Blockchain-Aided and Privacy-Preserving Data Governance in Multi-Stakeholder Applications

Real-world applications in healthcare and supply chain domains produce, exchange, and share data in a multi-stakeholder environment. Data owners want to control their data and privacy in such settings. On the other hand, data consumers demand methods to understand when, how, and who produced the data. These requirements necessitate data governance frameworks that guarantee data provenance, privacy protection, consent management, and selective disclosure. We introduce a decentralized data governance framework based on blockchain technology, proxy re-encryption, and Boneh, Boyen, and Shacham (BBS) signatures to let data owners control, selectively share and track their data through privacy-enhancing, consent management, and selective disclosure mechanisms. Besides, our framework allows the data consumers to understand data lineage through a blockchain-based provenance mechanism. We use Digital medical e-prescription as the use case since it handles sensitive data in a multi-stakeholder environment while showing how the medical community can manage patients’ sensitive prescription data, involving patients as data owners, and doctors, and pharmacists as data consumers. Our proof-of-concept implementation and evaluation results based on CosmWasm, Hyperledger Besu, Ethereum, pyUmbral PRE, and BBS signatures show that the proposed decentralized system is platform-agnostic, scalable and guarantees a higher degree of transparency, privacy, and trust with minimal overhead.