政大機構典藏-National Chengchi University Institutional Repository(NCCUR):Item 140.119/152419
English  |  正體中文  |  简体中文  |  Post-Print筆數 : 27 |  Items with full text/Total items : 113324/144300 (79%)
Visitors : 51127392      Online Users : 905
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version
    政大典藏 > College of Commerce > Department of MIS > Theses >  Item 140.119/152419
    Please use this identifier to cite or link to this item: https://nccur.lib.nccu.edu.tw/handle/140.119/152419


    Title: 應用區塊鏈技術強化醫療資料授權分享的安全性與可溯源性
    Leveraging Blockchain Technology to Enhance the Security and Traceability of Medical Data Sharing
    Authors: 賴廷恩
    Lai, Ting-En
    Contributors: 陳恭
    廖峻鋒

    Kung Chen
    Chun-Feng Liao

    賴廷恩
    Lai, Ting-En
    Keywords: 區塊鏈技術
    智能合約
    資料授權
    隱私保護
    以太坊
    資料共享
    Blockchain technology
    smart contracts
    data authorization
    privacy protection
    Ethereum
    data sharing
    Date: 2024
    Issue Date: 2024-08-05 12:08:32 (UTC+8)
    Abstract: 在當代醫療領域,人工智慧於影像分析的應用推動了醫療影像資料
    共享平台的發展。這些平台整合多機構醫療影像資料,確保僅授權使
    用者讀寫敏感資訊。然而,傳統中心化資料庫存儲授權資料面臨資料
    竊取、篡改及單點故障風險,挑戰隱私保護與授權透明度。如果授權
    資料保存不當或是授權過程出現錯誤,將可能導致未經授權者存取敏
    感資料,進而引發嚴重的隱私洩露和法律糾紛,同時削弱公眾對資料
    共享平台的信任,影響平台的長期運作和發展。
    本研究開發出一套基於以太坊區塊鏈技術的授權驗證系統,該系統
    通過RESTfulAPI 與醫療平台進行整合,並搭配rabbitMQ等分散式系
    統處理大量整合資料。應用區塊鏈的去中心化和不可篡改性質,本系
    統能夠安全地將授權資料儲存在智能合約中,並透過智能合約自動化
    方法審核存取權限,將驗證和資料存取機制過程封裝在智能合約中,
    大幅降低了資料洩漏的風險,並保障了授權驗證的準確性。本系統還
    應用Vault-BX 技術,實現對私鑰調用權和管理權的分離,使智能合
    約上資料的讀寫過程更加嚴謹。本研究通過所述方法和系統架構,提
    升了資料共享的可追蹤性和安全性,進一步促進了這些平台的順利運
    作,從而構建了一個良好的資料共享生態系。
    In modern healthcare, AI-driven image analysis has fostered the develop
    ment of medical image data sharing platforms that integrate data from mul
    tiple sources. These platforms ensure only authorized users can access sen
    sitive information, but traditional centralized databases pose risks like data
    theft and tampering, potentially leading to privacy breaches and undermining
    public trust.
    ThisstudyintroducesanauthorizationverificationsystembasedonEthereum
    blockchain technology, interfacing with medical platforms through RESTful
    API and managing data with systems like RabbitMQ. The blockchain’s de
    centralized nature ensures secure storage of authorization data in smart con
    tracts, significantly reducing data breach risks. The use of VaultBX technol
    ogy enhances private key management, ensuring robust data handling. This
    systemenhancesdatasecurity andtraceability, thereby facilitating the smooth
    operation of platforms and fostering a robust data sharing ecosystem
    Reference: BSOS Vault. (2023). Tech partner: BSOS. https://www.hashicorp.com/partners/
    tech/bsos. (Accessed: 2024-07-26)
    Hardhat. (2024). Hardhat documentation. Retrieved from https://hardhat.org/docs/
    (Accessed: date-of-access)
    HashiCorp Vault. (2023). Vault by hashicorp. Official Website. Retrieved from https://
    www.vaultproject.io
    HSM. (2024). Security details- hsm integration- vault enterprise. Retrieved from
    https://developer.hashicorp.com/vault/docs/enterprise/hsm/security
    trieved from HashiCorp Developer)
    (Re
    Ismailova, R. (2024). Security aspects of decentralized systems in data management.
    Advanced Security Protocols Journal, 5(2), 202–218.
    Laturkar, K. (2024). The impact of decentralization in blockchain on data management
    across industries. Journal of Blockchain Research, 7(1), 45–59.
    Maharjan, R., Chy, M. S. H., Arju, M. A., & Cerny, T. (2023). Benchmarking message
    queues. Telecom, 4(2), 298-312. Retrieved from https://www.mdpi.com/2673-4001/4/2/18 doi: 10.3390/telecom4020018
    Nakamoto, S. (2008). Bitcoin: A peer-to-peer electronic cash system. Retrieved from
    https://bitcoin.org/bitcoin.pdf (Accessed: date-of-access)
    OpenZeppelin. (2024). Documentation. Retrieved from https://docs.openzeppelin
    .com/contracts/5.x/extending-contracts (Accessed: date-of-access)
    Praveen, G., Singh, P. K., & Ranjan, P. (2024). Enhancing record management security
    through blockchain and ipfs. International Journal of Blockchain Innovations, 2(3),
    112–130.
    RabbitMQ. (2024). Rabbitmq tutorial- work queues with javascript. Retrieved
    from https://www.rabbitmq.com/tutorials/tutorial-two-javascript (Accessed:
    55
    date-of-access)
    Vitalik. (2014). Ethereum white paper: A next generation smart contract & decentral
    ized application platform. Retrieved from https://ethereum.org/en/whitepaper/
    (Accessed: date-of-access)
    Wang, C., Wu,W.,Chen,F., Shu, H.,&Zhang, J. (2024). Ablockchain-based trustworthy
    access control scheme for medical data sharing. Journal of Information Technology
    in Healthcare, 2. Retrieved from https://ietresearch.onlinelibrary.wiley.com/
    doi/10.1049/2024/5559522 (See abstract and introduction for foundational con
    cepts and framework) doi: 10.1049/ietis.5559522
    Zaabar, B., et al. (2021). Healthblock: A secure blockchain-based healthcare data man
    agement system. Computer Networks, 200, 108500. Retrieved from https://
    www.sciencedirect.com/science/article/abs/pii/S1389128621004382 (See ab
    stract for initial discussion on the system’s design and security enhancements) doi:
    10.1016/j.comnet.2021.108500
    Zhao, X., & Su, Q. (2019). Revocable attribute-base scheme with enhanced security
    and privacy for healthcare data sharing. In Ieee 14th international symposium
    on parallel architectures, algorithms and programming (paap). Beijing, China:
    IEEE. (This work highlights the use of blockchain for fine-grained access control
    in healthcare data sharing, focusing on the enhancement of security and privacy.)
    doi: 10.1109/PAAP60200.2023.10391571
    中華民國憲法法庭. (2022). 111 年憲判第 13 號解釋. Retrieved from https://
    cons.judicial.gov.tw/docdata.aspx?fid=38&id=309956 (取自中華民國憲法法
    庭)
    Description: 碩士
    國立政治大學
    資訊管理學系
    111356052
    Source URI: http://thesis.lib.nccu.edu.tw/record/#G0111356052
    Data Type: thesis
    Appears in Collections:[Department of MIS] Theses

    Files in This Item:

    File Description SizeFormat
    605201.pdf7305KbAdobe PDF0View/Open


    All items in 政大典藏 are protected by copyright, with all rights reserved.


    社群 sharing

    著作權政策宣告 Copyright Announcement
    1.本網站之數位內容為國立政治大學所收錄之機構典藏,無償提供學術研究與公眾教育等公益性使用,惟仍請適度,合理使用本網站之內容,以尊重著作權人之權益。商業上之利用,則請先取得著作權人之授權。
    The digital content of this website is part of National Chengchi University Institutional Repository. It provides free access to academic research and public education for non-commercial use. Please utilize it in a proper and reasonable manner and respect the rights of copyright owners. For commercial use, please obtain authorization from the copyright owner in advance.

    2.本網站之製作,已盡力防止侵害著作權人之權益,如仍發現本網站之數位內容有侵害著作權人權益情事者,請權利人通知本網站維護人員(nccur@nccu.edu.tw),維護人員將立即採取移除該數位著作等補救措施。
    NCCU Institutional Repository is made to protect the interests of copyright owners. If you believe that any material on the website infringes copyright, please contact our staff(nccur@nccu.edu.tw). We will remove the work from the repository and investigate your claim.
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback