{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,6]],"date-time":"2026-03-06T18:44:19Z","timestamp":1772822659021,"version":"3.50.1"},"reference-count":157,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2020,5,3]],"date-time":"2020-05-03T00:00:00Z","timestamp":1588464000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Manage. Inf. Syst."],"published-print":{"date-parts":[[2020,6,30]]},"abstract":"Cloud computing promises essential improvements in healthcare delivery performance. However, its wide adoption in healthcare is yet to be seen, one main reason being patients\u2019 concerns for security and privacy of their sensitive medical records. These concerns can be addressed through corresponding security and privacy requirements within the system engineering process. Despite a plethora of related research, security and privacy requirements for cloud systems and services have seldomly been investigated methodically so far, whereas their individual priorities to increase the system success probability have been neglected. Against this background, this study applies a systematic requirements engineering process: First, based on a systematic literature review, an extensive initial set of security and privacy requirements is elicited. Second, an online survey based on the best-worst scaling method is designed, conducted, and evaluated to determine priorities of security and privacy requirements.<\/jats:p>\n Our results show that confidentiality and integrity of medical data are ranked at the top of the hierarchy of prioritized requirements, followed by control of data use and modification, patients\u2019 anonymity, and patients\u2019 control of access rights. Availability, fine-grained access control, revocation of access rights, flexible access, clinicians\u2019 anonymity, as well as usability, scalability, and efficiency of the system complete the ranking. The level of agreement among patients is rather small, but statistically significant at the 0.01 level.<\/jats:p>\n The main contribution of the present research comprises the study method and results highlighting the role of strong security and privacy and excluding any trade-offs with system usability. Enabling a richer understanding of patients\u2019 security and privacy requirements for adopting cloud computing in healthcare, these are of particular importance to researchers and practitioners interested in supporting the process of security and privacy engineering for health-cloud solutions. It further represents a supplement that can support time-intensive negotiation meetings between the requirements engineers and patients.<\/jats:p>","DOI":"10.1145\/3386160","type":"journal-article","created":{"date-parts":[[2020,5,5]],"date-time":"2020-05-05T01:50:48Z","timestamp":1588643448000},"page":"1-29","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":28,"title":["Security and Privacy Requirements for Cloud Computing in Healthcare"],"prefix":"10.1145","volume":"11","author":[{"given":"Tatiana","family":"Ermakova","sequence":"first","affiliation":[{"name":"Weizenbaum Institute for the Networked Society 8 Fraunhofer FOKUS, Berlin, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Benjamin","family":"Fabian","sequence":"additional","affiliation":[{"name":"HfT Leipzig 8 Humboldt University of Berlin, Leipzig, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Marta","family":"Kornacka","sequence":"additional","affiliation":[{"name":"Humboldt University of Berlin, Berlin, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Scott","family":"Thiebes","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology, Karlsruhe, Baden-W\u00fcrttemberg, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ali","family":"Sunyaev","sequence":"additional","affiliation":[{"name":"Karlsruhe Institute of Technology, Karlsruhe, Baden-W\u00fcrttemberg, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2020,5,3]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/2064085.2064094"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/JBHI.2014.2300846"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2014.02.001"},{"key":"e_1_2_1_4_1","first-page":"12","article-title":"A survey of the state of cloud computing in healthcare","volume":"1","author":"Ahuja Sanjay P.","year":"2012","unstructured":"Sanjay P. Ahuja, Sindhu Mani, and Jesus Zambrano. 2012. A survey of the state of cloud computing in healthcare. Netw. Commun. Technol. 1, 2 (2012), 12--19.","journal-title":"Netw. Commun. Technol."},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1155\/2019\/7516035"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.amepre.2012.02.027"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1136\/amiajnl-2012-001062"},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1287\/isre.1100.0335"},{"key":"e_1_2_1_9_1","unstructured":"Jason Andress. 2014. The Basics of Information Security: Understanding the Fundamentals of InfoSec in Theory and Practice. Syngress."},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.2307\/20650295"},{"key":"e_1_2_1_11_1","volume-title":"An empirical examination of the importance of defining PHR for research and for practice. Robert H. Smith School Research Paper No. RHS-06-011","author":"Angst Corey M.","year":"2006","unstructured":"Corey M. Angst, Ritu Agarwal, and Janelle Downing. 2006. An empirical examination of the importance of defining PHR for research and for practice. Robert H. Smith School Research Paper No. RHS-06-011 (2006)."},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.5555\/2208955.2208961"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1504\/IJIEM.2010.035624"},{"key":"e_1_2_1_15_1","volume-title":"Breno De Medeiros, and Darren Davis","author":"Ateniese Giuseppe","year":"2003","unstructured":"Giuseppe Ateniese, Reza Curtmola, Breno De Medeiros, and Darren Davis. 2003. Medical information privacy assurance: Cryptographic and system aspects. In Security in Communication Networks. Springer, 199--218."},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10551-006-9112-7"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1097\/TA.0000000000000866"},{"key":"e_1_2_1_18_1","volume-title":"Proceedings of the 5th Midwest Association for Information Conference (MWAIS\u201910)","author":"Bansal Gaurav","year":"2010","unstructured":"Gaurav Bansal and Rebecca Davenport. 2010. Moderating role of perceived health status on privacy concern factors and intentions to transact with high versus low trustworthy health website. In Proceedings of the 5th Midwest Association for Information Conference (MWAIS\u201910)."},{"key":"e_1_2_1_19_1","volume-title":"Proceedings of the 16th Americas Conference on Information Systems (AMCIS\u201910)","author":"Bansal Gaurav","unstructured":"Gaurav Bansal and Fatemeh \u201cMariam\u201d Zahedi. 2010. Trading trust for discount: Does frugality moderate the impact of privacy and security concerns? In Proceedings of the 16th Americas Conference on Information Systems (AMCIS\u201910)."},{"key":"e_1_2_1_20_1","volume-title":"Proceedings of the 13th Americas Conference on Information Systems (AMCIS\u201907)","author":"Bansal Gaurav","unstructured":"Gaurav Bansal, Fatemeh \u201cMariam\u201d Zahedi, and David Gefen. 2007. The impact of personal dispositions on privacy and trust in disclosing health information online. In Proceedings of the 13th Americas Conference on Information Systems (AMCIS\u201907)."},{"key":"e_1_2_1_21_1","volume-title":"Proceedings of the 14th Americas Conference on Information Systems (AMCIS\u201908)","author":"Bansal Gaurav","unstructured":"Gaurav Bansal, Fatemeh \u201cMiriam\u201d Zahedi, and David Gefen. 2008. Efficacy of privacy assurance mechanisms in the context of disclosing health information online. In Proceedings of the 14th Americas Conference on Information Systems (AMCIS\u201908)."},{"key":"e_1_2_1_22_1","volume-title":"Zahedi, and David Gefen.","author":"Bansal Gaurav","year":"2010","unstructured":"Gaurav Bansal, Fatemeh \u201cMariam\u201d Zahedi, and David Gefen. 2010. The impact of personal dispositions on information sensitivity, privacy concern and trust in disclosing health information. Online Decis. Supp. Syst. 49, 2 (2010), 138--150."},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/WOWMOM.2010.5534981"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1136\/jamia.1996.96236282"},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2012.291"},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1509\/jmkr.38.2.143.18840"},{"key":"e_1_2_1_27_1","first-page":"109","article-title":"Interview process model for requirement elicitation","volume":"1","author":"Rizwan Beg Md.","year":"2008","unstructured":"Md. Rizwan Beg, Qamar Abbas, and Ravi Prakash Verma. 2008. Interview process model for requirement elicitation. Int. J. Comput. Sci. Appl. 1, 2 (2008), 109--113.","journal-title":"Int. J. Comput. Sci. Appl."},{"key":"e_1_2_1_28_1","first-page":"313","article-title":"International differences in information privacy concerns: A global survey of consumers. Info","volume":"20","author":"Bellman Steven","year":"2004","unstructured":"Steven Bellman, Eric J. Johnson, Stephen J. Kobrin, and Gerald L. Lohse. 2004. International differences in information privacy concerns: A global survey of consumers. Info. Soc. 20, 5 (2004), 313--324.","journal-title":"Soc."},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1080\/07421222.2018.1481634"},{"key":"e_1_2_1_30_1","volume-title":"Bishop, Bradford J. Holmes, and Christopher M. Kelley.","author":"Lynne","year":"2005","unstructured":"Lynne \u201cSam\u201d Bishop, Bradford J. Holmes, and Christopher M. Kelley. 2005. National Consumer Health Privacy Survey 2005. Technical Report. Forrester Research, Inc. Retrieved from http:\/\/www.chcf.org\/publications\/2005\/11\/national-consumer-health-privacy-survey-2005."},{"key":"e_1_2_1_31_1","article-title":"Are stakeholders the only source of information for requirements engineers? Toward a taxonomy of elicitation information sources","volume":"7","author":"Burnay Corentin","year":"2016","unstructured":"Corentin Burnay. 2016. Are stakeholders the only source of information for requirements engineers? Toward a taxonomy of elicitation information sources. ACM Trans. Manage. Info. Syst. 7, 3 (2016).","journal-title":"ACM Trans. Manage. Info. Syst."},{"key":"e_1_2_1_32_1","unstructured":"Carole Cadwalladr and Emma Graham-Harrison. 2018. Revealed: 50 million Facebook profiles harvested for Cambridge Analytica in major data breach. The Guardian. Retrieved from https:\/\/www.theguardian.com\/news\/2018\/mar\/17\/cambridge-analytica-facebook-influence-us-election."},{"key":"e_1_2_1_33_1","volume-title":"Proceedings of the 13th International Conference on High Performance Computing and Communications. 550--555","author":"Chen Lingfeng","unstructured":"Lingfeng Chen and Doan B. Hoang. 2011. Novel data protection model in healthcare cloud. In Proceedings of the 13th International Conference on High Performance Computing and Communications. 550--555."},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-012-9873-8"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-012-9830-6"},{"key":"e_1_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jocm.2019.01.002"},{"key":"e_1_2_1_37_1","volume-title":"Cox","author":"Cochran William G.","year":"1957","unstructured":"William G. Cochran and Gertrude M. Cox. 1957. Experimental Designs (2nd ed.). John Wiley 8 Sons, New York."},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1108\/17511060910948008"},{"key":"e_1_2_1_39_1","volume-title":"Proceedings of the Sawtooth Software Conference. 61--74","author":"Cohen Steve","year":"2003","unstructured":"Steve Cohen. 2003. Maximum difference scaling: Improved measures of importance and preference for segmentation. In Proceedings of the Sawtooth Software Conference. 61--74."},{"key":"e_1_2_1_40_1","volume-title":"Proceedings of the ESOMAR Congress. 595--612","author":"Steven","unstructured":"Steven H. Cohen and Paul Markowitz. 2002. Renewing market segmentation: Some new tools to correct old problems. In Proceedings of the ESOMAR Congress. 595--612."},{"key":"e_1_2_1_41_1","volume-title":"Proceedings of the ESOMAR Latin America Conference.","author":"Steven","unstructured":"Steven H. Cohen and Leopoldo Neira. 2003. Measuring preference for product benefits across countries: Overcoming scale usage bias with maximum difference scaling. In Proceedings of the ESOMAR Latin America Conference."},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.28945\/2211"},{"key":"e_1_2_1_43_1","volume-title":"Proceedings of the 2nd IEEE International Conference on Computer Science and Engineering.","author":"Dawoud Mohanad","unstructured":"Mohanad Dawoud and D. Turgay Altilar. 2017. Cloud-based e-health systems: Security and privacy challenges and solutions. In Proceedings of the 2nd IEEE International Conference on Computer Science and Engineering."},{"key":"e_1_2_1_44_1","volume-title":"Public Key Infrastructure","author":"Decker Bart De","unstructured":"Bart De Decker, Mohamed Layouni, Hans Vangheluwe, and Kristof Verslype. 2008. A privacy-preserving eHealth protocol compliant with the belgian healthcare system. In Public Key Infrastructure. Springer, 118--133."},{"key":"e_1_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1007\/s12525-013-0150-6"},{"key":"e_1_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-32873-2_12"},{"key":"e_1_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2011.108"},{"key":"e_1_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-23294-2_2"},{"key":"e_1_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1057\/ejis.2012.23"},{"key":"e_1_2_1_50_1","article-title":"Do health information exchanges deter repetition of medical services","volume":"8","author":"Eftekhari Saeede","year":"2017","unstructured":"Saeede Eftekhari, Niam Yaraghi, Ranjit Singh, Ram Danturti Gopal, and Ram Ramesh. 2017. Do health information exchanges deter repetition of medical services? ACM Trans. Manage. Info. Syst. 8, 1 (2017).","journal-title":"ACM Trans. Manage. Info. Syst."},{"key":"e_1_2_1_51_1","volume-title":"Proceedings of the 19th Americas Conference on Information Systems. 1--8.","author":"Ermakova Tatiana","year":"2013","unstructured":"Tatiana Ermakova, Benjamin Fabian, and R\u00fcdiger Zarnekow. 2013a. Security and privacy system requirements for adopting cloud computing in healthcare data sharing scenarios. In Proceedings of the 19th Americas Conference on Information Systems. 1--8."},{"key":"e_1_2_1_52_1","volume-title":"Proceedings of the 22nd European Conference on Information Systems (ECIS\u201914)","author":"Ermakova Tatiana","year":"2014","unstructured":"Tatiana Ermakova, Benjamin Fabian, and R\u00fcdiger Zarnekow. 2014. Acceptance of health clouds\u2014A privacy calculus perspective. In Proceedings of the 22nd European Conference on Information Systems (ECIS\u201914)."},{"key":"e_1_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.4338\/ACI-2016-07-RA-0107"},{"key":"e_1_2_1_54_1","volume-title":"Proceedings of the 19th Americas Conference on Information Systems (AMCIS\u201913)","author":"Ermakova Tatiana","year":"2013","unstructured":"Tatiana Ermakova, Jan Huenges, Koray Erek, and R\u00fcdiger Zarnekow. 2013b. Cloud computing in healthcare\u2014A literature review on current state of research. In Proceedings of the 19th Americas Conference on Information Systems (AMCIS\u201913). 1--8."},{"key":"e_1_2_1_55_1","volume-title":"Topological analysis of cloud service connectivity. Comput. Industr. Eng. 88 (Oct","author":"Fabian Benjamin","year":"2015","unstructured":"Benjamin Fabian, Annika Baumann, and Jessika Lackner. 2015a. Topological analysis of cloud service connectivity. Comput. Industr. Eng. 88 (Oct. 2015), 151--165."},{"key":"e_1_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.is.2014.05.004"},{"key":"e_1_2_1_57_1","first-page":"7","article-title":"A comparison of security requirements engineering methods. Require","volume":"15","author":"Fabian Benjamin","year":"2010","unstructured":"Benjamin Fabian, Seda G\u00fcrses, Maritta Heisel, Thomas Santen, and Holger Schmidt. 2010. A comparison of security requirements engineering methods. Require. Eng. 15, 1 (2010), 7--40.","journal-title":"Eng."},{"key":"e_1_2_1_59_1","doi-asserted-by":"publisher","DOI":"10.1177\/074391569201100202"},{"key":"e_1_2_1_60_1","doi-asserted-by":"publisher","DOI":"10.5381\/jot.2004.3.8.c4"},{"key":"e_1_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jhealeco.2006.04.002"},{"key":"e_1_2_1_62_1","first-page":"1","article-title":"Development and clinical study of mobile 12-lead electrocardiography based on cloud computing for cardiac emergency","volume":"192","author":"Fujita Hideo","year":"2013","unstructured":"Hideo Fujita, Yuji Uchimura, Kayo Waki, Koji Omae, Ichiro Takeuchi, and Kazuhiko Ohe. 2013. Development and clinical study of mobile 12-lead electrocardiography based on cloud computing for cardiac emergency. Studies Health Technol. Inform. 192, 1 (Aug. 2013), 1077--1077.","journal-title":"Studies Health Technol. Inform."},{"key":"e_1_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2019.02.002"},{"key":"e_1_2_1_64_1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2016.125"},{"key":"e_1_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.2196\/10041"},{"key":"e_1_2_1_66_1","volume-title":"Through the Patient\u2019s Eyes: Understanding and Promoting Patient-Centered Care. Jossey-Bass","author":"Gerteis Margaret","unstructured":"Margaret Gerteis. 1993. Through the Patient\u2019s Eyes: Understanding and Promoting Patient-Centered Care. Jossey-Bass, San Francisco."},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2014.08.073"},{"key":"e_1_2_1_68_1","volume-title":"A scoping review of cloud computing in healthcare. MC Med. Inform. Decis. Mak. 15, 1","author":"Griebel Lena","year":"2015","unstructured":"Lena Griebel, Hans-Ulrich Prokosch, Felix K\u00f6pcke, Dennis Toddenroth, Jan Christoph, Ines Leb, Igor Engel, and Martin Sedlmayr. 2015. A scoping review of cloud computing in healthcare. MC Med. Inform. Decis. Mak. 15, 1 (2015)."},{"key":"e_1_2_1_69_1","volume-title":"Proceedings of the UKDU Workshop. 51--64","author":"G\u00fcrses Seda","year":"2006","unstructured":"Seda G\u00fcrses, Bettina Berendt, and Thomas Santen. 2006. Multilateral security requirements analysis for preserving privacy in ubiquitous environments. In Proceedings of the UKDU Workshop. 51--64."},{"key":"e_1_2_1_70_1","volume-title":"Proceedings of the 15th Annual International Conference hosted by the IBM Centers for Advanced Studies. 101--116","author":"G\u00fcrses Seda","year":"2005","unstructured":"Seda G\u00fcrses, Jens H. Jahnke, Christina Obry, Adeniyi Onabajo, Thomas Santen, and Morgan Price. 2005. Eliciting confidentiality requirements in practice. In Proceedings of the 15th Annual International Conference hosted by the IBM Centers for Advanced Studies. 101--116."},{"key":"e_1_2_1_71_1","first-page":"42","article-title":"Contextualizing security goals: A method for multilateral security requirements elicitation","volume":"6","author":"G\u00fcrses Seda","year":"2006","unstructured":"Seda G\u00fcrses and Thomas Santen. 2006. Contextualizing security goals: A method for multilateral security requirements elicitation. In Sicherheit, Vol. 6. 42--53.","journal-title":"Sicherheit"},{"key":"e_1_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2015.01.005"},{"key":"e_1_2_1_74_1","doi-asserted-by":"publisher","DOI":"10.3390\/ijerph10116131"},{"key":"e_1_2_1_75_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICPPW.2012.42"},{"key":"e_1_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-012-9851-1"},{"key":"e_1_2_1_78_1","doi-asserted-by":"publisher","DOI":"10.1145\/2078827.2078845"},{"key":"e_1_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1109\/HICSS.2012.61"},{"key":"e_1_2_1_80_1","article-title":"Editorial: \u201cComplexity of systems evolution: Requirements engineering perspective","volume":"5","author":"Jarke Matthais","year":"2015","unstructured":"Matthais Jarke and Kalle J. Lyytinen. 2015. Editorial: \u201cComplexity of systems evolution: Requirements engineering perspective.\u201d ACM Trans. Manage. Info. Syst. 5, 3 (2015).","journal-title":"ACM Trans. Manage. Info. Syst."},{"key":"e_1_2_1_81_1","volume-title":"Engineering of secure multi-cloud storage. Comput. Industry 83 (Dec","author":"Junghanns Philipp","year":"2016","unstructured":"Philipp Junghanns, Benjamin Fabian, and Tatiana Ermakova. 2016. Engineering of secure multi-cloud storage. Comput. Industry 83 (Dec. 2016), 108--120."},{"key":"e_1_2_1_82_1","doi-asserted-by":"publisher","DOI":"10.1371\/journal.pone.0139252"},{"key":"e_1_2_1_83_1","volume-title":"Proceedings of the IEEE International Conference on Cloud Engineering Workshop (IC2EW\u201916)","author":"Argyro","unstructured":"Argyro P. Karanasiou and Emile Douilhet. 2016. Never mind the data: The legal quest over control of information 8 the networked self. In Proceedings of the IEEE International Conference on Cloud Engineering Workshop (IC2EW\u201916)."},{"key":"e_1_2_1_84_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICRE.1996.491435"},{"key":"e_1_2_1_85_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2012.01.005"},{"key":"e_1_2_1_86_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSC.2009.10"},{"key":"e_1_2_1_88_1","first-page":"23","article-title":"How do patients respond to violation of their information privacy. Health Info","volume":"43","author":"Kuo K. M.","year":"2013","unstructured":"K. M. Kuo, C. C. Ma, and J. W. Alexander. 2013. How do patients respond to violation of their information privacy. Health Info. Manage. J. 43, 2 (2013), 23--33.","journal-title":"Manage. J."},{"key":"e_1_2_1_89_1","doi-asserted-by":"publisher","DOI":"10.2196\/jmir.1867"},{"key":"e_1_2_1_90_1","doi-asserted-by":"publisher","DOI":"10.1177\/1460458211399403"},{"key":"e_1_2_1_91_1","doi-asserted-by":"publisher","DOI":"10.1145\/1592761.1592773"},{"key":"e_1_2_1_92_1","volume-title":"Proceedings of the 21st European Conference on Information Systems (ECIS\u201913)","author":"Lansing Jens","year":"2013","unstructured":"Jens Lansing, Stephan Schneider, and Ali Sunyaev. 2013. Cloud service certifications: Measuring consumers\u2019 preferences for assurances. In Proceedings of the 21st European Conference on Information Systems (ECIS\u201913). 1--12."},{"key":"e_1_2_1_93_1","first-page":"93","article-title":"Consumer concerns for healthcare information privacy: A comparison of US and Canadian perspectives","volume":"12","author":"Laric Michael V.","year":"2009","unstructured":"Michael V. Laric, Dennis A. Pitta, and Lea Prevel Katsanis. 2009. Consumer concerns for healthcare information privacy: A comparison of US and Canadian perspectives. Res. Healthcare Financial Manage. 12, 1 (2009), 93--111.","journal-title":"Res. Healthcare Financial Manage."},{"key":"e_1_2_1_94_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-014-0128-8"},{"key":"e_1_2_1_95_1","doi-asserted-by":"publisher","DOI":"10.1002\/mar.20197"},{"key":"e_1_2_1_96_1","doi-asserted-by":"publisher","DOI":"10.1198\/108571105X46642"},{"key":"e_1_2_1_97_1","doi-asserted-by":"publisher","DOI":"10.28945\/479"},{"key":"e_1_2_1_98_1","volume-title":"Proceedings of the 31st IEEE International Conference on Distributed Computing Systems. 383--392","author":"Li Ming","year":"2011","unstructured":"Ming Li, Shucheng Yu, Ning Cao, and Wenjing Lou. 2011b. Authorized private keyword search over encrypted personal health records in cloud computing. In Proceedings of the 31st IEEE International Conference on Distributed Computing Systems. 383--392."},{"key":"e_1_2_1_99_1","volume-title":"Security and Privacy in Communication Networks","author":"Li Ming","unstructured":"Ming Li, Shucheng Yu, Kui Ren, and Wenjing Lou. 2010. Securing personal health records in cloud computing: Patient-centric and fine-grained data access control in multi-owner settings. In Security and Privacy in Communication Networks, S. Jajodia and J. Zhou (Eds.). Vol. 50. Springer, 89--106."},{"key":"e_1_2_1_100_1","doi-asserted-by":"publisher","DOI":"10.1109\/TPDS.2012.97"},{"key":"e_1_2_1_101_1","doi-asserted-by":"publisher","DOI":"10.1109\/ISCE.2011.5973792"},{"key":"e_1_2_1_102_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2012.04.001"},{"key":"e_1_2_1_103_1","article-title":"Empowering village doctors and enhancing rural healthcare using cloud computing in a rural area of mainland","volume":"113","author":"Lin Che-Wei","year":"2014","unstructured":"Che-Wei Lin, Shabbir Syed Abdul, Daniel L. Clinciu, Jeremiah Scholl, Xiangdong Jin, Haifei Lu, Steve S. Chen, Usman Iqbal, Maxwell J. Heineck, and Yu-Chuan Li. 2014a. Empowering village doctors and enhancing rural healthcare using cloud computing in a rural area of mainland China. Comput. Methods Programs Biomed. J. 113, 2 (2014).","journal-title":"China. Comput. Methods Programs Biomed. J."},{"key":"e_1_2_1_104_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jfma.2014.02.009"},{"key":"e_1_2_1_105_1","doi-asserted-by":"publisher","DOI":"10.1145\/1882992.1883024"},{"key":"e_1_2_1_106_1","volume-title":"Disruptive Technologies: Advances That Will Transform Life Business and the Global Economy. Technical Report","author":"Manyika James","year":"2013","unstructured":"James Manyika, Michael Chui, Jacques Bughin, Richard Dobbs, Peter Bisson, and Alex Marrs. 2013. Disruptive Technologies: Advances That Will Transform Life Business and the Global Economy. Technical Report. McKinsey Global Institute. Retrieved from http:\/\/wwwmckinseycom\/insights\/business_technology\/disruptive_technologies."},{"key":"e_1_2_1_107_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jmp.2005.05.003"},{"key":"e_1_2_1_108_1","unstructured":"A. A. J. Marley and T. N. Flynn. 2014. Best worst scaling: Theory and methods. In Handbook of Choice Modelling S. Hess and A. Daly (Eds.). 178--201."},{"key":"e_1_2_1_109_1","first-page":"203","article-title":"A cloud architecture for teleradiology-as-a-service. Methods Info","volume":"53","author":"Mel\u00edcio Monteiro E. J.","year":"2016","unstructured":"E. J. Mel\u00edcio Monteiro, C. Costa, and J. L. Oliveira. 2016. A cloud architecture for teleradiology-as-a-service. Methods Info. Med. 53, 5 (2016), 203--14.","journal-title":"Med."},{"key":"e_1_2_1_111_1","volume-title":"Proceedings of Systems Engineering Test and Evaluation Conference.","author":"Moisiadis Frank","year":"2002","unstructured":"Frank Moisiadis. 2002. The fundamentals of prioritizing requirements. In Proceedings of Systems Engineering Test and Evaluation Conference."},{"key":"e_1_2_1_112_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-012-9875-6"},{"key":"e_1_2_1_113_1","unstructured":"Sharyl J. Nass Laura A. Levit and Lawrence O. Gostin (Eds.). 2009. Beyond the HIPAA Privacy Rule: Enhancing Privacy. Improving Health Through Research. National Academies Press WA."},{"key":"e_1_2_1_114_1","first-page":"203","article-title":"Requirements elicitation for secure and interoperable cross-border health data exchange: The KONFIDO study","volume":"13","author":"Natsiavas Pantelis","year":"2019","unstructured":"Pantelis Natsiavas, Christine Kakalou, Konstantinos Votis, Dimitrios Tzovaras, Nicos Maglaveras, and Vassilis Koutkias. 2019. Requirements elicitation for secure and interoperable cross-border health data exchange: The KONFIDO study. Instit. Eng. Technol. 13, 3 (2019), 203--210.","journal-title":"Instit. Eng. Technol."},{"key":"e_1_2_1_115_1","volume-title":"Proceedings of the 3rd International Conference on Pervasive Technologies Related to Assistive Environments. 1--7.","author":"Nematzadeh Azadeh","unstructured":"Azadeh Nematzadeh and L. Jean Camp. 2010. Threat analysis of online health information system. In Proceedings of the 3rd International Conference on Pervasive Technologies Related to Assistive Environments. 1--7."},{"key":"e_1_2_1_116_1","volume-title":"Pr\u00e4vention und Versorgungsforschung: Ausgew\u00e4hlte Beitr\u00e4ge des 2. Nationalen Pr\u00e4ventionskongresses und 6. Deutschen Kongresses f\u00fcr Versorgungsforschung, Dresden 24. bis 27. Oktober","author":"Neugebauer Edmund A. M.","year":"2007","unstructured":"Edmund A. M. Neugebauer, Holger Pfaff, Matthias Schrappe, and Gerd Glaeske. 2008. Versorgungsforschung -- Konzept, Methoden und Herausforderungen. In Pr\u00e4vention und Versorgungsforschung: Ausgew\u00e4hlte Beitr\u00e4ge des 2. Nationalen Pr\u00e4ventionskongresses und 6. Deutschen Kongresses f\u00fcr Versorgungsforschung, Dresden 24. bis 27. Oktober 2007."},{"key":"e_1_2_1_117_1","doi-asserted-by":"publisher","DOI":"10.1111\/j.1745-6606.2006.00070.x"},{"key":"e_1_2_1_118_1","first-page":"679","article-title":"Scalable and secure sharing of personal health records in cloud computing using attribute-based encryption","volume":"1","author":"Padmini Ch.","year":"2013","unstructured":"Ch. Padmini, Sk. Salamuddin, and S. Suresh Babu. 2013. Scalable and secure sharing of personal health records in cloud computing using attribute-based encryption. Int. J. Recent Innovat. Trends Comput. Commun. 1, 8 (2013), 679--681.","journal-title":"Int. J. Recent Innovat. Trends Comput. Commun."},{"key":"e_1_2_1_119_1","unstructured":"European Parliament and Council. 2016. Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95\/46\/EC (General Data Protection Regulation). Retrieved from eur-lex.europa.eu."},{"key":"e_1_2_1_120_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2010.11.005"},{"key":"e_1_2_1_121_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.amepre.2011.02.014"},{"key":"e_1_2_1_123_1","doi-asserted-by":"publisher","DOI":"10.1504\/IJEH.2013.057407"},{"key":"e_1_2_1_124_1","volume-title":"Multilateral Security in Communications \u2014 Technology, Infrastructure, Economy, G\u00fcnther M\u00fcller and Kai Rannenberg (Eds.)","author":"Rannenberg Kai","unstructured":"Kai Rannenberg, Andreas Pfitzmann, and G\u00fcnther M\u00fcller. 1999. IT security and multilateral security. In Multilateral Security in Communications \u2014 Technology, Infrastructure, Economy, G\u00fcnther M\u00fcller and Kai Rannenberg (Eds.), Vol. 3. Addison-Wesley-Longman, M\u00fcnchen, 21--29."},{"key":"e_1_2_1_125_1","doi-asserted-by":"publisher","DOI":"10.1145\/257874.257896"},{"key":"e_1_2_1_126_1","volume-title":"Storage media profiles and health record retention practice patterns in acute care hospitals. Perspect. Health Info. Manage. 5, 9","author":"Rinehart-Thompson Laurie A.","year":"2008","unstructured":"Laurie A. Rinehart-Thompson. 2008. Storage media profiles and health record retention practice patterns in acute care hospitals. Perspect. Health Info. Manage. 5, 9 (2008)."},{"key":"e_1_2_1_127_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2015.01.008"},{"key":"e_1_2_1_128_1","doi-asserted-by":"publisher","DOI":"10.2196\/jmir.2494"},{"key":"e_1_2_1_129_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0148-2963(02)00345-4"},{"key":"e_1_2_1_130_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0148-2963(99)00071-5"},{"key":"e_1_2_1_131_1","volume-title":"UML 2 glasklar: Praxiswissen f\u00fcr die UML-Modellierung und-Zertifizierung","author":"Rupp Chris","unstructured":"Chris Rupp. 2005. UML 2 glasklar: Praxiswissen f\u00fcr die UML-Modellierung und-Zertifizierung. Carl Hanser Verlag, M\u00fcnchen."},{"key":"e_1_2_1_132_1","doi-asserted-by":"publisher","DOI":"10.1016\/0377-2217(90)90057-I"},{"key":"e_1_2_1_133_1","doi-asserted-by":"crossref","unstructured":"John P. Sahlin. 2013. Chapter cloud computing: Past present and future. In Principles Methodologies and Service-Oriented Approaches for Cloud Computing Xiaoyu Yang and Lu Liu (Eds.). Business Science Reference 19--50.","DOI":"10.4018\/978-1-4666-2854-0.ch002"},{"key":"e_1_2_1_134_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-016-0509-2"},{"key":"e_1_2_1_135_1","volume-title":"Youman","author":"Sandhu Ravi S.","year":"1996","unstructured":"Ravi S. Sandhu, Edward J. Coynek, Hal L. Feinsteink, and Charles E. Youman. 1996. Role-based access control models. IEEE Comput. 29, 2 (1996)."},{"key":"e_1_2_1_136_1","volume-title":"Managing delphi surveys using nonparametric statistical techniques. Decision Sci. J. 28","author":"Schmidt Roy C.","year":"1997","unstructured":"Roy C. Schmidt. 1997. Managing delphi surveys using nonparametric statistical techniques. Decision Sci. J. 28 (1997), 763--774."},{"key":"e_1_2_1_137_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.proeng.2012.06.399"},{"key":"e_1_2_1_139_1","doi-asserted-by":"publisher","DOI":"10.2196\/jmir.1164"},{"key":"e_1_2_1_140_1","doi-asserted-by":"publisher","DOI":"10.2307\/249477"},{"key":"e_1_2_1_141_1","volume-title":"Requirements Engineering: A Good Practice Guide","author":"Sommerville Ian","year":"1997","unstructured":"Ian Sommerville and Pete Sawyer. 1997. Requirements Engineering: A Good Practice Guide. John Wiley 8 Sons, Chichester."},{"key":"e_1_2_1_142_1","volume-title":"Measuring IT security costs. Forbes","author":"Sperling Ed","year":"2009","unstructured":"Ed Sperling. 2009. Measuring IT security costs. Forbes (2009). Retrieved from https:\/\/www.forbes.com\/2009\/02\/07\/security-information-tech-technology-cio-network_0209_security.html."},{"key":"e_1_2_1_143_1","volume-title":"Cryptography and Network Security: Principles and Practice (international","author":"Stallings William","unstructured":"William Stallings. 2003. Cryptography and Network Security: Principles and Practice (international 3rd ed.). Pearson Education, Upper Saddle River, NJ.","edition":"3"},{"key":"e_1_2_1_144_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2013.12.012"},{"key":"e_1_2_1_145_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2013.12.011"},{"key":"e_1_2_1_146_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-34957-8_7"},{"key":"e_1_2_1_147_1","unstructured":"TAPAS. 2004. TAPAS security requirements. Retrieved from http:\/\/opentapas.org\/."},{"key":"e_1_2_1_148_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.healthpol.2007.08.002"},{"key":"e_1_2_1_149_1","volume-title":"Proceedings of the 38th International Conference on Information Systems (ICIS\u201917)","author":"Thiebes Scott","year":"2017","unstructured":"Scott Thiebes, Kalle Lyytinen, and Ali Sunyaev. 2017. Sharing is about caring? Motivating and discouraging factors in sharing individual genomic data. In Proceedings of the 38th International Conference on Information Systems (ICIS\u201917)."},{"key":"e_1_2_1_150_1","doi-asserted-by":"publisher","DOI":"10.1037\/0033-295X.101.2.266"},{"key":"e_1_2_1_151_1","doi-asserted-by":"publisher","DOI":"10.1037\/a0018963"},{"key":"e_1_2_1_152_1","unstructured":"TRUSTe\/NCSA. 2016. 2016 TRUSTe\/NCSA Consumer Privacy Infographic\u2014U.S. Edition. Technical Report. TRUSTe\/NCSA. Retrieved from www.trustarc.com."},{"key":"e_1_2_1_153_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2008.06.013"},{"key":"e_1_2_1_154_1","volume-title":"Proceedings of the 17th European Conference on Information Systems.","author":"vom Brocke Jan","year":"2009","unstructured":"Jan vom Brocke, Alexander Simons, Bjoern Niehaves, Bjorn Niehaves, Kai Reimer, Ralf Plattfaut, and Anne Cleven. 2009. Reconstructing the giant: On the importance of rigour in documenting the literature search process. In Proceedings of the 17th European Conference on Information Systems."},{"key":"e_1_2_1_155_1","doi-asserted-by":"publisher","DOI":"10.17705\/1CAIS.03709"},{"key":"e_1_2_1_156_1","doi-asserted-by":"publisher","DOI":"10.2174\/1874431100802010160"},{"key":"e_1_2_1_157_1","first-page":"13","article-title":"Analyzing the past to prepare for the future: Writing a literature review","volume":"26","author":"Webster Jane","year":"2002","unstructured":"Jane Webster and Richard T. Watson. 2002. Analyzing the past to prepare for the future: Writing a literature review. MIS Quart. 26, 2 (2002), 13--23.","journal-title":"MIS Quart."},{"key":"e_1_2_1_158_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10916-016-0430-8"},{"key":"e_1_2_1_159_1","doi-asserted-by":"publisher","DOI":"10.1108\/17506120910948485"},{"key":"e_1_2_1_160_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijmedinf.2005.08.009"},{"key":"e_1_2_1_161_1","doi-asserted-by":"publisher","DOI":"10.1177\/1460458212442933"},{"key":"e_1_2_1_162_1","doi-asserted-by":"publisher","DOI":"10.17705\/1CAIS.03102"},{"key":"e_1_2_1_163_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2004.64"},{"key":"e_1_2_1_164_1","doi-asserted-by":"publisher","DOI":"10.5555\/1833515.1833621"},{"key":"e_1_2_1_165_1","doi-asserted-by":"publisher","DOI":"10.1109\/CLOUD.2010.62"}],"container-title":["ACM Transactions on Management Information Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3386160","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3386160","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T22:02:24Z","timestamp":1750197744000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3386160"}},"subtitle":["Elicitation and Prioritization from a Patient Perspective"],"short-title":[],"issued":{"date-parts":[[2020,5,3]]},"references-count":157,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2020,6,30]]}},"alternative-id":["10.1145\/3386160"],"URL":"https:\/\/doi.org\/10.1145\/3386160","relation":{},"ISSN":["2158-656X","2158-6578"],"issn-type":[{"value":"2158-656X","type":"print"},{"value":"2158-6578","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020,5,3]]},"assertion":[{"value":"2017-02-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2020-02-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2020-05-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}