Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
Research output: Contribution in Book/Report/Proceedings - With ISBN/ISSN › Conference contribution/Paper › peer-review
}
TY - GEN
T1 - Security awareness of end-users of mobile health applications
T2 - 17th EAI International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services, MobiQuitous 2020
AU - Aljedaani, Bakheet
AU - Ahmad, Aakash
AU - Zahedi, Mansooreh
AU - Ali Babar, M.
N1 - Publisher Copyright: © 2020 ACM.
PY - 2020/12/7
Y1 - 2020/12/7
N2 - Mobile systems offer portable and interactive computing - empowering users - to exploit a multitude of context-sensitive services, including mobile healthcare. Mobile health applications (i.e., mHealth apps) are revolutionizing the healthcare sector by enabling stakeholders to produce and consume healthcare services. A widespread adoption of mHealth technologies and rapid increase in mHealth apps entail a critical challenge, i.e., lack of security awareness by end-users regarding health-critical data. This paper presents an empirical study aimed at exploring the security awareness of end-users of mHealth apps. We collaborated with two mHealth providers in Saudi Arabia to gather data from 101 end-users. The results reveal that despite having the required knowledge, end-users lack appropriate behaviour, i.e., reluctance or lack of understanding to adopt security practices that compromise health-critical data with social, legal, and financial consequences. The results emphasize that mHealth providers should ensure security training of endusers (e.g., threat analysis workshops), promote best practices to enforce security (e.g., multi-step authentication), and adopt suitable mHealth apps (e.g., trade-offs between security vs usability). The study provides empirical evidence and a set of guidelines about security awareness of mHealth apps.
AB - Mobile systems offer portable and interactive computing - empowering users - to exploit a multitude of context-sensitive services, including mobile healthcare. Mobile health applications (i.e., mHealth apps) are revolutionizing the healthcare sector by enabling stakeholders to produce and consume healthcare services. A widespread adoption of mHealth technologies and rapid increase in mHealth apps entail a critical challenge, i.e., lack of security awareness by end-users regarding health-critical data. This paper presents an empirical study aimed at exploring the security awareness of end-users of mHealth apps. We collaborated with two mHealth providers in Saudi Arabia to gather data from 101 end-users. The results reveal that despite having the required knowledge, end-users lack appropriate behaviour, i.e., reluctance or lack of understanding to adopt security practices that compromise health-critical data with social, legal, and financial consequences. The results emphasize that mHealth providers should ensure security training of endusers (e.g., threat analysis workshops), promote best practices to enforce security (e.g., multi-step authentication), and adopt suitable mHealth apps (e.g., trade-offs between security vs usability). The study provides empirical evidence and a set of guidelines about security awareness of mHealth apps.
KW - Empirical Software Engineering
KW - Mobile Healthcare
KW - Mobile Systems and Applications
KW - Software Engineering for Mobile Computing
U2 - 10.1145/3448891.3448952
DO - 10.1145/3448891.3448952
M3 - Conference contribution/Paper
AN - SCOPUS:85112707791
T3 - ACM International Conference Proceeding Series
SP - 125
EP - 136
BT - Proceedings of the 17th EAI International Conference on Mobile and Ubiquitous Systems
PB - The Association for Computing Machinery
Y2 - 7 December 2020 through 9 December 2020
ER -