Marriette Katarahweire , Engineer Bainomugisha , Khalid A. Mughal
{"title":"安全移动健康数据收集系统的数据分类","authors":"Marriette Katarahweire , Engineer Bainomugisha , Khalid A. Mughal","doi":"10.1016/j.deveng.2020.100054","DOIUrl":null,"url":null,"abstract":"<div><p>Data collected in Mobile Health Data Collections Systems (MHDCS) are diverse, both in terms of type and value. This calls for different data protection measures to meet security goals of confidentiality, integrity, and availability. The majority of commonly used open-source MHDCS track and monitor individuals over a while. It is therefore important to have sensitive data defined and proper security measures identified. We propose a data classification model as a basis for secure design and implementation. Our method combines interviews with case studies. The case studies focused on three of the widely used MHDCS platforms in low-resource settings; that is Muzima, Open Data Kit (ODK), and District Health Information Software (DHIS) 2 Tracker Capture. Interviews with domain experts helped define the sensitivity of data in MHDCS. The proposed data classification model provides for three sensitivity levels: public, confidential, and critical. The model uses context information and multiple parameters as inputs to a classification scheme that maps data to sensitivity levels. The generated data classifications are intended to guide developers and users to build security into MHDCS starting from the early stages of the software development life cycle.</p></div>","PeriodicalId":37901,"journal":{"name":"Development Engineering","volume":"5 ","pages":"Article 100054"},"PeriodicalIF":0.0000,"publicationDate":"2020-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1016/j.deveng.2020.100054","citationCount":"6","resultStr":"{\"title\":\"Data Classification for Secure Mobile Health Data Collection Systems\",\"authors\":\"Marriette Katarahweire , Engineer Bainomugisha , Khalid A. Mughal\",\"doi\":\"10.1016/j.deveng.2020.100054\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><p>Data collected in Mobile Health Data Collections Systems (MHDCS) are diverse, both in terms of type and value. This calls for different data protection measures to meet security goals of confidentiality, integrity, and availability. The majority of commonly used open-source MHDCS track and monitor individuals over a while. It is therefore important to have sensitive data defined and proper security measures identified. We propose a data classification model as a basis for secure design and implementation. Our method combines interviews with case studies. The case studies focused on three of the widely used MHDCS platforms in low-resource settings; that is Muzima, Open Data Kit (ODK), and District Health Information Software (DHIS) 2 Tracker Capture. Interviews with domain experts helped define the sensitivity of data in MHDCS. The proposed data classification model provides for three sensitivity levels: public, confidential, and critical. The model uses context information and multiple parameters as inputs to a classification scheme that maps data to sensitivity levels. The generated data classifications are intended to guide developers and users to build security into MHDCS starting from the early stages of the software development life cycle.</p></div>\",\"PeriodicalId\":37901,\"journal\":{\"name\":\"Development Engineering\",\"volume\":\"5 \",\"pages\":\"Article 100054\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://sci-hub-pdf.com/10.1016/j.deveng.2020.100054\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Development Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2352728520300087\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"Economics, Econometrics and Finance\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Development Engineering","FirstCategoryId":"1085","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2352728520300087","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Economics, Econometrics and Finance","Score":null,"Total":0}
Data Classification for Secure Mobile Health Data Collection Systems
Data collected in Mobile Health Data Collections Systems (MHDCS) are diverse, both in terms of type and value. This calls for different data protection measures to meet security goals of confidentiality, integrity, and availability. The majority of commonly used open-source MHDCS track and monitor individuals over a while. It is therefore important to have sensitive data defined and proper security measures identified. We propose a data classification model as a basis for secure design and implementation. Our method combines interviews with case studies. The case studies focused on three of the widely used MHDCS platforms in low-resource settings; that is Muzima, Open Data Kit (ODK), and District Health Information Software (DHIS) 2 Tracker Capture. Interviews with domain experts helped define the sensitivity of data in MHDCS. The proposed data classification model provides for three sensitivity levels: public, confidential, and critical. The model uses context information and multiple parameters as inputs to a classification scheme that maps data to sensitivity levels. The generated data classifications are intended to guide developers and users to build security into MHDCS starting from the early stages of the software development life cycle.
Development EngineeringEconomics, Econometrics and Finance-Economics, Econometrics and Finance (all)
CiteScore
4.90
自引率
0.00%
发文量
11
审稿时长
31 weeks
期刊介绍:
Development Engineering: The Journal of Engineering in Economic Development (Dev Eng) is an open access, interdisciplinary journal applying engineering and economic research to the problems of poverty. Published studies must present novel research motivated by a specific global development problem. The journal serves as a bridge between engineers, economists, and other scientists involved in research on human, social, and economic development. Specific topics include: • Engineering research in response to unique constraints imposed by poverty. • Assessment of pro-poor technology solutions, including field performance, consumer adoption, and end-user impacts. • Novel technologies or tools for measuring behavioral, economic, and social outcomes in low-resource settings. • Hypothesis-generating research that explores technology markets and the role of innovation in economic development. • Lessons from the field, especially null results from field trials and technical failure analyses. • Rigorous analysis of existing development "solutions" through an engineering or economic lens. Although the journal focuses on quantitative, scientific approaches, it is intended to be suitable for a wider audience of development practitioners and policy makers, with evidence that can be used to improve decision-making. It also will be useful for engineering and applied economics faculty who conduct research or teach in "technology for development."
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
