Author:
Garcia Rodrigo Dutra,Ueyama Jó
Abstract
In multi-stakeholder systems, such as healthcare, the Internet of Things, and supply chain management, there is frequent data generation, exchange, and sharing. As a result, data owners often desire control over their data and maintain privacy, while data consumers require methods to ascertain the origins and creators of the data. These conflicts of interest require developing data governance systems that guarantee data provenance, privacy protection, consent management, and selective disclosure. This research proposed a decentralized data governance system utilizing blockchain technology, proxy re-encryption (PRE), and Boneh, Boyen, and Shacham (BBS) signatures to address these challenges. The proposed system enables data owners to control, selectively share, and track their data through privacy-enhancing, consent management, and selective disclosure mechanisms while also allowing data consumers to understand the lineage of the data through a blockchain-based provenance mechanism. As a case study, the research examined and evaluated electronic prescriptions involving sensitive data and multiple stakeholders, including patients as data owners and doctors and pharmacists as data consumers. The research was structured as a collection of published articles organized in the following sequence: problem formulation and developing smart contracts, implementing privacy and consent management through PRE, and applying BBS signatures for selective data sharing. The proof-of-concept implementation and evaluations, conducted using CosmWasm, Hyperledger Besu, Ethereum, pyUmbral PRE, and BBS signatures, demonstrate that the proposed decentralized system is platform-agnostic, scalable, and capable of providing a higher level of transparency, privacy, and trust with minimal overhead.
Publisher
Sociedade Brasileira de Computação - SBC
Reference17 articles.
1. Garcia, R. D. (2023). Blockchain-based data governance for privacy-preserving in multistakeholder settings. PhD thesis, Universidade de São Paulo. Agência de Bibliotecas e Coleções Digitais.
2. Garcia, R. D., Ramachandran, G., and Ueyama, J. (2022a). Exploiting smart contracts in PBFT-based blockchains: A case study in medical prescription system. Computer Networks, page 109003.
3. Garcia, R. D., Ramachandran, G. S., Jurdak, R., and Ueyama, J. (2022b). A Blockchain-based Data Governance with Privacy and Provenance: a case study for e-Prescription. 2022 IEEE International Conference on Blockchain and Cryptocurrency (ICBC), 00:1–5.
4. Garcia, R. D., Ramachandran, G. S., Jurdak, R., and Ueyama, J. (2022c). Blockchain-aided and Privacy-preserving Data Governance in Multi-stakeholder Applications. IEEE Transactions on Network and Service Management, PP(99):1–1.
5. Garcia, R. D., Zutião, G. A., Ramachandran, G., and Ueyama, J. (2021). Towards a decentralized e-prescription system using smart contracts. 2021 IEEE 34th International Symposium on Computer-Based Medical Systems (CBMS), 00:556–561.