Efficient and anonymous multi‐message and multi‐receiver electronic health records sharing scheme without secure channel based on blockchain

Abstract

AbstractThe sharing of electronic health records (EHR) helps the patients increase the accuracy of treatment, while promoting the development of the hospital and the research of medical field compared to traditional paper‐based medical records. However, due to the sensitivity of medical data and the difference of the standard about EHR, it is likely to lead to some security problems such as the leakage of patient's privacy and the difficulty of data sharing. To accomplish the secure storage and effective sharing of EHR, we propose an efficient and anonymous multi‐message and multi‐receiver EHR sharing scheme without secure channel based on blockchain (BEAMMRS). We use blockchain technology and cloud server to store EHR together, which ensures the security and immutability. Moreover, we combine certificateless public key cryptography and elliptic curve cryptography (ECC) to solve the certificate management burden and key escrow problems. Our scheme utilizes multi‐message and multi‐receiver signcryption algorithm to enable medical data providers to send different messages to multiple data requesters by executing one signcryption operation, which satisfies the multi‐message sending requirements of the data providers in the communication environment. Meanwhile, the key generation center (KGC) sends the pseudo partial private key to the data user through the public channel. Only the authorized data user can successfully find out the real partial private key, which avoids the key leakage and economic cost caused by the secure channel. Security analysis and performance evaluation demonstrate that the proposed BEAMMRS scheme meets stronger security and higher computational efficiency than other similar schemes.