• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

基于区块链的电子健康记录访问审计:增强医疗数据安全性。

Blockchain-enabled EHR access auditing: Enhancing healthcare data security.

作者信息

Ullah Faheem, He Jingsha, Zhu Nafei, Wajahat Ahsan, Nazir Ahsan, Qureshi Sirajuddin, Pathan Muhammad Salman, Dev Soumyabrata

机构信息

Faculty of Information Technology, Beijing University of Technology, Beijing, China.

School of Computing, Dublin City University, Dublin, Ireland.

出版信息

Heliyon. 2024 Aug 10;10(16):e34407. doi: 10.1016/j.heliyon.2024.e34407. eCollection 2024 Aug 30.

DOI:10.1016/j.heliyon.2024.e34407
PMID:39253236
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC11381610/
Abstract

In the realm of modern healthcare, Electronic Health Records serve as invaluable assets, yet they also pose significant security challenges. The absence of access auditing mechanisms, which includes the audit trails, results in accountability gaps and magnifies security vulnerabilities. This situation effectively paves the way for unauthorized data alterations to occur without detection or consequences. Inadequate compliance auditing procedures, particularly in verifying and validating access control policies, expose healthcare organizations to risks such as data breaches, and unauthorized data usage. These vulnerabilities result from unchecked unauthorized access activities. Additionally, the absence of audit logs complicates investigations, weakens proactive security measures, and raises concerns to put healthcare institutions at risk. This study addresses the pressing need for robust auditing systems designed to scrutinize access to data, encompassing who accesses it, when, and for what purpose. Our research delves into the complex field of auditing, which includes establishing an immutable audit trail to enhance data security through blockchain technology. We also integrate Purpose-Based Access Control () alongside smart contracts to strengthen compliance auditing by validating access legitimacy and reducing unauthorized entries. Our contributions encompass the creation of audit trail of access, compliance auditing via policy verification, the generation of audit logs, and the derivation of data-driven insights, fortifying access security.

摘要

在现代医疗保健领域,电子健康记录是非常宝贵的资产,但也带来了重大的安全挑战。缺乏包括审计跟踪在内的访问审计机制,会导致问责漏洞,并放大安全漏洞。这种情况实际上为未经授权的数据更改创造了条件,使其在未被发现或无需承担后果的情况下发生。合规审计程序不完善,尤其是在验证和确认访问控制策略方面,使医疗保健组织面临数据泄露和未经授权的数据使用等风险。这些漏洞源于未经检查的未经授权访问活动。此外,缺乏审计日志会使调查复杂化,削弱主动安全措施,并引发对将医疗机构置于风险之中的担忧。本研究满足了对强大审计系统的迫切需求,该系统旨在审查对数据的访问,包括谁访问了数据、何时访问以及出于何种目的访问。我们的研究深入探讨了审计这一复杂领域,其中包括通过区块链技术建立不可变的审计跟踪以增强数据安全性。我们还将基于目的的访问控制(Purpose-Based Access Control,PBAC)与智能合约相结合,通过验证访问合法性和减少未经授权的条目来加强合规审计。我们的贡献包括创建访问审计跟踪、通过策略验证进行合规审计、生成审计日志以及得出数据驱动的见解,从而加强访问安全性。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/cdbb47daa041/gr027.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/94245e0ebd51/gr001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/1ae3e35b5e57/gr002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/06b04b1fdeaa/gr003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/9d9e68d457d6/gr004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/d92ada419b00/gr005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/5f8193025e1c/gr006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/bc86c972cf61/gr007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/636a75e9b78b/gr008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/0d7b6571f886/gr009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/b02849721ac0/gr010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/c8f0568fd3c7/gr011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/43855f63df9d/gr012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/a0e6f6970903/gr013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/57b7b57ae838/gr014.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/de263e561564/gr015.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/ce714af0ed02/gr016.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/cd932019b6dd/gr017.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/97d8214d895b/gr018.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/28fcefeca8ee/gr019.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/73bfe30b529a/gr020.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/a9aecf29bce8/gr021.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7c406a622495/gr022.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/d082a2531c7c/gr023.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7d2f5661dd21/gr024.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/83877ed63110/gr025.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7b63f82ac701/gr026.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/cdbb47daa041/gr027.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/94245e0ebd51/gr001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/1ae3e35b5e57/gr002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/06b04b1fdeaa/gr003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/9d9e68d457d6/gr004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/d92ada419b00/gr005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/5f8193025e1c/gr006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/bc86c972cf61/gr007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/636a75e9b78b/gr008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/0d7b6571f886/gr009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/b02849721ac0/gr010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/c8f0568fd3c7/gr011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/43855f63df9d/gr012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/a0e6f6970903/gr013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/57b7b57ae838/gr014.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/de263e561564/gr015.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/ce714af0ed02/gr016.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/cd932019b6dd/gr017.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/97d8214d895b/gr018.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/28fcefeca8ee/gr019.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/73bfe30b529a/gr020.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/a9aecf29bce8/gr021.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7c406a622495/gr022.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/d082a2531c7c/gr023.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7d2f5661dd21/gr024.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/83877ed63110/gr025.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/7b63f82ac701/gr026.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/333e/11381610/cdbb47daa041/gr027.jpg

相似文献

1
Blockchain-enabled EHR access auditing: Enhancing healthcare data security.基于区块链的电子健康记录访问审计:增强医疗数据安全性。
Heliyon. 2024 Aug 10;10(16):e34407. doi: 10.1016/j.heliyon.2024.e34407. eCollection 2024 Aug 30.
2
HIPPA's compliant Auditing System for Medical Imaging System.
Conf Proc IEEE Eng Med Biol Soc. 2005;2006:562-3. doi: 10.1109/IEMBS.2005.1616473.
3
HIPAA compliant auditing system for medical images.符合健康保险流通与责任法案(HIPAA)的医学图像审计系统。
Comput Med Imaging Graph. 2005 Mar-Apr;29(2-3):235-41. doi: 10.1016/j.compmedimag.2004.09.009. Epub 2005 Jan 22.
4
Addressing the Challenges of Electronic Health Records Using Blockchain and IPFS.利用区块链和 IPFS 应对电子健康记录挑战。
Sensors (Basel). 2022 May 26;22(11):4032. doi: 10.3390/s22114032.
5
Secure Cloud-Based Electronic Health Records: Cross-Patient Block-Level Deduplication with Blockchain Auditing.基于云的安全电子健康记录:使用区块链审计的跨患者块级去重。
J Med Syst. 2024 Mar 25;48(1):33. doi: 10.1007/s10916-024-02053-3.
6
ACTION-EHR: Patient-Centric Blockchain-Based Electronic Health Record Data Management for Cancer Care.ACTION-EHR:基于区块链的以患者为中心的电子健康记录数据管理系统在癌症护理中的应用。
J Med Internet Res. 2020 Aug 21;22(8):e13598. doi: 10.2196/13598.
7
A cross domain access control model for medical consortium based on DBSCAN and penalty function.基于 DBSCAN 和罚函数的医疗联盟跨域访问控制模型。
BMC Med Inform Decis Mak. 2024 Sep 16;24(1):260. doi: 10.1186/s12911-024-02638-5.
8
HealthLock: Blockchain-Based Privacy Preservation Using Homomorphic Encryption in Internet of Things Healthcare Applications.HealthLock:物联网医疗应用中基于同态加密的区块链隐私保护
Sensors (Basel). 2023 Jul 28;23(15):6762. doi: 10.3390/s23156762.
9
BSF-EHR: Blockchain Security Framework for Electronic Health Records of Patients.BSF-EHR:用于患者电子健康记录的区块链安全框架。
Sensors (Basel). 2021 Apr 19;21(8):2865. doi: 10.3390/s21082865.
10
Trusted-auditing chain: A security blockchain prototype used in agriculture traceability.可信审计链:一种用于农业可追溯性的安全区块链原型。
Heliyon. 2022 Nov 10;8(11):e11477. doi: 10.1016/j.heliyon.2022.e11477. eCollection 2022 Nov.

引用本文的文献

1
Artificial intelligence in ophthalmology: opportunities, challenges, and ethical considerations.眼科领域的人工智能:机遇、挑战与伦理考量。
Med Hypothesis Discov Innov Ophthalmol. 2025 May 10;14(1):255-272. doi: 10.51329/mehdiophthal1517. eCollection 2025 Spring.

本文引用的文献

1
Health Records Database and Inherent Security Concerns: A Review of the Literature.健康记录数据库与内在安全问题:文献综述
Cureus. 2022 Oct 11;14(10):e30168. doi: 10.7759/cureus.30168. eCollection 2022 Oct.
2
Team is brain: leveraging EHR audit log data for new insights into acute care processes.团队即大脑:利用 EHR 审核日志数据深入了解急症护理流程。
J Am Med Inform Assoc. 2022 Dec 13;30(1):8-15. doi: 10.1093/jamia/ocac201.
3
Privacy-Preserved Electronic Medical Record Exchanging and Sharing: A Blockchain-Based Smart Healthcare System.
隐私保护的电子病历交换和共享:基于区块链的智能医疗系统。
IEEE J Biomed Health Inform. 2022 May;26(5):1917-1927. doi: 10.1109/JBHI.2021.3123643. Epub 2022 May 5.
4
Why Is the Electronic Health Record So Challenging for Research and Clinical Care?电子健康记录为何对研究和临床护理极具挑战性?
Methods Inf Med. 2021 May;60(1-02):32-48. doi: 10.1055/s-0041-1731784. Epub 2021 Jul 19.
5
ACTION-EHR: Patient-Centric Blockchain-Based Electronic Health Record Data Management for Cancer Care.ACTION-EHR:基于区块链的以患者为中心的电子健康记录数据管理系统在癌症护理中的应用。
J Med Internet Res. 2020 Aug 21;22(8):e13598. doi: 10.2196/13598.
6
Application of Blockchain to Maintaining Patient Records in Electronic Health Record for Enhanced Privacy, Scalability, and Availability.区块链在电子健康记录中维护患者记录以增强隐私性、可扩展性和可用性的应用。
Healthc Inform Res. 2020 Jan;26(1):3-12. doi: 10.4258/hir.2020.26.1.3. Epub 2020 Jan 31.
7
Electronic Health Record Implementation: A Review of Resources and Tools.电子健康记录的实施:资源与工具综述
Cureus. 2019 Sep 13;11(9):e5649. doi: 10.7759/cureus.5649.
8
Using EHR audit trail logs to analyze clinical workflow: A case study from community-based ambulatory clinics.利用电子健康记录审计跟踪日志分析临床工作流程:来自社区门诊诊所的案例研究。
AMIA Annu Symp Proc. 2018 Apr 16;2017:1820-1827. eCollection 2017.