HealthLock: Blockchain-Based Privacy Preservation Using Homomorphic Encryption in Internet of Things Healthcare Applications

Aitizaz Ali; Bander Ali Saleh Al-Rimy; Faisal S Alsubaei; Abdulwahab Ali Almazroi; Abdulaleem Ali Almazroi

doi:10.3390/s23156762

HealthLock: Blockchain-Based Privacy Preservation Using Homomorphic Encryption in Internet of Things Healthcare Applications

Sensors (Basel). 2023 Jul 28;23(15):6762. doi: 10.3390/s23156762.

Authors

Aitizaz Ali¹, Bander Ali Saleh Al-Rimy², Faisal S Alsubaei³, Abdulwahab Ali Almazroi⁴, Abdulaleem Ali Almazroi⁵

Affiliations

¹ School of IT, UNITAR International University, Petaling Jaya 47301, Malaysia.
² Department of Computer Science, Faculty of Computing, Universiti Teknologi Malaysia, Johor Bahru 81310, Malaysia.
³ Department of Cybersecurity, College of Computer Science and Engineering, University of Jeddah, Jeddah 21959, Saudi Arabia.
⁴ Department of Information Technology, College of Computing and Information Technology at Khulais, University of Jeddah, Jeddah 21959, Saudi Arabia.
⁵ Department of Information Technology, Faculty of Computing and Information Technology in Rabigh, King Abdulaziz University, Rabigh 21911, Saudi Arabia.

Abstract

The swift advancement of the Internet of Things (IoT), coupled with the growing application of healthcare software in this area, has given rise to significant worries about the protection and confidentiality of critical health data. To address these challenges, blockchain technology has emerged as a promising solution, providing decentralized and immutable data storage and transparent transaction records. However, traditional blockchain systems still face limitations in terms of preserving data privacy. This paper proposes a novel approach to enhancing privacy preservation in IoT-based healthcare applications using homomorphic encryption techniques combined with blockchain technology. Homomorphic encryption facilitates the performance of calculations on encrypted data without requiring decryption, thus safeguarding the data's privacy throughout the computational process. The encrypted data can be processed and analyzed by authorized parties without revealing the actual contents, thereby protecting patient privacy. Furthermore, our approach incorporates smart contracts within the blockchain network to enforce access control and to define data-sharing policies. These smart contracts provide fine-grained permission settings, which ensure that only authorized entities can access and utilize the encrypted data. These settings protect the data from being viewed by unauthorized parties. In addition, our system generates an audit record of all data transactions, which improves both accountability and transparency. We have provided a comparative evaluation with the standard models, taking into account factors such as communication expense, transaction volume, and security. The findings of our experiments suggest that our strategy protects the confidentiality of the data while at the same time enabling effective data processing and analysis. In conclusion, the combination of homomorphic encryption and blockchain technology presents a solution that is both resilient and protective of users' privacy for healthcare applications integrated with IoT. This strategy offers a safe and open setting for the management and exchange of sensitive patient medical data, while simultaneously preserving the confidentiality of the patients involved.

Keywords: blockchain; cloud computing; cybersecurity; homomorphic encryption; intrusion detection; machine learning.

MeSH terms

Blockchain*
Computer Security
Delivery of Health Care
Humans
Internet of Things*
Privacy

Grants and funding

MoE-IF-UJ-22-0708-2/Deputyship for Research Innovation, Ministry of Education in Saudi Arabia