Do CHANGE platform: A service-based architecture for secure aggregation and distribution of health and wellbeing data

Idowu Ayoola, Mart Wetzels, Peter Peters, Sander van Berlo, Loe Feijs

Research output: Contribution to journalArticleAcademicpeer-review

Abstract

Over the last decade, the adoption of open API standards offers new services meaningful in the domain of health informatics and behavior change. We present our privacy-oriented solution to support personal data collection, distribution, and usage. Given the new General Data Protection Regulations in Europe, the proposed platform is designed with requirements in mind to position citizens as the controllers of their data. The proposed result uses NodeJS servers, OAuth protocol for Authentication and Authorization, a publish-subscribe semantic for real-time data notification and Cron for APIs without a notification strategy. It uses Distributed Data Protocol to control and securely provision data to distributed frameworks utilizing the data and those distributed applications are exemplified. The platform design is transparent and modularized for research projects and small businesses to set-up and manage, and to allow them to focus on the application layer utilizing personal information. This solution can easily be configured to support custom or new data sources with open API and can scale. In our use cases, maintaining the separate ecosystem services was trivial. The adopted distributed protocol was the most challenging to manage due to its high RAM usage. And implementing a fine-grained privacy control by end-users was challenging in an existing clinical enterprise system.

LanguageEnglish
Pages103-111
Number of pages9
JournalInternational Journal of Medical Informatics
Volume117
DOIs
StatePublished - 1 Sep 2018

Fingerprint

Privacy
Small Business
Computer Security
Informatics
Information Storage and Retrieval
Health
Semantics
Ecosystem
Research

Keywords

  • Data aggregation
  • Data distribution
  • Health services
  • IoT
  • Personal data
  • Privacy
  • Security

Cite this

@article{521ed8bd589740fb9401ead7f9484771,
title = "Do CHANGE platform: A service-based architecture for secure aggregation and distribution of health and wellbeing data",
abstract = "Over the last decade, the adoption of open API standards offers new services meaningful in the domain of health informatics and behavior change. We present our privacy-oriented solution to support personal data collection, distribution, and usage. Given the new General Data Protection Regulations in Europe, the proposed platform is designed with requirements in mind to position citizens as the controllers of their data. The proposed result uses NodeJS servers, OAuth protocol for Authentication and Authorization, a publish-subscribe semantic for real-time data notification and Cron for APIs without a notification strategy. It uses Distributed Data Protocol to control and securely provision data to distributed frameworks utilizing the data and those distributed applications are exemplified. The platform design is transparent and modularized for research projects and small businesses to set-up and manage, and to allow them to focus on the application layer utilizing personal information. This solution can easily be configured to support custom or new data sources with open API and can scale. In our use cases, maintaining the separate ecosystem services was trivial. The adopted distributed protocol was the most challenging to manage due to its high RAM usage. And implementing a fine-grained privacy control by end-users was challenging in an existing clinical enterprise system.",
keywords = "Data aggregation, Data distribution, Health services, IoT, Personal data, Privacy, Security",
author = "Idowu Ayoola and Mart Wetzels and Peter Peters and {van Berlo}, Sander and Loe Feijs",
year = "2018",
month = "9",
day = "1",
doi = "10.1016/j.ijmedinf.2018.06.004",
language = "English",
volume = "117",
pages = "103--111",
journal = "International Journal of Medical Informatics",
issn = "1386-5056",
publisher = "Agon Elsevier",

}

Do CHANGE platform : A service-based architecture for secure aggregation and distribution of health and wellbeing data. / Ayoola, Idowu; Wetzels, Mart; Peters, Peter; van Berlo, Sander; Feijs, Loe.

In: International Journal of Medical Informatics, Vol. 117, 01.09.2018, p. 103-111.

Research output: Contribution to journalArticleAcademicpeer-review

TY - JOUR

T1 - Do CHANGE platform

T2 - International Journal of Medical Informatics

AU - Ayoola,Idowu

AU - Wetzels,Mart

AU - Peters,Peter

AU - van Berlo,Sander

AU - Feijs,Loe

PY - 2018/9/1

Y1 - 2018/9/1

N2 - Over the last decade, the adoption of open API standards offers new services meaningful in the domain of health informatics and behavior change. We present our privacy-oriented solution to support personal data collection, distribution, and usage. Given the new General Data Protection Regulations in Europe, the proposed platform is designed with requirements in mind to position citizens as the controllers of their data. The proposed result uses NodeJS servers, OAuth protocol for Authentication and Authorization, a publish-subscribe semantic for real-time data notification and Cron for APIs without a notification strategy. It uses Distributed Data Protocol to control and securely provision data to distributed frameworks utilizing the data and those distributed applications are exemplified. The platform design is transparent and modularized for research projects and small businesses to set-up and manage, and to allow them to focus on the application layer utilizing personal information. This solution can easily be configured to support custom or new data sources with open API and can scale. In our use cases, maintaining the separate ecosystem services was trivial. The adopted distributed protocol was the most challenging to manage due to its high RAM usage. And implementing a fine-grained privacy control by end-users was challenging in an existing clinical enterprise system.

AB - Over the last decade, the adoption of open API standards offers new services meaningful in the domain of health informatics and behavior change. We present our privacy-oriented solution to support personal data collection, distribution, and usage. Given the new General Data Protection Regulations in Europe, the proposed platform is designed with requirements in mind to position citizens as the controllers of their data. The proposed result uses NodeJS servers, OAuth protocol for Authentication and Authorization, a publish-subscribe semantic for real-time data notification and Cron for APIs without a notification strategy. It uses Distributed Data Protocol to control and securely provision data to distributed frameworks utilizing the data and those distributed applications are exemplified. The platform design is transparent and modularized for research projects and small businesses to set-up and manage, and to allow them to focus on the application layer utilizing personal information. This solution can easily be configured to support custom or new data sources with open API and can scale. In our use cases, maintaining the separate ecosystem services was trivial. The adopted distributed protocol was the most challenging to manage due to its high RAM usage. And implementing a fine-grained privacy control by end-users was challenging in an existing clinical enterprise system.

KW - Data aggregation

KW - Data distribution

KW - Health services

KW - IoT

KW - Personal data

KW - Privacy

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85049499029&partnerID=8YFLogxK

U2 - 10.1016/j.ijmedinf.2018.06.004

DO - 10.1016/j.ijmedinf.2018.06.004

M3 - Article

VL - 117

SP - 103

EP - 111

JO - International Journal of Medical Informatics

JF - International Journal of Medical Informatics

SN - 1386-5056

ER -