SlideShare a Scribd company logo

20170620 MEETUP smart contracts proof of concept for prescriptions

Download as PPTX, PDF
Brussels Legal Hackers
Brussels Legal Hackers

In this second part Kristof V. explained an actual proof of concept developed in the Belgian government: a (permission) blockchain solution for medical prescriptions. Link to the event follow-up page: https://www.meetup.com/Brussels-Legal-Hackers/messages/boards/thread/50920056 Legal hackers: https://www.meetup.com/Brussels-Legal-Hackers Similar presentation (in Dutch): https://www.youtube.com/watch?v=oqRoBJ4gIHE&list=PLkOT_gtPps66Tr-Hs15scP1gw-hIftDeE&index=7

Technology
1 of 26
² 1 Medical Prescriptions on a Public Blockchain Kristof Verslype, Smals Research20 June 2017
Recap: Smart Contracts 2 Contract Auction{ function bid(){…} function end(){…} HighestBid: € HighestBidder: Beneficiary: Charlie } bid(...), 20€ end(...) bid(...), 10€ 20€ 02010 Bob Alice Charlie Alice 10€ Bob bidEvent: 10€ bidEvent: 10€ bidEvent: 20€ bidEvent: 20€ Dave Contract code execution distributed Money can be temporarily blocked by contract Function calls in transactions on blockchain
Processing Medical Prescriptions 3 Doctor Pharmacist € € € € Mutuality Patient Tarification office Processing prescriptions s.t. reimbursement possible Real-time analysis RIZIV/INAMI Traditional money transfer Data flow Physical delivery
Processing Medical Prescriptions 4 Doctor € € € € Mutuality Patient Tarification office Complex information flowsTraditional money transfer Data flow Physical delivery Pharmacist
Processing Medical Prescriptions 5 Doctor Pharmacist Mutuality Patient Tarification office All other communication with blockchain Privacy & confidentiality enterprise data guaranteed Traditional money transfer Show on smartphone Physical delivery
7a2 3b 3a 4 5 7b 8 9 10a 10b issue() fill() confirm()insure() assign() Contract function call Event observation Direct communication Doctor Patient Pharmacist Tar. officeMutuality Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? 6a 1 6b function() Contract function The Smart Contract 6
Privacy with permanent pseudonyms 7 Prescription 158 Valid from Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Prescription 577 Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Prescription 804 Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Permanent pseudonyms offer insufficient protection of 1) citizen’s privacy and 2) confidentiality of enterprise data Id Id Id
8 One-Time Pseudonyms Charlie Bob Alice Blockchain network Link Link Link Link 8
Different Views 9 One-time patient pseudonyms on the blockchain Rest of the world Similar for doctors, pharmacists, mutualities and tarification offices
Link Attack 1 10 Doctor: 02/04/17, 21h30 (A) Pharmacist: 28/04/17, 20h45 (B) A B Combining info real world & blockchain can leak sensitive data Attacker knows patient identity & observes him/her physically
11 Doctor: 02/04/17, 21h30 (A) Pharmacist: 28/04/17, 20h45 (B) A B Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? → Encryption of sensitive data in blockchain/smart contract Difficult attack, but one success enough to torpedo project Link Attack 1 Combining info real world & blockchain can leak sensitive data Attacker knows patient identity & observes him/her physically
Different Views Prescription Pantoprazol 20mg True … Prescription ??? ??? … Rest of the world My Prescription Pantoprazol 20mg ??? … My … => fine grained access control with encryption 12
Interface 13 Ontvang Consumeer Mijn voorschriften Oproep functie in contract Observatie event
14 Toon QR-code aan Arts Interface Nieuwe code Arts Medicijn Geldig vanaf [Optioneel] Uitgeven Voorschrift Scan patient QR-code Geef voorschrift uit Etanercept 1mg
Interface 15 Ontvang Consumeer Nieuw Voorschrift Etanercept 1mg Mijn voorschriften
Interface 16 Ontvang Consumeer Mijn voorschriften
17 Pantoprazol 20mg Etanercept 1mg Adalimumab 5mg Adalimumab 5mg Interface Mijn voorschriften
18 Adalimumab 5mg << Front camera active >> Toon QR-code aan apotheker Interface - Dispense Apotheker OK
19 Interface - Dispense Apotheker Adalimumab 5mg Pantoprazol 20mg Process RefundDrug Processed 15,30€ 9,13€
20 Pantoprazol 20mg Etanercept 1mg Adalimumab 5mg Adalimumab 5mg Interface - Dispense Mijn voorschriften
The bigger picture Een Blockchain Ecosysteem 21 Arts Mutualiteit Werkgever Hospitaal Eén medische consultatie kan een hele set acties in gang zetten, met blockchain als centrale as. Voorschrift Bewijs verstrekte hulp Bewijs van arbeidsongeschiktheid Doorverwijzing naar hospitaal Rekening hospitaal voor mutualiteit …
Storage for 1 Year (Estimates) 22 ±270GB ±270GB Mutuality ±270GB Tar. office Only RIZIV/INAMI, mutualities and tarification offices need full copy of blockchain. If prescriptions max. 1 year valid, blockchain can be truncated s.t. old transactions are ‘forgotten’ Optimizations possible
Key Management Good protection of keys required Link → Link → Link → Link → Link → Link → LinkLink LinkLink →Link → Link → Link → Link Link Link Link Link Link 23
Prescription Blockchain Network 24 Full node Frequent light node Occasional light node Block creation By RIZIV/INAMI, mutualities, and/or tarification offices. Ex. Signatures by 5 of 7 mutualities
Evaluation 25 Privacy & confidentiality - Strong guarantees - No central, all-knowing, all-mighty big brother - RIZIV/INAMI analyses in real-time while respecting privacy Communication - No complex information flows - All information everywhere (almost) in real-time Challenges - More complex key management - Higher requirements for storage and communication Higher availability => interesting blockchain case / experience
26 Smals www.smals.be @Smals_ICT www.smalsresearch.be @SmalsResearch Kristof Verslype @KristofVerslype 02 787 53 76 kristof.verslype@smals.be be.linkedin.com/in/verslype

Recommended

20190528 - Guidelines for Trustworthy AI
20190528 - Guidelines for Trustworthy AI20190528 - Guidelines for Trustworthy AI
20190528 - Guidelines for Trustworthy AI
Brussels Legal Hackers
 
20190423 PRiSE model to tackle data protection impact assessments and data pr...
20190423 PRiSE model to tackle data protection impact assessments and data pr...20190423 PRiSE model to tackle data protection impact assessments and data pr...
20190423 PRiSE model to tackle data protection impact assessments and data pr...
Brussels Legal Hackers
 
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
Brussels Legal Hackers
 
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
Brussels Legal Hackers
 
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
Brussels Legal Hackers
 
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
Brussels Legal Hackers
 
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
Brussels Legal Hackers
 
20190221 Algorithmic transparency and accountability in practice
20190221 Algorithmic transparency and accountability in practice20190221 Algorithmic transparency and accountability in practice
20190221 Algorithmic transparency and accountability in practice
Brussels Legal Hackers
 

Recommended

20190528 - Guidelines for Trustworthy AI
20190528 - Guidelines for Trustworthy AI20190528 - Guidelines for Trustworthy AI
20190528 - Guidelines for Trustworthy AI
Brussels Legal Hackers
 
20190423 PRiSE model to tackle data protection impact assessments and data pr...
20190423 PRiSE model to tackle data protection impact assessments and data pr...20190423 PRiSE model to tackle data protection impact assessments and data pr...
20190423 PRiSE model to tackle data protection impact assessments and data pr...
Brussels Legal Hackers
 
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
20190316 - CLBFest - Blockchain & the law - Willem Van de Wiele
Brussels Legal Hackers
 
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
Brussels Legal Hackers
 
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
20190316 - CLBFest - 1337 to legal - Koen Vingerhoets
Brussels Legal Hackers
 
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
20190316 - CLBFest - GDPR & Blockchain - Axel Beelen
Brussels Legal Hackers
 
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
20190316 - CLBFest - Cryptocurrencies and tax - Hendrik Putman
Brussels Legal Hackers
 
20190221 Algorithmic transparency and accountability in practice
20190221 Algorithmic transparency and accountability in practice20190221 Algorithmic transparency and accountability in practice
20190221 Algorithmic transparency and accountability in practice
Brussels Legal Hackers
 
20190221 Data subject rights in practice
20190221 Data subject rights in practice20190221 Data subject rights in practice
20190221 Data subject rights in practice
Brussels Legal Hackers
 
20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements
Brussels Legal Hackers
 
20180607 - Tech Summit presentation
20180607 - Tech Summit presentation20180607 - Tech Summit presentation
20180607 - Tech Summit presentation
Brussels Legal Hackers
 
20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase
Brussels Legal Hackers
 
20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation
Brussels Legal Hackers
 
20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN
Brussels Legal Hackers
 
20170601 - Digital festival presentation
20170601 - Digital festival presentation20170601 - Digital festival presentation
20170601 - Digital festival presentation
Brussels Legal Hackers
 
20170801 GDPR Q&A intro
20170801 GDPR Q&A intro20170801 GDPR Q&A intro
20170801 GDPR Q&A intro
Brussels Legal Hackers
 
20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)
Brussels Legal Hackers
 
20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)
Brussels Legal Hackers
 
20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons
Brussels Legal Hackers
 
20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles
Brussels Legal Hackers
 
20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles
Brussels Legal Hackers
 
20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels
Brussels Legal Hackers
 
Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1
DianaGray10
 
RESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for studentsRESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for students
KAMESHS29
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfObservability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Paige Cruz
 
UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
DianaGray10
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
ThomasParaiso2
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 

More Related Content

More from Brussels Legal Hackers

20190221 Data subject rights in practice
20190221 Data subject rights in practice20190221 Data subject rights in practice
20190221 Data subject rights in practice
Brussels Legal Hackers
 
20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements
Brussels Legal Hackers
 
20180607 - Tech Summit presentation
20180607 - Tech Summit presentation20180607 - Tech Summit presentation
20180607 - Tech Summit presentation
Brussels Legal Hackers
 
20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase
Brussels Legal Hackers
 
20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation
Brussels Legal Hackers
 
20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN
Brussels Legal Hackers
 
20170601 - Digital festival presentation
20170601 - Digital festival presentation20170601 - Digital festival presentation
20170601 - Digital festival presentation
Brussels Legal Hackers
 
20170801 GDPR Q&A intro
20170801 GDPR Q&A intro20170801 GDPR Q&A intro
20170801 GDPR Q&A intro
Brussels Legal Hackers
 
20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)
Brussels Legal Hackers
 
20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)
Brussels Legal Hackers
 
20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons
Brussels Legal Hackers
 
20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles
Brussels Legal Hackers
 
20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles
Brussels Legal Hackers
 
20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels
Brussels Legal Hackers
 

More from Brussels Legal Hackers (14)

20190221 Data subject rights in practice
20190221 Data subject rights in practice20190221 Data subject rights in practice
20190221 Data subject rights in practice
 
20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements20180619 Controller-to-Processor agreements
20180619 Controller-to-Processor agreements
 
20180607 - Tech Summit presentation
20180607 - Tech Summit presentation20180607 - Tech Summit presentation
20180607 - Tech Summit presentation
 
20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase20180317 CLBfest 2018 - Trase
20180317 CLBfest 2018 - Trase
 
20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation20171108 IAPP Congress - Privacy by Design presentation
20171108 IAPP Congress - Privacy by Design presentation
 
20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN20171106 - Privacy Design Lab - LINDDUN
20171106 - Privacy Design Lab - LINDDUN
 
20170601 - Digital festival presentation
20170601 - Digital festival presentation20170601 - Digital festival presentation
20170601 - Digital festival presentation
 
20170801 GDPR Q&A intro
20170801 GDPR Q&A intro20170801 GDPR Q&A intro
20170801 GDPR Q&A intro
 
20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)20170620 MEETUP intro to blockchain and smart contracts (2)
20170620 MEETUP intro to blockchain and smart contracts (2)
 
20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)20170620 MEETUP intro to blockchain and smart contracts (1)
20170620 MEETUP intro to blockchain and smart contracts (1)
 
20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons20170418 MEETUP on Creative Commons
20170418 MEETUP on Creative Commons
 
20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles20170122 MEETUP on autonomous vehicles
20170122 MEETUP on autonomous vehicles
 
20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles20170122 intro MEETUP on autonomous vehicles
20170122 intro MEETUP on autonomous vehicles
 
20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels20161127 KICK-OFF Legal Hacking Brussels
20161127 KICK-OFF Legal Hacking Brussels
 

Recently uploaded

Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1
DianaGray10
 
RESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for studentsRESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for students
KAMESHS29
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
Pierluigi Pugliese
 
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfObservability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Paige Cruz
 
UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
DianaGray10
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
ThomasParaiso2
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Albert Hoitingh
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
ControlCase
 
Building RAG with self-deployed Milvus vector database and Snowpark Container...
Building RAG with self-deployed Milvus vector database and Snowpark Container...Building RAG with self-deployed Milvus vector database and Snowpark Container...
Building RAG with self-deployed Milvus vector database and Snowpark Container...
Zilliz
 
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
Neo4j
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
SOFTTECHHUB
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
Safe Software
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
KatiaHIMEUR1
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
DanBrown980551
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
Adtran
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Malak Abu Hammad
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
名前 です男
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Zilliz
 
Removing Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software FuzzingRemoving Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software Fuzzing
Aftab Hussain
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
Neo4j
 

Recently uploaded (20)

Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1
 
RESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for studentsRESUME BUILDER APPLICATION Project for students
RESUME BUILDER APPLICATION Project for students
 
By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024By Design, not by Accident - Agile Venture Bolzano 2024
By Design, not by Accident - Agile Venture Bolzano 2024
 
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfObservability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5UiPath Test Automation using UiPath Test Suite series, part 5
UiPath Test Automation using UiPath Test Suite series, part 5
 
GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...GridMate - End to end testing is a critical piece to ensure quality and avoid...
GridMate - End to end testing is a critical piece to ensure quality and avoid...
 
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
 
PCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase TeamPCI PIN Basics Webinar from the Controlcase Team
PCI PIN Basics Webinar from the Controlcase Team
 
Building RAG with self-deployed Milvus vector database and Snowpark Container...
Building RAG with self-deployed Milvus vector database and Snowpark Container...Building RAG with self-deployed Milvus vector database and Snowpark Container...
Building RAG with self-deployed Milvus vector database and Snowpark Container...
 
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
GraphSummit Singapore | Neo4j Product Vision & Roadmap - Q2 2024
 
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...
 
Essentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FMEEssentials of Automations: The Art of Triggers and Actions in FME
Essentials of Automations: The Art of Triggers and Actions in FME
 
Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !Securing your Kubernetes cluster_ a step-by-step guide to success !
Securing your Kubernetes cluster_ a step-by-step guide to success !
 
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...
 
Pushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 daysPushing the limits of ePRTC: 100ns holdover for 100 days
Pushing the limits of ePRTC: 100ns holdover for 100 days
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
 
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalizationFull-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
 
Removing Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software FuzzingRemoving Uninteresting Bytes in Software Fuzzing
Removing Uninteresting Bytes in Software Fuzzing
 
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
GraphSummit Singapore | Graphing Success: Revolutionising Organisational Stru...
 

20170620 MEETUP smart contracts proof of concept for prescriptions

  • 1. ² 1 Medical Prescriptions on a Public Blockchain Kristof Verslype, Smals Research20 June 2017
  • 2. Recap: Smart Contracts 2 Contract Auction{ function bid(){…} function end(){…} HighestBid: € HighestBidder: Beneficiary: Charlie } bid(...), 20€ end(...) bid(...), 10€ 20€ 02010 Bob Alice Charlie Alice 10€ Bob bidEvent: 10€ bidEvent: 10€ bidEvent: 20€ bidEvent: 20€ Dave Contract code execution distributed Money can be temporarily blocked by contract Function calls in transactions on blockchain
  • 3. Processing Medical Prescriptions 3 Doctor Pharmacist € € € € Mutuality Patient Tarification office Processing prescriptions s.t. reimbursement possible Real-time analysis RIZIV/INAMI Traditional money transfer Data flow Physical delivery
  • 4. Processing Medical Prescriptions 4 Doctor € € € € Mutuality Patient Tarification office Complex information flowsTraditional money transfer Data flow Physical delivery Pharmacist
  • 5. Processing Medical Prescriptions 5 Doctor Pharmacist Mutuality Patient Tarification office All other communication with blockchain Privacy & confidentiality enterprise data guaranteed Traditional money transfer Show on smartphone Physical delivery
  • 6. 7a2 3b 3a 4 5 7b 8 9 10a 10b issue() fill() confirm()insure() assign() Contract function call Event observation Direct communication Doctor Patient Pharmacist Tar. officeMutuality Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? 6a 1 6b function() Contract function The Smart Contract 6
  • 7. Privacy with permanent pseudonyms 7 Prescription 158 Valid from Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Prescription 577 Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Prescription 804 Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Reduced fee? Delivered Permanent pseudonyms offer insufficient protection of 1) citizen’s privacy and 2) confidentiality of enterprise data Id Id Id
  • 9. Different Views 9 One-time patient pseudonyms on the blockchain Rest of the world Similar for doctors, pharmacists, mutualities and tarification offices
  • 10. Link Attack 1 10 Doctor: 02/04/17, 21h30 (A) Pharmacist: 28/04/17, 20h45 (B) A B Combining info real world & blockchain can leak sensitive data Attacker knows patient identity & observes him/her physically
  • 11. 11 Doctor: 02/04/17, 21h30 (A) Pharmacist: 28/04/17, 20h45 (B) A B Prescription Medicine Valid from Patient Tarification office Mutuality Pharmacist Doctor Delivered Id Reduced fee? → Encryption of sensitive data in blockchain/smart contract Difficult attack, but one success enough to torpedo project Link Attack 1 Combining info real world & blockchain can leak sensitive data Attacker knows patient identity & observes him/her physically
  • 12. Different Views Prescription Pantoprazol 20mg True … Prescription ??? ??? … Rest of the world My Prescription Pantoprazol 20mg ??? … My … => fine grained access control with encryption 12
  • 14. 14 Toon QR-code aan Arts Interface Nieuwe code Arts Medicijn Geldig vanaf [Optioneel] Uitgeven Voorschrift Scan patient QR-code Geef voorschrift uit Etanercept 1mg
  • 17. 17 Pantoprazol 20mg Etanercept 1mg Adalimumab 5mg Adalimumab 5mg Interface Mijn voorschriften
  • 18. 18 Adalimumab 5mg << Front camera active >> Toon QR-code aan apotheker Interface - Dispense Apotheker OK
  • 19. 19 Interface - Dispense Apotheker Adalimumab 5mg Pantoprazol 20mg Process RefundDrug Processed 15,30€ 9,13€
  • 20. 20 Pantoprazol 20mg Etanercept 1mg Adalimumab 5mg Adalimumab 5mg Interface - Dispense Mijn voorschriften
  • 21. The bigger picture Een Blockchain Ecosysteem 21 Arts Mutualiteit Werkgever Hospitaal Eén medische consultatie kan een hele set acties in gang zetten, met blockchain als centrale as. Voorschrift Bewijs verstrekte hulp Bewijs van arbeidsongeschiktheid Doorverwijzing naar hospitaal Rekening hospitaal voor mutualiteit …
  • 22. Storage for 1 Year (Estimates) 22 ±270GB ±270GB Mutuality ±270GB Tar. office Only RIZIV/INAMI, mutualities and tarification offices need full copy of blockchain. If prescriptions max. 1 year valid, blockchain can be truncated s.t. old transactions are ‘forgotten’ Optimizations possible
  • 23. Key Management Good protection of keys required Link → Link → Link → Link → Link → Link → LinkLink LinkLink →Link → Link → Link → Link Link Link Link Link Link 23
  • 24. Prescription Blockchain Network 24 Full node Frequent light node Occasional light node Block creation By RIZIV/INAMI, mutualities, and/or tarification offices. Ex. Signatures by 5 of 7 mutualities
  • 25. Evaluation 25 Privacy & confidentiality - Strong guarantees - No central, all-knowing, all-mighty big brother - RIZIV/INAMI analyses in real-time while respecting privacy Communication - No complex information flows - All information everywhere (almost) in real-time Challenges - More complex key management - Higher requirements for storage and communication Higher availability => interesting blockchain case / experience

Editor's Notes

  1. “Dit Prescription is uitgegeven aan één van mijn leden en ik garandeer de terugbetaling. De pattient heeft al dan niet recht op verlaagd remgeld”
  2. Other protection mechanisms, but htis is the most interesting one
  3. Houdertje,
  4. Validity of Voorschrift and entitlement to reduced patient fee known after less than 15 seconds.
  5. Enz. Mutualiteit zou ook kunnen een bewijs van betaling op de blokchcain plaatsen Indienstnemen eerste werknemer: Het aangaan van een arbeidsovereenkomst en aanmaken van een arbeidsreglement; Het opstarten en bewaken van het registratieproces bij de RSZ; RSZ) als werkgever; Verrichten van DIMONA aangifte Een arbeidsongevallenverzekering afsluiten; Aansluiten bij een kinderbijslagfonds …
  6. Misschien is RIZIV niet meest aangewezen organisatie voor bijhouden publieke sleutels Doctoren Eventueel sturen insrueres en tarification offices de publieke sleutels door naar RIZIV -> riziv kan voor elk Prescription en elke consultatie identiteit betrokken partijen te weten komen en kan dus ook de nodige links leggen
  7. if frequent node is online can be kept by validating nodes.
  8. Ruwe vergelijking