Linda Lee,Serge Egelman,Joong Hwa Lee,David Wagner

DOI: https://doi.org/10.48550/arXiv.1504.05694

2015-04-22

Abstract:Wearable devices, or "wearables," bring great benefits but also potential risks that could expose users' activities with- out their awareness or consent. In this paper, we report findings from the first large-scale survey conducted to investigate user security and privacy concerns regarding wearables. We surveyed 1,782 Internet users in order to identify risks that are particularly concerning to them; these risks are inspired by the sensor inputs and applications of popular wearable technologies. During this experiment, our questions controlled for the effects of what data was being accessed and with whom it was being shared. We also investigated how these emergent threats compared to existent mobile threats, how upcoming capabilities and artifacts compared to existing technologies, and how users ranked technical and nontechnical concerns to sketch a concrete and broad view of the wearable device landscape. We hope that this work will inform the design of future user notification, permission management, and access control schemes for wearables.

Computers and Society,Human-Computer Interaction

Dawei Jiang,Guoquan Shi

DOI: https://doi.org/10.1155/2021/6656204

2021-02-05

Journal of Healthcare Engineering

Abstract:With the close integration of science and technology and health, the broad application prospects of healthy interconnection bring revolutionary changes to health services. Health and medical wearable devices can collect real-time data related to user health, such as user behavior, mood, and sleep, which have great commercial and social value. Healthcare wearable devices, as important network nodes for health interconnection, connect patients and hospitals with the Internet of Things and sensing technology to form a huge medical network. As wearable devices can also collect user data regardless of time and place, uploading data to the cloud can easily make the wearable device’s system vulnerable to attacks and data leakage. Defects in technology can sometimes cause problems such as lack of control over data flow links in wearable devices, and data and privacy leaks are more likely to occur. In this regard, how to ensure the data security and user privacy while using healthcare wearable devices to collect data is a problem worth studying. This article investigates data from healthcare wearable devices, from technical, management, and legal aspects, and studies data security and privacy protection issues for healthcare wearable devices to protect data security and user privacy and promote the sustainable development of the healthcare wearable device industry and the scientific use of data collection.

health care sciences & services

Matthew S. Eastin,Asma Sifaoui

DOI: https://doi.org/10.3390/cryptography8020026

2024-06-19

Abstract:The growth of wearable technology has enabled the collection of even more personalized information on individuals. New health-related devices marketed to consumers collect health information that might not fall under the traditional category of Protected Health Information, and thus, HIPAA protections do not fully apply. Meaning, commercial wearable health devices do not fall under FDA oversight, and data not paired with a doctor–patient relationship do not fall under HIPAA privacy protection; thus, much of the gathered health-related metrics are left without regulation and open to be sold to data brokers. As such, these data can be leveraged by health insurance, law enforcement, and employers, to name a few. This manuscript explores the loopholes in current regulations and suggests a framework that categorizes wearable data and addresses challenges in data transfer. Furthermore, taking a user perspective, the suggested framework offers solutions that aim to guide users and policymakers in navigating privacy issues in wearable technology.

Computer Science,Law

Chen Yang,Tingting Liu,Lulu Zuo,Zhiyong Hao

DOI: https://doi.org/10.1109/ICSSSM.2019.8887825

2019-01-01

Abstract:Recently, several health care wearable devices which can intervene in health and collect personal health data have emerged in the medical market. Although health care wearable devices promote the integration of multi-layer medical resources and bring new ways of health applications for users, it is inevitable that some problems will be brought. This is mainly manifested in the safety protection of medical and health data and the protection of user' s privacy. From the users' point of view, the irrational use of medical and health data may bring psychological and physical negative effects to users. From the government's perspective, it may be sold by private businesses in the international arena and threaten national security. The most direct precaution against the problem is users' initiative. For better understanding, a research model is designed by the following five aspects: Security knowledge (SK), Security attitude (SAT), Security practice (SP), Security awareness (SAW) and Security conduct (SC). To verify the model, structural equation analysis which is an empirical approach was applied to examine the validity and all the results showed that SK, SAT, SP, SAW and SC are important factors affecting users' data security and privacy protection awareness.

Michael Hindelang,Hannah Wecker,Tilo Biedermann,Alexander Zink

DOI: https://doi.org/10.1177/14604582241260607

2024-06-22

Health Informatics Journal

Abstract:Health Informatics Journal, Volume 30, Issue 2, April-June 2024. Background: Wearables have the potential to transform healthcare by enabling early detection and monitoring of chronic diseases. This study aimed to assess wearables' acceptance, usage, and reasons for non-use. Methods: Anonymous questionnaires were used to collect data in Germany on wearable ownership, usage behaviour, acceptance of health monitoring, and willingness to share data. Results: Out of 643 respondents, 550 participants provided wearable acceptance data. The average age was 36.6 years, with 51.3% female and 39.6% residing in rural areas. Overall, 33.8% reported wearing a wearable, primarily smartwatches or fitness wristbands. Men (63.3%) and women (57.8%) expressed willingness to wear a sensor for health monitoring, and 61.5% were open to sharing data with healthcare providers. Concerns included data security, privacy, and perceived lack of need. Conclusion: The study highlights the acceptance and potential of wearables, particularly for health monitoring and data sharing with healthcare providers. Addressing data security and privacy concerns could enhance the adoption of innovative wearables, such as implants, for early detection and monitoring of chronic diseases.

health care sciences & services,medical informatics

Kavous Salehzadeh Niksirat,Lev Velykoivanenko,Noé Zufferey,Mauro Cherubini,Kévin Huguenin,Mathias Humbert

DOI: https://doi.org/10.1145/3645091

IF: 16.6

2024-02-08

ACM Computing Surveys

Abstract:Over the past decade, wearable activity trackers (WATs) have become increasingly popular. However, despite many research studies in different fields (such as psychology, health, and design), few have sought to jointly examine the critical aspects of utility (i.e., benefits brought by these devices), privacy, and security (i.e., risks and vulnerabilities associated with them). To fill this gap, we reviewed 236 studies that researched the benefits of using WATs, the implications for the privacy of users of WATs, and the security vulnerabilities of these devices. Our survey revealed that these devices expose users to several threats. For example, WAT data can be mined to infer private information, such as the personality traits of the user. Whereas many works propose empirical findings about users’ privacy perceptions and their behaviors in relation to privacy, we found relatively few studies researching technologies to better protect users’ privacy with these devices. This survey contributes to systematizing knowledge on the utility, privacy, and security of WATs, shedding light on the state-of-the-art approaches with these devices, and discussing open research opportunities.

computer science, theory & methods

Dongsong Zhang,Jaewan Lim,Lina Zhou,Alicia A Dahl

DOI: https://doi.org/10.2196/31633

2021-12-24

JMIR Mental Health

Abstract:Background Mobile mental health systems (MMHS) have been increasingly developed and deployed in support of monitoring, management, and intervention with regard to patients with mental disorders. However, many of these systems rely on patient data collected by smartphones or other wearable devices to infer patients’ mental status, which raises privacy concerns. Such a value-privacy paradox poses significant challenges to patients’ adoption and use of MMHS; yet, there has been limited understanding of it. Objective To address the significant literature gap, this research aims to investigate both the antecedents of patients’ privacy concerns and the effects of privacy concerns on their continuous usage intention with regard to MMHS. Methods Using a web-based survey, this research collected data from 170 participants with MMHS experience recruited from online mental health communities and a university community. The data analyses used both repeated analysis of variance and partial least squares regression. Results The results showed that data type (P=.003), data stage (P<.001), privacy victimization experience (P=.01), and privacy awareness (P=.08) have positive effects on privacy concerns. Specifically, users report higher privacy concerns for social interaction data (P=.007) and self-reported data (P=.001) than for biometrics data; privacy concerns are higher for data transmission (P=.01) and data sharing (P<.001) than for data collection. Our results also reveal that privacy concerns have an effect on attitude toward privacy protection (P=.001), which in turn affects continuous usage intention with regard to MMHS. Conclusions This study contributes to the literature by deepening our understanding of the data value-privacy paradox in MMHS research. The findings offer practical guidelines for breaking the paradox through the design of user-centered and privacy-preserving MMHS.

psychiatry

Md Mobashir Hasan Shandhi,Karnika Singh,Natasha Janson,Perisa Ashar,Geetika Singh,Baiying Lu,D. Sunshine Hillygus,Jennifer M. Maddocks,Jessilyn P. Dunn

DOI: https://doi.org/10.1038/s41746-024-01030-x

IF: 15.2

2024-02-23

npj Digital Medicine

Abstract:Smart portable devices- smartphones and smartwatches- are rapidly being adopted by the general population, which has brought forward an opportunity to use the large volumes of physiological, behavioral, and activity data continuously being collected by these devices in naturalistic settings to perform research, monitor health, and track disease. While these data can serve to revolutionize health monitoring in research and clinical care, minimal research has been conducted to understand what motivates people to use these devices and their interest and comfort in sharing the data. In this study, we aimed to characterize the ownership and usage of smart devices among patients from an expansive academic health system in the southeastern US and understand their willingness to share data collected by the smart devices. We conducted an electronic survey of participants from an online patient advisory group around smart device ownership, usage, and data sharing. Out of the 3021 members of the online patient advisory group, 1368 (45%) responded to the survey, with 871 female (64%), 826 and 390 White (60%) and Black (29%) participants, respectively, and a slight majority (52%) age 58 and older. Most of the respondents (98%) owned a smartphone and the majority (59%) owned a wearable. In this population, people who identify as female, Hispanic, and Generation Z (age 18–25), and those completing higher education and having full-time employment, were most likely to own a wearable device compared to their demographic counterparts. 50% of smart device owners were willing to share and 32% would consider sharing their smart device data for research purposes. The type of activity data they are willing to share varies by gender, age, education, and employment. Findings from this study can be used to design both equitable and cost-effective digital health studies, leveraging personally-owned smartphones and wearables in representative populations, ultimately enabling the development of equitable digital health technologies.

health care sciences & services,medical informatics

Morgan C. Banville

DOI: https://doi.org/10.1145/3380851.3416764

2020-10-03

Abstract:This pilot study considers risk in association with wearable devices by placing body-monitoring in conversation with privacy policies (i.e. who is controlling your data, by what means, and to what end). This article focuses on the increasingly commonplace embodied technology that is both pervasive and invasive to individuals’ privacy as determined through the device users’ interpretation of corporate privacy policies. The primary focus is on the underexplored intersection of undergraduate students, wearable technology, and privacy, which ultimately advocates for transparency in corporate privacy policies. In this pilot study, it was found that users who read through the privacy policies of Fitbit and Google are more likely to change their passwords and emails, pay more attention to legal jargon, and may be less likely to link all of their applications through Google.

Seyedmostafa Safavi,Zarina Shukur

DOI: https://doi.org/10.1371/journal.pone.0114306

IF: 3.7

2014-12-05

PLoS ONE

Abstract:Wearable health tech provides doctors with the ability to remotely supervise their patients' wellness. It also makes it much easier to authorize someone else to take appropriate actions to ensure the person's wellness than ever before. Information Technology may soon change the way medicine is practiced, improving the performance, while reducing the price of healthcare. We analyzed the secrecy demands of wearable devices, including Smartphone, smart watch and their computing techniques, that can soon change the way healthcare is provided. However, before this is adopted in practice, all devices must be equipped with sufficient privacy capabilities related to healthcare service. In this paper, we formulated a new improved conceptual framework for wearable healthcare systems. This framework consists of ten principles and nine checklists, capable of providing complete privacy protection package to wearable device owners. We constructed this framework based on the analysis of existing mobile technology, the results of which are combined with the existing security standards. The approach also incorporates the market share percentage level of every app and its respective OS. This framework is evaluated based on the stringent CIA and HIPAA principles for information security. This evaluation is followed by testing the capability to revoke rights of subjects to access objects and ability to determine the set of available permissions for a particular subject for all models Finally, as the last step, we examine the complexity of the required initial setup.

Keith Davis,Tuukka Ruotsalo

DOI: https://doi.org/10.1109/MC.2024.3404994

2024-05-24

Abstract:Wearable devices that measure and record physiological signals are now becoming widely available to the general public with ever-increasing affordability and signal quality. The data from these devices introduce serious ethical challenges that remain largely unaddressed. Users do not always understand how these data can be leveraged to reveal private information about them and developers of these devices may not fully grasp how physiological data collected today could be used in the future for completely different purposes. We discuss the potential for wearable devices, initially designed to help users improve their well-being or enhance the experience of some digital application, to be appropriated in ways that extend far beyond their original intended purpose. We identify how the currently available technology can be misused, discuss how pairing physiological data with non-physiological data can radically expand the predictive capacity of physiological wearables, and explore the implications of these expanded capacities for a variety of stakeholders.

Computers and Society

He Li,Jing Wu,Yiwen Gao,Yao Shi

DOI: https://doi.org/10.1016/j.ijmedinf.2015.12.010

Abstract:Background: Wearable technology has shown the potential of improving healthcare efficiency and reducing healthcare cost. Different from pioneering studies on healthcare wearable devices from technical perspective, this paper explores the predictors of individuals' adoption of healthcare wearable devices. Considering the importance of individuals' privacy perceptions in healthcare wearable devices adoption, this study proposes a model based on the privacy calculus theory to investigate how individuals adopt healthcare wearable devices. Method: The proposed conceptual model was empirically tested by using data collected from a survey. The sample covers 333 actual users of healthcare wearable devices. Structural equation modeling (SEM) method was employed to estimate the significance of the path coefficients. Results: This study reveals several main findings: (1) individuals' decisions to adopt healthcare wearable devices are determined by their risk-benefit analyses (refer to privacy calculus). In short, if an individual's perceived benefit is higher than perceived privacy risk, s/he is more likely to adopt the device. Otherwise, the device would not be adopted; (2) individuals' perceived privacy risk is formed by health information sensitivity, personal innovativeness, legislative protection, and perceived prestige; and (3) individuals' perceived benefit is determined by perceived informativeness and functional congruence. The theoretical and practical implications, limitations, and future research directions are then discussed.

Ranganathan Chandrasekaran,Vipanchi Katthula,Evangelos Moustakas

DOI: https://doi.org/10.1177/14604582211058073

Abstract:Wearable healthcare devices offer tremendous promise to effectively track and improve the well-being of older adults. Yet, little is known about the use of wearable devices by older adults. Drawing upon a national survey in US with 1481 older adults, we examine the use of wearable healthcare devices and the key predictors of use viz. sociodemographic factors, health conditions, and technology self-efficacy. We also examine if the predictors are associated with elders' willingness to share health data from wearable devices with healthcare providers. We find low level of wearable use (17.49%) among US older adults. We find significant positive associations between technology self-efficacy, health conditions, and demographic factors (gender, race, education, and annual household income) and use of wearable devices. Men were less likely (OR = 0.62, 95% CI 0.36-1.04) and Asians were more likely (OR = 2.60, 95% CI 0.89-7.64) to use wearables, as did healthy adults (OR = 1.98, 95% CI 1.37-2.87). Those who electronically communicated with their doctors (OR = 1.86, 95% CI 1.16-2.97), and those who searched online for health information (OR = 1.79, 95% CI 1.03-3.10) were more likely to use wearables. Though 80.15% of wearable users are willing to share health data with providers, those with greater technology self-efficacy and favorable attitudes toward exercise are more willing.

Ranganathan Chandrasekaran,Vipanchi Katthula,Evangelos Moustakas

DOI: https://doi.org/10.2196/22443

2020-10-16

Abstract:Background: Despite the growing popularity of wearable health care devices (from fitness trackes such as Fitbit to smartwatches such as Apple Watch and more sophisticated devices that can collect information on metrics such as blood pressure, glucose levels, and oxygen levels), we have a limited understanding about the actual use and key factors affecting the use of these devices by US adults. Objective: The main objective of this study was to examine the use of wearable health care devices and the key predictors of wearable use by US adults. Methods: Using a national survey of 4551 respondents, we examined the usage patterns of wearable health care devices (use of wearables, frequency of their use, and willingness to share health data from a wearable with a provider) and a set of predictors that pertain to personal demographics (age, gender, race, education, marital status, and household income), individual health (general health, presence of chronic conditions, weight perceptions, frequency of provider visits, and attitude towards exercise), and technology self-efficacy using logistic regression analysis. Results: About 30% (1266/4551) of US adults use wearable health care devices. Among the users, nearly half (47.33%) use the devices every day, with a majority (82.38% weighted) willing to share the health data from wearables with their care providers. Women (16.25%), White individuals (19.74%), adults aged 18-50 years (19.52%), those with some level of college education or college graduates (25.60%), and those with annual household incomes greater than US $75,000 (17.66%) were most likely to report using wearable health care devices. We found that the use of wearables declines with age: Adults aged >50 years were less likely to use wearables compared to those aged 18-34 years (odds ratios [OR] 0.46-0.57). Women (OR 1.26, 95% CI 0.96-1.65), White individuals (OR 1.65, 95% CI 0.97-2.79), college graduates (OR 1.05, 95% CI 0.31-3.51), and those with annual household incomes greater than US $75,000 (OR 2.6, 95% CI 1.39-4.86) were more likely to use wearables. US adults who reported feeling healthier (OR 1.17, 95% CI 0.98-1.39), were overweight (OR 1.16, 95% CI 1.06-1.27), enjoyed exercise (OR 1.23, 95% CI 1.06-1.43), and reported higher levels of technology self-efficacy (OR 1.33, 95% CI 1.21-1.46) were more likely to adopt and use wearables for tracking or monitoring their health. Conclusions: The potential of wearable health care devices is under-realized, with less than one-third of US adults actively using these devices. With only younger, healthier, wealthier, more educated, technoliterate adults using wearables, other groups have been left behind. More concentrated efforts by clinicians, device makers, and health care policy makers are needed to bridge this divide and improve the use of wearable devices among larger sections of American society.

Leming Zhou,Jie Bao,Valerie Watzlaf,Bambang Parmanto

DOI: https://doi.org/10.2196/11223

2019-04-16

Abstract:Background: A large number of mobile health (mHealth) apps have been created to help users to manage their health or receive health care services. Many of these mHealth apps have proven to be helpful for maintaining or improving their users' health. However, many people still choose not to use mHealth apps or only use them for a short period. One of the reasons behind this lack of use is the concern for their health information security and privacy. Objective: The goal of this study was to determine the relationship between users' characteristics and their security and privacy concerns and to identify desired security features in mHealth apps, which could reduce these concerns. Methods: A questionnaire was designed and validated by the research team. This questionnaire was then used to determine mobile app users' security and privacy concerns regarding personal health data in mHealth apps as well as the security features most users' desire. A semistructured interview was used to identify barriers to and facilitators of adopting mHealth apps. Results: In total, 117 randomly selected study participants from a large pool took part in this study and provided responses to the validated questionnaire and the semistructured interview questions. The results indicate that most study participants did have concerns about their privacy when using mHealth apps. They also expressed their preferences regarding several security features in mHealth apps, such as regular password updates, remote wipe, user consent, and access control. An association between their demographic characteristics and their concerns and preferences in security and privacy was identified; however, in most cases, the differences among the different demographic groups were not statistically significant, except for a few very specific aspects. These study participants also indicated that the cost of apps and lack of security features in mHealth apps were barriers for adoption, whereas having free apps, strong but easy-to-use security features, and clear user protection privacy policies might encourage them to use mHealth apps in their health management. Conclusions: This questionnaire and interview study verified the security and privacy concerns of mHealth app users, identified the desired security and privacy features, and determined specific barriers to and facilitators of users adopting mHealth apps. The results can be used to guide mHealth app developers to create apps that would be welcomed by users.

Tafheem Ahmad Wani,Antonette Mendoza,Kathleen Gray

DOI: https://doi.org/10.1016/j.ijmedinf.2024.105606

2024-08-30

Abstract:Background/objective: The use of personal devices for work purposes (Bring-your-own-device) has increased in hospitals, as it facilitates productivity and mobility for clinicians. However, owing to increased risk of leaking patient information, and heavy reliance of patient data privacy on user actions, BYOD is a major challenge for hospitals. There has been a dearth of empirical research studying clinicians' BYOD security behaviour. Therefore, the study's aim was to attain subjective understanding of clinicians' attitudes and preferences towards protecting patient data on their devices through a qualitative study. Methods: 14 semi-structured interviews were conducted among Australian hospital-based clinicians. A hybrid thematic analysis was conducted using the framework method to explore socio-technical themes pertaining to the clinicians' BYOD security behavioural practices. Results: Limited use of secure tools like antivirus and passcodes, and inadequate separation of patient and personal data on BYOD devices was found. Key technology concerns included malware introduction into hospital network, inadvertent patient data sharing, and slow remote access. Hospitals lacked dedicated BYOD policies and training, resulting in unsafe practices. Participants also cited misalignment of BYOD policies with workflow needs, privacy maintenance challenges and fears of personal data breaches, while calling for improved communication between technical and clinical staff and a strong cybersecurity culture. Conclusion: This study provides a comprehensive understanding of BYOD related user behaviour and the usefulness of security controls used in time-sensitive and complex hospital environments. It can inform future policies or processes by advocating for secure and productive BYOD use.

Ranganathan Chandrasekaran,Pratik Sharma,Evangelos Moustakas

DOI: https://doi.org/10.31083/j.rcm2411307

2023-11-09

Abstract:Background: Use of healthcare wearable devices holds significant potential for improving the prevention and management of cardiovascular diseases (CVD). However, we have limited knowledge on the actual use of wearable devices by CVD patients and the key factors associated with their use. This study aims to assess wearable device use and willingness to share health data among CVD patients, while identifying socio-demographic, health, and technology-related factors associated with wearable technology use. Methods: Using a national survey of 933 CVD patients, we assess use of wearable healthcare devices (use, frequency of use and willingness to share health data from wearable with a provider), and a set of socio-demographic factors (age, gender, race, education and household income), health-related variables (general health, presence of comorbid conditions: diabetes and high blood pressure, attitude towards exercise) and technology self-efficacy using logistic regression. Results: Of the 933 CVD patients, 18.34% reported using a healthcare wearable device in the prior 12 months. Of those, 41.92% indicated using it every day and another 19.76% indicated using it 'almost every day'. 83.54% of wearable users indicated their willingness to share health data with their healthcare providers. Female CVD patients are more likely to use wearables compared to men (odds ratio (OR) = 1.65, 95% confidence interval (CI) = 1.04-2.63). The odds decrease with age, and are significantly high in patients with higher income levels. In comparison with non-Hispanic White, Hispanic (OR = 0.14, 95% CI = 0.03-0.70) and African Americans (OR = 0.17, 95% CI = 0.04-0.86) are less likely to use healthcare wearables. CVD patients who perceive their general health to be better (OR = 1.45, 95% CI = 1.11-1.89) and those who enjoy exercising (OR = 1.76, 95% CI = 1.22-2.55) are more likely to use wearables. CVD patients who use the internet for searching for medical information (OR = 2.10, 95% CI = 1.17-3.77) and those who use electronic means to make appointments with their providers (OR = 2.35, 95% CI = 1.48-3.74) are more inclined to use wearables. Conclusions: Addressing low wearable device usage among CVD patients requires targeted policy interventions to ensure equitable access. Variations in gender, age, race/ethnicity, and income levels emphasize the need for tailored strategies. Technological self-efficacy, positive health perceptions, and exercise enjoyment play significant roles in promoting wearable use. These insights should guide healthcare leaders in designing effective strategies for integrating wearables into cardiovascular care.

Kirsten Crager,Anindya Maiti,Murtuza Jadliwala,Jibo He

DOI: https://doi.org/10.14722/eurousec.2017.23013

2017-01-01

Abstract:Smart phones and wearable devices have replaced personal computers and desktops as the primary platform for accessing online applications and services.However, these mobile devices bring forth new and additional forms of security and privacy risks, which were non-existent in traditional personal computers.For instance, several recent research efforts have shown that motion sensors such as accelerometer and gyroscope on-board these mobile and wearable devices can be maliciously used to infer private information from users' keystrokes (e.g., PINs and passwords).The problem is that, unlike traditional security and privacy risks that are typically associated with personal computers, most users may not be aware of these novel risks associated with mobile devices.An adversary may use this lack of user-awareness to target specific user-demographics for successfully carrying out such attacks.There has been some progress in the direction of protection mechanisms against such attacks, however, without user-awareness these protection mechanisms are unlikely to be used effectively (if at all).In order to further understand these issues, we conduct a structured and comprehensive user-study involving users from diverse demographic backgrounds to investigate userawareness and perceptions related to mobile motion sensor based privacy risks, and how these vary across different demographics.By means of our study, we also gain insight on users' expectations from defense mechanisms that can protect against such attacks.Results of our study can be used to increase awareness (about such risks) among the less-aware user demographies, and in designing effective and usable protection mechanisms as per user-expectations.

Yasmine N. M. Saleh,Claude C. Chibelushi,Ayman A. Abdel-Hamid,Abdel-Hamid Soliman

DOI: https://doi.org/10.48550/arXiv.2012.12958

2020-12-24

Abstract:The advent of miniature biosensors has generated numerous opportunities for deploying wireless sensor networks in healthcare. However, an important barrier is that acceptance by healthcare stakeholders is influenced by the effectiveness of privacy safeguards for personal and intimate information which is collected and transmitted over the air, within and beyond these networks. In particular, these networks are progressing beyond traditional sensors, towards also using multimedia sensors, which raise further privacy concerns. Paradoxically, less research has addressed privacy protection, compared to security. Nevertheless, privacy protection has gradually evolved from being assumed an implicit by-product of security measures, and it is maturing into a research concern in its own right. However, further technical and socio-technical advances are needed. As a contribution towards galvanising further research, the hallmarks of this paper include: (i) a literature survey explicitly anchored on privacy preservation, it is underpinned by untangling privacy goals from security goals, to avoid mixing privacy and security concerns, as is often the case in other papers; (ii) a critical survey of privacy preservation services for wireless sensor networks in healthcare, including threat analysis and assessment methodologies; it also offers classification trees for the multifaceted challenge of privacy protection in healthcare, and for privacy threats, attacks and countermeasures; (iii) a discussion of technical advances complemented by reflection over the implications of regulatory frameworks; (iv) a discussion of open research challenges, leading onto offers of directions for future research towards unlocking the door onto privacy protection which is appropriate for healthcare in the twenty-first century.

Cryptography and Security,Networking and Internet Architecture

Richard Brown,Lynne Coventry,Elizabeth Sillence,John Blythe,Simone Stumpf,Jon Bird,Abigail C Durrant

DOI: https://doi.org/10.1177/20552076221084458

2022-03-07

Abstract:Background: The growing popularity of collecting self-generated health and lifestyle data presents a valuable opportunity to develop our understanding of long-term health conditions and improve care. Barriers remain to the effective sharing of health and lifestyle data by those living with long-term health conditions which include beliefs around concepts of Trust, Identity, Privacy and Security, experiences of stigma, perceptions of risk and information sensitivity. Method: We surveyed 250 UK adults who reported living with a range of long-term health conditions. We recorded data to assess self-reported behaviours, experiences, attitudes and motivations relevant to sharing self-generated health and lifestyle data. We also asked participants about their beliefs about Trust, Identity, Privacy and Security, stigma, and perceptions of risk and information sensitivity regarding their health and lifestyle data. Results: Three-quarters of our sample reported recording information about their health and lifestyle on a daily basis. However, two-thirds reported never or rarely sharing this information with others. Trust, Identity, Privacy and Security concerns were considered to be 'very important' by those with long-term health conditions when deciding whether or not to share self-generated health and lifestyle data with others, with security concerns considered most important. Of those living with a long-term health condition, 58% reported experiencing stigma associated with their condition. The greatest perceived risk from sharing with others was the potential for future harm to their social relationships. Conclusions: Our findings suggest that, in order for health professionals and researchers to benefit from the increased prevalence of self-generated health and lifestyle data, more can be done to address security concerns and to understand perceived risks associated with data sharing. Digital platforms aimed at facilitating the sharing of self-generated health and lifestyle data may look to highlight security features, enable users to control the sharing of certain information types, and emphasise the practical benefits to users of sharing health and lifestyle data with others.