<sc>MedAccessX</sc>: A Blockchain-Enabled Dynamic Access Control Framework for IoMT Networks

The integration of Internet of Things (IoT) devices in healthcare has enhanced medical efficiency but poses challenges such as data privacy risks and internal abuse. Traditional IoT data access frameworks suffer from centralization, limited scalability, and static permission controls. To address these issues, we propose MedAccessX, a blockchain-based access control framework combining attribute-based access control (ABAC) and role-based access control (RBAC). MedAccessX utilizes four types of smart contracts: a user management contract (UMC) for managing user operations, a medical data management contract (MDMC) for handling data, a policy contract (PC) for managing access rights, and an access control contract (ACC) for enforcing permissions and facilitating data sharing. Our evaluation, conducted on a private Ethereum blockchain network with multiple nodes, assesses security, deployment cost, gas consumption, throughput, and response time. Comparative analysis demonstrates that MedAccessX achieves lower deployment costs and higher throughput, outperforming existing solutions.