A Secure and Interoperable Architecture for Electronic Health Record Access Control and Sharing

• URL: http://arxiv.org/abs/2602.20830v1
• Date: Tue, 24 Feb 2026 12:11:32 GMT
• Title: A Secure and Interoperable Architecture for Electronic Health Record Access Control and Sharing
• Authors: Tayeb Kenaza, Islam Debicha, Youcef Fares, Mehdi Sehaki, Sami Messai,
• Abstract summary: We propose a comprehensive architecture for secure access to electronic health records (EHRs)<n>By granting exclusive control over their EHRs, our solution ensures compliance with personal protection laws and empowers individuals to manage their health information autonomously.<n> Notably, our proposed architecture seamlessly integrates with existing health provider information systems interoperability and store security and data.
• Score: 0.0
• License: http://creativecommons.org/licenses/by-nc-nd/4.0/
• Abstract: Electronic Health Records (EHRs) store sensitive patient information, necessitating stringent access control and sharing mechanisms to uphold data security and comply with privacy regulations such as the General Data Protection Regulation (GDPR). In this paper, we propose a comprehensive architecture with a suite of efficient protocols that leverage the synergistic capabilities of the Blockchain and Interplanetary File System (IPFS) technologies to enable secure access control and sharing of EHRs. Our approach is based on a private blockchain, wherein smart contracts are deployed to enforce control exclusively by patients. By granting patients exclusive control over their EHRs, our solution ensures compliance with personal data protection laws and empowers individuals to manage their health information autonomously. Notably, our proposed architecture seamlessly integrates with existing health provider information systems, facilitating interoperability and effectively addressing security and data heterogeneity challenges. To demonstrate the effectiveness of our approach, we developed a prototype based on a private implementation of the Hyperledger platform, enabling the simulation of diverse scenarios involving access control and health data sharing among healthcare practitioners. Our experimental results demonstrate the scalability of our solution, thereby substantiating its efficacy and robustness in real-world healthcare settings.

Related papers

• hChain 4.0: A Secure and Scalable Permissioned Blockchain for EHR Management in Smart Healthcare [0.0]
  hChain 4.0 employs a permissioned blockchain to provide a secure and scalable data infrastructure.<n>The proposed framework enables anonymized health data sharing for medical research by pseudonymizing patient identity.<n> Experimental assessments indicate that the proposed approach achieves higher scalability, cost-effectiveness, and validated security.
  arXiv  Detail & Related papers  (2025-05-20T03:13:48Z)
• Balancing Confidentiality and Transparency for Blockchain-based Process-Aware Information Systems [43.253676241213626]
  We propose an architecture for blockchain-based PAISs to preserve confidentiality and transparency.<n>Smart contracts enact, enforce and store public interactions, while attribute-based encryption techniques are adopted to specify access grants to confidential information.<n>We assess the security of our solution through a systematic threat model analysis and evaluate its practical feasibility.
  arXiv  Detail & Related papers  (2024-12-07T20:18:36Z)
• Block MedCare: Advancing healthcare through blockchain integration with AI and IoT [0.0]
  We propose a novel-based system that empowers patients with secure control over their medical data.<n>The system incorporates digital signatures, Role-Based Access Control, and a multi-layered architecture to ensure secure, controlled access.
  arXiv  Detail & Related papers  (2024-12-03T21:31:46Z)
• Block MedCare: Advancing healthcare through blockchain integration [0.0]
  This paper investigates the integration of blockchain technology in healthcare. It focuses on its potential to revolutionize Electronic Health Records (EHR) management and data sharing. We propose a novel system that empowers patients to securely store and manage their medical data.
  arXiv  Detail & Related papers  (2024-10-07T17:54:13Z)
• A Federated Learning Platform as a Service for Advancing Stroke Management in European Clinical Centers [37.285731240749904]
  This paper introduces a novel Federated Learning (FL) platform designed to support the configuration, monitoring, and management of FL processes. Considering the production sensitivity inherent in clinical environments, we emphasize the security of the proposed FL architecture. The platform has been successfully tested in various operational environments using a publicly available dataset.
  arXiv  Detail & Related papers  (2024-10-02T09:24:05Z)
• Balancing Patient Privacy and Health Data Security: The Role of Compliance in Protected Health Information (PHI) Sharing [0.312488427986006]
  Protected Health Information (PHI) sharing significantly enhances patient care quality and coordination, contributing to more accurate diagnoses, efficient treatment plans, and a comprehensive understanding of patient history. Compliance with strict privacy and security policies, such as those required by laws like HIPAA, is critical to protect PHI. We propose a blockchain technology that integrates smart contracts to partially automate consent-related processes and ensuring that PHI access and sharing follow patient preferences and legal requirements.
  arXiv  Detail & Related papers  (2024-07-03T02:49:33Z)
• S3PHER: Secure and Searchable System for Patient-driven HEalth data shaRing [0.0]
  Current systems for sharing health data between patients and caregivers do not fully address the critical security requirements of privacy, confidentiality, and consent management. We present S3PHER, a novel approach to sharing health data that provides patients with control over who accesses their data, what data is accessed, and when.
  arXiv  Detail & Related papers  (2024-04-17T13:31:50Z)
• Blockchain-empowered Federated Learning for Healthcare Metaverses: User-centric Incentive Mechanism with Optimal Data Freshness [66.3982155172418]
  We first design a user-centric privacy-preserving framework based on decentralized Federated Learning (FL) for healthcare metaverses. We then utilize Age of Information (AoI) as an effective data-freshness metric and propose an AoI-based contract theory model under Prospect Theory (PT) to motivate sensing data sharing.
  arXiv  Detail & Related papers  (2023-07-29T12:54:03Z)
• The Design and Implementation of a National AI Platform for Public Healthcare in Italy: Implications for Semantics and Interoperability [62.997667081978825]
  The Italian National Health Service is adopting Artificial Intelligence through its technical agencies. Such a vast programme requires special care in formalising the knowledge domain. Questions have been raised about the impact that AI could have on patients, practitioners, and health systems.
  arXiv  Detail & Related papers  (2023-04-24T08:00:02Z)
• User-Centric Health Data Using Self-sovereign Identities [69.50862982117127]
  This article presents the potential use of the issuers Self-Sovereign Identities (SSI) and Distributed Ledger Technologies (DLT) to improve the privacy and control of health data. The paper lists the prominent use cases of decentralized identities in the health area, and discusses an effective blockchain-based architecture.
  arXiv  Detail & Related papers  (2021-07-26T17:09:52Z)
• I-Health: Leveraging Edge Computing and Blockchain for Epidemic Management [36.55809341110476]
  Epidemic situations demand intensive data collection and management from different locations/entities within a strict time constraint. This paper proposes an Intelligent-Health (I-Health) system that aims to aggregate diverse e-health entities in a unique national healthcare system. In particular, we design an automated patients monitoring scheme, at the edge, which enables the prompt discovery, remote monitoring, and fast emergency response.
  arXiv  Detail & Related papers  (2020-12-18T23:41:00Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.