Thursday, January 26, 2017

Applying blockchain to healthcare - part 2 (HIPAA Audit Log)

Yesterday I published a GitHub repository containing the source code for a blockchain HIPAA audit log prototype built using Ethereum and meteor:

https://github.com/chafey/ethereum-hipaa-audit-log

This prototype shows the following:
1) How to setup a private Ethereum blockchain network running on your machine
2) A smart contract that holds a HIPAA audit log entry
3) A web application based on meteor
4) How to associate Ethereum account (public key) with meteor user accounts
5) How to associate an Ethereum account (public key) with a patient record in the database
6) How to add a HIPP Audit Log smart contract to the Ethereum block chain in response to a user accessing a patient record in a web application

Storing HIPAA audit log entries in the blockchain is interesting because:
1) HIPAA audit log entries need to be immutable, durable and reliable - all properties of blockchain technology
2) HIPAA Audit log entries need to reference users and patients - blockchain features identity via public key cryptography (public/private keys) and using Ethereum accounts (public keys) as keys fits well
3) HIPAA Audit Log entries need to be accessible - blockchain makes it easy to access the data it contains assuming you can access a blockchain node

There is still quite a bit of hype about blockchain in healthcare but few implementations you can put your hands on.  I hope this simple prototype will help bridge the gap between the blockchain hype and allow developers to start working with the technology.
Posted by at

6 comments:

  1. BenmasterFebruary 4, 2017 at 8:52 AM

    This is great stuff! I think this is really cool and your demo/prototype seems to work. This is the first time that I've seen someone put out an actual functional little dapp with a health care purpose.

    I'd be really interested to see how this could be expanded to include an audit tool. How much of this data can be stored directly on the blockchain as opposed to linked to from it?

    ReplyDelete
  2. Chris HafeyFebruary 6, 2017 at 10:53 AM

    Thanks! I don't quite understand your question - but Ethereum does not store data encrypted so you can't stick PHI in the audit records without encrypting it in some way. My current thinking is that PHI would be stored off chain to protect it and use some kind of id to link between the two. I have learned a lot more about Ethereum since I did this first prototype and currently working on an improved version which will be more interesting

    ReplyDelete
  3. Ned PolianAugust 23, 2017 at 5:38 AM

    Great Article it its really informative and innovative keep us posted with new updates. its was really valuable. thanks a lot.
    Snippets

    ReplyDelete
  4. Naveed MughalJuly 7, 2018 at 1:44 AM

    This is a good post. This post gives truly quality information. I’m definitely going to look into it. Really very useful tips are provided here. Thank you so much. Keep up the good works.
    blockchain articles

    ReplyDelete
  5. UnknownSeptember 4, 2018 at 4:32 AM

    Good Post! Thank you so much for sharing this pretty post, it was so good to read and useful to improve my knowledge as updated one, keep blogging…!!...Blockchain Online Training

    ReplyDelete
  6. Richard H. BlackSeptember 23, 2018 at 4:13 AM

    Yes, I am entirely agreed with this article, and I just want say that this article is very helpful and enlightening. I also have some precious piece of concerned info !!!!!!Thanks. blockchain jobs

    ReplyDelete

Subscribe to: Post Comments (Atom)