Welcome to the InfoSci Platform
Reference Hub1
Regulations and Standards Aware Framework for Recording of mHealth App Vulnerabilities

Regulations and Standards Aware Framework for Recording of mHealth App Vulnerabilities

Zornitza Prodanoff, Cynthia White-Williams, Hongmei Chi
Copyright: © 2021 |Volume: 12 |Issue: 3 |Pages: 16
ISSN: 1947-315X|EISSN: 1947-3168|EISBN13: 9781799861560|DOI: 10.4018/IJEHMC.20210501.oa1
Cite Article Cite Article

MLA

Prodanoff, Zornitza, et al. "Regulations and Standards Aware Framework for Recording of mHealth App Vulnerabilities." IJEHMC vol.12, no.3 2021: pp.1-16. http://doi.org/10.4018/IJEHMC.20210501.oa1

APA

Prodanoff, Z., White-Williams, C., & Chi, H. (2021). Regulations and Standards Aware Framework for Recording of mHealth App Vulnerabilities. International Journal of E-Health and Medical Communications (IJEHMC), 12(3), 1-16. http://doi.org/10.4018/IJEHMC.20210501.oa1

Chicago

Prodanoff, Zornitza, Cynthia White-Williams, and Hongmei Chi. "Regulations and Standards Aware Framework for Recording of mHealth App Vulnerabilities," International Journal of E-Health and Medical Communications (IJEHMC) 12, no.3: 1-16. http://doi.org/10.4018/IJEHMC.20210501.oa1

Export Reference

Mendeley
Favorite Full-Issue Download

Abstract

The authors describe a standards-based security framework for the purposes of recording security and privacy vulnerabilities discovered in mHealth apps. The proposed framework is compliant with the international standard for software architecture descriptions, ISO/IEC/IEEE 42010, relevant state-agency regulations, and US federal healthcare mandates, as well as computing standards for data interchange formats. Future real-life implementations are envisioned to consists of three key components: (1) design and implementation of a repository that links vulnerabilities to concepts from the taxonomy used by legislative and standardization bodies; (2) population of the repository with security vulnerability descriptions that follow a standard format, such as JavaScript Object Notation (JSON); and (3) implementation of a searchable user interface (e.g., Google's Firebase UI), which allows for aggregation statistics, data analytics, as well as public access to the repository. The proposed framework design promotes timely updates of regulations, standardization drafts, and app development platforms.