Thursday, January 26, 2017

Applying blockchain to healthcare - part 2 (HIPAA Audit Log)

Yesterday I published a GitHub repository containing the source code for a blockchain HIPAA audit log prototype built using Ethereum and meteor:

https://github.com/chafey/ethereum-hipaa-audit-log

This prototype shows the following:
1) How to setup a private Ethereum blockchain network running on your machine
2) A smart contract that holds a HIPAA audit log entry
3) A web application based on meteor
4) How to associate Ethereum account (public key) with meteor user accounts
5) How to associate an Ethereum account (public key) with a patient record in the database
6) How to add a HIPP Audit Log smart contract to the Ethereum block chain in response to a user accessing a patient record in a web application

Storing HIPAA audit log entries in the blockchain is interesting because:
1) HIPAA audit log entries need to be immutable, durable and reliable - all properties of blockchain technology
2) HIPAA Audit log entries need to reference users and patients - blockchain features identity via public key cryptography (public/private keys) and using Ethereum accounts (public keys) as keys fits well
3) HIPAA Audit Log entries need to be accessible - blockchain makes it easy to access the data it contains assuming you can access a blockchain node

There is still quite a bit of hype about blockchain in healthcare but few implementations you can put your hands on.  I hope this simple prototype will help bridge the gap between the blockchain hype and allow developers to start working with the technology.