Decentralized and Multi-Authority based Public Key Infrastructure for Sharing Electronic Health Records

In healthcare systems, users require keys and certificates to communicate and share electronic health records (EHRs). The traditional EHR sharing system typically involves a single centralized trusted third-party (STTP) for authentication, auditing, key generation, and storing and managing patients&...

Full description

Saved in:
Bibliographic Details
Published in:Procedia computer science 2023, Vol.230, p.44-54
Main Authors: Kumari, Anamika, Bhaskar, Sourabh, Patil, Shriniwas, Parmar, Keyur
Format: Article
Language:English
Subjects:
Blockchain
Healthcare
Interplanetary File System
Key-Escrow
Multi-Authority
Security
Summarized Electronic Health Records
Citations: Items that this one cites
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In healthcare systems, users require keys and certificates to communicate and share electronic health records (EHRs). The traditional EHR sharing system typically involves a single centralized trusted third-party (STTP) for authentication, auditing, key generation, and storing and managing patients' EHRs. To securely collect and share EHRs from multiple hospitals, users perform cryptographic operations. The cryptographic operations require keys that are generated by STTP. However, compromised or malicious STTP can disclose the users' information that is vulnerable to users' privacy and data sovereignty. Therefore, to enhance the trustworthiness and reliability of the STTP, we need to provide a solution that eliminates the dependency on the STTP. In this article, we propose a decentralized and multi-authority based public key infrastructure for summarized EHR sharing using Interplanetary File System (IPFS). The proposed system generates cryptographic key pairs for users using a binary tree-based multi-authority structure instead of relying on STTP. The proposed system prevents a single point of failure (SPOF) and is resilient to key-escrow problem. In addition, the proposed system contributes to the construction of privacy preserved summarized EHRs by securely collecting EHRs from multiple hospitals. Thus, summarized EHRs help in patients' well-being and enhance the quality of treatments. Furthermore, the performance analysis demonstrates that the proposed system is lightweight and efficient in aspects of execution time and storage overhead compared to existing solutions.
ISSN:1877-0509
1877-0509
DOI:10.1016/j.procs.2023.12.059