Using Automatic Analysis of Encrypted Medical Data in the Cloud, is it a Concern?: Stakeholders Interviews (Preprint)
BACKGROUND Third-party cloud-based data analysis applications are proliferating in eHealth because of the expertise offered and their monetary advantage. However, privacy and security are critical when handling sensitive medical data in the cloud. Technical advances, based on “crypto magic” in privacy-enhancing machine learning, enable data analysis in encrypted form for maintaining confidentiality. The adoption of such technologies could be counter-intuitive to relevant stakeholders in eHealth; more attention is needed on human factors for establishing trust and transparency. OBJECTIVE To analyze eHealth stakeholders' mental models and the perceived trade-offs in regard to data analysis on encrypted medical data in the cloud. METHODS In this study, we used semi-structured interviews and report on 14 interviews with medical, technical, or research expertise in eHealth. RESULTS Results show differences in understanding of, and in trusting, the technology; caution is advised by technical-experts, whereas safety-assurances are required by medical-expert. Concerns regarding the technology relate to the type of encryption applied and achieved confidentiality, quality of analysis results, data integrity and availability, transparency, and trust. CONCLUSIONS Understanding risks and benefits is crucial, thus collaboration among relevant stakeholders is needed. In addition, informing clinicians and patients accordingly is important for transparency and establishing trust. CLINICALTRIAL none