Blockchain-based decentralized identity management provides a promising solution to improve the security and privacy of healthcare systems and make them scalable. Traditional Identity Management Systems are centralized, which makes them single-point-of-failure, vulnerable to attacks and data breaches, and non-scalable. In contrast, decentralized identity management based on the blockchain can ensure secure and transparent access to patient data while preserving privacy. This approach enables patients to control their personal health data while granting permission for medical personnel to access specific information as needed. We propose a decentralized identity management system for healthcare systems named BDIMHS based on a permissioned blockchain with Hyperledger Indy and Hyperledger Aries. We develop further descriptions of required functionalities and provide high-level procedures for network initialization, enrollment, registration, issuance, verification and revocation functionalities. The proposed solution improves data security, privacy, immutability, interoperability, and patient autonomy by using selective disclosure, zero-knowledge proofs, Decentralized Identifiers, and Verifiable Credentials. Furthermore, we discuss the potential challenges associated with implementing this technology in healthcare and evaluate the performance and security of the proposed solution.

翻译：基于区块链的去中心化身份管理为解决医疗系统的安全性与隐私保护问题、提升其可扩展性提供了有前景的方案。传统身份管理系统采用集中式架构，存在单点故障风险，易受攻击和数据泄露，且扩展性不足。相比之下，基于区块链的去中心化身份管理能够在保障隐私的同时，确保患者数据访问的安全性与透明性。该方案使患者能够控制个人健康数据，并根据需要授权医疗人员访问特定信息。我们提出了一种面向医疗系统的去中心化身份管理系统BDIMHS，该系统基于采用Hyperledger Indy和Hyperledger Aries的许可链构建。我们进一步描述了所需功能，并给出了网络初始化、注册、登记、颁发、验证与撤销功能的高级流程。该方案通过选择性披露、零知识证明、去中心化标识符和可验证凭证，提升了数据安全性、隐私性、不可篡改性、互操作性及患者自主权。此外，我们讨论了在医疗领域实施该技术可能面临的挑战，并评估了所提方案的性能与安全性。