Decentralized Medical Records

3 pointsby SERSI-S2 hours ago2 comments

SERSI-S2 hours ago
What I mean is, I envision a scenario in which personal data such as patient data is stored separately and independently from other institutions; that patient data is encrypted and then distributed to the IFPS, while the IFPS ID is stored on an immutable blockchain
- dannypdxan hour ago
  I'll get flamed and downvoted if I name the open source project I've been grinding on for over a year to address sensitive data access by autonomous agents in a way that is similar... but I've been thinking of similar things - data sovereignty.
  I think the solution is is for people to own their data, with cryptographic protections and audit trails. We should have the ability to grant JiT privileges to extremely narrowly scoped pieces, as needed, scrubbed of PII prior to egress. Patients should have to cryptographically sign temporary access, which is revoked immediately after the task... the ux should be as simple as a docusign... I could go on and on...
  But, yeah, you're not alone.
  - SERSI-San hour ago
    You’re absolutely right. In my opinion, data like medical records is the most sensitive data in the world. How can you possibly entrust your data to another institution or organization when you don’t know if it could just be taken without your consent? I see a lot of medical records circulating out there being bought and sold, looking like a pile of trash.
    I looked at this repository and tried running it: https://github.com/Mzhvnn-tch/sehati-apps. Maybe you can see how this workflow operates.
Benderan hour ago
How is authentication, authorization, logging and data retention policy handled?
- SERSI-San hour ago
  Key management and authentication are indeed complex issues, just as I had initially suspected, but after reading some older cryptography texts, I realized that we can use a key-sharing method. In an emergency, we can share the key with family members for authorization purposes or other technical matters.