Using PAPAYA for eHealth - Use Case Analysis and Requirements

Alaqra, Ala Sarah; Ciceri, Eleneora; Fischer‐Hübner, Simone; Kane, Bridget; Mosconi, Marco; Vicini, Sauro

doi:10.1109/cbms49503.2020.00089

Cited by 6 publications

(3 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Based on our interviews, the following key requirements were elicited relating to perceived tradeoffs and perceptions on informing eHealth stakeholders and patients about the proposed PET (as developed by the PAPAYA project), and its security and privacy protection features for enhancing transparency and promoting trust. Further details on user requirements and legal requirements elicited can be found in our prior work [ 38 ]. Notably, the following requirements are not specific to PAPAYA, but are in fact generalizable to similar PETs for automated data analysis of medical data on a cloud server.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

Machine Learning–Based Analysis of Encrypted Medical Data in the Cloud: Qualitative Study of Expert Stakeholders’ Perspectives

Alaqra¹,

Kane²,

Fischer‐Hübner³

2021

JMIR Hum Factors

Self Cite

View full text Add to dashboard Cite

Background Third-party cloud-based data analysis applications are proliferating in electronic health (eHealth) because of the expertise offered and their monetary advantage. However, privacy and security are critical concerns when handling sensitive medical data in the cloud. Technical advances based on “crypto magic” in privacy-preserving machine learning (ML) enable data analysis in encrypted form for maintaining confidentiality. Such privacy-enhancing technologies (PETs) could be counterintuitive to relevant stakeholders in eHealth, which could in turn hinder adoption; thus, more attention is needed on human factors for establishing trust and transparency. Objective The aim of this study was to analyze eHealth expert stakeholders’ perspectives and the perceived tradeoffs in regard to data analysis on encrypted medical data in the cloud, and to derive user requirements for development of a privacy-preserving data analysis tool. Methods We used semistructured interviews and report on 14 interviews with individuals having medical, technical, or research expertise in eHealth. We used thematic analysis for analyzing interview data. In addition, we conducted a workshop for eliciting requirements. Results Our results show differences in the understanding of and in trusting the technology; caution is advised by technical experts, whereas patient safety assurances are required by medical experts. Themes were identified with general perspectives on data privacy and practices (eg, acceptance of using external services), as well as themes highlighting specific perspectives (eg, data protection drawbacks and concerns of the data analysis on encrypted data). The latter themes result in requiring assurances and conformance testing for trusting tools such as the proposed ML-based tool. Communicating privacy, and utility benefits and tradeoffs with stakeholders is essential for trust. Furthermore, stakeholders and their organizations share accountability of patient data. Finally, stakeholders stressed the importance of informing patients about the privacy of their data. Conclusions Understanding the benefits and risks of using eHealth PETs is crucial, and collaboration among diverse stakeholders is essential. Assurances of the tool’s privacy, accuracy, and patient safety should be in place for establishing trust of ML-based PETs, especially if used in the cloud.

show abstract

Section: Resultsmentioning

confidence: 99%

“…We previously reported the PAPAYA arrhythmia detection use case, and legal and user requirements [ 38 ]; however, we did not elaborate on the analysis of the eHealth stakeholders’ perspectives and the perceived tradeoffs based on the conducted interviews.…”

Section: Discussionmentioning

confidence: 99%

Machine Learning–Based Analysis of Encrypted Medical Data in the Cloud: Qualitative Study of Expert Stakeholders’ Perspectives

Alaqra¹,

Kane²,

Fischer‐Hübner³

2021

JMIR Hum Factors

Self Cite

View full text Add to dashboard Cite

show abstract

“…Based on our interviews, the following key requirements were elicited relating to perceived tradeoffs and perceptions on informing eHealth stakeholders and patients about the proposed PET (as developed by the PAPAYA project), and its security and privacy protection features for enhancing transparency and promoting trust. Further details on user requirements and legal requirements elicited can be found in our prior work [38]. Notably, the following requirements are not specific to First, eHealth stakeholders will be reluctant to avail of the analytical services in the cloud if they have no confidence that the PET can deliver secure service without loss of quality or data.…”

Section: Workhop Requirementsmentioning

confidence: 99%

Machine Learning–Based Analysis of Encrypted Medical Data in the Cloud: Qualitative Study of Expert Stakeholders’ Perspectives (Preprint)

Alaqra¹,

Kane²,

Fischer‐Hübner³

2020

Preprint

View full text Add to dashboard Cite

BACKGROUND

Third-party cloud-based data analysis applications are proliferating in eHealth because of the expertise offered and their monetary advantage. However, privacy and security are critical when handling sensitive medical data in the cloud. Technical advances, based on “crypto magic” in privacy-enhancing machine learning, enable data analysis in encrypted form for maintaining confidentiality. The adoption of such technologies could be counter-intuitive to relevant stakeholders in eHealth; more attention is needed on human factors for establishing trust and transparency.

OBJECTIVE

To analyze eHealth stakeholders' mental models and the perceived trade-offs in regard to data analysis on encrypted medical data in the cloud.

METHODS

In this study, we used semi-structured interviews and report on 14 interviews with medical, technical, or research expertise in eHealth.

RESULTS

Results show differences in understanding of, and in trusting, the technology; caution is advised by technical-experts, whereas safety-assurances are required by medical-expert. Concerns regarding the technology relate to the type of encryption applied and achieved confidentiality, quality of analysis results, data integrity and availability, transparency, and trust.

CONCLUSIONS

Understanding risks and benefits is crucial, thus collaboration among relevant stakeholders is needed. In addition, informing clinicians and patients accordingly is important for transparency and establishing trust.

CLINICALTRIAL

none

show abstract