Journal of Frontiers of Computer Science and Technology ›› 2022, Vol. 16 ›› Issue (8): 1779-1791.DOI: 10.3778/j.issn.1673-9418.2101091

• Network and Information Security • Previous Articles     Next Articles

System Model and Access Control Schemes for Medical Image Collaborative Analysis

LIU Tonglai1, ZHANG Zikai2, WU Jigang   

  1. 1. School of Computer Science, Guangdong University of Technology, Guangzhou 510006, China
    2. School of Electronic and Information Engineering, Beijing Jiaotong University, Beijing 100044, China
  • Received:2021-01-20 Revised:2021-03-18 Online:2022-08-01 Published:2021-03-26
  • About author:LIU Tonglai, born in 1982, Ph.D. candidate, member of CCF. His research interests include blockchain, intelligent computing and data mining.
    ZHANG Zikai, born in 1989, Ph.D. candidate. His research interests include data security, network security and machine learning.
    WU Jigang, born in 1963, Ph.D., professor, Ph.D. supervisor, member of CCF. His research interests include intelligent computing and mobile computing.
  • Supported by:
    the National Natural Science Foundation of China(62072118);the Natural Science Foundation of Guangdong Province(2018B030311007)

面向医疗图像协同分析的系统模型及访问控制

刘同来1, 章子凯2, 武继刚   

  1. 1. 广东工业大学 计算机学院,广州 510006
    2. 北京交通大学 电子信息工程学院,北京 100044
  • 作者简介:刘同来(1982—),男,江苏连云港人,博士研究生,CCF会员,主要研究方向为区块链、智能计算、数据挖掘。
    章子凯(1989—),男,河南周口人,博士研究生,主要研究方向为数据安全、网络安全、机器学习。
    武继刚(1963—),男,江苏徐州人,博士,教授,博士生导师,CCF会员,主要研究方向为智能计算、移动计算。
  • 基金资助:
    国家自然科学基金(62072118);广东省自然科学基金(2018B030311007)

Abstract:

Deep learning based medical image analysis has played an important role in the computer-aided diagnosis and treatment for diseases. The accuracy of classification has always been the primary goal pursued by researchers. However, the transmission process of images also faces the problems of limited bandwidth in WAN and increased risks of data security. Additionally, individual privacy is vulnerable when user data are exposed to an unauthorized user. To address these problems, this paper constructs a system model for collaborative analysis of diagnosis of diabetic retinopathy (DR). This model consists of two stages: data cleaning and lesion classification. In the data cleaning phase, the private cloud writes the trained model into the blockchain, other private clouds can use the best-performing model shared by private clouds on the blockchain to identify the image quality and transfer high-quality image to the lesion classification model for use. In the classification stage of lesions, each private cloud uses high-quality images for classification and uploads its model parameters to the public cloud for aggregation to obtain a global model. Then, the public cloud sends the global model to each private cloud to achieve collaborative learning, reduce the amount of data transferred, and protect personal privacy. The access control scheme includes the improved role-based access control (RAC) used within the private cloud and the blockchain-based access control scheme (BAC) used during the interaction between the private cloud and the public cloud. RAC can grant both functional and data access permissions to roles, and consider object attributes to realize fine-grained control. BAC is based on certificateless public key cryptography technology and blockchain technology, which can realize identity authentication and permission identification of private cloud while requesting to transfer model parameters from private cloud to public cloud, protect the identity, permission and model parameters of private cloud, and achieve lightweight access control. Two retinal datasets are utilized for the classification of DR. Experimental results demonstrate that data cleaning can efficiently remove low quality images and improve the accuracy of the classifica-tion for early lesions of DR. The accuracy is up to 90.2%.

Key words: medical image, collaborative analysis, access control, data security, blockchain

摘要:

基于深度学习的医疗图像分析技术在计算机辅助的疾病诊断和治疗中发挥了重要作用。分类准确性一直是科研工作者追求的首要目标。然而,图像传输过程还会面临广域网带宽有限及不安全隐患增大的问题。并且当用户数据暴露给未经授权的用户时,平台很容易泄漏个人隐私。针对上述问题,构建了面向糖尿病视网膜病变(DR)诊断协同分析的系统模型及访问控制方案。系统模型包括数据清洗和病变分类两个阶段。在数据清洗阶段,私有云将训练后得到的模型写入区块链,其他私有云清洗数据时使用链上性能最好的模型来识别图像质量,并把高质量图像传递给病变分类模型使用。在病变分类阶段,各私有云分别训练分类模型,并将自己的模型参数上传至公有云聚合得到全局模型,然后将全局模型下发给各私有云,实现协同学习,降低数据传输量,并保护个人隐私。访问控制方案包括私有云内部使用改进的基于角色的访问控制(RAC)和私有云与公有云交互过程中使用的基于区块链的访问控制方案(BAC)。RAC可同时给角色授予功能权限和数据访问权限,并考虑对象属性,实现细粒度级别控制。BAC基于无证书公钥加密技术和区块链技术,能够在私有云向公有云请求传输模型参数的同时,实现对私有云的身份认证、权限识别,保护私有云身份、权限和模型参数的安全,达到轻量级访问控制效果。使用两个视网膜数据集来做DR的分类分析,实验结果表明,数据清洗能够有效地去除低质量图像,提高医生早期病变分类的准确性,准确率达到90.2%。

关键词: 医疗图像, 协同分析, 访问控制, 数据安全, 区块链

CLC Number: