Abstract
Personal health records (PHRs) are private and vital assets for every patient. There have been introduced many works on various aspects of managing and organizing the PHR so far. However, there is an uncertain remaining issue for the role of PHR in emergencies. In a traditional emergency access system, the patient cannot give consent to emergency staff for accessing his/her PHR. Moreover, there is no secured record management of patient’s PHR, which reveals highly confidential personal information, such as what happened, when, and who has access to such information. This paper proposes an emergency access control management system (EACMS) based on permissioned blockchain hyperledger fabric and hyperledger composer. In the proposed system, we defined some rules using the smart contracts for emergency condition and time duration for the emergency access PHR data items that patient can assign some limitations for controlling the PHR permissions. We analyzed the performance of our proposed framework by implementing it through the hyperledger composer based on the response time, privacy, security, and accessibility. The experiments confirm that our framework provides better efficiency compared with the traditional emergency access system.
Highlights
Some applications of big data for health care services and medications may be dealt with third parties or the public for surveys and the extraction of the useful report [1], [2]
We evaluated our framework by employing hyperledger composer business network based on the Hyperledger Fabric (HF) blockchain network
This paper proposes an Emergency Access Control Management System called emergency access control management system (EACMS) which provides privacy protection and security policies for the patient’s Personal health records (PHRs) in emergency condition
Summary
Some applications of big data for health care services and medications may be dealt with third parties or the public for surveys and the extraction of the useful report [1], [2]. One more significant challenge is in the emergency condition after accessing the PHR; misuse of personal information can be exploited illegally. In the traditional emergency access system, when the staff has done some activities on the PHR records, and later, the malicious users could try to obtain the patient’s PHR information. There is no audit or transaction log where the patient can trace all the accesses of PHR information because, in the emergency condition, the patient cannot participate in the emergency access authorization To alleviate these problems and make sure secure access handling in emergency and maintain a secure ledger. With the use of smart contracts, the PHR data owner (patient) set the condition for an emergency staff or team member (authentic doctor) who can access permissions to any of their PHR data items flexibly and securely with the time limitation.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
