Mobile Health Systems for Community-Based Primary Care: Identifying Controls and Mitigating Privacy Threats

Iwaya, Leonardo Horn; Fischer‐Hübner, Simone; Åhlfeldt, Rose‐Mharie; Martucci, Leonardo A.

doi:10.2196/11642

Cited by 20 publications

(15 citation statements)

References 24 publications

(60 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Although the results highlight the use of the most important reactive risk assessment tools in the healthcare sector such as Incident Reporting [80,81,88], Root Cause Analysis [31,69], and Failure Mode and Effect Analysis [16], it describes not enough studies useful to investigate this topic. Furthermore, the results describe the main cyber risks applied at the management of electronic medical records [33,41,62], electronic health records [26,55,71,89], telemedicine devices [16], and mobile health [38,40,62,83]. The literature analyzed calls for studies to other subject areas such as Business, Management and Accounting; Social Science; and Mathematics.…”

Section: Discussionmentioning

confidence: 99%

Cyber Risk in Health Facilities: A Systematic Literature Review

et al. 2020

View full text Add to dashboard Cite

The current world challenges include issues such as infectious disease pandemics, environmental health risks, food safety, and crime prevention. Through this article, a special emphasis is given to one of the main challenges in the healthcare sector during the COVID-19 pandemic, the cyber risk. Since the beginning of the Covid-19 pandemic, the World Health Organization has detected a dramatic increase in the number of cyber-attacks. For instance, in Italy the COVID-19 emergency has heavily affected cybersecurity; from January to April 2020, the total of attacks, accidents, and violations of privacy to the detriment of companies and individuals has doubled. Using a systematic and rigorous approach, this paper aims to analyze the literature on the cyber risk in the healthcare sector to understand the real knowledge on this topic. The findings highlight the poor attention of the scientific community on this topic, except in the United States. The literature lacks research contributions to support cyber risk management in subject areas such as Business, Management and Accounting; Social Science; and Mathematics. This research outlines the need to empirically investigate the cyber risk, giving a practical solution to health facilities.

show abstract

Section: Discussionmentioning

confidence: 99%

Cyber Risk in Health Facilities: A Systematic Literature Review

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Content may change prior to final publication. Citation information: DOI 10.1109/ACCESS.2020.2999934, IEEE Access Nurgalieva et al: Security and Privacy Evaluation Review and the GeoHealth Privacy Impact Assessment (PIA) framework [90]. Table 2 provides information on the validation of both new and existing evaluation frameworks.…”

Section: ) Origin and Focusmentioning

confidence: 99%

“…Only 40% (4/10) of frameworks were specific to the evaluation of security and/or privacy of mHealth applications. While one study focused solely on the privacy of mHealth apps by applying the Privacy Impact Assessment (PIA) framework [90], the remainder targeted both security and privacy at the same time.…”

Section: ) Origin and Focusmentioning

confidence: 99%

“…Intermediate stage, testing. At the intermediate stage between the creation of mHealth apps and their adoption ( Table 3, yellow colour), studies address the following objectives: systematic identification and evaluation of potential privacy risks in mHealth Data Collection Systems [90], improving the quality of mHealth apps [91], and e-mental health assessment at organisational level or as a self-assessment for app developers [84]. Target users here are more mixed: app developers, health care providers, mental health advocates, app users, policy makers, and researchers.…”

Section: ) Origin and Focusmentioning

confidence: 99%

“…The final type of framework consists of checklists or sets of evaluation criteria or principles [5], [87]- [90]. More specifically, some of the frameworks go into more detail on evaluation suggestions and, in addition to more general objectives and principles, recommend evaluation tools and guidelines:…”

Section: ) Origin and Focusmentioning

confidence: 99%

See 2 more Smart Citations

Security and Privacy of mHealth Applications: A Scoping Review

2020

View full text Add to dashboard Cite

While digital health or mHealth applications (apps) have become accessible resources for the support of personal health, the privacy and security of users' data have been the subject of concern and controversy. As large numbers of mHealth apps are created and are increasingly widely used by people with various health conditions, it is crucial to have clear and valid methods for evaluating the data practices within them. Recent regulatory initiatives such as the European Union's General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) have had the effect of raising awareness and establishing a minimal set of expectations. However, they do not in themselves address the issue of the development of systems which meet privacy and security requirements. There is a growing body of research on evaluation techniques and frameworks to support the assessment of the privacy and security of health apps, and guidelines to support their design. However, it can be challenging to navigate this space and choose appropriate techniques for a given context. Addressing this issue, this paper examines the recent literature on security and privacy of m-Health applications, using a scoping review methodology. It analyses data security and privacy evaluation techniques and frameworks that have been proposed for mHealth applications, as well as relevant research-based design recommendations. This work consolidates recent research on the topic to support researchers, app designers, end users, and healthcare professionals in designing, evaluating, recommending and adopting mHealth applications.

show abstract

Data Protection Impact Assessments in Practice

Friedewald

Schiering

Martin

et al. 2022

Computer Security. ESORICS 2021 International Workshops

View full text Add to dashboard Cite

In the context of the project A Data Protection Impact Assessment (DPIA) Tool for Practical Use in Companies and Public Administration an operationalization for Data Protection Impact Assessments was developed based on the approach of Forum Privatheit. This operationalization was tested and refined during twelve tests with startups, small- and medium sized enterprises, corporations and public bodies. This paper presents the operationalization and summarizes the experience from the tests.

show abstract

Mobile Health Systems for Community-Based Primary Care: Identifying Controls and Mitigating Privacy Threats

Cited by 20 publications

References 24 publications

Cyber Risk in Health Facilities: A Systematic Literature Review

Cyber Risk in Health Facilities: A Systematic Literature Review

Security and Privacy of mHealth Applications: A Scoping Review

Data Protection Impact Assessments in Practice

Contact Info

Product

Resources

About