BACKGROUND
Recently, many blockchain-based medical data sharing systems using off-chain storage have been proposed. However, these systems have some drawbacks such as being incompletely decentralized, low adaptability to cloud storages, high cost, and low security. It is non-trivial to address the drawbacks due to the transparency, immutability, and decentralization of a blockchain platform.
OBJECTIVE
Our goal is to design a decentralized medical data sharing system with off-chain storage that addresses all the above drawbacks.
METHODS
We propose the VASCO (View-based AccesS COntrol) system that does not rely on any central server including a key generation one, not rely on any special cloud storage including IPFS, not use a secure channel, encrypts both data and metadata, and supports end-to-end encryption (E2EE). We achieve it by designing eight chaincodes rigorously based on view-based access control. For a medical data ecosystem that consists of six stakeholders: patients, hospitals, biobanks, data producers, laboratories, and institutional review boards (IRBs), we present how typical flows of medical data in the ecosystem can be achieved by using the proposed chaincodes.
RESULTS
We showed that VASCO is superior to the existing systems in terms of seven perspectives including security, decentralization, cost and cloud adaptability. We also analyzed the performance of the chaincodes of VASCO in term of data size, number of paths, and number of users.
CONCLUSIONS
VASCO is a promising medical data sharing system that can provide secure and efficient sharing of medical data while preserving patient privacy. The result of this study provides a potential to improve patient outcomes and advance medical research for the ecosystem that consists of various stakeholders including patients, hospitals, and laboratories.