{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,20]],"date-time":"2026-04-20T22:50:41Z","timestamp":1776725441659,"version":"3.51.2"},"reference-count":22,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2024,6,19]],"date-time":"2024-06-19T00:00:00Z","timestamp":1718755200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"National Science Foundation Convergence Accelerator","award":["1937061"],"award-info":[{"award-number":["1937061"]}]},{"name":"RAPID","award":["2029746"],"award-info":[{"award-number":["2029746"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["Digit. Gov.: Res. Pract."],"published-print":{"date-parts":[[2024,6,30]]},"abstract":"<jats:p>A Secure Data Enclave is a system that allows data owners, such as governments and private firms, to control data access and ensure data security while facilitating approved uses of data by other parties. This model of data use offers additional protections and technical controls for the data owner compared to the more commonly used approach of transferring data from the owner to another party through a data sharing agreement. Under the data use model, the data owner retains full transparency and auditing over the other party's access, which can be difficult to achieve in practice with even the best legal instrument for data sharing. We describe the key technical requirements for a Secure Data Enclave, provide a reference architecture for its implementation on Amazon Web Services using managed cloud services, and describe four use cases of this architecture in partnerships with state governments to control access to sensitive administrative data.<\/jats:p>","DOI":"10.1145\/3643686","type":"journal-article","created":{"date-parts":[[2024,2,2]],"date-time":"2024-02-02T07:46:28Z","timestamp":1706859988000},"page":"1-11","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["Protecting Sensitive Data with Secure Data Enclaves"],"prefix":"10.1145","volume":"5","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-0764-4090","authenticated-orcid":false,"given":"Mark","family":"Howison","sequence":"first","affiliation":[{"name":"Research Improving People's Lives, Providence, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0009-1344-7438","authenticated-orcid":false,"given":"Mintaka","family":"Angell","sequence":"additional","affiliation":[{"name":"Research Improving People's Lives, Providence, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8674-9498","authenticated-orcid":false,"given":"Justine S.","family":"Hastings","sequence":"additional","affiliation":[{"name":"Research Improving People's Lives, Providence, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,6,19]]},"reference":[{"key":"e_1_3_3_2_2","doi-asserted-by":"publisher","DOI":"10.1038\/nature14539"},{"key":"e_1_3_3_3_2","unstructured":"Office of the Press Secretary The White House. 2016. Announcing Over $80 million in New Federal Investment and a Doubling of Participating Communities in the White House Smart Cities Initiative. Accessed July 7 2021 from: https:\/\/obamawhitehouse.archives.gov\/the-press-office\/2016\/09\/26\/fact-sheet-announcing-over-80-million-new-federal-investment-and"},{"key":"e_1_3_3_4_2","unstructured":"Commission on Evidence-Based Policymaking. 2017. The promise of evidence-based policymaking. Accessed November 19 2021 from: https:\/\/www2.census.gov\/adrm\/fesac\/2017-12-15\/Abraham-CEP-final-report.pdf"},{"key":"e_1_3_3_5_2","article-title":"How CDOs can promote machine learning in government","author":"Schatsky D.","year":"2018","unstructured":"D. Schatsky and R. Chauhan. 2018. How CDOs can promote machine learning in government. Deloitte Insights. Accessed November 19, 2021 from: https:\/\/www2.deloitte.com\/us\/en\/insights\/industry\/public-sector\/chief-data-officer-government-playbook\/five-uses-machine-learning-government-for-cdos.html","journal-title":"Deloitte Insights"},{"key":"e_1_3_3_6_2","doi-asserted-by":"publisher","DOI":"10.1145\/3335150"},{"key":"e_1_3_3_7_2","article-title":"Fact-based policy: How do state and local governments accomplish it?","author":"Hastings J. S.","year":"2019","unstructured":"J. S. Hastings. 2019. Fact-based policy: How do state and local governments accomplish it? The Hamilton Project (Brookings Institution), Policy Proposal 2019-01. Accessed November 19, 2021 from: https:\/\/www.hamiltonproject.org\/assets\/files\/Hastings_PP_web_20190128.pdf","journal-title":"The Hamilton Project (Brookings Institution), Policy Proposal 2019-01"},{"key":"e_1_3_3_8_2","doi-asserted-by":"publisher","DOI":"10.2478\/dim-2019-0005"},{"key":"e_1_3_3_9_2","doi-asserted-by":"publisher","DOI":"10.1109\/eScience.2011.45"},{"key":"e_1_3_3_10_2","unstructured":"US Census Bureau. 2021. Federal statistical research data centers. Accessed July 20 2021 from: https:\/\/www.census.gov\/about\/adrm\/fsrdc.html"},{"key":"e_1_3_3_11_2","unstructured":"Centers for Disease Control and Prevention. 2021. Research data center. Accessed July 20 2021 from: https:\/\/www.cdc.gov\/rdc\/index.htm"},{"key":"e_1_3_3_12_2","doi-asserted-by":"publisher","DOI":"10.2218\/ijdc.v2i1.20"},{"key":"e_1_3_3_13_2","doi-asserted-by":"publisher","DOI":"10.1145\/3428125"},{"key":"e_1_3_3_14_2","unstructured":"Amazon Web Services. 2021. Active directory domain services on AWS \u2013 quick start. Accessed July 26 2021 from: https:\/\/aws.amazon.com\/quickstart\/architecture\/active-directory-ds\/"},{"key":"e_1_3_3_15_2","unstructured":"Amazon Web Services. 2021. Rebuild a workspace \u2013 Amazon workspaces. Accessed August 4 2021 from: https:\/\/docs.aws.amazon.com\/workspaces\/latest\/adminguide\/rebuild-workspace.html"},{"key":"e_1_3_3_16_2","unstructured":"Amazon Web Services. 2021. AWS transfer family. Accessed August 4 2021 from: https:\/\/aws.amazon.com\/aws-transfer-family\/"},{"key":"e_1_3_3_17_2","unstructured":"Center for Internet Security. 2021. Amazon web services benchmarks. Accessed July 26 2021 from: https:\/\/www.cisecurity.org\/benchmark\/amazon_web_services\/"},{"key":"e_1_3_3_18_2","unstructured":"Amazon Web Services. 2021. How CloudTrail works \u2013 AWS CloudTrail. Accessed July 26 2021 from: https:\/\/docs.aws.amazon.com\/awscloudtrail\/latest\/userguide\/how-cloudtrail-works.html"},{"key":"e_1_3_3_19_2","unstructured":"Rhode Island Office of the Governor. 2021. Rhode Island to launch virtual career center powered by google cloud as part of \u201cback to work RI\u201d initiative. Accessed September 2 2021 from: https:\/\/www.ri.gov\/press\/view\/39624"},{"key":"e_1_3_3_20_2","unstructured":"Rhode Island Department of Education. 2021. Rhode Island students SAIL into summer leaning. Accessed September 2 2021 from: https:\/\/www.ride.ri.gov\/InsideRIDE\/AdditionalInformation\/News\/ViewArticle\/tabid\/408\/ArticleId\/696\/Rhode-Island-Students-SAIL-Into-Summer-Learning.aspx"},{"key":"e_1_3_3_21_2","unstructured":"Rhode Island Department of Education. 2021. Rhode Island launches statewide incentive program to increase the number of students prepared for college. Accessed October 13 2021 from: https:\/\/www.ride.ri.gov\/InsideRIDE\/AdditionalInformation\/News\/ViewArticle\/tabid\/408\/ArticleId\/511\/Rhode-Island-Launches-Statewide-Incentive-Program-to-Increase-the-Number-of-Students-Prepared-for-Co.aspx"},{"key":"e_1_3_3_22_2","unstructured":"Office of the Chief Data Officer of Virginia. 2021. Virginia secure analytics and governance environment (SAGE). Accessed September 2 2021 from: https:\/\/www.cdo.virginia.gov\/resources\/datasage\/"},{"key":"e_1_3_3_23_2","first-page":"3","volume-title":"Proceedings of the 27th Large Installation System Administration Conference (LISA'13)","author":"Howison M.","year":"2013","unstructured":"M. Howison, A. Shen, and A. Loomis. 2013. Building software environments for research computing clusters. In Proceedings of the 27th Large Installation System Administration Conference (LISA'13), 3\u20138 November 2013, Washington, DC, USA"}],"container-title":["Digital Government: Research and Practice"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643686","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3643686","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T20:05:33Z","timestamp":1750277133000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643686"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,6,19]]},"references-count":22,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2024,6,30]]}},"alternative-id":["10.1145\/3643686"],"URL":"https:\/\/doi.org\/10.1145\/3643686","relation":{"has-preprint":[{"id-type":"doi","id":"10.31219\/osf.io\/jmd7t","asserted-by":"object"}]},"ISSN":["2691-199X","2639-0175"],"issn-type":[{"value":"2691-199X","type":"print"},{"value":"2639-0175","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,6,19]]},"assertion":[{"value":"2023-02-18","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-01-21","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-06-19","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}