SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption
Abstract The exchange of Electronic Health Records (EHRs) among healthcare institutions is essential for providing comprehensive patient care and advancing medical research. However, current systems face several challenges, including data silos, interoperability issues, and high computational costs...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
SpringerOpen
2025-04-01
|
| Series: | EURASIP Journal on Information Security |
| Subjects: | |
| Online Access: | https://doi.org/10.1186/s13635-025-00200-y |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850173000348860416 |
|---|---|
| author | Krittin Thirasak Danupat Chainarong Teerawat Chuaphanngam Somchart Fugkeaw |
| author_facet | Krittin Thirasak Danupat Chainarong Teerawat Chuaphanngam Somchart Fugkeaw |
| author_sort | Krittin Thirasak |
| collection | DOAJ |
| description | Abstract The exchange of Electronic Health Records (EHRs) among healthcare institutions is essential for providing comprehensive patient care and advancing medical research. However, current systems face several challenges, including data silos, interoperability issues, and high computational costs associated with cross-domain data sharing. To address these limitations, this paper presents SSX-EHRs, a novel blockchain-based access control model designed for secure, scalable, and efficient EHR sharing across regions. We propose a distributed architecture of regional blockchains that stores encrypted EHRs in the cloud while maintaining their corresponding indexes on the blockchain. This architecture supports dynamic updates through a Merkle tree structure, enabling the addition of new EHRs without the need to rebuild the entire dataset, while ensuring data integrity through fast Merkle proofs. To enhance user authentication, we incorporate self-sovereign identity (SSI) with an improved zk-SNARKs protocol, which leverages a universal setup to minimize communication costs and optimize authentication for cross-domain environments. Additionally, we introduce a dynamic proxy re-encryption (D-PRE) mechanism that adaptively re-encrypt the ciphertext based on the load sharing. Through comparative analysis and experiments, our results demonstrate that SSX-EHRs achieves higher efficiency in handling larger datasets, improves query response times, and minimizes latency compared to existing solutions. |
| format | Article |
| id | doaj-art-9cda92aacae045de860d2516948287d3 |
| institution | OA Journals |
| issn | 2510-523X |
| language | English |
| publishDate | 2025-04-01 |
| publisher | SpringerOpen |
| record_format | Article |
| series | EURASIP Journal on Information Security |
| spelling | doaj-art-9cda92aacae045de860d2516948287d32025-08-20T02:19:57ZengSpringerOpenEURASIP Journal on Information Security2510-523X2025-04-012025111910.1186/s13635-025-00200-ySSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryptionKrittin Thirasak0Danupat Chainarong1Teerawat Chuaphanngam2Somchart Fugkeaw3Sirindhorn International Institute of Technology, Thammasat UniversitySirindhorn International Institute of Technology, Thammasat UniversitySirindhorn International Institute of Technology, Thammasat UniversitySirindhorn International Institute of Technology, Thammasat UniversityAbstract The exchange of Electronic Health Records (EHRs) among healthcare institutions is essential for providing comprehensive patient care and advancing medical research. However, current systems face several challenges, including data silos, interoperability issues, and high computational costs associated with cross-domain data sharing. To address these limitations, this paper presents SSX-EHRs, a novel blockchain-based access control model designed for secure, scalable, and efficient EHR sharing across regions. We propose a distributed architecture of regional blockchains that stores encrypted EHRs in the cloud while maintaining their corresponding indexes on the blockchain. This architecture supports dynamic updates through a Merkle tree structure, enabling the addition of new EHRs without the need to rebuild the entire dataset, while ensuring data integrity through fast Merkle proofs. To enhance user authentication, we incorporate self-sovereign identity (SSI) with an improved zk-SNARKs protocol, which leverages a universal setup to minimize communication costs and optimize authentication for cross-domain environments. Additionally, we introduce a dynamic proxy re-encryption (D-PRE) mechanism that adaptively re-encrypt the ciphertext based on the load sharing. Through comparative analysis and experiments, our results demonstrate that SSX-EHRs achieves higher efficiency in handling larger datasets, improves query response times, and minimizes latency compared to existing solutions.https://doi.org/10.1186/s13635-025-00200-yAccess controlData sharingCloudCP-ABECross-regional blockchainHealthcare |
| spellingShingle | Krittin Thirasak Danupat Chainarong Teerawat Chuaphanngam Somchart Fugkeaw SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption EURASIP Journal on Information Security Access control Data sharing Cloud CP-ABE Cross-regional blockchain Healthcare |
| title | SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption |
| title_full | SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption |
| title_fullStr | SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption |
| title_full_unstemmed | SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption |
| title_short | SSX-EHRs: secure and scalable cross-domain EHRs sharing with blockchain sharding and dynamic proxy re-encryption |
| title_sort | ssx ehrs secure and scalable cross domain ehrs sharing with blockchain sharding and dynamic proxy re encryption |
| topic | Access control Data sharing Cloud CP-ABE Cross-regional blockchain Healthcare |
| url | https://doi.org/10.1186/s13635-025-00200-y |
| work_keys_str_mv | AT krittinthirasak ssxehrssecureandscalablecrossdomainehrssharingwithblockchainshardinganddynamicproxyreencryption AT danupatchainarong ssxehrssecureandscalablecrossdomainehrssharingwithblockchainshardinganddynamicproxyreencryption AT teerawatchuaphanngam ssxehrssecureandscalablecrossdomainehrssharingwithblockchainshardinganddynamicproxyreencryption AT somchartfugkeaw ssxehrssecureandscalablecrossdomainehrssharingwithblockchainshardinganddynamicproxyreencryption |