Physical and Social Computing and IEEE Smart Data, Halifax, Jul 30-Aug 3, 2018. Piscataway: IEEE, 2018: 1582-1587.
[9]	SUTTON A, SAMAVI R. Blockchain enabled privacy audit logs[C]//LNCS 10587: Proceedings of the 16th International Semantic Web Conference, Vienna, Oct 21-25, 2017. Cham:Springer, 2017: 645-660.
[10]	王群, 李馥娟, 王振力, 等. 区块链原理及关键技术[J]. 计算机科学与探索, 2020, 14(10):1621-1643.
	WANG Q, LI F J, WANG Z L, et al. Principle and core technology of blockchain[J]. Journal of Frontiers of Com-puter Science and Technology, 2020, 14(10):1621-1643.
[11]	刘懿中, 刘建伟, 张宗洋, 等. 区块链共识机制研究综述[J]. 密码学报, 2019, 6(4):395-432.
	LIU Y Z, LIU J W, ZHANG Z Y, et al. Overview on block-chain consensus mechanisms[J]. Journal of Cryptologic Res-earch, 2019, 6(4):395-432.
[12]	KING S, NADAL S. PPCOIN: peer-to-peer crypto-currency with proof-of-stake[R]. 2012: 1-6.
[13]	LUO Y H, CHEN Y Q, CHEN Q, et al. A new election algorithm for DPos consensus mechanism in blockchain[C]//Proceedings of the 2018 7th International Conference on Digital Home, Guilin, Nov 30-Dec 1, 2018. Piscataway: IEEE, 2018: 116-120.
[14]	CASTRO M, LISKOY B. Practical Byzantine fault toler-ance and proactive recovery[J]. ACM Transactions on Com-puter Systems, 2002, 20(4):398-461.
[15]	SUKHWANI H, MARTÍNEZ J M, CHANG X L, et al. Per-formance modeling of PBFT consensus process for permiss-ioned blockchain network (hyperledger fabric)[C]//Proceed-ings of the 36th IEEE Symposium on Reliable Distributed Systems, Hong Kong, China, Sep 26-29, 2017. Washington:IEEE Computer Society, 2017: 253-255.
[16]	沈鑫, 裴庆祺, 刘雪峰. 区块链技术综述[J]. 网络与信息安全学报, 2016, 2(11):11-20.
	SHEN X, PEI Q Q, LIU X F. Survey of block chain[J]. Chinese Journal of Network and Information Security, 2016, 2(11):11-20.
[17]	WATANABE H, FUJIMURA S, NAKADAIRA A, et al. Blockchain contract: securing a blockchain applied to smart contracts[C]//Proceedings of the 2016 IEEE International Conference on Consumer Electronics, Las Vegas, Jan 7-11, 2016. Piscataway: IEEE, 2016: 467-468.
[18]	贺海武, 延安, 陈泽华. 基于区块链的智能合约技术与应用综述[J]. 计算机研究与发展, 2018, 55(11):2452-2466.
	HE H W, YAN A, CHEN Z H. Survey of smart contract technology and application based on blockchain[J]. Journal of Computer Research and Development, 2018, 55(11):2452-2466.
[19]	OKADA H, YAMASAKI S, RACAMONTE V. Proposed classification of blockchains based on authority and incen-tive dimensions[C]//Proceedings of the 2017 19th Interna-tional Conference on Advanced Communication Technology, Pyeong Chang, Feb 19-22, 2017. Piscataway: IEEE, 2017: 593-597.
[20]	ZHENG Z B, XIE S A, DAI H N, et al. An overview of blockchain technology: architecture, consensus, and future trends[C]//Proceedings of the 2017 IEEE International Con-gress on Big Data, Honolulu, Jun 25-30, 2017. Washington:IEEE Computer Society, 2017: 557-564.

重大疫情患者隐私数据保护方案研究

Privacy Data Protection Scheme for Patients with Major Outbreaks

RichHTML

PDF

可视化

摘要/Abstract

引用本文

使用本文

图/表 13

参考文献 20

相关文章 15

编辑推荐

Metrics

[1]	刘同来, 章子凯, 武继刚. 面向医疗图像协同分析的系统模型及访问控制[J]. 计算机科学与探索, 2022, 16(8): 1779-1791.
[2]	王群, 李馥娟, 倪雪莉, 夏玲玲, 王振力, 梁广俊. 区块链共识算法及应用研究[J]. 计算机科学与探索, 2022, 16(6): 1214-1242.
[3]	田静, 杜云明, 李帅, 刘义. Paillier加密的隐私保护群智感知任务发布算法[J]. 计算机科学与探索, 2022, 16(6): 1327-1333.
[4]	熊啸, 李雷孝, 高静, 高昊昱, 杜金泽, 郑岳, 牛铁铭. 区块链在车联网数据共享领域的研究进展[J]. 计算机科学与探索, 2022, 16(5): 1008-1024.
[5]	郭子菁, 罗玉川, 蔡志平, 郑腾飞. 医疗健康大数据隐私保护综述[J]. 计算机科学与探索, 2021, 15(3): 389-402.
[6]	高昂, 梁英, 谢小杰, 王梓森, 李锦涛. 支持隐私保护的社交网络信息传播方法[J]. 计算机科学与探索, 2021, 15(2): 233-248.
[7]	樊星, 牛保宁. 区块链应用下的新型区块链布隆过滤器[J]. 计算机科学与探索, 2021, 15(10): 1921-1929.
[8]	周健，孙丽艳，付明. 抗货币失效的区块链钱包保护协议研究[J]. 计算机科学与探索, 2020, 14(12): 2039-2049.
[9]	郑良汉，何亨，童潜，杨湘，陈享. 云环境中的多授权机构访问控制方案[J]. 计算机科学与探索, 2020, 14(11): 1865-1878.
[10]	王群，李馥娟，王振力，梁广俊，徐杰. 区块链原理及关键技术[J]. 计算机科学与探索, 2020, 14(10): 1621-1643.
[11]	兰微，林英，包聆言，李彤，陈梦蓉，单今朝. 融入兴趣区域的差分隐私轨迹数据保护方法[J]. 计算机科学与探索, 2020, 14(1): 59-72.
[12]	董祥祥，高昂，梁英，毕晓迪. 动态社会网络数据发布隐私保护方法[J]. 计算机科学与探索, 2019, 13(9): 1441-1458.
[13]	张晓琳，袁昊晨，李卓麟，张换香，刘娇. 面向子图匹配的社会网络隐私保护方法[J]. 计算机科学与探索, 2019, 13(9): 1504-1515.
[14]	佟丹妮，申德荣，韩姝敏，聂铁铮，寇月，于戈. 多方强隐私保护记录链接方法[J]. 计算机科学与探索, 2019, 13(3): 394-407.
[15]	杨高明，方贤进+，肖亚飞. 局部差分隐私约束的链接攻击保护[J]. 计算机科学与探索, 2019, 13(2): 251-262.