Faisal Mehmood
ABSTRACT
The challenge of safeguarding user data privacy becomes pronounced when private data is outsourced to cloud services, potentially exposing it to unauthorized access. The challenge of centralized storage of user data introduces heightened security risks and a dependence on a single authority, posing difficulties in safeguarding against internal breaches. This study is dedicated to advancing user privacy and data security, especially in scenarios involving the sharing of sensitive information within or across organizations, including small enterprises functioning in a distributed environment. The research introduces a consent management framework built on Blockchain technology, with a particular focus on user consent management. This framework is designed to prioritize the principles of privacy, security, scalability, and data integrity. It utilizes Hyperledger Fabric which is a permissioned distributed ledger solution, and incorporates Hyperledger Composer to establish and maintain a secure record of user data. To enhance the security of stored data, the framework incorporates the Interplanetary File System (IPFS) and employs a unique cryptographic public key encryption algorithm for data encryption. The overarching aim of this research is to establish a robust security solutions foundation against cyber threats by harnessing the inherent capabilities of blockchain technology, ultimately strengthening the security landscape for sharing user information.
- “Consent Management.” Available online: https://www.gartner.com/en/information technology/glossary/consent-management (accessed on 12 June 2020). [Accessed: 12- June-2021].Google Scholar
- “What is Data Management?”. Available online: https://www.ngdata.com/what-is data-management/. [Accessed: 06-June-2021].Google Scholar
- “5 things you need to know about Data Privacy.” Available online: https://dataprivacymanager.net/5-things-you-need-to-know-about-dataprivacy/. [Accessed: 06-June-2021].Google Scholar
- Azaria, A., Ekblaw, A., Vieira, T., & Lippman, A. (2016, August). Medrec: Using blockchain for medical data access and permission management. In 2016 2nd international conference on open and big data (OBD) (pp. 25-30). IEEE.Google ScholarCross Ref
- Liang, X., Zhao, J., Shetty, S., Liu, J., & Li, D. (2017, October). Integrating blockchain for data sharing and collaboration in mobile healthcare applications. In 2017 IEEE 28th annual international symposium on personal, indoor, and mobile radio communications (PIMRC) (pp. 1-5). IEEE.Google Scholar
- Rouhani, S., Butterworth, L., Simmons, A. D., Humphery, D. G., & Deters, R. (2018, July). MediChain TM: a secure decentralized medical data asset management system. In 2018 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and 72 Social Computing (CPSCom) and IEEE Smart Data (SmartData) (pp. 1533-1538). IEEE.Google Scholar
- Swetha, M. S., Pushpa, S. K., Muneshwara, M. S., & Manjunath, T. N. (2020, December). Blockchain enabled secure healthcare Systems. In 2020 IEEE International Conference on Machine Learning and Applied Network Technologies (ICMLANT) (pp. 1-6). IEEE.Google ScholarCross Ref
- Al Asad, N., Elahi, M. T., Al Hasan, A., & Yousuf, M. A. (2020, November). Permission-Based Blockchain with Proof of Authority for Secured Healthcare Data Sharing. In 2020 2nd International Conference on Advanced Information and Communication Technology (ICAICT) (pp. 35-40). IEEE.Google Scholar
- Rajput, A. R., Li, Q., Ahvanooey, M. T., & Masood, I. (2019). EACMS: Emergency access control management system for personal health record based on blockchain. IEEE Access, 7, 84304-84317.Google ScholarCross Ref
- Tith, D., Lee, J. S., Suzuki, H., Wijesundara, W. M. A. B., Taira, N., Obi, T., & Ohyama, N. (2020). Patient consent management by a purpose-based consent model for electronic health record based on blockchain technology. Healthcare Informatics Research, 26(4), 265-273.Google ScholarCross Ref
- Agbo, C. C., & Mahmoud, Q. H. (2020, October). Design and Implementation of a Blockchain-Based E-Health Consent Management Framework. In 2020 IEEE International Conference on Systems, Man, and Cybernetics (SMC) (pp. 812-817). IEEEGoogle ScholarDigital Library
- Conoscenti, M.; Vetro, A.; De Martin, J.C. Blockchain for the Internet of Things: A systematic literature review. In Proceedings of the 2016 IEEE/ACS 13th International Conference of Computer Systems and Applications (AICCSA), Agadir, Morocco, 29 November–2 December 2016.Google ScholarCross Ref
- Cha, S.C.; Chen, J.F.; Su, C.; Yeh, K.H. A blockchain-connected gateway for BLE based devices in the Internet of Things. IEEE Access 2018, 6, 24639–24649.Google ScholarCross Ref
- Sabrina, F. A Novel Entitlement-based Blockchain-enabled Security Architecture for IoT. In Proceedings of the 2019 29th International Telecommunication Networks and Applications Conference (ITNAC), Auckland, New Zealand, 27–29 November 2019.Google Scholar
- Rantos, K., Drosatos, G., Kritsas, A., Ilioudis, C., Papanikolaou, A., & Filippidis, A. P. (2019). A blockchain-based platform for consent management of personal data processing in the IoT ecosystem. Security and Communication Networks, 2019.Google ScholarCross Ref
- Monrat, A.A.; Schelén, O.; Andersson, K. A survey of blockchain from the perspectives of applications, challenges, and opportunities. IEEE Access 2019, 7, 117134–117151.Google ScholarCross Ref
- Chowdhury, M.J.M.; Colman, A.; Kabir, M.A.; Han, J.; Sarda, P. Blockchain as a notarization service for data sharing with personal data store. In Proceedings of the 2018 17th IEEE International Conference on Trust, Security and Privacy in Computing and Communications/12th IEEE International Conference on Big Data Science and Engineering (TrustCom/BigDataSE), New York, NY, USA, 1–3 August 2018.Google Scholar
- Doku, R.; Rawat, D. Pledge: A private ledger based decentralized data sharing framework. In Proceedings of the 2019 Spring Simulation Conference (SpringSim), Tucson, AZ, USA, 29 April–2 May 2019.Google ScholarCross Ref
- Alessi, M.; Camillo, A.; Giangreco, E.; Matera, M.; Pino, S.; Storelli, D. Make users own their data: A decentralized personal data store prototype based on ethereum and 74 ipfs. In Proceedings of the 2018 3rd International Conference on Smart and Sustainable Technologies (SpliTech), Split, Croatia, 26–29 June 2018.Google Scholar
- Topart, L.; Genestier, P.; Picaud, Y. Blockchain brings confidence to facilitate the flow of data in the agricultural field. In Proceedings of the 2020 2nd Conference on Blockchain Research & Applications for Innovative Networks and Services (BRAINS), Paris, France, 28–30 September 2020.Google ScholarCross Ref
- Agarwal, R. R., Kumar, D., Golab, L., & Keshav, S. (2020, May). Consentio: Managing consent to data access using permissioned blockchains. In 2020 IEEE International Conference on Blockchain and Cryptocurrency (ICBC) (pp. 1-9). IEEE.Google ScholarCross Ref
- Aldred, N., Baal, L., Broda, G., Trumble, S., & Mahmoud, Q. H. (2019). Design and Implementation of a Blockchain-based Consent Management System. arXiv preprint arXiv:1912.09882Google Scholar
- S. J Nass, L.A. Levit. L.O. Gostin, and I.of M. (US) C. on H.R. and the P. of H.I.T.H.P. Rule, The value and importance of health information Privacy. National Academies Press (US), 2009.Google Scholar
- Androulaki E, Barger A, Bortnikov V, Cachin C, Christidis K, De Caro A, Hyperledger fabric: a distributed operating system for permissioned blockchains. In: Proceedings of the Thirteenth EuroSys Conference. ACM; 2018. p. 30.Google ScholarDigital Library
Recommendations
Privacy of Fitness Applications and Consent Management in Blockchain
ACSW '22: Proceedings of the 2022 Australasian Computer Science WeekThe rapid advances in fitness wearable devices are redefining privacy around interactions. Fitness wearables devices record a considerable amount of sensitive and private details about exercise, blood oxygen level, and heart rate. Privacy concerns have ...
An effective value swapping method for privacy preserving data publishing
Privacy is an important concern in the society, and it has been a fundamental issue when to analyze and publish data involving human individual's sensitive information. Recently, the slicing method has been popularly used for privacy preservation in ...
A Heuristic K-Anonymity Based Privacy Preserving for Student Management Hyperledger Fabric blockchain
AbstractThe education sector has been experiencing the progressive popularity of the Internet of Things (IoT) systems with a range of applications that can monitor simple attendance to physical locations. IoT systems in the education sector are smoothly ...
Comments