{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,4]],"date-time":"2026-05-04T10:20:16Z","timestamp":1777890016384,"version":"3.51.4"},"reference-count":57,"publisher":"SAGE Publications","issue":"4","license":[{"start":{"date-parts":[[2023,4,24]],"date-time":"2023-04-24T00:00:00Z","timestamp":1682294400000},"content-version":"unspecified","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["SW"],"published-print":{"date-parts":[[2023,4,24]]},"abstract":"<jats:p>Integration of health information systems are crucial to advance the effective delivery of healthcare for individuals and communities across organizational boundaries. Semantic Web technologies may be used to connect, correlate, and integrate heterogeneous datasets spread over the internet. However, when working with sensitive data, such as health data, security mechanisms are needed. A scoping review of the literature was undertaken to provide a broad view of security mechanisms applied to, or along with, Semantic Web technologies that could allow its use with health data. Searches were conducted in the most relevant databases for the scope of this work. The findings were classified according to the main objective and features presented by each solution. Twenty-six studies were included in the review. They introduced mechanisms that addressed several security attributes, such as authentication, authorization, integrity, availability, confidentiality, privacy, and provenance. These mechanisms support access control frameworks, semantic and functional interoperability infrastructures, and privacy compliance solutions. The findings suggest that the application and use of Semantic Web technologies is still growing, with the healthcare area being particularly interested. The main security mechanisms for Semantic Web technologies, the key security attributes and properties, and the main gaps in the literature were identified, helping to understand the technical needs to mitigate the risks of handling personal health information over the Semantic Web. Also, this research has shown that complex and robust solutions are available to successfully address several security properties and features, depending on the context that the electronic health data is being managed.<\/jats:p>","DOI":"10.3233\/sw-223088","type":"journal-article","created":{"date-parts":[[2022,8,30]],"date-time":"2022-08-30T12:11:03Z","timestamp":1661861463000},"page":"771-784","source":"Crossref","is-referenced-by-count":7,"title":["Security approaches for electronic health data handling through the Semantic Web: A\u00a0scoping review"],"prefix":"10.1177","volume":"14","author":[{"given":"Vin\u00edcius","family":"Costa Lima","sequence":"first","affiliation":[{"name":"Health Intelligence Laboratory, Ribeir\u00e3o Preto Medical School, University of S\u00e3o Paulo, Brazil"},{"name":"Bioengineering Post Graduate Program, School of Engineering of S\u00e3o Carlos, University of S\u00e3o Paulo, Brazil"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Domingos","family":"Alves","sequence":"additional","affiliation":[{"name":"Department of Social Medicine, Ribeir\u00e3o Preto Medical School, University of S\u00e3o Paulo, Brazil"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Filipe","family":"Andrade Bernardi","sequence":"additional","affiliation":[{"name":"Health Intelligence Laboratory, Ribeir\u00e3o Preto Medical School, University of S\u00e3o Paulo, Brazil"},{"name":"Bioengineering Post Graduate Program, School of Engineering of S\u00e3o Carlos, University of S\u00e3o Paulo, Brazil"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Rui Pedro","family":"Charters Lopes Rijo","sequence":"additional","affiliation":[{"name":"School of Technology and Management, Polytechnic Institute of Leiria, Portugal"},{"name":"Institute for Systems Engineering and Computers at Coimbra, Coimbra, Portugal"},{"name":"Center for Health Technology and Services Research, Porto, Portugal"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"179","reference":[{"key":"10.3233\/SW-223088_ref1","doi-asserted-by":"publisher","DOI":"10.31101\/ijhst.v1i3.1201"},{"key":"10.3233\/SW-223088_ref2","unstructured":"104th United States Congress, T., HIPAA. Health Insurance Portability and Accountability Act of 1996, 1996."},{"key":"10.3233\/SW-223088_ref3","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2021.107060"},{"key":"10.3233\/SW-223088_ref4","doi-asserted-by":"publisher","first-page":"19","DOI":"10.1080\/1364557032000119616","article-title":"Scoping studies: Towards a methodological framework","volume":"8","author":"Arksey","year":"2005","journal-title":"Int. J. Soc. Res. Methodol. Theory Pract."},{"key":"10.3233\/SW-223088_ref5","doi-asserted-by":"publisher","DOI":"10.1080\/10494820.2020.1799023"},{"key":"10.3233\/SW-223088_ref6","doi-asserted-by":"publisher","first-page":"596","DOI":"10.1016\/j.datak.2011.03.006","article-title":"Using OWL and SWRL to represent and reason with situation-based access control policies","volume":"70","author":"Beimel","year":"2011","journal-title":"Data Knowl. Eng."},{"key":"10.3233\/SW-223088_ref7","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1038\/scientificamerican0501-34","article-title":"The Semantic Web. A new form of web content that is meaningful to computers will unleash a revolution of new possibilities","volume":"284","author":"Berners-Lee","year":"2001","journal-title":"Sci. Am."},{"key":"10.3233\/SW-223088_ref8","doi-asserted-by":"publisher","first-page":"813","DOI":"10.1109\/ARES.2008.33","article-title":"A systematic review and comparison of security ontologies","volume":"1","author":"Blanco","year":"2008","journal-title":"Secur. Reliab. Proc."},{"key":"10.3233\/SW-223088_ref9","first-page":"181","article-title":"ARTEMIS: Towards a secure interoperability infrastructure for healthcare information systems","volume":"112","author":"Boniface","year":"2005","journal-title":"Stud. Health Technol. Inform."},{"key":"10.3233\/SW-223088_ref10","doi-asserted-by":"publisher","first-page":"326","DOI":"10.3414\/ME10-01-0075","article-title":"A model-driven privacy compliance decision support for medical data sharing in Europe","volume":"50","author":"Boussi Rahmouni","year":"2011","journal-title":"Methods Inf. Med."},{"key":"10.3233\/SW-223088_ref11","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-13674-5_16"},{"key":"10.3233\/SW-223088_ref12","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1111\/exsy.12427","article-title":"Improving privacy in health care with an ontology-based provenance management system","volume":"37","author":"Can","year":"2020","journal-title":"Expert Syst."},{"key":"10.3233\/SW-223088_ref13","doi-asserted-by":"publisher","first-page":"70","DOI":"10.1109\/MSP.2006.29","article-title":"What is cryptography?","volume":"4","author":"Coron","year":"2006","journal-title":"IEEE Secur. Priv. Mag."},{"key":"10.3233\/SW-223088_ref14","doi-asserted-by":"publisher","first-page":"160","DOI":"10.1016\/j.jbi.2012.11.001","article-title":"Knowledge-based personalized search engine for the web-based Human Musculoskeletal System Resources (HMSR) in biomechanics","volume":"46","author":"Dao","year":"2013","journal-title":"J. Biomed. Inform."},{"key":"10.3233\/SW-223088_ref16","doi-asserted-by":"publisher","DOI":"10.1109\/EDGE.2019.00032"},{"key":"10.3233\/SW-223088_ref17","doi-asserted-by":"publisher","first-page":"589","DOI":"10.1016\/j.procs.2015.08.389","article-title":"COC: An ontology for capturing semantics of circle of care","volume":"63","author":"Dong","year":"2015","journal-title":"Procedia Comput. Sci."},{"key":"10.3233\/SW-223088_ref18","doi-asserted-by":"publisher","DOI":"10.1109\/AICCSA.2017.194"},{"key":"10.3233\/SW-223088_ref19","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-7998-2242-4.ch011"},{"key":"10.3233\/SW-223088_ref20","unstructured":"European Parliament, T., and T. Council of the European Union, EU General Data Protection Regulation, 2016."},{"key":"10.3233\/SW-223088_ref21","doi-asserted-by":"publisher","first-page":"332","DOI":"10.1160\/ME5001","article-title":"Towards semantic interoperability for electronic health records: Domain knowledge governance for openEHR archetypes","volume":"46","author":"Garde","year":"2007","journal-title":"Methods Inf. Med."},{"key":"10.3233\/SW-223088_ref22","doi-asserted-by":"publisher","first-page":"243","DOI":"10.1007\/s10676-006-0012-4","article-title":"P2P networks and the verizon v. RIAA case: Implications for personal privacy and intellectual property","volume":"7","author":"Grodzinsky","year":"2005","journal-title":"Ethics Inf. Technol."},{"key":"10.3233\/SW-223088_ref23","doi-asserted-by":"publisher","first-page":"291","DOI":"10.1016\/j.ijmedinf.2007.09.001","article-title":"Definition, structure, content, use and impacts of electronic health records: A review of the research literature","volume":"77","author":"H\u00e4yrinen","year":"2008","journal-title":"Int. J. Med. Inform."},{"key":"10.3233\/SW-223088_ref24","unstructured":"HIMSS, H.I. and M.S.S., Definition of Interoperability, (2013) 2013."},{"key":"10.3233\/SW-223088_ref25","doi-asserted-by":"publisher","first-page":"577","DOI":"10.1007\/s12243-017-0582-7","article-title":"Preserving patients\u2019 privacy in health scenarios through a multicontext-aware system","volume":"72","author":"Huertas Celdr\u00e1n","year":"2017","journal-title":"Ann. Des Telecommun. Telecommun."},{"key":"10.3233\/SW-223088_ref26","first-page":"262","article-title":"Interoperability in healthcare: Benefits, challenges and resolutions","volume":"3","author":"Iroju","year":"2013","journal-title":"Int. J. Innov. Appl. Stud."},{"key":"10.3233\/SW-223088_ref27","doi-asserted-by":"publisher","first-page":"1","DOI":"10.48161\/qaj.v1n3a72","article-title":"Efficiency of semantic web implementation on cloud computing: A review","volume":"1","author":"Ismael Taher","year":"2021","journal-title":"Qubahan Acad. J."},{"key":"10.3233\/SW-223088_ref28","unstructured":"K.P.\u00a0Joshi, Y.\u00a0Yesha and T.\u00a0Finin, An ontology for a HIPAA compliant cloud services, in: 4th Int. IBM Cloud Acad. Conf. ICACON 2016, 2016."},{"key":"10.3233\/SW-223088_ref29","doi-asserted-by":"publisher","DOI":"10.1109\/AMS.2017.31"},{"key":"10.3233\/SW-223088_ref30","doi-asserted-by":"publisher","first-page":"153","DOI":"10.3233\/SW-180289","article-title":"Privacy, security and policies: A review of problems and solutions with semantic web technologies","volume":"9","author":"Kirrane","year":"2018","journal-title":"Semant. Web."},{"key":"10.3233\/SW-223088_ref31","doi-asserted-by":"publisher","DOI":"10.4018\/978-1-4666-5888-2.ch202"},{"key":"10.3233\/SW-223088_ref32","doi-asserted-by":"publisher","DOI":"10.4108\/eai.14-10-2015.2261673"},{"key":"10.3233\/SW-223088_ref33","unstructured":"H.\u00a0Level, Seven International, HL7 FHIR Specification, HL7 FHIR Specif, 2019, http:\/\/hl7.org\/fhir\/%0Ahttp:\/\/hl7.org\/implement\/standards\/fhir\/."},{"key":"10.3233\/SW-223088_ref34","unstructured":"H.\u00a0Level, Seven International, HL7 FHIR Security, HL7 FHIR Secur, 2019, https:\/\/www.hl7.org\/fhir\/security.html, (accessed April 19, 2021)."},{"key":"10.3233\/SW-223088_ref35","doi-asserted-by":"publisher","first-page":"76","DOI":"10.1016\/j.jnca.2013.06.006","article-title":"A semantic authorization model for pervasive healthcare","volume":"38","author":"Li","year":"2014","journal-title":"J. Netw. Comput. Appl."},{"key":"10.3233\/SW-223088_ref36","doi-asserted-by":"publisher","first-page":"191","DOI":"10.1016\/j.procs.2018.10.027","article-title":"Establishment of access levels for health sensitive data exchange through semantic web","volume":"138","author":"Lima","year":"2018","journal-title":"Procedia Comput. Sci."},{"key":"10.3233\/SW-223088_ref37","doi-asserted-by":"publisher","first-page":"36","DOI":"10.4018\/ijwp.2021070103","article-title":"Security framework for tuberculosis health data interoperability through the semantic web","volume":"13","author":"Lima","year":"2021","journal-title":"Int. J. Web Portals."},{"key":"10.3233\/SW-223088_ref38","doi-asserted-by":"publisher","first-page":"14263","DOI":"10.1007\/s11042-016-3269-6","article-title":"A fine-grained context-aware access control model for health care and life science linked data","volume":"75","author":"Liu","year":"2016","journal-title":"Multimed. Tools Appl."},{"key":"10.3233\/SW-223088_ref39","doi-asserted-by":"publisher","first-page":"737","DOI":"10.1016\/j.tele.2017.06.007","article-title":"Semantic privacy-preserving framework for electronic health record linkage","volume":"35","author":"Lu","year":"2018","journal-title":"Telemat. Informatics."},{"key":"10.3233\/SW-223088_ref41","doi-asserted-by":"publisher","first-page":"264","DOI":"10.1371\/journal.pmed.1000097","article-title":"Preferred reporting items for systematic reviews and meta-analyses: The PRISMA statement","volume":"151","author":"Moher","year":"2009","journal-title":"Annals of Internal Medicine, Ann. Intern. Med."},{"key":"10.3233\/SW-223088_ref42","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1186\/s12874-018-0611-x","article-title":"Systematic review or scoping review? Guidance for authors when choosing between a systematic or scoping review approach","volume":"18","author":"Munn","year":"2018","journal-title":"BMC Med. Res. Methodol."},{"key":"10.3233\/SW-223088_ref45","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.CSWP.01162020"},{"key":"10.3233\/SW-223088_ref46","doi-asserted-by":"publisher","first-page":"1309","DOI":"10.1166\/jmihi.2017.2221","article-title":"Ontology for attack detection: Semantic-based approach for genomic data security","volume":"7","author":"Noor","year":"2017","journal-title":"J. Med. Imaging Heal. Informatics."},{"key":"10.3233\/SW-223088_ref47","doi-asserted-by":"publisher","first-page":"455","DOI":"10.1007\/978-3-319-11955-7_66","article-title":"Securing access to sensitive RDF data","volume":"8798","author":"Papakonstantinou","year":"2014","journal-title":"Lect. Notes Comput. Sci. (Including Subser. Lect. Notes Artif. Intell. Lect. Notes Bioinformatics)"},{"key":"10.3233\/SW-223088_ref48","doi-asserted-by":"publisher","first-page":"141","DOI":"10.1097\/XEB.0000000000000050","article-title":"Guidance for conducting systematic scoping reviews","volume":"13","author":"Peters","year":"2015","journal-title":"Int. J. Evid. Based. Healthc."},{"key":"10.3233\/SW-223088_ref49","doi-asserted-by":"publisher","first-page":"371","DOI":"10.1002\/jrsm.1123","article-title":"A scoping review of scoping reviews: Advancing the approach and enhancing the consistency","volume":"5","author":"Pham","year":"2014","journal-title":"Res. Synth. Methods."},{"key":"10.3233\/SW-223088_ref50","doi-asserted-by":"publisher","first-page":"380","DOI":"10.1007\/978-3-642-29734-2_52","article-title":"An access control framework for pervasive mobile healthcare systems utilizing cloud services","volume":"83","author":"Poulymenopoulou","year":"2012","journal-title":"Int. ICST Conf. Wirel. Mob. Commun. Healthc."},{"key":"10.3233\/SW-223088_ref51","doi-asserted-by":"publisher","DOI":"10.5220\/0004853900270037"},{"key":"10.3233\/SW-223088_ref52","doi-asserted-by":"publisher","first-page":"4057","DOI":"10.1098\/rsta.2010.0169","article-title":"Privacy compliance and enforcement on European healthgrids: An approach through ontology","volume":"368","author":"Rahmouni","year":"2010","journal-title":"Philos. Trans. R. Soc. A Math. Phys. Eng. Sci."},{"key":"10.3233\/SW-223088_ref53","doi-asserted-by":"publisher","first-page":"27","DOI":"10.1109\/IConAC.2015.7313979","article-title":"Understanding data leak prevention","volume":"2016","author":"Raman","year":"2011","journal-title":"Annu. Symp. Inf. Assur."},{"key":"10.3233\/SW-223088_ref54","doi-asserted-by":"publisher","DOI":"10.1016\/j.iot.2020.100206"},{"key":"10.3233\/SW-223088_ref55","first-page":"198","article-title":"An introduction to the semantic web for health sciences librarians","volume":"94","author":"Robu","year":"2006","journal-title":"J. Med. Libr. Assoc."},{"key":"10.3233\/SW-223088_ref56","doi-asserted-by":"publisher","DOI":"10.6028\/NIST.SP.800-82r2"},{"key":"10.3233\/SW-223088_ref57","doi-asserted-by":"publisher","DOI":"10.4108\/sis.1.2.e3"},{"key":"10.3233\/SW-223088_ref59","doi-asserted-by":"publisher","first-page":"617","DOI":"10.13052\/jwe1540-9589.1782","article-title":"Secure semantic smart healthcare (S3HC)","volume":"17","author":"Tiwari","year":"2019","journal-title":"J. Web Eng."},{"key":"10.3233\/SW-223088_ref60","doi-asserted-by":"publisher","DOI":"10.1109\/CBMS.2008.14"},{"key":"10.3233\/SW-223088_ref61","doi-asserted-by":"publisher","first-page":"1990","DOI":"10.1016\/j.sbspro.2015.06.213","article-title":"State of the art of semantic web for healthcare, procedia","volume":"195","author":"Zenuni","year":"2015","journal-title":"Soc. Behav. Sci."},{"key":"10.3233\/SW-223088_ref62","doi-asserted-by":"publisher","first-page":"583","DOI":"10.1016\/j.future.2010.12.006","article-title":"Addressing cloud computing security issues","volume":"28","author":"Zissis","year":"2012","journal-title":"Futur. Gener. Comput. Syst."}],"container-title":["Semantic Web"],"original-title":[],"link":[{"URL":"https:\/\/content.iospress.com\/download?id=10.3233\/SW-223088","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T05:26:39Z","timestamp":1777613199000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.sagepub.com\/doi\/full\/10.3233\/SW-223088"}},"subtitle":[],"editor":[{"given":"Sabrina","family":"Kirrane","sequence":"additional","affiliation":[{"name":"Vienna University of Economics and Business, Austria"}],"role":[{"role":"editor","vocabulary":"crossref"}]}],"short-title":[],"issued":{"date-parts":[[2023,4,24]]},"references-count":57,"journal-issue":{"issue":"4"},"URL":"https:\/\/doi.org\/10.3233\/sw-223088","relation":{},"ISSN":["2210-4968","1570-0844"],"issn-type":[{"value":"2210-4968","type":"electronic"},{"value":"1570-0844","type":"print"}],"subject":[],"published":{"date-parts":[[2023,4,24]]}}}