Tong Sun,Borui Li,Yixiao Teng,Yi Gao,Wei Dong

DOI: https://doi.org/10.1109/ipsn61024.2024.00021

2024-01-01

Abstract:Internet of Things (IoT) applications have recently been widely used in safety-critical scenarios. To prevent sensitive information leaks, IoT device vendors provide hardware-assisted protections, called Trusted Execution Environments (TEEs), like ARM Trust-Zone. Programming a TEE-based application requires separate code for two components, significantly slowing down the development process. Existing solutions tackle this issue by automatic code partition while not successfully applying it in two complicated scenarios: adding trusted logic and interactions with secure peripherals.We propose dTEE, a declarative approach to secure IoT applications based on TrustZone. dTEE proposes a rapid approach that enables developers to declare tiered-sensitive variables and functions of existing applications. Besides, dTEE automatically transforms device drivers into trusted ones. We evaluate dTEE on four real-world IoT applications and seven micro-benchmarks. Results show that dTEE achieves high expressiveness for supporting 50% more applications than existing approaches and reduces 90% of the lines of code against handcrafted development.

Jun Li,Xinman Luo,Hong Lei

DOI: https://doi.org/10.3390/electronics13122425

IF: 2.9

2024-06-21

Electronics

Abstract:The rapid growth of electronic health (eHealth) systems has led to serious security and privacy challenges, highlighting the critical importance of protecting sensitive healthcare data. Although researchers have employed blockchain to tackle data management and sharing within eHealth systems, substantial privacy concerns persist as a primary challenge. In this paper, we introduce TrustHealth, a secure data sharing system that leverages trusted execution environment (TEE) and blockchain technology. TrustHealth leverages blockchain to design smart contracts to offer robust hashing protection for patients' healthcare data. We provide a secure execution environment for SQLCipher, isolating all sensitive operations of healthcare data from the untrusted environment to ensure the confidentiality and integrity of the data. Additionally, we design a TEE-empowered session key generation protocol that enables secure authentication and key sharing for both parties involved in data sharing. Finally, we implement TrustHealth using Hyperledger Fabric and ARM TrustZone. Through security and performance evaluation, TrustHealth is shown to securely process massive encrypted data flows at a rate of 5000 records per second, affirming the feasibility of our proposed scheme. We believe that TrustHealth offers valuable guidelines for the design and implementation of similar systems, providing a valuable contribution to ensuring the privacy and security of eHealth systems.

engineering, electrical & electronic,physics, applied,computer science, information systems

Rabimba Karanjai,Lei Xu,Lin Chen,Fengwei Zhang,Zhimin Gao,Weidong Shi

DOI: https://doi.org/10.1145/3505253.3505259

2022-03-24

Abstract:Modern computer systems tend to rely on large trusted computing bases (TCBs) for operations. To address the TCB bloating problem, hardware vendors have developed mechanisms to enable or facilitate the creation of a trusted execution environment (TEE) in which critical software applications can execute securely in an isolated environment. Even under the circumstance that a host OS is compromised by an adversary, key security properties such as confidentiality and integrity of the software inside the TEEs can be guaranteed. The promise of integrity and security has driven developers to adopt it for use cases involving access control, PKS, IoT among other things. Among these applications include blockchain-related use cases. The usage of the TEEs doesn't come without its own implementation challenges and potential pitfalls. In this paper, we examine the assumptions, security models, and operational environments of the proposed TEE use cases of blockchain-based applications. The exercise and analysis help the hardware TEE research community to identify some open challenges and opportunities for research and rethink the design of hardware TEEs in general.

Cryptography and Security

Yihuai Liang,Yan Li,Byeong-Seok Shin,Liang, Yihuai

DOI: https://doi.org/10.1007/s12083-024-01668-0

IF: 3.488

2024-03-03

Peer-to-Peer Networking and Applications

Abstract:Security and availability are crucial for users who outsource computational tasks to remote servers. However, computation services provided by cloud platforms suffer outage risks, potential enforced censorship, and network latency problems due to the centralized architecture, also having monopolistic service prices.We proposed a decentralized platform for outsourced trusted computing. Compared with prior works, our platform works autonomously based on a public blockchain without reliance on a trusted third party. The platform is open and public for computation nodes of Trusted Execution Environments (TEE) to join and provide trusted computing services out of financial incentives. Moreover, we designed a novel protocol, named b-DTC. First, it prevents free-riding behaviors against users and prevents false reporting against computing nodes. Second, it supports real-time multi-round off-chain trusted computing in a pay-as-you-go manner, such that the performance of outsourced computing is not limited by the underlying blockchain. Third, for an incentive of high reliability and availability, it trustworthily measures the liveness, workload, and performance of the nodes and uses the measurement information to calculate the nodes' reputation. We analyzed and proved the security of our protocol. Extensive experiments are conducted based on two real-world scenarios: a clinical self-diagnosis system and an outsourced genetic testing application. Experimental results show that our system is feasible and the cost of introducing blockchain and TEE into our system is acceptable: Only takes about 20 seconds more than that of a cloud to finish a task that provides trusted service for 1000 users; The off-chain computing cost in our system is only about 20% more than that of the cloud.

computer science, information systems,telecommunications

Moyixi Lei,Shuangyin Liu,Na Luo,Xinting Yang,Chuanheng Sun

DOI: https://doi.org/10.1016/j.heliyon.2022.e11477

IF: 3.776

2022-11-10

Heliyon

Abstract:Traceability systems have changed the way food safety is managed and data is stored. Blockchain tracking services now provide customers with an infrastructure that allows them to easily access data online. However, there are limitations to these new capabilities, such as a lack of transparency and the existence of privacy and security challenges. Additionally, as the need for more agile, private, and traceability secure data solutions continues to grow exponentially, rethinking the current structure of blockchain agricultural traceability is mission-critical for a country. By leveraging and building upon blockchain's unique attributes, including tamper-evident, security hash crypto-data, and distributed ledger, we have proposed a prototype that allows traceability data to be reliably stored via blockchain while simultaneously being secured, with completeness auditing to enhance credibility. The result, the trusted auditing chain (TA chain), is a flexible solution that assures data security and solves challenges such as scalability and privacy-preserving. The TA chain works through Schnorr-style non-interactive Zero-knowledge proof to support security automatical choose privacy augmented. In addition, The TA chain can audit more than 1000 transactions within 1ms, and its error stabilizes below the 250 μs, which proves a security and fair traceability system to assure that data is distributed and reliably, and provably audited.

Laizhong Cui,Zhe Xiao,Jiahao Wang,Fei Chen,Yi Pan,Hua Dai,Jing Qin

DOI: https://doi.org/10.1145/3388446

IF: 5.3

2020-01-01

ACM Transactions on Internet Technology

Abstract:In recent years, vaccine incidents occurred around the world, which endangers people’s lives. In the technical respect, these incidents are partially due to the fact that existing vaccine management systems are distributively managed by different entities in the vaccine supply chain. This architecture makes it relatively easy to modify or even delete the vaccine circulation data maliciously, which makes tracing problematic vaccine hard and identifying the responsibility for a vaccine accident hard. To solve these issues, this article presents a blockchain-based solution to protect the whole process of vaccine circulation. We first propose a model to supervise the vaccine circulation process by incorporating existing regulatory practices. Then, we propose a blockchain-based tracing system to implement this model. The proposed system takes the blockchain as a global, unique, and verifiable database to store all the circulation data. Through data insertions and queries on the global and unique database, the proposed system achieves the protection of vaccine circulation. We also implement a proof-of-concept prototype of the proposed system. Experimental results confirm that the proposed system is beneficial.

Guoxiong Su,Wenyuan Yang,Zhengding Luo,Yinghong Zhang,Zhiqiang Bai,Yuesheng Zhu

DOI: https://doi.org/10.1109/msn50589.2020.00030

2020-01-01

Abstract:The need for data trading promotes the emergence of data market. However, in conventional data markets, both data buyers and data sellers have to use a centralized trading platform which might be dishonest. A dishonest centralized trading platform may steal and resell the data seller's data, or may refuse to send data after receiving payment from the data buyer. It seriously affects the fair data transaction and harm the interests of both parties to the transaction. To address this issue, we propose a novel blockchain-based data trading framework with Trusted Execution Environment (TEE) to provide a trusted decentralized platform for fair data trading. In our design, a blockchain network is proposed to realize the payments from data buyers to data sellers, and a trusted exchange is built by using a TEE for the first time to achieve fair data transmission. With these help, data buyers and data sellers can conduct transactions directly. We implement our proposed framework on Ethereum and Intel SGX, security analysis and experimental results have demonstrated that the framework proposed can effectively guarantee the fair completion of data tradings.

Rabimba Karanjai,Rowan Collier,Zhimin Gao,Lin Chen,Xinxin Fan,Taeweon Suh,Weidong Shi,Lei Xu

DOI: https://doi.org/10.1145/3594556.3594626

2023-08-03

Abstract:Trusted execution environment (TEE) technology has found many applications in mitigating various security risks in an efficient manner, which is attractive for critical infrastructure protection. First, the natural of critical infrastructure requires it to be well protected from various cyber attacks. Second, performance is usually important for critical infrastructure and it cannot afford an expensive protection mechanism. While a large number of TEE-based critical infrastructure protection systems have been proposed to address various security challenges (e.g., secure sensing and reliable control), most existing works ignore one important feature, i.e., devices comprised the critical infrastructure may be equipped with multiple incompatible TEE technologies and belongs to different owners. This feature makes it hard for these devices to establish mutual trust and form a unified TEE environment. To address these challenges and fully unleash the potential of TEE technology for critical infrastructure protection, we propose DHTee, a decentralized coordination mechanism. DHTee uses blockchain technology to support key TEE functions in a heterogeneous TEE environment, especially the attestation service. A Device equipped with one TEE can interact securely with the blockchain to verify whether another potential collaborating device claiming to have a different TEE meets the security requirements. DHTee is also flexible and can support new TEE schemes without affecting devices using existing TEEs that have been supported by the system.

Cryptography and Security,Hardware Architecture

Yanping Wang,Xiaosong Zhang,Xiaofen Wang,Teng Hu,Peng Lu,Mingyong Yin

DOI: https://doi.org/10.1155/2022/1317626

IF: 1.968

2022-01-01

Security and Communication Networks

Abstract:With the increasingly prominent value of big data, data sharing within enterprises and organizations has become increasingly popular, and many institutions have established data centers to achieve effective data storage and sharing. Meanwhile, cyberspace data security and privacy have become the most critical issue that people are concerned about since shared data often involves commercial secrets and sensitive information. At present, data encryption techniques have been applied to protect the security of the sensitive data stored in and shared by the data centers. However, the challenges of efficient data sharing, secure management of decryption keys, deduplication of the plaintext, and transparency and auditability of the data access arise. These challenges may obstruct the development of data sharing in data-driven systems. To meet these challenges, we propose a secure and trustworthy data sharing scheme and introduce blockchain, proxy re-encryption (PRE), and trusted execution environments (TEEs) into the data-driven systems. Our scheme mainly enables (1) automatic distribution and management of the decryption keys, (2) reduction of the reduplicative data, and (3) trustworthy data sharing and recording. Finally, we implement the proposed scheme and compare it with other existing schemes. It is demonstrated that our scheme reduces the computation and communication overhead.

Yujue Wang,Baodong Wen,Decun Luo,Yong Ding,Changsong Yang,Hai Liang

DOI: https://doi.org/10.1109/AsiaJCIS60284.2023.00017

2023-08-15

Abstract:Vaccines play a vital role in safeguarding people’s health and improving their well-being. With the increase in the variety and number of infectious diseases, the importance of vaccination cannot be underestimated. Despite being responsible for overseeing the entire lifecycle of vaccines, the current vaccine supply chain is encountering certain issues. There is no effective mechanism for sharing vaccine data, while the privacy of recipient data cannot be guaranteed. Also, different entities involved in the supply chain manage their data separately, leading to data barriers that hinder the effective supervision and tracking of vaccine data. This paper designs a vaccine whole process management system that employs a consortium blockchain to facilitate trustworthy collaboration among various entities involved in the vaccine supply chain. The system leverages data encryption to preserve data privacy and promote seamless data sharing, thereby overcoming data silos among participants. Additionally, smart contracts are utilized to establish uniform data operation protocols, while a regulator-friendly vaccine management mechanism is proposed to enable comprehensive supervision of the entire vaccine supply process. Experiments demonstrate the effectiveness of the proposed system.

Medicine,Computer Science

Linkai Zhu,Shanwen Hu,Xiaolian Zhu,Changpu Meng,Maoyi Huang

DOI: https://doi.org/10.3390/math11173759

IF: 2.4

2023-09-01

Mathematics

Abstract:Federated learning has emerged as a promising technique for the Internet of Things (IoT) in various domains, including supply chain management. It enables IoT devices to collaboratively learn without exposing their raw data, ensuring data privacy. However, federated learning faces the threats of local data tampering and upload process attacks. This paper proposes an innovative framework that leverages Trusted Execution Environment (TEE) and blockchain technology to address the data security and privacy challenges in federated learning for IoT supply chain management. Our framework achieves the security of local data computation and the tampering resistance of data update uploads using TEE and the blockchain. We adopt Intel Software Guard Extensions (SGXs) as the specific implementation of TEE, which can guarantee the secure execution of local models on SGX-enabled processors. We also use consortium blockchain technology to build a verification network and consensus mechanism, ensuring the security and tamper resistance of the data upload and aggregation process. Finally, each cluster can obtain the aggregated parameters from the blockchain. To evaluate the performance of our proposed framework, we conducted several experiments with different numbers of participants and different datasets and validated the effectiveness of our scheme. We tested the final global model obtained from federated training on a test dataset and found that increasing both the number of iterations and the number of participants improves its accuracy. For instance, it reaches 94% accuracy with one participant and five iterations and 98.5% accuracy with ten participants and thirty iterations.

mathematics

Mingyuan Huang,Sheng Cao,Xiong Li,Ke Huang,Xiaosong Zhang

DOI: https://doi.org/10.1109/icc45855.2022.9838252

2022-01-01

Abstract:With the development of Internet of Things (IoT) technology, the digital pill has been employed as an IoT system for emerging remote health monitoring to detect the impact of medicine intake on patients' biological index. The medical data is then used for model training with federated learning. An adversary can launch poisoning attacks by tampering with patients' medical data, which will lead to misdiagnosis of the patients' conditions. Lots of studies have been conducted to defend against poisoning attacks based on blockchain or hardware. However, 1) Blockchain-based schemes can only exploit on-chain data to deal with poisoning attacks due to the lack of off-chain trusted entities. 2) Typical hardware-based schemes have the bottleneck of single point of failure. To overcome these defects, we propose a defense scheme via multiple Trusted Platform Modules (TPMs) and blockchain oracle. Benefitting from multiple TPMs verification results, a distributed blockchain oracle is proposed to obtain off-chain verification results for smart contracts. Then, the smart contracts could utilize the off-chain verification result to identify poisoning attacks and store the unique identifiers of the non-threatening IoT device immutably on the blockchain as a whitelist of federated learning participants. Finally, we analyze the security features and evaluate the performance of our scheme, which shows the robustness and efficiency of the proposed work.

Qi-Feng Shao,Zhao Zhang,Che-Qing Jin,Ao-Ying Zhou

DOI: https://doi.org/10.1007/s11390-022-1007-2

IF: 1.871

2023-08-09

Journal of Computer Science and Technology

Abstract:Due to limited computing and storage resources, light clients and full nodes coexist in a typical blockchain system. Any query from light clients must be forwarded to full nodes for execution, and light clients verify the integrity of query results returned. Since existing verifiable queries based on an authenticated data structure (ADS) suffer from significant network, storage and computing overheads by virtue of verification objects (VOs), an alternative way turns to the trusted execution environment (TEE), with which light clients do not need to receive or verify any VO. However, state-of-the-art TEEs cannot deal with large-scale applications conveniently due to the limited secure memory space (e.g., the size of the enclave in Intel SGX (software guard extensions), a typical TEE product, is only 128 MB). Hence, we organize data hierarchically in trusted (enclave) and untrusted memory, along with hot data buffered in the enclave to reduce page swapping overhead between two kinds of memory. The cost analysis and empirical study validate the effectiveness of our proposed scheme. The VO size of our scheme is reduced by one to two orders of magnitude compared with that of the traditional scheme.

computer science, software engineering, hardware & architecture

Jingshou Chen,Xiaofeng Chen,Chin-Ling Chen

DOI: https://doi.org/10.1155/2022/2211065

2022-03-09

Abstract:Blockchain technology is essentially a decentralized database maintained by relevant parties and has been widely used in various scenarios such as logistics and finance. In terms of applications in the medical field, it is becoming more and more important because the patient's symptoms may be related to a certain vaccine. Whether the patient has been vaccinated with this vaccine will lead to different diagnostic results by the doctor. However, in the current vaccination environment of many regions, the vaccination record (VR) can only be kept in the patient's vaccination booklet, which is easy to lose or destroy. Therefore, the doctor needs to retrieve the patient's VR through a centralized database maintained by the government, which is time-consuming and will increase the medical risk. This study proposes a traceable blockchain-based vaccination record storage and sharing system. In the proposed system, the patient gets the vaccination at any legal clinic and the VR can be saved accompanied by the signature into the blockchain center, which ensures traceability. When the patient visits the hospital for treatment, the doctor can obtain the detail of the VR from the blockchain center and then make a diagnosis. The security of the proposed system will be protected by the programmed smart contracts. Through mutual authentication, our system can also provide and guarantee data integrity and nonrepudiation. Moreover, the proposed system has resistance to replay and man-in-the-middle attacks, and the performance is good.

Xiao Chen,Jie Ding,Zhenyu Lu

DOI: https://doi.org/10.1109/tits.2020.3013279

IF: 8.5

2022-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Commercialized 5G technology will provide reliable and efficient connectivity of motor vehicles that could support the dissemination of information under an intelligent transportation system. However, such service still suffers from risks or threats due to malicious content producers. The traditional public key infrastructure (PKI) cannot restrain such untrusted but legitimate publishers. Therefore, a trust-based service management mechanism is required to secure information dissemination. The issue of how to achieve a trust management model becomes a key problem in the situation. This paper proposes a novel prototype of the decentralized trust management system (DTMS) based on blockchain technologies. Compared with the conventional and centralized trust management system, DTMS adopts a decentralized consensus-based trust evaluation model and a blockchain-based trust storage system, which provide a transparent evaluation procedure and irreversible storage of trust credits. Moreover, the proposed trust model improves blockchain efficiency by only allowing trusted nodes participating in the validation and consensus process. Additionally, the designed system creatively applies a trusted execution environment (TEE) to secure the trust evaluation process together with an incentive model that is used to stimulate more participation and penalize malicious behaviours. Finally, to evaluate our new design prototype, both numerical analysis and practical experiments are implemented for performance evaluation.

engineering, electrical & electronic,transportation science & technology, civil

Binbin Yong,Jun Shen,Xin Liu,Fucun Li,Huaming Chen,Qingguo Zhou

DOI: https://doi.org/10.1016/j.ijinfomgt.2019.10.009

IF: 18.958

2020-01-01

International Journal of Information Management

Abstract:Immunization is an indispensable mechanism for preventing infectious diseases in modern society, and vaccine safety is closely related to public health and national security. However, issues such as vaccine expiration and vaccine record fraud are still widespread in vaccine supply chains. Therefore, an effective management system for the supervision of vaccine supply chains is urgently required. As the next generation of core technology after the Internet, blockchain is designed to build trust mechanisms that can change current information management methods. Meanwhile, the development of machine learning technologies provides additional ways to analyze the data in information management systems. The main objective of this study is to develop a “vaccine blockchain” system based on blockchain and machine learning technologies. This vaccine blockchain system is designed to support vaccine traceability and smart contract functions, and can be used to address the problems of vaccine expiration and vaccine record fraud. Additionally, the use of machine learning models can provide valuable recommendations to immunization practitioners and recipients, allowing them to choose better immunization methods and vaccines.

Jiashuo Zhang,Jianbo Gao,Ke Wang,Zhenhao Wu,Ying Lan,Zhi Guan,Zhong Chen

DOI: https://doi.org/10.48550/arXiv.2102.01970

2021-07-06

Abstract:With the rapid development of blockchain, Byzantine fault-tolerant protocols have attracted revived interest recently. To overcome the theoretical bounds of Byzantine fault tolerance, many protocols attempt to use Trusted Execution Environment (TEE) to prevent equivocation and improve performance and scalability. However, due to the broken quorum intersection assumption caused by the reduction of the replica number, the improvement is mostly at the cost of increased communication complexity which prevents existing TEE-based protocols to be applied to large-scale blockchain systems. In this paper, we propose TBFT, an efficient Byzantine fault-tolerant protocol in the partial synchrony setting, which has O(n) message complexity in both normal-case and view-change. Compared to previous protocols, TBFT uses TEE-assisted primitives to limit more types of malicious behaviors of replicas rather than preventing equivocation only, thereby reducing the latency and communication complexity of clients and replicas. Besides, we also introduce lightweight cryptographic primitives including a novel leader election mechanism and an efficient voting message aggregation mechanism for better security and performance. We evaluate TBFT via systematic analysis and experiments, and the results show that TBFT has better performance and scalability compared to other protocols.

Distributed, Parallel, and Cluster Computing

Kamanashis Biswas,Vallipuram Muthukkumarasamy,Guangdong Bai,Mohammad Jabed Morshed Chowdhury

DOI: https://doi.org/10.1038/s41598-022-26029-w

2023-01-11

Abstract:Vaccines are delicate biological substances that gradually become inactive over time and must be kept under a recommended temperature range of 2-8 °C for both short and long-term storage. Exposure to heat or freezing temperatures can highly affect the immunological properties of these vaccines and make them completely ineffective. Research shows that vaccine exposure to temperatures outside the recommended range is 33% in developed countries and 37.1% in developing countries. In practice, vaccines are stored in refrigerators, while thermometers and data loggers are used to record and monitor temperatures. However, traditional systems are unreliable due to lack of battery backup, human error, periodic logging of temperatures, etc. Therefore, an effective and reliable vaccine tracking and monitoring system is urgently needed. This paper proposes a blockchain-based, smart contract enabled solution that ensures an enhanced level of security, transparency, and traceability of stored vaccines in a health clinic, and enables the complete history of every vaccine to be checked from the day the vaccine is received by the health clinic to the date it is used or expires. We also formally analyze the resiliency of the proposed system against several attacks and compare the system with existing blockchain and non-blockchain-based solutions.

Jiashuo Zhang,Jianbo Gao,Ke Wang,Zhenhao Wu,Yue Li,Zhi Guan,Zhong Chen

DOI: https://doi.org/10.1109/ICC45855.2022.9839169

2022-01-01

Abstract:With the rapid development of blockchain, Byzantine fault-tolerant protocols have attracted revived interest recently. To overcome the theoretical bounds of Byzantine fault tolerance, many protocols attempt to use Trusted Execution Environment (TEE) to prevent equivocation and improve fault tolerance from less than 1/3 to minority. However, due to the broken quorum intersection assumption caused by the reduction of replica number, most improvements introduce higher communication complexity or more protocol phases, which affects the performance and scalability of existing TEE-based protocols and prevents them to be applied to large-scale blockchain systems. In this paper, we propose TBFT, an efficient Byzantine fault-tolerant protocol in the partial synchrony setting, which has O(n) message complexity and only two protocol phases in normal-case. The key insight behind TBFT is introducing novel TEE-assisted primitives to limit malicious behaviors of replicas including not only equivocation but also message log forgery and message history forgery, therefore both the communication complexity and protocol phases can be reduced. We have implemented TBFT and evaluated it through systematic analysis and experiments, and the results show that TBFT has better performance and scalability compared to other protocols.

Canling Wang,Wei Wu,Fulong Chen,Hong Shu,Ji Zhang,Yuxuan Zhang,Taochun Wang,Dong Xie,Chuanxin Zhao

DOI: https://doi.org/10.1049/2024/5559522

2024-01-31

IET Information Security

Abstract:Blockchain is commonly employed in access control to provide safe medical data exchange because of the characteristics of decentralization, nontamperability, and traceability. Patients share personal health data by granting access rights to users or medical institutions. The major purpose of the existing access control techniques is to identify users who are permitted to access medical data. They hardly ever recognize internal assailants from legitimate entities. Medical data will involve multilayer access within the authorized organizations. Considering the cost of permissions management and the problem of insider malicious node attacks, users hope to implement authorization constraints within the authorized institutions. It can prevent their data from being maliciously disclosed by end-users from different authorized healthcare domains. For the purpose to achieve the fine-grained permissions propagation control of medical data in sharing institutions, a trust-based authorization access control mechanism is suggested in this study. Trust thresholds are assigned to different privileges based on their sensitivity and used to generate zero-knowledge proof to be broadcasted among blockchain nodes. This method evaluates the trust of each user through the dynamic trust calculation model. And meanwhile, smart contract is employed to verify whether the user’s trust can activate some permissions and ensure the privacy of the user’s trust in the process of authorization verification. In addition, the authorization transaction between users and institutions is recorded on the blockchain for patient traceability and accountability. The feasibility and effectiveness of the scheme are demonstrated through comprehensive comparisons and extensive experiments.

computer science, information systems, theory & methods