Antoine Gansel, August Karlsson, Remi Hendriks & Frank Nijeboer
Patients
Hospitals
Health Clubs
Doctors, Insurance, Employers etc.
Patients can share with whomever they want
These other users are not necessarily known at the start
Enforcing read access
Some are read-only
Some actors should only write to the system
How can we enforce write permissions?
Attribute-set does not need to be defined during setup
The attribute-set can grow with this scheme
Nr. of doctors and patients not constant
We can now use UUIDs as attributes
Generate global parameters
That's it :)
Creates keys for the clients
Decides what attributes the clients have
Can be any party in the system
Has its own UUID
Can grant write access to the database for its own PHR
Contains encrypted data
Enforces write access
Hybrid Approach
Message -> Symmetric Encryption
Symmetric Key -> Previously mentioned ABE Scheme
Python
Charm Crypto
└── sdm_assignment
├── data
│ ├── models
│ ├── repositories
│ └── schemas
├── routers
└── setup.py
├── sdm_assignment
│ ├── data
│ │ ├── models
│ │ ├── repositories
│ │ └── schemas
│ ├── routers
│ └── setup.py
├── client.py
├── data_server.py
├── local_auth.py
├── global_auth.py
└── setup_server.py
Created with FastAPI as a REST server
For each type of actor in the system
For ease of use
Mostly for demo purposes
Created with VueJS