Related projects: [Amulet], [Auracle], [SIMBA], [THaW], [TISH]
Related keywords: [mhealth], [security]
In the "Amanuensis" project we explore the potential combination of blockchain and trusted-execution-environment (TEE) technology to support strong integrity and confidentiality guarantees in the storage of health-related data... including robust provenance information regarding information derived from original sources.
For a complete presentation, including all the results of the papers below, see Hardin's PhD dissertation [hardin:thesis].
In our first paper, we surveyed the literature regarding use of blockchain in healthcare information systems [hardin:blockchain-survey].
In our second paper, we describe the design and initial evaluation of Amanuensis, a concept for a secure, integrated healthcare data system that leverages Blockchain and Trusted Execution Environment (TEE) technologies to achieve information provenance for mHealth data [hardin:amanuensis].
In our third paper, we update Amanuensis to ensure the freshness of access-control lists shared between the blockchain and TEE, and to improve the privacy of users interacting within the system. We also detail how TEE-based remote attestation help us to achieve information provenance - specifically, how to achieve information provenance in the context of the Intel SGX trusted execution environment. Finally, we present an evaluation of our system in which we test several real-world machine-learning applications [hardin:amanuensis2].
The ideas in this paper are captured in a U.S. patent [hardin:patent1].
Taylor Hardin, David Kotz, Jack McGary.
This project was funded by a generous gift from the Vechain Foundation.
The views and conclusions contained on this site and in its documents are those of the authors and should not be interpreted as necessarily representing the official position or policies, either expressed or implied, of the sponsor. Any mention of specific companies or products does not imply any endorsement by the authors or by the sponsor.
[Also available in BibTeX]
Papers are listed in reverse-chronological order;
click an entry to pop up the abstract.
For full information and pdf, please click Details link.
Follow updates with RSS.
In this thesis, we present an end-to-end solution for providing information provenance for mHealth data, which begins by securing mHealth data at its source: the mHealth device. To this end, we devise a memory-isolation method that combines compiler-inserted code and Memory Protection Unit (MPU) hardware to protect application code and data on ultra-low-power micro-controllers. Then we address the security of mHealth data outside of the source (e.g., data that has been uploaded to smartphone or remote-server) with our health-data system, Amanuensis, which uses Blockchain and Trusted Execution Environment (TEE) technologies to provide confidential, yet verifiable, data storage and computation for mHealth data. Finally, we look at identity privacy and data freshness issues introduced by the use of blockchain and TEEs. Namely, we present a privacy-preserving solution for blockchain transactions, and a freshness solution for data access-control lists retrieved from the blockchain.