Data utilization methods, systems, and programs using BCN (Blockchain Network)
The blockchain-based data utilization system integrates fragmented personal data, ensuring secure and reliable access while maintaining privacy, addressing the challenges of data fragmentation and misuse.
Patent Information
- Authority / Receiving Office
- JP · JP
- Patent Type
- Applications
- Current Assignee / Owner
- 中村 高歩
- Filing Date
- 2026-03-13
- Publication Date
- 2026-06-09
AI Technical Summary
Personal data is fragmented across different services, hindering its full utilization and posing privacy risks, especially for sensitive information like medical data, which is valuable but often overlooked and misused.
A data utilization system using a blockchain network to securely integrate and manage personal data, ensuring confidentiality by hashing and registering it on a ledger, allowing individuals to access and utilize their data while maintaining privacy.
Enables secure, integrated management and utilization of personal data, ensuring data reliability and confidentiality, facilitating its use across different services and institutions.
Smart Images

Figure 2026094449000001_ABST
Abstract
Description
Technical Field
[0001] The present invention relates to a data utilization method, system, and program using a BCN (Blockchain Network).
Background Art
[0002] With the development of information processing and communication, the personal information of an individual is electronically stored as data every day by daily activities of the user and regular or continuous monitoring.
[0003] The information is diverse, such as data related to the user's health, personal medical data such as treatment in a hospital and drug administration, daily shopping history information, and daily access information for searching favorite information, etc.
[0004] Those information are accumulated as data together with time information and can be treated as so-called personal history data.
[0005] Various data generated in response to such diverse activities and regular or continuous monitoring are stored in the storage used by the processing system that provides each service according to the service related to the activity, etc. For example, shopping information is scattered and stored in each service, such as shopping by credit, shopping with cash, shopping by debit card, etc., that is, in the form of purchase.
[0006] That is, such history data is managed only by the merchant that provided the service, and the user himself / herself does not have other institutions or merchants use the past history data in another form.
[0007] Therefore, historical data for each service may be highly biased. Furthermore, even in today's highly advanced information systems, related historical data from different services is fragmented by the systems providing those individual services, preventing its use as interconnected data.
[0008] Moreover, an individual's activities change constantly depending on their circumstances, and they often switch to services from different providers. Therefore, if data, which is a very important asset of an individual, is fragmented across these different services, it hinders its full utilization, both for the individual and for companies and organizations that intend to use it.
[0009] On the other hand, personal data must be handled with extreme care to protect its privacy. Simply disseminating information can lead to its misuse, such as identity theft, causing harm to others. Furthermore, information can be tampered with, resulting in significant damage. [Prior art documents] [Patent Documents]
[0010] [Patent Document 1] Patent Application Publication No. 2016-218633 [Overview of the Initiative] [Problems that the invention aims to solve]
[0011] This invention was made in view of the aforementioned problem.
[0012] Therefore, the present invention provides a data utilization system and method that allows individuals to proactively use and utilize their own personal data, and furthermore, to ensure the confidentiality of that data.
[0013] Furthermore, although this invention does not limit its purpose or the scope of data, medical data, which is personal information, is also personal property. Patients often receive treatment at multiple hospitals for many reasons, such as having multiple illnesses or changing their place of residence.
[0014] Treatment data from multiple different medical institutions is a valuable therapeutic asset for a patient, and if it can be integrated and managed as medical data, it can be used in a variety of ways. Conversely, if this medical data is fragmented across different medical institutions, necessary treatments may be overlooked.
[0015] For example, information on how a patient recovered or did not recover as a result of continuous treatment or medication administered for a particular disease is important not only for the patient but also for many medical institutions. This information can then be used to provide further improved treatment methods for other patients with similar diseases.
[0016] On the other hand, medical data is personal information and must be managed strictly. Furthermore, the reliability and confidentiality of the data as genuine personal data, as well as the reliability and confidentiality of the details of medical activities between the medical institution and the individual (e.g., treatment methods, medication methods, etc.), are also extremely important.
[0017] Therefore, the present invention provides a new method for distributing genuine information by genuine individuals and for making use of that important information.
[0018] Furthermore, this invention provides a distribution platform for appropriately processing existing personal data related to medical care, etc., and for ensuring its safe utilization. [Means for solving the problem]
[0019] According to the present invention, there is provided a method for obtaining and utilizing data related to an individual's information by an information processing apparatus used by the individual, the method comprising: transmitting, via a network, data regarding an address on a blockchain network used by the individual to a data provider related to the individual's information; issuing and registering, to an address of the blockchain network, access data (ACT) including the data regarding the address and data for identifying the data provider, from the provider; and referring to the access data (ACT) from the address of the blockchain network to identify the data provider, and obtaining data related to the individual's information from the identified provider. A data utilization method is disclosed, which consists of these steps.
[0020] This enables the use of highly confidential personal information while leveraging the reliability through the address of the blockchain network.
[0021] Furthermore, according to the present invention, the data provided from the provider includes at least one of identification information of an individual authorized to use the information processing apparatus, identification information of the information processing apparatus used by the individual, or identification information of the provider.
[0022] Furthermore, according to the present invention, the data provided from the provider includes information indicating the generation time of the data, and it is possible to refer to the temporal history of the data.
[0023] Furthermore, according to the present invention, the data provided from the provider is a data set consisting of data regarding each of a plurality of data items generated based on a plurality of pieces of historical data related to the individual.
[0024] Furthermore, according to the present invention, in the data utilization method, each of the plurality of data items is configured to indicate the latest data in the data set of the historical data, and can receive the most recent up-to-date information.
[0025] Furthermore, according to the present invention, at least data related to personal information is hashed by a hash function and registered in a ledger on a blockchain.
[0026] The present invention further provides a system for acquiring and making available data related to personal information by an information processing apparatus used by an individual.
[0027] The information processing apparatus of the system according to the present invention has at least a memory or a storage device connected to the information processing apparatus, and transmits data related to an address on a blockchain network used by an individual to a provider-side information processing apparatus having a storage device that is a source of data related to the personal information via a network. The information processing apparatus has a function of referring to access data (ACT) including data related to an address of the blockchain network issued to an address of the blockchain network and data for identifying a data source received from the provider-side information processing apparatus, and based on the access data (ACT), a function of acquiring data related to the personal information from a storage device on the providing side and storing the data in at least the memory or the storage device of the individual.
[0028] Furthermore, according to the present invention, the data provided from the above provider includes identification information of an individual authorized to use the information processing apparatus.
[0029] Furthermore, the data provided from the provider includes at least identification information of the information processing apparatus used by the individual, identification information of the provider, and information indicating the data generation time.
[0030] The data provided from the above provider is a data set composed of data related to each of a plurality of data items generated based on a plurality of pieces of historical data related to an individual. For example, each of the plurality of data items indicates the latest data in a data set of historical data.
[0031] Furthermore, data related to personal information, at least, is hashed using a hash function.
[0032] Furthermore, the present invention provides a program for acquiring data related to an individual's information, which is stored in an information processing device used by an individual and executed by a first information processing device. The program is configured to include the steps of providing a blockchain address to another information processing device and acquiring the data related to the individual's information generated in the other information processing device or a storage device used by that information processing device, based on access data (ACT) containing blockchain address information transmitted from the other information processing device based on the blockchain address.
[0033] Furthermore, the data related to the above-mentioned personal information includes the identification information of individuals authorized for use by the information processing device.
[0034] Furthermore, the data related to the above-mentioned personal information includes, at a minimum, identification information of the information processing device used by that individual, identification information of the provider, and information indicating the time the data was generated. [Brief explanation of the drawing]
[0035] [Figure 1] This is a schematic diagram showing an embodiment of the personal asset data utilization system according to the present invention. [Figure 2] Figure 1 shows a conceptual diagram illustrating how personal data is updated in storage devices that serve as information provision resources and storage devices used by users. [Figure 3] Figure 1 shows an example of the data structure of an access ticket (ACT), which is issued as access data when personal data is provided to a system other than the system that manages that personal data, in the storage device shown. [Figure 4]Figure 2 shows an example of the data structure of master data (MA) and transaction data (TR) related to personal information created in each storage device. [Figure 5A] Figure 4 shows an example of the data structure of the data section, which is a data component of the master data (MA) and transaction data (TR). [Figure 5B] Figure 4 shows an example of the data structure of the supplemental data section, which is a data component of the master data (MA) and transaction data (TR). [Figure 6] This is a schematic diagram illustrating an embodiment of the personal asset data utilization system according to the present invention, and shows an embodiment in which the received master data (MA) is provided to other parties (individuals, institutions, organizations, etc.). [Figure 7] This is a conceptual diagram illustrating the interrelationship between users, their data provider storage devices, and access tickets whose issuance history is linked on the blockchain 50. [Figure 8] This diagram illustrates the conceptual process of generating master data from different types of transaction data that occur in a time series, and the conceptual process of combining different types of master data (MA). [Figure 9] This is a conceptual diagram illustrating the application of medical data to the personal asset data utilization system according to the present invention. [Figure 10A] An example of the data body portion of transaction data (TR) and the master data (MA) generated therefrom is shown. [Figure 10B] This shows an example of the data body portion of newly generated master data (MA) from different types of transaction data. [Modes for carrying out the invention]
[0036] This invention utilizes blockchain technology, which is the core technology of cryptocurrencies such as Bitcoin. Blockchain is a distributed ledger for recording transaction records (blocks) that occur within a network as a chain of blocks. Each transaction block stores not only the details of the transaction but also the hash value of the contents of the previously generated block, so that it is recorded in the ledger as a chain of valid blocks.
[0037] When adding a new block to the blockchain, miners perform mining to ensure that a chain of verified blocks is formed.
[0038] Through consensus building via mining, a chain of legitimate blocks is distributed and stored in a database, preventing tampering and guaranteeing data security. While it is known that the first participant to verify the legitimacy of a transaction is rewarded and granted database update privileges, this does not limit the mining method; any mining method can be employed as long as a consensus on legitimacy is achieved and the possibility of fraudulent blocks being inserted into the chain is small.
[0039] Furthermore, in addition to open (or public) blockchains like those used in Bitcoin, closed (private) blockchains that limit participants are also known. This invention can utilize any type of blockchain. Thus, while blockchains come in various forms, the invention is not limited to any particular blockchain as long as it enables its implementation.
[0040] Individual transactions can be conducted using, for example, P2P communication. P2P communication can utilize, for example, the internet, mobile communication networks, or dedicated communication lines. However, this is merely an example, and other communication methods may also be used. Furthermore, while personal computers, portable smartphones, tablets, and other information processing devices can be used as information processing devices for transactions, they are not limited to these.
[0041] Blockchain technology is used in the cryptocurrency Bitcoin, and in the ledger of that cryptocurrency, blocks of cryptocurrency transaction data (for example, the amount of cryptocurrency being traded, the user's cryptocurrency payment address, the public key used to generate the user's payment address, and even hash values of the underlying capital of the currency) are created and recorded on a chain within the blockchain network.
[0042] Transaction data is secured by using the hash values and public-key cryptography described above. Furthermore, the transaction data is widely distributed to allow miners to verify its legitimacy, thus monitoring its validity.
[0043] This invention utilizes blockchain technology to leverage the legitimacy of blocks recorded on the blockchain ledger while facilitating the use of data referenced in those blocks. For example, by using blockchain technology, restrictions may be placed on specific authorized users, or on specific users and specific information processing devices, in order to ensure data confidentiality while guaranteeing the legitimacy of the transaction history. The actual transaction data itself may not exist in the block stored on the blockchain; instead, the block may contain structures or data, such as pointers, that allow it to reference the actual transaction data.
[0044] Figure 1 shows an example of the configuration of the asset data utilization system 1 according to the present invention.
[0045] As a prerequisite, it is necessary that consent be reached between the user of the user information processing device 20 and the user of the information processing device 10 regarding the provision of user information used or managed by the provider's information processing device 10 to the user.
[0046] Once this consent is formed, the provider of the information processing device 10 will be able to provide the user's activity data to the user.
[0047] The information processing device 20 used by the user has already completed the authentication registration of that user, and a user identifier (UID), which is the user's identification information, has been assigned to it. Furthermore, the terminal (device) identifier DID, which is the identification information of the information processing device 20 for that user, is uniquely registered in the information processing device 20 for the user.
[0048] Furthermore, each user has a blockchain address (also called a "BCN address" or "BCN Add" for simplicity) pre-registered, which enables ledger entries on the blockchain (BCN50 in Figure 1). The user and the provider are then set up to communicate electronically via an information processing device 20 for the user and an information processing device 10 for the provider.
[0049] The steps for providing users with their individual activity data are described below.
[0050] In parallel with or around step (3), the user transmits their BCN address (BNC Ads) from the user's information processing device 20 to the provider's information processing device 10 in order to disclose their address on the blockchain network (BCN50) to the provider (step (1)).
[0051] Assuming that data related to a user is stored in a storage device 90, in response to step (1), or independently of step (1), the user's data is retrieved from the storage device 90, which is the storage location, to the provider's information processing device 10 (step (3)). Then, from the received data, a dataset of actual values (data) corresponding to one or more data items is generated in accordance with a predetermined data format (step (2)-1), and this dataset is stored (uploaded) to the storage device 30 as transaction data (TR) (step (2)-2).
[0052] The items to be included as elements in the dataset are determined appropriately based on the agreements between the user and the provider, as well as conditions such as the items the provider can provide and the items the user desires.
[0053] The provider's information processing device 10 and the user's information processing device 20 store selection application programs for data provision in their respective memories. Each application program is executed by its respective processing device to select data items to be added to the transaction data (TR). Then, according to the selection, the data corresponding to the data items is converted into the transaction data (TR) in a predetermined format.
[0054] As transaction data (TR), the actual data content is described in a format that can be read corresponding to the data items, making it readable not only by the provider's information processing device 10 but also by the user's information processing device 20 and third-party terminals. For example, the JSON format can be used.
[0055] The provider's information processing device 10 further includes a program for generating transaction data (TR) and generating master data (MA) from that transaction data (TR). The provider's information processing device 10 is the one that provides data to the user, and the user is the one that receives the data. However, as will be explained later, the user can also be the one that provides the received data. Therefore, the application programs for the user's information processing device 20 and the provider's information processing device 10 may have different functions, but they do not necessarily need to have application programs with different functions. They may have application programs with the same functions, or application programs for executing the functions described later. In other words, it should be recognized that the functions described for one information processing device may also be present in other information processing devices for the same purpose. Furthermore, some execution, such as the generation of transaction data (TR) and master data (MA), may be offloaded to the storage device.
[0056] In step (1), upon receiving the user's BCN address (BCN Add), the provider's information processing device 10 transmits the BCN address (BCN Add) and a data resource identifier (SID) for identifying the data resource to the storage device 30. Upon receiving this, the provider's information processing device 10 generates an access ticket (ACT). Note that the data resource identifier (SID) is not limited to the terminal (device) identifier DID of the user's information processing device 20, but may also be the identifier of the storage device 30, as long as the source of the data can be identified. Furthermore, while storage devices may be widely distributed, such as secret-sharing storage devices, the data resource identifier (SID) can be any identifier as long as the data in the storage device can be accessed.
[0057] This access ticket (ACT) is the data that will be recorded on the user's blockchain.
[0058] Figure 3 is a data configuration diagram of an access ticket (ACT) according to one embodiment of the present invention.
[0059] An Access Ticket (ACT) is a hash value of predetermined data adapted to the blockchain. The data elements are the hash value of the user's BCN address (BCN Add), the data resource identifier (SID), and the secret string corresponding to the data resource identifier (SID), which are hashed using a hash function. For example, using MD5 as the hash function results in a 128-bit hash value. This allows the fixed-length Access Ticket (ACT) to be recorded on the blockchain network (BCN). Although not shown in Figure 1, the issuance of an Access Ticket (ACT) may be separately communicated from the provider's information processing device 10 to the user's information processing device 20. Alternatively, registration to the blockchain network (BCN) may be performed via the user's information processing device 20.
[0060] The issuance of this data indicates that the data from the Data Resource Identifier (SID) is available to the user, and that the user has the authority to obtain that data.
[0061] The user then uses the access ticket (ACT) to access transaction data (TR) and master data (MA) generated therefrom, which are stored in the storage device 30 managed by the provider's information processing device 10.
[0062] Transaction data (TR) and master data (MA) have a predetermined format to enable users to access and manipulate the data, as well as provide the data to other third parties.
[0063] In this case, the original data provided by the provider often exists separately as activity data for users at different times. Therefore, it is possible to prepare multiple transaction data (TRs) corresponding to each original data, even if they are of the same type. Furthermore, the original data provided by the provider may also contain activity data of different types, and the recorded items of each data may differ. Therefore, it is possible to prepare separate transaction data (TRs) that have the same basic format but differ in record length and the data items they record.
[0064] Furthermore, requests for personal data from the user's information processing device 20 are not necessarily made only once. Multiple requests may be made to the provider's information processing device 10 at intervals to ensure that personal data generated for each activity is received.
[0065] Thus, the transaction data (TR) generated in the storage device 30 may be generated as one or more transaction data (TRs).
[0066] Figure 1 illustrates an example where a single master data (MA) is created from a single transaction data (TR) and provided to the user, for the sake of simplicity.
[0067] The storage device 30 has a program or macro instruction stored in a memory (not shown), and the processing unit of the storage device 30 executes that program or macro instruction. Note that the program includes macro instructions, and here, macro instructions are used separately for the sake of clarity and ease of understanding.
[0068] When a program or macro instruction receives a BCN address (BCN Add) and a data resource identifier (SID) indicating the source of data to the user's information processing device 20 from the provider's information processing device 10, it generates an access ticket (ACT) based on that information (step (4)). Alternatively, the storage device 30 may generate master data (MA) based on transaction data (TR) (step (5)). The access ticket (ACT) is then returned to the provider's information processing device 10 (step (4)-1).
[0069] As already explained, an Access Ticket (ACT) grants a user the right to view and download data used or managed by the provider's information processing device 10, and is issued via the provider's information processing device 10 (step (4)-2).
[0070] The destination for the access ticket (ACT) is the user's BCN address (BCN Add) provided by the information processing device 20. The user can obtain the access ticket (ACT) through the user's information processing device 20 by accessing BCN 50 (step (6)).
[0071] Since the acquired access ticket (ACT) contains a data resource identifier (SID), the user can use this information to refer to the master data (MA) stored in the storage device 30, either via the provider's information processing device 10 or directly, and download the master data (MA) to the memory 21 of the user's information processing device 20 (step (7)).
[0072] As already explained, there is not necessarily only one transaction data (TR), but there can be multiple transaction data TRs TR(1) to TR(n) generated in different time series. Furthermore, it is possible to accept multiple data requests R1 to Rn at intervals based on individual requests from users. Figure 2 shows a conceptual diagram illustrating how master data MA(1) to MA(n) are generated by receiving multiple data requests R1 to Rn and processing corresponding to each request G1 to Gn.
[0073] Each of the generated master data MA(1) to MA(n) is provided to the user as an added asset, and in response to data requests R1 to Rn, an access ticket (ACT) is sent to the BCN address (BCN Add), allowing the user to access and retrieve each of the master data MA(1) to MA(n).
[0074] In Bitcoin, a token for each transaction is issued to the BCN, forming a blockchain of those tokens as a ledger, with blocks linked in chronological order of the transactions. In contrast, in the example according to the present invention, a chain of access ticket (ACT) blocks is registered in the ledger, and these blocks are linked in chronological order.
[0075] Figure 4 is a data structure diagram of transaction data (TR) and master data (MA) according to one embodiment of the present invention.
[0076] Transaction data (TR) and master data (MA) components include the contents of the access ticket (ACT) issued to the user to indicate that the data was generated in response to the user's request.
[0077] Users can obtain access rights to the master data (MA) through an access ticket (ACT) issued by the provider's information processing device 10. The access ticket (ACT) contains information on the data resource identifier (SID) (see Figure 3), and the user's information processing device 20 can access the data by referring to it.
[0078] The basic components of master data (MA) and transaction data (TR) include a data section and an additional data section, in addition to the access ticket (ACT) (see Figure 4).
[0079] Figure 5A shows the components of the data section. The data section can be divided into a data header section and a data body section.
[0080] The data header consists of a User Identifier (UID), a Device Identifier (DID), and a Data Resource Identifier (SID).
[0081] On the other hand, the data body consists of 1 to k individual data items (values). The value of k can be any number, and therefore, the data length of the data body does not need to be fixed. The data body also includes a timestamp indicating the date and time when this transaction data (TR) or master data (MA) was created. This makes it possible to manage transaction data (TR) and master data (MA) in the order they were created.
[0082] Figure 5B shows additional data. This additional data consists of a sending address indicating the destination of the data (for example, the user's BCN address) and ACL conditions that define the conditions for viewing the data (access conditions).
[0083] ACL conditions consist of a "start time" indicating the initial time of access, an "end time" indicating the final time of access, and a "number of views" limiting the number of views. Note that these access conditions are examples, and various access conditions or combinations thereof may be used. Furthermore, the information processing device may be equipped with an application program that provides an interface for users to input these conditions.
[0084] Although both transaction data (TR) and master data (MA) have been described, the two types of data do not necessarily need to have the same structure. Furthermore, a separate data type field may be added to each to facilitate distinction between transaction data (TR) and master data (MA). Additionally, supplementary data may be stored separately in the storage device 30, rather than being included in the data structure of the transaction data (TR) and master data (MA). If supplementary data is separated, it should be made possible to associate it with the transaction data (TR) or master data (MA), and managed by the program of the storage device 30 or the application program of the information processing device 10.
[0085] Up to this point, the explanation has been based on the assumption that individual authentication has already been performed. However, the provider's information processing device 10 and the user's information processing device 20 have functions to authenticate whether the person attempting to use the terminal is a legitimate user. For example, the user's information processing device 20 has biometric authentication functions such as fingerprint, voice cord authentication, or vascular authentication, and attempts to authenticate the individual by uniquely associating the authentication data with the individual. Once personal authentication has been performed and the user has been identified as a legitimate user, the application program installed on the information processing device 20 is permitted to run.
[0086] As shown in Figure 1, the asset data utilization system 1 uses an information processing device 10 for data providers and an information processing device 20 for users to provide data from the information processing device 10 to the information processing device 20.
[0087] Furthermore, as shown in Figure 6, when data is provided to the user-facing information processing device 20, there may be a third-party information processing device 60 for providing that data separately. The process of providing data from the user-facing information processing device 20 to the third-party information processing device 60 is basically the same as the process of providing data from the provider-facing information processing device 10 to the user-facing information processing device 20. Note that if it is simply a matter of providing data, the BCN address (BCN Add) can be the BCN address (BCN Add) used by the user, and the access ticket (ACT) is the access ticket (ACT) created by the user-facing storage device 40.
[0088] The BCN address (BCN Add) is generated by the application program of the user information processing device 20, and the access ticket (ACT) can be generated from the terminal (device) identifier DID information of the user information processing device 20. Specifically, the BCN address (BCN Add) and access ticket (ACT) are generated in a relatively early stage before the user provides data, as follows.
[0089] First, the local application program of the user information processing device 20 transmits the user identifier (UID) to the user storage device 40 and instructs it to generate a private key. The program or macro instruction stored in the user storage device 40 generates a public key and a private key in response to that instruction. Upon receiving the generated public key and private key, the application program of the user information processing device 20 generates a BCN address (BCN Add). The user storage device 40 receives the generated BCN address (BCN Add), hashes it, and generates an access ticket (ACT) by hashing the hash value, the data resource identifier (SID) indicating the terminal (device) identifier DID of the user information processing device 20, and the secret string of the data resource identifier (SID). Furthermore, as already explained with respect to storage device 30, if the data on user storage device 40 can be accessed, the data resource identifier (SID) does not necessarily have to be the terminal (device) identifier DID of the information processing device 20 itself. It may be the identifier of the storage device itself, or any information that can identify the data according to the secret sharing storage can be used.
[0090] Returning to the topic of data transmission from the user's information processing device 20 to the third-party's information processing device 60, the access ticket (ACT) can be notified to the third-party's information processing device 60. At the same time, master data (MA) to be provided to the third-party's information processing device 60 is generated from the transaction data (TR).
[0091] The third-party information processing device 60 can obtain master data (MA) from the user storage device 40 via the BCN address (BCN Add). The third party can then store the data in the storage device used by the information processing device 60 as needed, enabling shared use of the data.
[0092] Figure 7 shows the relationship between the access tickets (ACTs) registered in the blockchain 50, the terminal (device) identifier DID and user identifier (UID) of the user information processing device 20, and the contents of the master data (MA) of the storage device 30.
[0093] Multiple access tickets (ACTs) linked in a chain contain a data resource identifier (SID), which functions as a pointer to the storage device 30 managed by the provider's information processing device 10. Furthermore, the master data (MA) recorded in the storage device 30 contains a user identifier (UID) and a terminal (device) identifier (DID) as elements of the data header, which function as a pointer to the user's information processing device 20. The information processing device 20 authenticates the user using their user identifier (UID) and generates a BCN address (BCN Add) using that user identifier (UID), which is also a pointer to the access ticket (ACT) on the BCN address (BCN Add).
[0094] Such a relationship is maintained, and the legitimacy of the access ticket (ACT) is agreed upon on the BCN address (BCN Add). Furthermore, it is preferable that the storage devices 30 and 40 that store transaction data (TR) and master data (MA) be secret-sharing storage devices, as the data is managed in a distributed manner, further maintaining the confidentiality and security of the data.
[0095] The user-facing information processing device 20 already has an environment set up to provide data on the blockchain 50. Each time data in a predetermined form based on its specifications is posted to the blockchain 50, a data chain is formed on the blockchain 50 using hash values, ensuring data security.
[0096] Because the size of the data provided on the data chain is limited, the actual data corresponding to that data can be stored in the storage device 30 or the user storage device 40.
[0097] Figure 8 is a conceptual diagram illustrating the process of generating master data from different types of transaction data that occur in a time series, then consolidating these different types of master data (MA) to generate new master data (MA).
[0098] The vertical axis represents the passage of time. This time can be, for example, the time when each transaction data (TR) and master data (MA) was generated, and is indicated by the timestamp, which is a data element. Two types of transaction data (TR) are generated: TR_A(m) and TR_B(n) (m and n are numbers in order of elapsed time). Each time transaction data TR_A(m) and TR_B(n) are generated, master data MA_A(m) and MA_B(n) are generated. Furthermore, if different types of master data (MA) are generated, these generated master data (MA) are combined to generate new master data, MA_C(h) (h is a number in order of elapsed time). As can be understood from this, master data (MA) is also used as transaction data (TR) to generate the next master data (MA).
[0099] Referring to Figure 1, the transaction data TR_A(m) and TR_B(n) may be generated within the storage device 30 used by the information processing device 10, but they may also be generated in different storage devices used by different information processing devices. This depends on how the user's data is managed externally.
[0100] If different types of transaction data TR_A(m) and TR_B(n) are generated in the same storage device, a master data MA_C(h) may be generated within the same storage device, for example, by matching the same user identifier (UID). Alternatively, master data (MA) obtained from the same type of transaction data (TR) (for example, MA_A(2) and MA_B(1)) may be stored in a storage device 40 used by the user information processing device 20, and a matching master data (MA) (for example, MA_C(1)) may be generated within that device.
[0101] The merged master data (MA) is different from conventional data resources because the storage device that generated it becomes a new resource. Therefore, the data resource identifier (SID) is changed to one that can reference the newly generated master data (MA).
[0102] In this way, multiple types of transaction data (TR) can be obtained from the same data resource or from multiple data resources. By enabling retrieval from multiple data resources, the data can be used as new data that complements each other. Furthermore, the rules for data matching will differ depending on the type of data, and should be determined appropriately according to the data items. For example, a new master data (MA) can be created by combining data items from one master data (MA) with data items from another type of master data (MA) to create new data items that show different indicators. This generation of new data items could be done, for example, by merging data from a data resource related to exercise data and a data resource related to diet data to generate new data that includes calorie calculations.
[0103] As can be understood from Figures 1 and 6 and their descriptions, the application program of the user-facing information processing device 20 can include two major functions: receiving data from the provider-facing information processing device 10 (including the storage device 30) and providing data to third parties. For receiving data, it is possible to retrieve data from the user-facing information processing device 10 by referring to access tickets (ACTs) or the history of access tickets (ACTs) sent from the provider-facing information processing device 10 via the blockchain, or to upload data held by the processing device itself to a storage device used by the processing device (preferably secret-sharing storage, hereinafter the same). Furthermore, as already explained, the user-facing information processing device 20, like the provider-facing information processing device 10, can also provide data, and this can include not only generating and providing data to third parties using its own BCN address (BCN Add), but also providing data using the recipient's BCN address (BCN Add). It may also be possible to check distributed slips chained with one's own BCN address (BCN Add) and even preview their history.
[0104] It is undesirable to have ordinary users perform such detailed processing steps. Therefore, in order to avoid cumbersome operations for the user, a user interface is provided by an application program on the display screen of the user's information processing device 20, which groups a series of procedures so that they can be performed with a single button, or with simple operations.
[0105] Figure 9 is a conceptual diagram of a medical information utilization system for utilizing medical data, as one embodiment of the present invention. It is configured to acquire multiple types of transaction data (TR) from different institutions, as shown in Figure 8.
[0106] The central section represents the user, while the medical institutions, medical data cloud, and healthcare business companies on the left represent the medical organizations that the user utilizes (operates with). Typically, each has different medical data, which is retrieved into the user's secret-shared storage, and then, if necessary, the data is consolidated to generate new master data (MA).
[0107] Medical data concerning an individual's physical and mental health exists in multiple and diverse forms. For example, there is medical data stored in the internal databases of medical institutions such as hospitals, medical data stored in medical data clouds accessed and used by medical institutions, and data stored by businesses that provide healthcare services for individuals (for example, companies that provide services to support mental health measures or lifestyle-related disease prevention).
[0108] First, prior consent will be obtained for the electronic transfer of data between individuals and cloud systems or database systems that serve as information resources for their medical data, enabling individuals to consolidate and manage their own medical data scattered across various locations and services. Furthermore, medical data can be broadly defined as any data relating to an individual's health, regardless of its type or content.
[0109] Based on consent, data stored in your private storage can be provided to healthcare institutions and healthcare companies (on the right) after obtaining consent for data provision from the user's private storage.
[0110] Blockchain networks are used to ensure that consent is properly formed, verify the authenticity of individuals, and guarantee the reliability of the data as genuine and unaltered. By chaining the data, data tampering is virtually impossible, thus ensuring data reliability. Furthermore, the data on the blockchain is not actually medical data; rather, it is indicated by pointers recorded on the blockchain network ledger, and these pointers point to secret-sharing storage. As a result, the data is decentralized, ensuring confidentiality and making tampering difficult, and allowing for recovery even if the data is partially corrupted or lost.
[0111] The data can be grouped into data resource provision units, and even if new data or data updates are added, the blockchain allows it to be structured as a single record, making it possible to view an individual's medical data from the past to the present.
[0112] For example, by allowing Mr. A's regular health checkup data to be referenced in a single record on BCN, it becomes possible to view data from the most recent checkup to past checkups.
[0113] Furthermore, as explained earlier regarding data matching, it is possible to combine different data to generate new data, and the pointers that reference this past data and new data can be linked together in a chain on the blockchain network (BCN). Since the reference pointers to the data, including both the new and past data, will not be corrupted, it is possible to reduce the loss of medical data.
[0114] Referring to Figures 10A and 10B, the generation of transaction data (TR) and the master data (MA) derived from it will be explained using medical data as an example.
[0115] Figures 10A and 10B show only the data body portions of transaction data (TR) and master data (MA). The data body portion may contain only one item, but typically, as in this example, it contains multiple data items.
[0116] In the example shown in Figure 10A, there are two types of transaction data, TR_A and TR_B. For ease of understanding, they are numbered in parentheses in order of their occurrence time. Here, transaction data TR_A is biodata obtained based on "physical measurements," and transaction data TR_B is biodata obtained based on "vital signs" measurements.
[0117] Therefore, each type of transaction data, TR_A and TR_B, consists of different data items, and each data item has personal data (or values). Parts where personal data is unavailable are indicated as "null". In other words, transaction data (TR) is a dataset combining data from multiple items related to an individual, and multiple transaction data (TR) represent the history of these transactions.
[0118] The meaning and units of each item are managed by the application programs installed on the information processing device, or by the memory and storage devices of the information processing device, and the data of each data item is associated with the data of other items.
[0119] Master data (MA) is generated for each transaction data (TR). Here, they are shown with the same number to illustrate their correspondence.
[0120] Since the most recent data in the master data (MA) preferably represents the latest data for that individual, the system is programmed to ensure that for each data item, the most recent master data (MA) represents the latest data from the historical transaction data (TR). However, "null" values are ignored because the data is not available. In other words, in a set of multiple datasets (TR) representing an individual's history, each item represents the latest data from its historical data set. For example, the first transaction data TR(1) is used to generate master data MA(1). In the next transaction data TR(2), the MA(2) generated in response to that transaction data TR(2) is created by combining transaction data TR(2) and the previous master data MA(1), ignoring "null" parts and showing the latest data for each data item.
[0121] When instructed to generate master data (MA), the program generates the master data (MA) according to such rules. Figure 10A shows the data contents of the transaction data (TR) and master data (MA).
[0122] In addition to updating the master data (MA), the program also has a function for data matching, that is, the function of combining master data (MA) data. An example of this is shown in Figure 10B.
[0123] The "Generated Master Data (MA)" in Figure 10B shows the master data (MA_A and MA_B) generated in the order in which the two types of transaction data TR_A and TR_B in Figure 10A occurred, corresponding to each transaction data (TR).
[0124] The "newly generated master data (MA)" shows the newly generated master data MA_C in the order they are arranged. The rules for generating the master data MA_C here are the same as in Figure 10A.
[0125] Furthermore, while multiple types of master data (MA) may be obtained from different data resource identifiers, it is possible to generate new master data (MA) by combining only the master data (MA) of the same user by referring to the user identifier (UID) present within the master data (MA).
[0126] The generation of combined data using master data (MA) may be programmed to perform more advanced processing than simply reading the contents (data) of the relevant data items. For example, if the data items of transaction data (TR) are body fat weight (kg) and body weight (kg), the combined generation program may include a calculation program that calculates body fat weight (kg) ÷ body weight (kg) x 100, and the resulting body fat percentage (%) may be used as the data for the newly generated data item. In this way, the combined generation program may be appropriately configured according to the purpose, and even more advanced data utilization becomes possible by generating combined data from different user identifiers (UIDs).
[0127] As can be understood from the above explanation, if a user includes the identifier of the storage device they use or the processing unit 20 that manages it in the contents of their access ticket (ACT) and records it in the ledger for their BCN address, they can also access their latest and past data from that storage device. Furthermore, they can also provide their data to third parties. To make these processes easy for users, buttons such as "Test Results," "Send to Doctor," and "Past Results" may be provided on the operation screen as part of the user interface.
[0128] Furthermore, in order to securely exchange data between providers and third parties via the blockchain network (BCN), the blockchain address (BCN Add) may be converted into a QR code (registered trademark), and the application program may read the QR code (registered trademark) with a camera installed in the information processing device and send it to the recipient as a BCN address.
[0129] Furthermore, the following will be disclosed. (Item 1) A method for acquiring and utilizing data related to an individual's information using an information processing device used by that individual, The steps include: transmitting data relating to the address on the blockchain network used by the said individual to a data provider related to the information of said individual via the network; The steps include: issuing and registering access data (ACT) containing data relating to the address and data for identifying the data provider to the address on the blockchain network from the provider; The steps include: identifying the data provider by referring to the access data (ACT) from the address of the blockchain network, and obtaining data related to the personal information from the identified provider; A data utilization method consisting of the following. (Item 2) The data utilization method described in item 1 includes personal identification information authorized for use by the information processing device, provided by the aforementioned provider. (Item 3) The data utilization method described in either item 1 or 2, wherein the data provided by the aforementioned provider includes identification information of the information processing device used by the aforementioned individual. (Item 4) The data utilization method described in any of items 1 to 3, wherein the data provided by the aforementioned provider includes the provider's identification information. (Item 5) The data utilization method described in any of items 1 to 4, wherein the data provided by the aforementioned provider includes information indicating the time of generation of the data. (Item 6) The data utilization method described in any of items 1 to 5, wherein the data (MA) provided by the aforementioned provider is a dataset consisting of data for each of multiple data items generated based on multiple data (TR) which are historical data about the aforementioned individual. (Item 7) A data utilization method described in item 6, wherein each of the multiple data items represents the latest data in the historical data dataset. (Item 8) A data utilization method described in any of items 1 to 7, wherein at least the data related to the aforementioned personal information is hashed using a hash function. (Item 9) A system for acquiring and utilizing data related to an individual's information using an information processing device used by that individual, the system comprising the information processing device, The information processing device has at least a memory or a storage device connected to the information processing device. The aforementioned information processing device has a function of transmitting data relating to the address on the blockchain network used by the individual to a provider-side information processing device having a storage device that is the source of data related to the individual's information, via the network. The provider-side information processing device has a function to refer to access data (ACT) issued to the address on the blockchain network, which includes data relating to the address and data for identifying the data provider. Based on the access data (ACT), the function retrieves data related to the personal information from the provider's storage device and stores it in at least the personal's memory or storage device. A data utilization system that has [this feature]. (Item 10) The data utilization system described in item 9 includes personal identification information authorized for use by the information processing device, provided by the aforementioned provider. (Item 11) A data utilization system according to any one of items 9 to 10, wherein the data provided by the provider includes at least identification information of the information processing device used by the individual, identification information of the provider, and information indicating the time of data generation. (Item 12) The data utilization system described in any of items 9 to 11, wherein the data (MA) provided by the aforementioned provider is a dataset consisting of data for each of multiple data items generated based on multiple data (TR) which are historical data about the aforementioned individual. (Item 13) A data utilization system as described in item 12, wherein each of the multiple data items represents the latest data in the historical data dataset. (Item 14) A data utilization system as described in any of items 9 to 13, wherein at least the data related to the aforementioned personal information is hashed using a hash function. (Item 15) A program stored in an information processing device used by an individual and executed by a first information processing device, for acquiring data related to the information of said individual, The steps include providing a blockchain address to another information processing device, A program that retrieves data related to the personal information generated in the other information processing device or a storage device used by the other information processing device, based on access data (ACT) containing information about the blockchain address transmitted from the other information processing device based on the blockchain address. (Item 16) The program described in item 15 includes, among other things, data related to the aforementioned personal information, which includes the identification information of an individual authorized for use by the information processing device. (Item 17) A program according to any one of items 15 to 16, wherein the data relating to the personal information includes at least identification information of an information processing device used by the personal, identification information of the provider, and information indicating the time of data generation. In addition, the following will be disclosed. (Item A-1) A program that is executable by the data receiving information processing device or system, and subject to the formation of an agreement regarding data provision between the said information processing device or system and another information processing device or system on the data providing side, enables the said information processing device or system to access or obtain data from the said other information processing device or system, the program being: The steps include providing address information of the blockchain network used by the aforementioned information processing device or system to the other information processing device or system, The steps include: accessing the data in the storage device by referring to access data registered on the blockchain network, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system; A program that enables the information processing device or system to perform a process including the above. (Item A-2) The program according to item A-1, which includes the step of accessing updated or new data by referencing access data that has been added and registered in a chain with the access data already registered on the blockchain network, in response to the data of the other information processing device or system being updated or newly added. (Item A-3) An information processing device or system that enables access to refer to or acquire data from the other information processing device or system, subject to the formation of consent regarding data provision between the information processing device or system on the data receiving side and the other information processing device or system on the data providing side, A function to provide address information of the blockchain network used by the aforementioned information processing device or system to the aforementioned other information processing device or system, Access data registered on the blockchain network, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system, and has a function to access the data in the storage device. Information processing device or system, including. (Item A-4) The information processing device or system described in item A-3, which has the function of accessing the updated or new data by referencing the additionally generated access data registered in a chain with the access data already registered on the blockchain network, in response to the data of the other information processing device or system being updated or newly added, and which provides access to the updated or new data. (Item A-5) A method for enabling access to refer to or acquire data from another information processing device or system, subject to the formation of consent regarding data provision between the data receiving information processing device or system and the data providing other information processing device or system, The steps include: providing the information processing device or system with address information of the blockchain network used by the information processing device or system to the other information processing device or system; The steps include: accessing the data in the storage device by referring to access data registered on the blockchain network by the information processing device or system, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system; Methods that include... (Item A-6) The method of item A-5, which includes the step of accessing the updated or new data by referencing access data that has been added for accessing the updated or new data in response to the data being updated or newly added to the data being used by the other information processing device or system, and which has been added for accessing the updated or new data by referencing the additionally generated access data that has been registered in chain with the access data already registered on the blockchain network. [Explanation of symbols]
[0130] 1. Asset Data Utilization System 10. Information processing device for providers 20. Information processing device for users 30, 40. Storage devices (secret sharing storage devices) 50. Blockchain Network
Claims
1. A program that is executable by the data receiving information processing device or system, and subject to the formation of an agreement regarding data provision between the said information processing device or system and another information processing device or system on the data providing side, enables the said information processing device or system to access or obtain data from the said other information processing device or system, the program being: The steps include providing address information of the blockchain network used by the aforementioned information processing device or system to the other information processing device or system, The steps include: accessing the data in the storage device by referring to access data registered on the blockchain network, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system; A program that enables the information processing device or system to perform a process including the above.
2. The program according to claim 1, comprising the step of accessing updated or new data by referencing access data that has been additionally generated for accessing the updated or new data in response to the data of the other information processing device or system being updated or newly added, and which has been registered in a chain with the access data already registered on the blockchain network.
3. An information processing device or system that enables access to refer to or acquire data from the other information processing device or system, subject to the formation of consent regarding data provision between the information processing device or system on the data receiving side and the other information processing device or system on the data providing side, A function to provide address information of the blockchain network used by the aforementioned information processing device or system to the aforementioned other information processing device or system, Access data registered on the blockchain network, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system, and has a function to access the data in the storage device. Information processing device or system, including.
4. The information processing device or system according to claim 3, which has a function to access the updated or new data by referencing the additionally generated access data registered in a chain with the access data already registered on the blockchain network, in response to the data of the other information processing device or system being updated or newly added, and which provides access to the updated or new data.
5. A method for enabling access to refer to or acquire data from another information processing device or system, subject to the formation of consent regarding data provision between the data receiving information processing device or system and the data providing other information processing device or system, The steps include: providing the information processing device or system with address information of the blockchain network used by the information processing device or system to the other information processing device or system; The steps include: accessing the data in the storage device by referring to access data registered on the blockchain network by the information processing device or system, which is generated based on the address information and the identification information of the data stored in the storage device used by the other information processing device or system; Methods that include...
6. The method according to claim 5, further comprising the step of accessing the updated or new data by referencing access data that has been additionally generated for accessing the updated or new data in response to the data being updated or newly added to the data being used by the other information processing device or system, and which has been registered in a chain with the access data already registered on the blockchain network.