Future-proofing genomic data and consent management: a comprehensive review of technology innovations

Adrien Oliva; Anubhav Kaphle; Roc Reguant; Letitia M F Sng; Natalie A Twine; Yuwan Malakar; Anuradha Wickramarachchi; Marcel Keller; Thilina Ranbaduge; Eva K F Chan; James Breen; Sam Buckberry; Boris Guennewig; Matilda Haas; Alex Brown; Mark J Cowley; Natalie Thorne; Yatish Jain; Denis C Bauer

doi:10.1093/gigascience/giae021

. 2024 Jun 5;13:giae021. doi: 10.1093/gigascience/giae021

Future-proofing genomic data and consent management: a comprehensive review of technology innovations

Adrien Oliva ^1,², Anubhav Kaphle ^2,², Roc Reguant ³, Letitia M F Sng ⁴, Natalie A Twine ⁵, Yuwan Malakar ⁶, Anuradha Wickramarachchi ⁷, Marcel Keller ⁸, Thilina Ranbaduge ⁹, Eva K F Chan ¹⁰, James Breen ^11,¹², Sam Buckberry ^13,¹⁴, Boris Guennewig ¹⁵, Matilda Haas ^16,¹⁷, Alex Brown ^18,¹⁹, Mark J Cowley ^20,²¹, Natalie Thorne ^22,^23,²⁴, Yatish Jain ^25,²⁶, Denis C Bauer ^27,^28,^29,^✉

¹ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

² Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

³ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

⁴ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

⁵ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

⁶ Responsible Innovation Future Science Platform, Commonwealth Scientific and Industrial Research Organisation, Brisbane, 41 Boggo Rd, Dutton Park QLD 4102, Australia

⁷ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

⁸ Data61, Commonwealth Scientific and Industrial Research Organisation, Level 5/13 Garden St, Eveleigh NSW 2015, Australia

⁹ Data61, Commonwealth Scientific and Industrial Research Organisation, Building 101, Clunies Ross St, Black Mountain, Canberra, ACT 2601, Australia

¹⁰ NSW Health Pathology, Sydney, 1 Reserve Road, St Leonards NSW 2065, Australia

¹¹ Telethon Kids Institute, Perth, WA 6009, Australia

¹² National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia

¹³ Telethon Kids Institute, Perth, WA 6009, Australia

¹⁴ National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia

¹⁵ Sydney Medical School, Brain and Mind Centre, The University of Sydney, Sydney, 94 Mallett St, Camperdown NSW 2050, Australia

¹⁶ Australian Genomics, Parkville, VIC 3052, Australia

¹⁷ Murdoch Children’s Research Institute, Parkville, Victoria 3052, Australia

¹⁸ Telethon Kids Institute, Perth, WA 6009, Australia

¹⁹ National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia

²⁰ Children’s Cancer Institute, Lowy Cancer Research Centre, Level 4, Lowy Cancer Research Centre Corner Botany & High Streets UNSW Kensington Campus UNSW Sydney, Kensington NSW 2052, Australia

²¹ School of Clinical Medicine, UNSW Medicine & Health, Wallace Wurth Building (C27), Cnr High St & Botany St, UNSW Sydney, Kensington NSW 2052, Australia

²² University of Melbourne, Melbourne, Parkville VIC 3052, Australia

²³ Melbourne Genomics Health Alliance, Melbourne 1G, Walter and Eliza Hall Institute/1G Royal Parade, Parkville VIC 3052, Australia

²⁴ Walter and Eliza Hall Institute, Melbourne, 1G, Walter and Eliza Hall Institute/1G Royal Parade, Parkville VIC 3052, Australia

²⁵ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia

²⁶ Applied BioSciences, Faculty of Science and Engineering, Macquarie University, Applied BioSciences 205B Culloden Rd Macquarie University, NSW 2109, Australia

²⁷ Applied BioSciences, Faculty of Science and Engineering, Macquarie University, Applied BioSciences 205B Culloden Rd Macquarie University, NSW 2109, Australia

²⁸ Department of Biomedical Sciences, MQ Health General Practice - Macquarie University, Suite 305, Level 3/2 Technology Pl, Macquarie Park NSW 2109, Australia

²⁹ Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Gate 13, Kintore Avenue University of Adelaide, Adelaide SA 5000, Australia

^✉

Correspondence address. Denis C. Bauer, Gate 13, Kintore Avenue University of Adelaide Adelaide SA 5000. Adelaide. E-mail: Denis.Bauer@csiro.au

Co-first authors

PMCID: PMC11152178 PMID: 38837943

Abstract

Genomic information is increasingly used to inform medical treatments and manage future disease risks. However, any personal and societal gains must be carefully balanced against the risk to individuals contributing their genomic data. Expanding our understanding of actionable genomic insights requires researchers to access large global datasets to capture the complexity of genomic contribution to diseases. Similarly, clinicians need efficient access to a patient’s genome as well as population-representative historical records for evidence-based decisions. Both researchers and clinicians hence rely on participants to consent to the use of their genomic data, which in turn requires trust in the professional and ethical handling of this information.

Here, we review existing and emerging solutions for secure and effective genomic information management, including storage, encryption, consent, and authorization that are needed to build participant trust. We discuss recent innovations in cloud computing, quantum-computing-proof encryption, and self-sovereign identity. These innovations can augment key developments from within the genomics community, notably GA4GH Passports and the Crypt4GH file container standard. We also explore how decentralized storage as well as the digital consenting process can offer culturally acceptable processes to encourage data contributions from ethnic minorities.

We conclude that the individual and their right for self-determination needs to be put at the center of any genomics framework, because only on an individual level can the received benefits be accurately balanced against the risk of exposing private information.

Keywords: genome data privacy, trust model, decentralized systems, self-sovereign identity, dynamic consent

Introduction

Over 60 million individuals are estimated to have their genomes sequenced in a health care context by 2025 [1]. This increase can be attributed to the decreasing cost of genome sequencing [2–5], the rise of direct-to-consumer genetic testing companies [6], the integration of genome testing into public health care systems, and the launch of large-scale population genomics initiatives in numerous countries [7–11]. However, digital infrastructure, software solutions, data security measures, and legal frameworks for managing big genomic data have not kept pace with these rapid advancements. Notably lacking are advancements in ethical data management, efficient data sharing, and data sovereignty [12]. Addressing these aspects is essential to ensure the continued participation of a privacy-aware public, especially from marginalized communities, in contributing their private information to research [13, 14].

The challenges become even more pronounced when applying genomics in a clinical context. Here, the generated data directly impact patient care while also having value in broadening scientific knowledge. Clinicians typically rely on pathology providers to generate reports summarizing the genomic information to inform patient care. These reports are generated by multidisciplinary teams [15], but in the remaining article, we will refer to them as “pathology providers” for simplicity. While established clinical governance and security standards provide guidance for the management, storage, and analysis of genomic data for clinical care, it often conflicts with the need for broader access and sharing of this data for research [15]. Platforms able to serve both clinical and research applications need to resolve the tension between the protective regulations in clinical settings and the exploratory objectives of research, as well as enable interoperability across the 2 domains.

Key concerns in genomic data management are privacy attacks that exploit an individual’s sensitive health and ancestry information, particularly when clinically generated genomic data are reused for research purposes. For instance, identification attacks can link an individual’s genomic data with publicly available information, such as demographic data or family history, to triangulate on target individuals [16, 17]. Current research practices of masking personally identifying variants, such as rare single nucleotide polymorphisms or germline variants, are not sufficiently protective [18]. Even if the genomic sequence is not ascertained directly, in a membership inference attack, the adversary can infer the membership status of individuals in genomic research studies, such as rare disease genome-wide association studies (GWAS), by leveraging allele frequencies from public databases [19, 20]. This risk is exacerbated with the increasing number of large-scale national or regional studies that recruit all participants who meet broad eligibility criteria [21]. This also extends to an individual’s physical traits, demographic information, and disease susceptibility, which can be obtained through phenotype inference attacks using genomic data [22, 23]. In these studies, whole genomic sequencing and detailed phenotyping were used to predict biometric traits, including voice, biological age, and 3-dimensional facial structure [23].

To generate scientific outcomes that are robust, clinically meaningful, ethical, and equitable, genomic data need to have ethnically diverse representation [24]. However, to achieve this diversity, it is essential to acknowledge that the sociocultural context of genomic data management extends beyond individual perspectives and involves collective experiences and histories that can shape attitudes toward genomic data sharing. This is especially pertinent for historical instances of discrimination, trauma, racism, stigma, and marginalization [25]. These collective experiences and cultural connotations significantly influence an individual’s or population’s perception of the risks associated with genomic data management, creating an intricate landscape that navigates the potential misuse of these data against the interests of certain groups or populations.

Enabling a safe way forward, legislation will have to provide active governance and enforce ethical genomic data usage as started by the Health Insurance Portability and Accountability Act (HIPAA) [26] and others [27, 28]. This is especially difficult around participants’ right to be forgotten, so far only required by General Data Protection Regulation (GDPR) [26, 29], which can be at odds with commercial incentives. For example, while the Australian Financial Services Council specified in their Life Code in July 2023 that genetic results cannot be used in underwriting certain life insurance policies [30], this is not the case in other countries or sectors, leaving individuals vulnerable to disadvantages from intended or incidental findings of genetic testing.

Given these complexities, a strong and trusted technological foundation for genomic data governance and management is crucial. We explore both proven and emerging solutions and concepts in this review and suggest a framework based on decentralized identity concepts for genomic data and consent management.

Genomic Data Storage Solutions

Secure data storage is essential, for genomic and health care data [31–33], specifically on cybersecurity issues such as data breaches, unauthorized access, or malicious attacks [34]. The key advantages and disadvantages of the 4 approaches reviewed are outlined in Table 1.

Table 1:

Different storage solutions’ key advantages and disadvantages for effective genomic data management

Criteria	On-premises	Cloud	Hybrid	Decentralized
Security	Low risk of attacks when operating offline.	Physical control over servers through contractual agreements, but state-of-the-art audited cybersecurity.	Flexibility to adapt to sensitivity levels.	Technology theoretically renders attacks on stored data impossible.
Scalability	Slow adaption to changes and sudden spikes in workload.	Excels in adapting to dynamic changes and handling sudden increases in workload efficiently.	Balanced solution to manage varying workload.	Scalability is native to the solution.
Data backups	Need to be implemented by the organization, requiring skills, and scaling up the infrastructural capabilities.	Automated data backups immediately upon the upload of data.	Depends on the architecture deployed.	Built-in data back-up feature.
Skills required	A singular set of specific skills is requisite.	A singular set of specific skills is requisite.	Deploying an optimal system necessitates twice the skillset.	Still experimental requires nonstandard skill set
Data control	Complete control and access to servers, data, and associated rights by the data custodian.	Comprehensive control and access to data, servers, and related privileges within a virtualized environment.	Depends on the architecture deployed.	No control over where data are stored but full control of access by participants.
Price	Involves an initial and ongoing capital investment, maintenance, and considerations for expenses related to operational costs, potential equipment failures, and associated bills.	With various storage options (cold/hot), the cost is economical and free for idle time.	Depends on the architecture deployed.	Can be the most economical choice, but for certain options, both pricing and reliability are contingent on the value of the associated token.

Open in a new tab

On-premises storage

On-premises data management refers to storing and managing data within the physical premises of an organization, providing complete control over data infrastructure, customizing storage environment, and meeting its unique needs. Storing on-premises can be highly secure when there is no external network as data access can be physically limited to only authorized personnel. This hence represents an easy option for organizations to comply with data privacy and security regulations [26, 27, 29]. However, it also creates undesirable information silos, especially for the health care setting. Data integration and global research collaborations need carefully managed exposure to the Internet [35], which requires significant expertise, constant monitoring, and substantial time and resource investment to establish and oversee security protocols. In addition, on-premises data management requires an upfront investment and replacement at relatively frequent 3- to 5-year intervals for the necessary infrastructure, disadvantaging smaller organizations. Ongoing costs such as energy expenses, broadband access, software licenses, certifications, IT services, and physical space to accommodate the hardware must also be considered. Furthermore, on-premises storage is not suited for short-term spikes in workload [36] as the infrastructure is static and expansion or update is expensive and time-consuming.

Cloud storage

Data owners can store and manage their data with a public cloud provider [37]. As organizations do not build and manage their infrastructure, capital investments are shifted toward resource consumption and recorded as operational expenses. This allows organizations to pay and scale infrastructure to their changing needs but can clash with CapEx-based funding cycles. While legislation to keep medical data inside the countries’ jurisdiction has had limited cloud usage in the past, cloud providers have responded by opening more in-country data centers and enabling policy configurations that ensure data and back-up remain compliant [38, 39]. For example, governments use such policy-optimized clouds for their operations (e.g., AWS GovCloud [40] and AZURE Government [41]). Furthermore, managing data and analysis in the cloud enables seamless global collaborations and ensures reproducible results.

However, this scalability and convenience comes with a higher security risk for the data as the uniformity of cloud account structures makes them attractive targets for hackers [42–45]. To mitigate security risks, cloud providers implement automatic countermeasures and equip users with world-class security measures, including access controls through IP address restriction, continuous threat monitoring, encryption for data in transit and at rest, network and application security, data redundancy, and multifactor authentication [46–49]. While the economy of scale stems most of the costs for security, scalability, and global connectedness, cloud usage can become expensive, especially for egress-heavy applications and for users who do not implement auto-archiving retention policies to take advantage of low-cost cloud storage options (like AWS Glacier or Azure Archive). Alternatively, egress cost can be avoided altogether by using federated systems, where compute is brought to the data, for example, recently employed by UK Biobank Research Access Platform [50].

Finally, building health care critical infrastructure on—for many users—foreign national cloud providers raises concerns around sovereignty and the limits to oversight, which is exacerbated when data are collected in the clinical setting and reused in research. Public cloud use hence needs to be carefully balanced against the benefits that a globally connected economic health system can provide.

For example, Melbourne Genomics Health Alliance, a collaboration of leading Victorian hospitals, research institutions, and academic institutions working with the Victorian government to embed genomics into the health system, developed a cloud solution that benefits from international developments in security, scalability, and health system interoperability, yet seeks to minimize third-party dependence by implementing federated data governance controls. Specifically, the genomic information management system, Genomical (previously known as GenoVic [51]), offers a robust clinical data governance framework and implemented capability for controlled access and reuse of data between authorized entities for the purpose of clinical care, therefore providing foundations for data reuse within the health care system where it is adopted.

Hybrid storage

Hybrid storage solutions can provide the best of both worlds—combining the benefits of on-premises and cloud data management solutions. To adopt such an approach, organizations require a workforce skilled in both domains. By leveraging hybrid solutions, organizations can maintain a local infrastructure for sensitive data and analytics, while easily connecting storage to additional resources in the public cloud when needed, such as processing spiky analysis workloads, or genomic data processing pipelines that require different computing types. However, it comes at the expense of egress costs, potential duplication of effort for system maintenance, and limited access to clinically generated data for health care or research purposes.

It allows a staged transition to the cloud where scalability and global connectivity can be realized, without the need to move all data to the cloud at once. This also ensures sovereignty by maintaining some compute and data storage capabilities.

On-premises and cloud computing infrastructure are hence complementary pieces of the puzzle that can help research organizations achieve their goals.

For instance, the Australian Zero Childhood Cancer Program [52] houses genomic data on a cloud-connected NetApp StorageGRID within a dedicated partition in an Equinix data center (see www.equinix.com). This configuration enables standardized data sharing via object store protocols, allowing integration with cloud providers, genomic analysis platforms like CAVATICA (see www.cavatica.org), and national high performance computing resources. Through automated archiving, processed data are retained on-site, reducing long-term cloud storage costs, and data are shared with researchers through unique and secure s3 links. The program mitigates the system’s egress costs by routing network traffic through academic networks like AARNet [53] where possible and leveraging Equinix Fabric for global collaborations.

Decentralized storage

Decentralized storage is a Web3 concept [54] where files are fragmented, encrypted, and stored over separate nodes in a decentralized or peer-to-peer (P2P) network [55]. By distributing data across different nodes, it is more secure than being stored in a single “honey pot.” It also improves scalability and availability over on-premises and cloud solutions, as the P2P network can be continuously expanded with commodity hardware that is easy to onboard.

The InterPlanetary File System (IPFS) [56] was one of the first decentralized file storage systems developed and originally used as the storage layer for blockchains. IPFS uses cryptographic hashes that are based on the content of the file, thereby eliminating duplicates and ensuring data integrity. IPFS can store and share massive amounts of data in a decentralized and economical manner, which is crucial for genomic projects [57–59]. However, unlike traditional data centers, decentralized file systems are not funded through a single entity. While more traditional blockchain approaches have a built-in incentive structure [60], IPFS relies on goodwill from the P2P network notes and is, therefore, not suitable for operating critical infrastructure, such as health care.

FileCoin is a separate and independent decentralized protocol built on IPFS that is incentivized to offer their storage space by receiving digital currencies as a reward. Various protocols ensure the integrity, security, availability, and accessibility of the data stored on the network [61].

While these incentives are aimed to ensure quality and make storage sustainable, it is crucial to acknowledge the potential risks associated with this approach. Fraudulent projects and initial coin offerings have exploited users in the past by marketing themselves as investment options [62, 63]. The risk of being used as a speculative commodity poses a significant risk to the stability of decentralized services, as the digital currencies market value can undermine the platform’s incentive structure and functioning. Specifically, if the value of a coin declines, the motivation for nodes to continue storing data ceases, resulting in the loss of irreplaceable medical information. Given these observations, it is crucial to have a careful technical, economic, and ethical evaluation of those systems, especially in the health space.

Genomic Data Privacy and Security

Irrespective of where genomic data are stored, the individual needs to be protected from unauthorized access to their data (privacy) and the data need to be kept safe from threats, breaches, and unauthorized tampering (security). We explore this topic under the criteria of data availability, integrity, and confidentiality (AIC) [64], sometimes also referred to as the “CIA triad.”

Availability

Availability ensures timely and uninterrupted access to the genomic data system by authorized users only. Human genomic data are generally protected, and access is only approved if relevant requirements are met. While clinical data can be managed by clinical governance principles, the viability of data usage in research requires data access committees (DACs) to review access requests and ensure that the intended use of the data is permitted by the provided consent [65]. All public genomic data repositories work on this premise, including the database of genotypes and phenotypes, the European Genome-Phenome Archive, and the UK Biobank [66, 67].

While this protects data and participants, it is a manual process that is not easily scalable, making datasets hard to discover and limiting their use for clinical or research benefits. The Global Alliance for Genomics and Health (GA4GH [68]) has introduced the third access tier, apart from existing open access and controlled access, called “registered access” to automate consent mechanisms and address some of the problems. The registered access [69] tier is intended to allow access to low-risk data for research use, and it requires the user to be a “bona fide researcher,” in addition to agreeing to the terms of use for the data.

To support automation and interoperability across multiple data systems, the GA4GH has developed the GA4GH Passports and Authentication & Authorization Infrastructure (AAI) specifications [70]. Passports provide the format for data and resource access permissions, built on top of the openID Connect standards [71], which in turn are based on the OAuth 2.0 framework [72]. They serve as AAI tokens (using JSON Web Tokens) to carry a researcher’s digital identity and access rights across organizations, tools, and environments, encoding each permission/claim as “Visas” and allowing access to specific registered-access datasets. Visas are issued if the intended use of the data complies with restrictions set out by the DAC. Uses and restrictions are based on defined terms in the GA4GH Data Use Ontology [73], fully automating the whole process and potentially saving months between an access request and approval.

Availability can be compromised by both nonmalicious factors (such as hardware failures, software downtime, resource limits, unmanaged concurrency, network congestion, and natural disaster) and malicious attacks (such as denial of service, also known as DoS attacks) that aim to disrupt the system’s functionality. Therefore, technical and operational security measures such as redundancy, backup, load balancing, and encryption are also essential to protect the system from threats to availability.

Integrity and privacy-preserving techniques

The second pillar of AIC [64], data integrity practices, aims to store and handle the data to prevent accidental or unauthorized modification throughout its entire life cycle. Genomic data can be efficiently verified and compared by matching hash values using deterministic, collision-resistant, and noninvertible [74] cryptographic hash [75] functions such as Message Digest and the Secure Hash Algorithm [76]. This allows for the identification of any unauthorized changes or alterations to genetic sequences without the need to compare the entire sequence. Furthermore, data hash values can be cryptographically signed [77] using a private key. This digital signature can be verified using the corresponding public key, ensuring the data’s authenticity, integrity, and trustworthiness.

The privacy of the genomic data can be protected through 4 approaches summarized in Table 2. It should be noted that this section focuses on the research setting as in health care, patient information cannot be obfuscated.

Table 2:

Advantages and disadvantages of different privacy preservation approaches

Criteria	k -anonymity	Differential privacy	Federated learning	Synthetic data methods
Implementation complexity	Simple and intuitive. Data are grouped in sets to obfuscate individual entries.	Challenging implementation due to the intricate calibration of noise.	Challenges in coordinating local model and with network latency, trust, and incentive among peers.	Challenging to conservatively maintain the statistical properties of real genomic data but works as real data statistically.
Privacy assurance	Cannot fully prevent attribute disclosure or homogeneity attack.	Robust privacy is achieved through the addition of statistical noise to the data, necessitating the quantification of risks through careful control of the trade-off between utility and privacy.	The potential for data leakage risk arises from intermediate model updates, which may expose sensitive information. Additionally, there remains a possibility of backdoor attacks.	May not guarantee perfect privacy and vulnerability to membership inference even when generating distributions close to real data.
Accuracy/information loss	Homogeneity attacks pose a risk when individuals within a group may disclose sensitive information due to indistinguishability based on certain attributes.	Deliberate introduction of noise can reduce the quality or utility of the resultant data.	The original data remain unaltered and can only be removed by the owners or those with granted permissions. Can be subject to data poisoning attack due to involvement of dishonest peers.	Despite being synthetic and closely resembling real data, it can introduce bias and errors.

Open in a new tab

k-anonymity

The k-anonymity approach works by ensuring that the quasi-identifier for each person, such as their gender, birth date, postal code, race, ethnicity, or occupation, is indistinguishable from at least k − 1 individuals in the same dataset [78, 79]. This is done by using 2 approaches: (i) generalization, which groups individuals together with similar attributes [80], and (ii) suppression, which removes certain information to prevent reidentification. For example, one way to suppress genomic data is to remove germline variants, which are inherited from parents and can be used to link individuals across databases. However, this may not completely eliminate the risk of reidentification, as other types of variants or genomic features may still be informative [81, 82]. Despite their widespread use, these k-anonymity approaches are vulnerable to attackers who have background information on the dataset [83] and are limited for high-dimensional genomic data [84].

Differential privacy (DP)

Differential privacy (DP) is a mathematical framework that provides formal and provable privacy protection by introducing calibrated noise to raw data or intermediate results, making it difficult for attackers to trace data records to specific individuals [85]. The amount of noise added depends on various factors, including the query type, privacy budget determining the level of privacy required, and the sensitivity of the mathematical function being computed or the query output.

In genomics, DP techniques have been proposed to counteract membership inference attacks, for example, by adding noise to a genomic Beacon query response, the genome data discovery tool by GA4GH [86]. The amount of noise is carefully calibrated to balance 2 goals: to preserve the accuracy and hence the utility of the application and to make it harder for attackers to extract the original genomic data from the query response [87]. Additionally, DP methods for GWAS have provided maximum privacy to participants while still finding meaningful disease associations [88–90]. Although promising, the added noise in DP schemes limits its application to datasets with strong, well understood signals (e.g., disease loci with strong effect size).

Federated learning (FL)

Federated learning (FL) is a machine learning technique that enables multiple parties to jointly train an algorithm without sharing their data, thereby avoiding risks to data integrity or having to negotiate data access [91]. In this approach, computations are performed locally on the data that remain within the owner’s ecosystem (e.g., server nodes, jurisdictions). These locally trained parameters are then sent to a central server that aggregates the local models from all participating peers to generate a global model shared by all [92, 93]. Federated learning has been used on health data [94, 95] and was shown on genomics data to achieve comparable performance compared to a centralized approach for phenotype prediction on genomic data using the UK Biobank [96].

While promising, coordinating local model aggregates can be challenging, especially when training complex FL models. Issues such as network latency, maintaining trust and incentive among participating peers, and ensuring data quality and diversity remain unresolved. Further, FL is specifically vulnerable to data poisoning attacks, where attackers deliberately manipulate or corrupt the data, and backdoor attacks by poisoning models to output biased results [97].

Privacy-preserving synthetic genomic data

Creating synthetic genomic data can sidestep many data privacy issues. These data have the same statistical properties as the original dataset, but without passing on the real genomes. Several methods have been developed to generate synthetic genomes leveraging various sources of knowledge, including haplotype information [98, 99], demographic information, and recombination inferences [100]. More advanced methods like deep neural network–based methods, such as generative adversarial networks and restricted Boltzmann machines (RBMs), have also successfully generated synthetic genomic data where population structure and variant frequency–based features were preserved [101]. Generative methods can be used to create datasets that act as proxies for underrepresented populations, going some way to address the known Eurocentric bias in genomic studies [102]. However, the utility of synthetic genomes is limited to evaluating algorithms, rather than for discovery projects, because they do not have more information than the original data, which is further limited by the fidelity of the generative model used.

A recent study by Oprisanu et al. [103] compared the above synthetic data methods for utility and privacy. They showed that recombination-based methods have high utility but low privacy, while RBMs offer a trade-off. It is worth noting that generating distributions close to the real data often generates target data points that are vulnerable to membership inference [104]. Therefore, some data integrity and security practices must be enforced even for synthetic data generated by current approaches.

Confidentiality and cryptography methods

Confidentiality represents the third pillar of AIC, which prevents unauthorized access or disclosure of data. We review the 5 most relevant and noteworthy techniques as summarized in Table 3.

Table 3:

Advantages and disadvantages of different data security approaches

Criteria	Symmetric encryption	Asymmetric encryption	Multiparty computation	Homomorphic encryption	Post quantum
Scalable performance	Fast and efficient for large genomic datasets.	Slower for encrypting large-scale genomic data, potentially delaying data transfer.	Computationally expensive, making it less practical for real-time analysis of genomic data.	Well suited for cloud-based genomic data processing, but computationally intensive with prolonged processing times.	Difficult to scale currently for large-scale datasets.
Collaboration suitability	Less suitable if multiple parties are involved due to single key reliance.	The public key can be shared with collaborators, ensuring secure data transfers between institutions without compromising integrity.	Enables collaborative work among institutions without disclosing each other’s data.	Facilitates collaboration easily through cloud capabilities yet challenging to set up for all collaborations.	Potentially suitable but depends on the development of practical and efficient protocols that are easily adoptable by multiple parties.
Complexity	Straightforward cryptographic key management due to only 1 key involved.	Key management can be complicated for multiple parties.	Challenging setup complexity and dependence on collaborating parties.	Initial setup and implementation can be challenging.	Complex in terms of development and implementation; often requires significant expertise and resources to correctly deploy.
Robustness	Risky if key compromised in collaborative settings; secure with robust key management.	Risky if key compromised in collaborative settings; secure with robust key management.	Maximal collaboration security: genomic data consistently encrypted, demands participant trust to prevent data poisoning.	Great as it allows computations on encrypted data, without decrypting it first.	Robust defense against quantum attacks for long-term genomic data security, currently in developmental stages with limited adoption.

Open in a new tab

Encryption

Encryption is a cryptographic method that aims to secure genomic files by converting plain text to cipher text using different algebraic operations.

Symmetric encryption methods encrypt data using stream ciphers such as Salsa20, CHACHA20, and AES-CTR [105] or block ciphers such as the Advanced Encryption Standard (AES) [106] and are a popular method for securing genomic data as they are fast and efficient [107]. For large genomic data, CHACHA20 is the fastest and most efficient algorithm [108] and is often used in combination with POLY1305, a message authentication code, to ensure message integrity and authentication [109]. For example, CHACHA20-POLY1305 is used in Crypt4GH [110], a file container standard proposed by GA4GH. Its user-specific envelop encryption scheme enables random byte-level access to encrypted file content without decrypting the whole file. Block ciphers have also been used in genomic data encryption [111].

Asymmetric or public cryptography schemes, such as Rivest–Shamir–Adleman (RSA) and elliptic curve cryptography (ECC), use 2 keys for encryption: a public key for encryption and a private key for decryption. The RSA algorithm has been used for genomic data to mask individuals’ alleles and secure cloud-based genetic paternity test results [83, 112], but it can be slow and impractical for large Whole Genome Sequencing (WGS) files [112] and is therefore limited to smaller genomic files and sensitive metadata. ECC is often preferred over RSA for smaller genomic files due to its smaller key sizes and lower computational cost [113, 114].

Multiparty computation (MPC)

Multiparty computation (MPC) improves upon the traditional route of encrypting data solely for storage and transport purposes, which subsequently requires decryption and handling in an unencrypted manner during analysis. MPC frameworks allow researchers to collaborate on data analysis while maintaining privacy using cryptographic methods. While still an emerging technology, it has made rapid progress over the past few years with open-source frameworks such as MP-SPDZ [115], which combines several MPC variants with an accessible Python user geared toward analytics. Here, we review (i) secret sharing, (ii) garbled circuit method, (iii) homomorphic encryption, and (iv) zero-knowledge proof.

Secret sharing

A core technology to most MPC protocols is secret sharing, which denotes the distributed storage of information such that the parties together can reconstruct the information, but an individual party (or a small set) cannot. In some settings, secret-sharing techniques alone can be used for privacy-preserving analytics without the more expensive techniques below. These protocols have been found relatively efficient, enabling even the training of smaller deep learning models.

Garbled circuit method

A popular method of developing MPC is the garbled circuit method, where the function is transformed into a Boolean circuit of logic gates and encrypted to produce garbled output values [116]. Collaborators can then use garbled values and their input to generate an output, ensuring privacy and correctness. In the genomic space, the garbled circuit solution has been used for secure genomic data analysis [117, 118] and diagnosis [119], but this approach can be expensive for large genomic data.

Homomorphic encryption

Homomorphic encryption (HE) is a cryptographic technique that allows computations to be performed on encrypted data without decrypting them first. This means that the data can be processed securely without revealing any sensitive information to the parties involved. This can be useful for genome queries and statistical analyses such as GWAS, which aim to find genetic variants associated with certain traits or diseases. Several methods have been developed for HE-based genome queries and statistical analyses [120–124]. However, HE requires more computational resources and time than regular encryption methods, but new algorithms and techniques have been proposed to improve performance [125]. Combining HE with MPC is argued to further reduce overhead compared to traditional encryption methods. It has shown potential for encrypted control over genomic data to enhance trust within genomics research programs. Additionally, techniques that combine HE with differential privacy can be employed to ensure the security of genomic data and enable privacy while sharing summary results [126].

Zero-knowledge proof

Zero-knowledge proof (ZKP) is a cryptographic method allowing one party to prove a claim’s correctness to another party without revealing additional information [127]. In genomics, ZKP has been used to enable secure genomic query [128] and sequence similarity search [129]. ZKP methods can be hard to set up, requiring subject matter expertise, and they are not scalable due to high compute power on large datasets.

Postquantum cryptography

There is growing concern among information security experts that most of the currently available cryptographic methods, such as RSA and ECC, are vulnerable to attacks by quantum computers (e.g., Shor’s algorithm [130]). Although quantum computers are expensive and still developing, it is feared that attackers are already downloading sensitive data to decrypt in the future when quantum computers become more readily available [131]. This has significant implications for genomic data encrypted by today’s cryptographic methods as genomic data retain their relevancy over an individual’s life span and even that of their direct descendants.

In response, the National Institute of Standards and Technology in the United States has announced encryption algorithms that were designed to resist attacks from classical and quantum computers, thereby enabling postquantum migration of cryptosystems. These include lattice-based algorithms CRYSTALS-Kyber [132] for general-purpose encryption, as well as CRYSTALS-Dilithium [133] and FALCON [134], both for digital signatures. Using such postquantum cryptography methods for genomic data now is a proactive step to ensuring that genomic data are protected against possible future attacks while saving time and money rather than re-encrypting when quantum computers become more accessible.

Informed Consent Management

Another key pillar of good data management is informed consent, which in the clinical space is well defined by following established clinical governance practices. However, when genomic data generated for clinical purposes are reused for research, its original consent may not be enough and reconsenting is required [135–138].

Different countries and regions can also have specific legal frameworks and guidelines pertaining to informed consent. Ideally, existing health care systems of record (e.g., My Health Record) can obtain and hold consent information so clinically generated data can be reused for research.

We will focus on 3 consent models: (i) broad, (ii) tiered, and (iii) dynamic consent, all of which aim to balance the participant’s control over their data with efficient data sharing [139].

Consent models

Broad consent

The broad consent model is used for studies where the genomic data collected may additionally be used in other research unrelated to the original study for which the consent was given [140, 141]. This model is commonly used in large longitudinal biobanks and date from a time when it was complicated to keep contact with patients after the initial meeting. However, it poses ethical and legal challenges as individuals may not fully understand what all they are consenting to [142], in part due to the broad language used to cover future studies that have not yet been defined [140].

Tiered consent

Unlike the broad consent model, the tiered consent model at the outset provides participants with highly specific consent options [143]. For example, participants can choose to share specific genomic information or consent to participate in specific research studies only. However, the tiered consent model creates administrative and logistical challenges for researchers to comply with the different levels of consents and for participants to inform themselves upfront about the different options [139]. Contrasting with the one-off approach of broad consent, the tiered consent model may call for renewed consent for each new study or operate under a set of predefined conditions, dependent on the initial choices made by the participants.

Dynamic consent

The dynamic consent model focuses on enhancing continuous engagement of participants through personalized online consent processes (e.g., dynamic specific consent [139]) and digital communication platforms [144–147]. It is believed that dynamic consent positively influences both the recruitment and retention of participants as well as their trust toward research [144, 146, 148, 149], while also contributing to the proficient management of the informed consent procedure [144].

Building on this, dynamic meta consent enables participants to define rules to approve or reject studies without needing to decide on each study manually. For example, participants can define their preferences for data use (e.g., academic vs. commercial), data type (e.g., genomic data, medical records, imaging), research institution (e.g., universities, research labs), or funding sources (e.g., public or private) [150]. This approach provides participants with a fine-grained control over how their data are used yet eliminates the need to manage requests for each individual study. Akin to tiered consent, participants are also required to make upfront decisions at high levels of abstraction without the context for future research studies [139], but they have the flexibility to revise their decision dynamically as new information becomes available or as their preferences change.

Digital systems for consent management

Traditionally, consent was obtained and recorded as a paper-based documentation. However, tiered and dynamic consent drive the adoption of digital systems where electronic consent forms enable participants to enter, manage, and withdraw their consent (e.g., through web portals or mobile applications) [151]. It can also allow authorized researchers/pathology providers to request access to the genomic and other health data located in the storage system for various purposes such as research or clinical decisions. However, whether data are stored in a research setting or under the custodianship of an accredited pathology company influences the approaches and policies of the digital system, which are managed by 3 components: (i) identity and access management (IAM), (ii) personalized consent elements, and (iii) information storage in the context of genomics research programs.

IAM component

The IAM component manages registration and authentication, allowing authorized users (participants/patients or researchers/pathology providers) access to the system and its resources. Users are assigned an “ID” for recognition, linking their genomic data and consent along with health records. GA4GH registered access and Passport standard can be repurposed for researchers’ interaction with the digital system.

Personalized consent materials

Especially useful for genomic research programs are technologies like interactive webpages and virtual or augmented reality to personalize consent materials for clear and engaging explanations of complex scientific concepts and of the program’s research aims to participants [152]. Language aids such as chatbots [153] and translation systems are also powerful tools to supplement this component for non-English-speaking participants. An ontology system can be integrated so that consent language can be transformed into machine-readable codes that tag datasets and manage data permissions [73, 154]. These elements are also helpful during consent process in a health care setting where the data might be used for secondary analysis.

Information storage component

As genomic research programs often handle health information as well, the information storage component can be integrated with data capture and management systems that comply with regulatory standards prescribed by sovereign privacy legislation such as GDPR, Australian Privacy Principles (APPs), and HIPAA to ensure that participants’ data and consent are securely stored. For instance, CTRL [155], an Australian Genomics dynamic consent platform, integrates with the REDCap [156] data capture system, a popular free regulatory-compliant data capture system, to collect and combine consent and research data. It should be noted that the level of security for the REDCap system resides with the provider and may hence vary in quality. Other alternatives such as Castor EDC, Qualtrics, and ClinCapture are available with more user-friendly interfaces and customer support.

Digital consent management is currently delivered predominantly through centralized systems, which facilitate access control, data stewardship, and policy governance. Such centralization brings the benefits of streamlined management and efficient consent workflows, reducing complexity for organizations. However, it imposes significant burdens on IT systems in synchronizing consent changes at all levels of data usage and demands intensive manual processes to demonstrate adherence to compliance standards [60, 157]. This added governance layer may inadvertently create procedural bottlenecks. These bottlenecks can lead to delays and inefficiencies that might not be directly visible to participants but could diminish their overall experience. As a result, there is risk of reduction in participant engagement and participation rate [145, 158].

Decentralized approaches

Decentralized dynamic consent management systems aim to overcome the limitations of centrally managed structures by delivering both the IAM and information storage components in a programmatically insured process. This allows real-time monitoring of data use, participant-executed revocation of data, and a tamper-proof record of consent changes. It also can cater for the remote or culturally appropriate collection of consent, such as the immutable collection of consent offline, or unfettered voting through a committee. Removing the dependency on a central authority for authorization reduces the risk of misconduct and misuse as auditing and strong data governance policies are baked into the approach [60, 157].

Decentralized identity

Self-sovereign identity (SSI) [159] is a conceptual model that emphasizes individuals or entity control over their digital identities, advocating for sole ownership and management. SSI facilitates a decentralized IAM system, where users authenticate and assert their access rights using verifiable credentials (VCs). VCs are digital credentials that are tamper-evident and can be verified cryptographically. This enables user identity verification while only sharing relevant information for a given context, which can enhance long-term privacy [160].

Immutable ledger technology

Distributed ledger technology (DLT), such as blockchain, can be used to deliver the information management component of consent management system [161, 162]. DLT systems grant access to the genomic data if the data request matches the consent and complies with GDPR’s right to be forgotten, by detaching the ledger-based consent object from the genomic data that are stored elsewhere. It should be noted that while no identifiable information is publicly accessible, the activity of granting and revoking consent is recorded and might still reveal compromising information. The need for anonymity hence needs to be carefully balanced against the benefits from provenance of the process. Two DLT solutions for dynamic consent have been proposed, DWARNA [163] and ConsentChain [164].

DWARNA stores participants’ consent in a permissioned blockchain network implemented using the stand-alone instance of Hyperledger Fabric implementation [165]. However, DWARNA is limited in treating consent state as a binary variable (broad yes/no) and, therefore, does not allow granular control over data use based on ontology-based encoding of genomic data.

ConsentChain is another proof-of-concept blockchain-based solution for managing informed consent in clinical trials. It offers more granularity compared to DWARNA by converting consent preferences into machine-readable codes using ontologies. However, ConsentChain relies on the Ethereum platform, which suffers from scalability and performance issues due to high transaction costs and low throughput. In contrast, DWARNA is built on a private blockchain and does not incur any fees for adding consent data.

Current barriers for DLT

DLT offers a secure, immutable, auditable, and transparent record of activities [166] where any modifications, such as changes to consent, are applied through a preagreed programmatic process rather than the approval by a central authority. However, current user-friendliness and low awareness among research and practitioners [167] hamper proof-of-principle applications. DLT systems are often more complex and less intuitive than centralized or federated systems and require a higher level of technical expertise and communication. The lack of compatibility between different DLT systems [168] adds to the fragmentation of the space. The Hyperledger project seeks to overcome these challenges by providing several DLT frameworks that can be customized and integrated for various organizational needs, including health care and genomics research programs [59, 169, 167].

Current proof-of-concept dynamic consent platforms lack interoperability with both the health care and research systems. Embedding interoperability based on data standards such as the HL7 Fast Healthcare Interoperability Resources (FHIR) and other interchangeable standards [170, 171] in a dynamic consent platform (i) helps standardize data to increase connectivity with accredited laboratory, health records, and research systems; (ii) makes data accessible for participants who want to access their own data or the results of research they are involved in; and (iii) ensures compliance with the rigorous regulatory standards (like those set by the US Food and Drug Administration or the European Medicines Agency) for submitting data or results, especially for clinical trials.

Personal data server

Offering a completely autarkic data management approach, personal data servers [172], such as SOLID PODS (Social Linked Data Personal Online Data Stores) [173, 174], offer a decentralized and secure way for individuals to manage their own data, including genomic data, with control over access permissions. Individuals can choose to either establish their own server or opt to use a PODS provider like Inrupt PODS [175], providing advantages such as enhanced privacy, consent management, and better interoperability across different applications and services. However, the benefits of absolute data control in personal servers can be overshadowed by potential shortcomings, including availability issues, data corruption challenges, and the lack of guaranteed provenance, which can pose risks, especially in clinical decision-making.

Suggested Framework

We envision a system that, while subject to governance and law, puts the individual at the top of the decision-making process (Fig. 1). We discuss 3 scenarios of genomic data handling: (i) health care, (ii) reanalysis of health care created data, and (iii) analysis of data created for research purposes (e.g., biobanks). We also suggest where various technologies could be used in the systems such FHIR, Ontoserver, future-proof data encryption algorithms, and decentralized data storage.

Figure 1: — A trust model using the self-sovereign identity framework to enable participant-controlled consent management in genomics.

In the health care context, the clinician tasks the health service provider (the issuer) to initiate a genomic test after obtaining the patient’s consent, using an FHIR-based system that ensures traceability of the order within the health system. The system generates a VC of the patient (the holder). This patient VC contains crucial patient information, including the patient’s identity, consent signature, and usage scope. This VC is then verified by the pathology provider (the verifier) to create the genomic data (the asset), whose lab-signed provenance is then attached to the VC.

As data custodians, the pathology provider encrypts the data with future-proof encryption algorithms, such as postquantum cryptographic methods that allows only the needed genomic loci be decrypted and only when requested by the patient. The data are then stored across decentralized nodes, further increasing obfuscation and reducing the reliance on a single data provider.

The health care provider subsequently verifies the information within the received VC along with the pathology report. After verification, they send the VC to the patient, who stores it securely in their personal digital wallet as proof of their genome asset and pathology report, as well as facilitating sharing and verification with other parties.

In the genetic reanalysis scenario, either the health care provider or the researcher requests patient consent, which is verified by the pathology provider to enable data access. Researchers first need to prove their bona fide status as a researcher through a researcher VC (Fig. 1, e.g., with research organization as the Issuer). The same holds true for pathology labs requesting access to data generated by a different lab for reanalysis; they need a VC from professional bodies that govern and attest to their validity. The decentralized dynamic consent platform enables patients to track the consents they have given for reanalysis and monitor how and where their genomic data are being used.

In the context of biobanks, they hold the role of both issuer and verifier as they initiate the data creation and coordinate the data dissemination. Researcher and other data consumers gain access after their credentials are verified (e.g., through a GA4GH Passport system) and data use terms match the participants’ consent. Again, the dynamic consent platform allows the participants to stay up to date with results and use.

Irrespective of the technology used, the sociocultural angle of genomic data management must be considered as it encompasses the public’s attitudes and perspective toward genomic health care and research [176–178]. This social license impacts individuals’ decision to receive a genomic test and participate in research. This impacts the representation of diverse populations, including Indigenous populations, in genomic datasets, which in turn define the quality of care we can deliver to distinct populations [179].

For example, Indigenous communities often have unique cultural relationships with their genetic heritage, which can differ from the Western understanding of genetic information. As dynamic consent emphasizes ongoing and flexible participation in decision-making processes, processes must account for Indigenous people’s cultural values, beliefs, and protocols. Respect for Indigenous sovereignty, self-determination, and the right to control their own genetic data is crucial when developing dynamic consent frameworks. For these reasons, genetic research with Indigenous people must involve genuine consultation, inclusive participation, and informed consent processes that are culturally appropriate and respectful of Indigenous knowledge systems. Moreover, ongoing dialogue and reciprocal partnerships are essential to ensure that the benefits of genetic research are shared equitably and that potential harms, such as the unauthorized use of genetic data or exploitation, are prevented. Only by addressing these issues can dynamic consent contribute to empowering Indigenous communities to manage and protect their genetic information, foster trust, and promote ethical genomics research.

Similarly, values, beliefs, and protocols need to be respected when it comes to professional communities. For example, while clinicians support patients controlling their data, they are concerned about patients “owning” data [15], likely due to these creating difficulties around data provenance and the ramifications of using compromised data for clinical decisions. Thus, any developed framework must keep all involved stakeholders in mind and allocate resources for appropriate communication. Specifically, the risk and benefits of genomics research, the positive impacts of data sharing, and their strong commitment and capability in protecting genomic data must be communicated to the public through educational events, online platforms, and media/social media engagement [180–184].

Finally, the legislative system needs to protect individuals against genetic discrimination and current regulatory frameworks need to evaluate decentralized and self-sovereign identity solutions. Transition toward such systems requires infrastructure remodeling, training, and education, as well as updating existing regulations. This is a resource-intensive (human and financial) process, which demands a great level of political commitment.

Conclusion

As genomic sequencing becomes cheaper and more ubiquitous, health and research organizations need to be empowered to access global data assets that are interoperable and scale easily with the application opportunities. This needs to be underpinned by the ethical and trustworthy management of genomic data [185] as the security and privacy must be balanced with the need for clinical efficiency, as well as ethical and safe research into population-specific care improvements.

However, this balance between protection and utility varies from circumstance to circumstance. It is hence crucial to enable individuals whose genomic data are handled to engage with the process through appropriate consent models and data governance systems. Current centralized data management strategies might get overburdened by scaling up to the level of audit trails or proof of “good processes” required to build trust with participants. Emerging decentralized data and dynamic consent management approaches have sovereignty and self-determination natively enshrined into their approaches. This enables the right to control their own data and use culturally appropriate decision-making models that future participants of genomic data exchanges require.

Abbreviations

AAI: Authentication & Authorization Infrastructure; AES: Advanced Encryption Standard; AIC: availability, integrity, and confidentiality; DAC: data access committee; DLT: distributed ledger technology; DP: differential privacy; ECC: elliptic curve cryptography; FHIR: Fast Healthcare Interoperability Resources; FL: federated learning; GA4GH: Global Alliance for Genomics and Health; GWAS: genome-wide association studies; HE: homomorphic encryption; HIPAA: Health Insurance Portability and Accountability Act; IAM: identity and access management; IPFS: InterPlanetary File System; MPC: multiparty computation; P2P: peer-to-peer; RBM: restricted Boltzmann machine; RSA: Rivest–Shamir–Adleman; SSI: self-sovereign identity; VC: verifiable credential; ZKP: zero-knowledge proof.

Supplementary Material

giae021_GIGA_D_23_00243_Original_Submission

giae021_giga_d_23_00243_original_submission.pdf^{(1.8MB, pdf)}

giae021_GIGA_D_23_00243_Revision_1

giae021_giga_d_23_00243_revision_1.pdf^{(2.2MB, pdf)}

giae021_GIGA_D_23_00243_Revision_2

giae021_giga_d_23_00243_revision_2.pdf^{(2.3MB, pdf)}

giae021_Response_to_Reviewer_Comments_Original_Submission

giae021_response_to_reviewer_comments_original_submission.pdf^{(77.4KB, pdf)}

giae021_Response_to_Reviewer_Comments_Revision_1

giae021_response_to_reviewer_comments_revision_1.pdf^{(52.6KB, pdf)}

giae021_Reviewer_1_Report_Original_Submission

Bastian Greshake Tzovaras, Ph.D -- 9/28/2023

giae021_reviewer_1_report_original_submission.pdf^{(130.4KB, pdf)}

giae021_Reviewer_1_Report_Revision_1

Bastian Greshake Tzovaras, Ph.D -- 1/17/2024

giae021_reviewer_1_report_revision_1.pdf^{(117.6KB, pdf)}

giae021_Reviewer_2_Report_Original_Submission

Arianna Schuler Scott --10/20/2023

giae021_reviewer_2_report_original_submission.pdf^{(122.2KB, pdf)}

giae021_Reviewer_2_Report_Revision_1

Arianna Schuler Scott -- 2/5/2024

giae021_reviewer_2_report_revision_1.pdf^{(112.3KB, pdf)}

giae021_Reviewer_2_Report_Revision_2

Arianna Schuler Scott -- 4/9/2024

giae021_reviewer_2_report_revision_2.pdf^{(114.5KB, pdf)}

Acknowledgement

We thank Megan Prictor, Michelle Kleynhans, John Phillips, and Jo Spencer for their critical reading of the paper. We extend our gratitude to Megan for her thought leadership that has inspired our focus areas.

Contributor Information

Adrien Oliva, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Anubhav Kaphle, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Roc Reguant, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Letitia M F Sng, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Natalie A Twine, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Yuwan Malakar, Responsible Innovation Future Science Platform, Commonwealth Scientific and Industrial Research Organisation, Brisbane, 41 Boggo Rd, Dutton Park QLD 4102, Australia.

Anuradha Wickramarachchi, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia.

Marcel Keller, Data61, Commonwealth Scientific and Industrial Research Organisation, Level 5/13 Garden St, Eveleigh NSW 2015, Australia.

Thilina Ranbaduge, Data61, Commonwealth Scientific and Industrial Research Organisation, Building 101, Clunies Ross St, Black Mountain, Canberra, ACT 2601, Australia.

Eva K F Chan, NSW Health Pathology, Sydney, 1 Reserve Road, St Leonards NSW 2065, Australia.

James Breen, Telethon Kids Institute, Perth, WA 6009, Australia; National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia.

Sam Buckberry, Telethon Kids Institute, Perth, WA 6009, Australia; National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia.

Boris Guennewig, Sydney Medical School, Brain and Mind Centre, The University of Sydney, Sydney, 94 Mallett St, Camperdown NSW 2050, Australia.

Matilda Haas, Australian Genomics, Parkville, VIC 3052, Australia; Murdoch Children’s Research Institute, Parkville, Victoria 3052, Australia.

Alex Brown, Telethon Kids Institute, Perth, WA 6009, Australia; National Centre for Indigenous Genomics, The John Curtin School of Medical Research, Australian National University, Canberra, ACT 2601, Australia.

Mark J Cowley, Children’s Cancer Institute, Lowy Cancer Research Centre, Level 4, Lowy Cancer Research Centre Corner Botany & High Streets UNSW Kensington Campus UNSW Sydney, Kensington NSW 2052, Australia; School of Clinical Medicine, UNSW Medicine & Health, Wallace Wurth Building (C27), Cnr High St & Botany St, UNSW Sydney, Kensington NSW 2052, Australia.

Natalie Thorne, University of Melbourne, Melbourne, Parkville VIC 3052, Australia; Melbourne Genomics Health Alliance, Melbourne 1G, Walter and Eliza Hall Institute/1G Royal Parade, Parkville VIC 3052, Australia; Walter and Eliza Hall Institute, Melbourne, 1G, Walter and Eliza Hall Institute/1G Royal Parade, Parkville VIC 3052, Australia.

Yatish Jain, Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Level 3/160 Hawkesbury Rd, Westmead NSW 2145, Australia; Applied BioSciences, Faculty of Science and Engineering, Macquarie University, Applied BioSciences 205B Culloden Rd Macquarie University, NSW 2109, Australia.

Denis C Bauer, Applied BioSciences, Faculty of Science and Engineering, Macquarie University, Applied BioSciences 205B Culloden Rd Macquarie University, NSW 2109, Australia; Department of Biomedical Sciences, MQ Health General Practice - Macquarie University, Suite 305, Level 3/2 Technology Pl, Macquarie Park NSW 2109, Australia; Australian e-Health Research Centre, Commonwealth Scientific and Industrial Research Organisation, Gate 13, Kintore Avenue University of Adelaide, Adelaide SA 5000, Australia.

Competing Interests

B.G. is a director of Pacific Analytics PTY LTD & SMRTR PTY LTD, Australia; his research is supported through the MRFF (Establishing epigenetic biomarkers in Indigenous Australians for precision health) and a BISA Accelerator grant.

N.T. is the Scientific Director of Genomical.

References

1. Birney E, Vamathevan J, Goodhand P.. Genomics in healthcare: GA4GH looks to 2022. Biorxiv. 2017. 203554. https://www.biorxiv.org/content/10.1101/203554v1. [Google Scholar]
2. Saunders G, Baudis M, Becker R, et al. Leveraging European infrastructures to access 1 million human genomes by 2022. Nat Rev Genet. 2019;20:693–701. 10.1038/s41576-019-0156-9. [DOI] [PMC free article] [PubMed] [Google Scholar]
3. Goodwin S, Mcpherson JD, Mccombie WR. Coming of age: ten years of next-generation sequencing technologies. Nat Rev Genet. 2016;17:333–51. 10.1038/nrg.2016.49. [DOI] [PMC free article] [PubMed] [Google Scholar]
4. Schwarze K, Buchanan J, Taylor JC, et al. Are whole-exome and whole-genome sequencing approaches cost-effective? A systematic review of the literature. Genet Med. 2018;20:1122–30. 10.1038/gim.2017.247. [DOI] [PubMed] [Google Scholar]
5. Li H, Wu K, Ruan C, et al. Cost-reduction strategies in massive genomics experiments. Mar Life Sci Technol. 2019;1:15–21. 10.1007/s42995-019-00013-2. [DOI] [Google Scholar]
6. Stoeklé H-C, Mamzer-Bruneel M-F, Vogt G, et al. 23andMe: a new two-sided data-banking market model. BMC Med Ethics. 2016;17:1–11. 10.1186/s12910-016-0101-9. [DOI] [PMC free article] [PubMed] [Google Scholar]
7. Wong E, Bertin N, Hebrard M, et al. The Singapore National Precision Medicine Strategy. Nat Genet. 2023;55:1–9. 10.1038/s41588-022-01274-x. [DOI] [PubMed] [Google Scholar]
8. Kowal E, Easteal S, Gooda M.. Indigenous genomics. Australas Sci. 2016;37:18–20. https://www.researchgate.net/publication/305092405_Indigenous_Genomics. [Google Scholar]
9. Forsberg JS, Soini S. A big step for Finnish biobanking. Nat Rev Genet. 2014;15:6. 10.1038/nrg3646. [DOI] [PubMed] [Google Scholar]
10. Leitsalu L, Haller T, Esko T, et al. Cohort profile: Estonian biobank of the Estonian Genome Center, University of Tartu. Int J Epidemiol. 2015;44:1137–47. 10.1093/ije/dyt268. [DOI] [PubMed] [Google Scholar]
11. Bycroft C, Freeman C, Petkova D, et al. The UK Biobank resource with deep phenotyping and genomic data. Nature. 2018;562:203–9. 10.1038/s41586-018-0579-z. [DOI] [PMC free article] [PubMed] [Google Scholar]
12. Malakar Y, Lacey J, Twine NA, et al. Applying a risk governance approach to examine how professionals perceive the benefits and risks of clinical genomics in Australian healthcare. New Genet Soc. 2023;42:e2192472. 10.1080/14636778.2023.2192472. [DOI] [Google Scholar]
13. Cheung R, Jolly S, Vimal M, et al. Who's afraid of genetic tests? An assessment of Singapore's public attitudes and changes in attitudes after taking a genetic test. BMC Med Ethics. 2022;23:5. 10.1186/s12910-022-00744-5. [DOI] [PMC free article] [PubMed] [Google Scholar]
14. Grishin D, Raisaro JL, Troncoso-Pastoriza JR, et al. Citizen-centered, auditable and privacy-preserving population genomics. Nat Comput Sci. 2021;1:192–98. 10.1038/s43588-021-00044-9. [DOI] [PubMed] [Google Scholar]
15. Malakar Y, Lacey J, Twine NA, et al. Balancing the safeguarding of privacy and data sharing: perceptions of genomic professionals on patient genomic data ownership in Australia. Eur J Hum Genet. 2023; 1–7. 10.1038/s41431-022-01273-w. [DOI] [PMC free article] [PubMed] [Google Scholar]
16. Gymrek M, McGuire AL, Golan D, et al. Identifying personal genomes by surname inference. Science (1979). 2013;339:321–24. 10.1126/science.1229566. [DOI] [PubMed] [Google Scholar]
17. Erlich Y, Williams JB, Glazer D, et al. Redefining genomic privacy: trust and empowerment. PLoS Biol. 2014;12:e1001983. 10.1371/journal.pbio.1001983. [DOI] [PMC free article] [PubMed] [Google Scholar]
18. Von Thenen N, Ayday E, Cicek AE. Re-identification of individuals in genomic data-sharing beacons via allele inference. Bioinformatics. 2019;35:365–71. 10.1093/bioinformatics/bty643. [DOI] [PubMed] [Google Scholar]
19. Raisaro JL, Tramèr F, Ji Z, et al. Addressing Beacon re-identification attacks: quantification and mitigation of privacy risks. J Am Med Inform Assoc. 2017;24:799–805. 10.1093/jamia/ocw167. [DOI] [PMC free article] [PubMed] [Google Scholar]
20. Shringarpure SS, Bustamante CD.. Privacy risks from genomic data-sharing beacons. Am Hum Genet. 2015;97:631–46. 10.1016/j.ajhg.2015.09.010. [DOI] [PMC free article] [PubMed] [Google Scholar]
21. Gürsoy G. Genome privacy and trust. Annu Rev Biomed Data Sci. 2022;5:163–81. 10.1146/annurev-biodatasci-122120-021311. [DOI] [PubMed] [Google Scholar]
22. Venkatesaramani R, Malin BA, Vorobeychik Y. Re-identification of individuals in genomic datasets using public face images. Sci Adv. 2021;7:eabg3296. 10.1126/sciadv.abg3296. [DOI] [PMC free article] [PubMed] [Google Scholar]
23. Lippert C, Sabatini R, Maher MC, et al. Identification of individuals by trait prediction using whole-genome sequencing data. Proc Natl Acad Sci. 2017;114:10166–71. 10.1073/pnas.1711125114. [DOI] [PMC free article] [PubMed] [Google Scholar]
24. Lee SS‐J. Excavating the personal genome: the good biocitizen in the age of precision health. Hastings Cent Rep. 2020;50:S54–S61. 10.1002/hast.1156. [DOI] [PMC free article] [PubMed] [Google Scholar]
25. Bullen J, Hill-Wall T, Anderson K, et al. From deficit to strength-based aboriginal health research—moving toward flourishing. Int J Environ Res Public Health. 2023;20:5395. 10.3390/ijerph20075395. [DOI] [PMC free article] [PubMed] [Google Scholar]
26. U.S. Department of Health and Human Services . Standards for privacy of individually identifiable health information. Federal Registrar 2002; 45 CFR, Parts 160–4.
27. The California Consumer Privacy Act of 2018 California Civil Code § 1798.192 2022. https://law.justia.com/codes/california/2022/code-civ/division-3/part-4/title-1-81-5/section-1798-192/.
28. Paltiel M, Taylor M, Newson A. Protection of genomic data and the Australian Privacy Act: when are genomic data ‘personal information’?. Int Data Privacy Law. 2023;13:47–62. 10.1093/idpl/ipad002. [DOI] [Google Scholar]
29. Regulation (EU) 2016/679, General Data Protection Regulation (GDPR). OJ L 119, 4.5.2016 , p. 1–88.(2016).
30. Tiller J, Bakshi A, Dowling G, et al. Community concerns about genetic discrimination in life insurance persist in Australia: a survey of consumers offered genetic testing. Eur J Hum Genet. 2024; 1–9. 10.1038/s41431-023-01373-1 [DOI] [PMC free article] [PubMed] [Google Scholar]
31. Seh AH, Zarour M, Alenezi M, et al. Healthcare data breaches: insights and implications. Healthcare. 2020;8:133. 10.3390/healthcare8020133. [DOI] [PMC free article] [PubMed] [Google Scholar]
32. Pandey AK, Khan AI, Abushark YB, et al. Key issues in healthcare data integrity: analysis and recommendations. IEEE Access. 2020;8:40612–28. 10.1109/ACCESS.2020.2976687. [DOI] [Google Scholar]
33. Abinaya B, Santhi S.. A survey on genomic data by privacy-preserving techniques perspective. Comput Biol Chem. 2021;93:107538. 10.1016/j.compbiolchem.2021.107538. [DOI] [PubMed] [Google Scholar]
34. Pulivarti R, Martin N, Byers FR, et al. Cybersecurity of Genomic Data. Gaithersburg, MD: National Institute of Standards and Technology; 2023. [Google Scholar]
35. Olson JS, Olson G. Working Together Apart: Collaboration over the Internet. Springer Nature; 2022. https://link.springer.com/book/10.1007/978-3-031-02203-6. [Google Scholar]
36. Golec D, Strugar I, Belak D. The benefits of enterprise data warehouse implementation in cloud vs. on-premises. ENTRENOVA. 2021;7:67–76. 10.54820/DMZS9230. [DOI] [Google Scholar]
37. Wu J, Ping L, Ge X, et al. Cloud storage as the infrastructure of cloud computing. In: 2010 International Conference on Intelligent Computing and Cognitive Informatics. Kuala Lumpur, Malaysia: IEEE; 2010: 380–83. 10.1109/ICICCI.2010.119. [DOI] [Google Scholar]
38. Chee BJS, Franklin C Jr.. Cloud Computing: Technologies and Strategies of the Ubiquitous Data Center. Boca Raton: CRC Press; 2010.; [Google Scholar]
39. Chorafas DN. Cloud Computing Strategies. Boca Raton: CRC Press; 2010. [Google Scholar]
40. AWS GovCloud (US) region—government cloud computing. http://aws.amazon.com/govcloud-us/. Accessed 29 April 2024.
41. Microsoft AZURE Government. https://azure.microsoft.com/en-us/explore/global-infrastructure/government. Accessed 29 April 2024.
42. Reddy VK, Rao BT. et al. Research Issues in cloud computing. Global J Comput Sci Technol. 2011;11:59–64. [Google Scholar]
43. Ghani A, Badshah A, Jan S, et al. Issues and challenges in cloud storage architecture: a survey. 2020;1: 50–64. 10.48550/arXiv.2004.06809. [DOI] [Google Scholar]
44. Prajapati P, Shah P.. A review on secure data deduplication: cloud storage security issue. J King Saud Univ. 2022;34:3996–4007. 10.1016/j.jksuci.2020.10.021. [DOI] [Google Scholar]
45. Odun-Ayo I, Ajayi O, Akanle B, et al. An overview of data storage in cloud computing. In: 2017 International Conference on Next Generation Computing and Information Systems (ICNGCIS), Jammu. New York, USA: IEEE; 2017:29–34. 10.1109/ICNGCIS.2017.9. [DOI] [Google Scholar]
46. Khan AR, Alnwihel LK.. A brief review on cloud computing authentication frameworks. Eng Technol Appl Sci Res 2023;13:9997–10004. 10.48084/etasr.5479. [DOI] [Google Scholar]
47. Rajani S, Ghorpade V, Dhange M. Multi-factor authentication as a service for cloud data security. Int J Comput Sci Eng. 2016;4:43–46. [Google Scholar]
48. AWS multi-factor authentication (MFA). https://aws.amazon.com/what-is/mfa/. Accessed 29 April 2024.
49. Microsoft AZURE MFA. https://www.microsoft.com/en-au/security/business/identity-access/microsoft-entra-mfa-multi-factor-authentication. Accessed 29 April 2024.
50. Deflaux N, Selvaraj MS, Condon HR, et al. Demonstrating paths for unlocking the value of cloud genomics through cross cohort analysis. Nat Commun. 2023;14:5419. 10.1038/s41467-023-41185-x. [DOI] [PMC free article] [PubMed] [Google Scholar]
51. Thorne N, Birch K, Marty A, et al. Genovic: a secure, scalable and modular system for genomic testing. Pathology (Phila). 2019;51:S120–21. 10.1016/j.pathol.2018.12.345. [DOI] [Google Scholar]
52. Wong M, Mayoh C, Lau LMS, et al. Whole genome, transcriptome and methylome profiling enhances actionable target discovery in high-risk pediatric cancer. Nat Med. 2020;26:1742–53. 10.1038/s41591-020-1072-4. [DOI] [PubMed] [Google Scholar]
53. Huston G. AARNet. In: LaQuey TL, Ed.The User's Directory of Computer Networks. Netherlands: Elsevier; 1990:199–201. 10.1016/B978-1-55558-047-6.50020-5. [DOI] [Google Scholar]
54. Murray A, Kim D, Combs J. The promise of a decentralized internet: what is Web3 and how can firms prepare?. Bus Horiz. 2023;66:191–202. 10.1016/j.bushor.2022.06.002. [DOI] [Google Scholar]
55. Sharma P, Jindal R, Borah MD. Blockchain-based decentralized architecture for cloud storage system. J Inform Security Applications. 2021;62:102970. 10.1016/j.jisa.2021.102970. [DOI] [Google Scholar]
56. Benet J. IPFS—content addressed, versioned, P2P file system. arXiv preprintarXiv:1407.35612014.
57. Mani V, Manickam P, Alotaibi Y, et al. Hyperledger Healthchain: patient-centric IPFS-based storage of health records. Electronics (Basel). 2021;10:3003. 10.3390/electronics10233003. [DOI] [Google Scholar]
58. Azbeg K, Ouchetto O, Jai Andaloussi S. BlockMedCare: a healthcare system based on IoT, blockchain and IPFS for data management security. Egypt Inform J. 2022;23:329–43. 10.1016/j.eij.2022.02.004. [DOI] [Google Scholar]
59. Kumar R, Marchang N, Tripathi R.. Distributed off-chain storage of patient diagnostic reports in healthcare system using IPFS and blockchain. In: 2020 International Conference on COMmunication Systems & NETworkS (COMSNETS). Bengaluru, India. New York, USA: IEEE; 2020:1–5. 10.1109/COMSNETS48256.2020.9027313. [DOI] [Google Scholar]
60. Mackey TK, Calac AJ, Chenna Keshava BS, et al. Establishing a blockchain-enabled indigenous data sovereignty framework for genomic data. Cell. 2022;185:2626–31. 10.1016/j.cell.2022.06.030. [DOI] [PubMed] [Google Scholar]
61. Filecoin: a decentralized market for storage. https://filecoin.io. Accessed 29 April 2024. .
62. Liebau D, Schueffel P.. Crypto-currencies and ICOs: are they scams? An empirical study. SSRN Electronic J. 2019. 10.2139/ssrn.3320884. [DOI]
63. Tiwari M, Gepp A, Kumar K.. The future of raising finance—a new opportunity to commit fraud: a review of initial coin offering (ICOs) scams. Crime Law Soc Change. 2020;73:417–41. 10.1007/s10611-019-09873-2. [DOI] [Google Scholar]
64. Aminzade M. Confidentiality, integrity and availability—finding a balanced IT framework. Network Security. 2018;2018:9–11. 10.1016/S1353-4858(18)30043-6. [DOI] [Google Scholar]
65. Cheah PY, Piasecki J. Data access committees. BMC Med Ethics. 2020;21:12. 10.1186/s12910-020-0453-z. [DOI] [PMC free article] [PubMed] [Google Scholar]
66. Dyke SOM. Genomic data access policy models. In: Jiang X, Tang H, eds. Responsible Genomic Data Sharing. Cambridge, MA, USA: Elsevier;2020:19–32. [Google Scholar]
67. Dyke SOM, Linden M, Lappalainen I, et al. Registered access: authorizing data access. Eur J Hum Genet. 2018;26:1721–31. 10.1038/s41431-018-0219-y. [DOI] [PMC free article] [PubMed] [Google Scholar]
68. Rehm HL, Page AJH, Smith L, et al. GA4GH: international policies and standards for data sharing across genomic research and healthcare. Cell Genomics. 2021;1:100029. 10.1016/j.xgen.2021.100029. [DOI] [PMC free article] [PubMed] [Google Scholar]
69. Dyke SOM, Kirby E, Shabani M, et al. Registered access: a “triple-A” approach. Eur J Hum Genet. 2016;24:1676–80. 10.1038/ejhg.2016.115. [DOI] [PMC free article] [PubMed] [Google Scholar]
70. Voisin C, Linden M, Dyke SOM, et al. GA4GH Passport standard for digital identity and access permissions. Cell Genomics. 2021;1:100030. 10.1016/j.xgen.2021.100030. [DOI] [PMC free article] [PubMed] [Google Scholar]
71. Sakimura N, Bradley J, Jones M, et al. Openid connect core 1.0. OpenID Foundation. 2014;S3. [Google Scholar]
72. Hardt D. The OAuth 2.0 Authorization Framework. 2012. https://www.rfc-editor.org/rfc/rfc6749.
73. Lawson J, Cabili MN, Kerry G, et al. The data use ontology to streamline responsible access to human biomedical datasets. Cell Genomics. 2021;1:100028. 10.1016/j.xgen.2021.100028. [DOI] [PMC free article] [PubMed] [Google Scholar]
74. Debnath S, Chattopadhyay A, Dutta S.. Brief review on journey of secured hash algorithms. In: 2017 4th International Conference on Opto-Electronics and Applied Optics (Optronix), Kolkata, India. New York, USA: IEEE; 2017:1–5. [Google Scholar]
75. Preneel B, Govaerts R, Vandewalle J. Cryptographic hash functions: an overview. In: Proceedings of the 6th international computer security and virus conference (ICSVC 1993). vol. 19. 1993. https://www.esat.kuleuven.be/cosic/publications/article-289.pdf. [Google Scholar]
76. Stinson DR. Some observations on the theory of cryptographic hash functions. Des Codes Cryptogr. 2006;38:259–77. 10.1007/s10623-005-6344-y. [DOI] [Google Scholar]
77. Ayday E, Tang Q, Yilmaz A.. Cryptographic solutions for credibility and liability issues of genomic data. IEEE Trans Dependable Secure Comput. 2017;16:33–43. 10.1109/TDSC.2017.2690422. [DOI] [Google Scholar]
78. Sweeney L. k-anonymity: a model for protecting privacy. Int J Uncertainty Fuzziness Knowledge Based Syst. 2002;10:557–70. 10.1142/S0218488502001648. [DOI] [Google Scholar]
79. Rajendran K, Jayabalan M, Rana ME.. A study on k-anonymity, l-diversity, and t-closeness techniques. IJCSNS. 2017;17:172. http://paper.ijcsns.org/07_book/201712/20171225.pdf. [Google Scholar]
80. Malin BA. Protecting genomic sequence anonymity with generalization lattices. Methods Inf Med. 2005;44:687–92. 10.1055/s-0038-1634025. [DOI] [PubMed] [Google Scholar]
81. Humbert M, Ayday E, Hubaux J-P, et al. Reconciling utility with privacy in genomics. In: Proceedings of the 13th Workshop on Privacy in the Electronic Society. New York, USA: Association for Computing Machinery. 2014:11–20. [Google Scholar]
82. Bonomi L, Huang Y, Ohno-Machado L.. Privacy challenges and research opportunities for genomic data sharing. Nat Genet. 2020;52:646–54. 10.1038/s41588-020-0651-0. [DOI] [PMC free article] [PubMed] [Google Scholar]
83. Hekel R, Budis J, Kucharik M, et al. Privacy-preserving storage of sequenced genomic data. Bmc Genomics [Electronic Resource]. 2021;22:1–13. 10.1186/s12864-021-07996-2. [DOI] [PMC free article] [PubMed] [Google Scholar]
84. Aggarwal CC. On k-anonymity and the curse of dimensionality. VLDB. 2005;5:901–9. [Google Scholar]
85. Dwork C, Roth A.. The algorithmic foundations of differential privacy. Foundations Trends Theoret Comput Sci. 2014;9:211–407. 10.1561/0400000042. [DOI] [Google Scholar]
86. Rambla J, Baudis M, Ariosa R, et al. Beacon v2 and beacon networks: a “lingua franca” for federated data discovery in biomedical genomics, and beyond. Hum Mutat. 2022;43:791–99. 10.1002/humu.24369. [DOI] [PMC free article] [PubMed] [Google Scholar]
87. Aziz MMA, Ghasemi R, Waliullah M, et al. Aftermath of bustamante attack on genomic beacon service. BMC Med Genomics. 2017;10:43–54. 10.1186/s12920-017-0278-x. [DOI] [PMC free article] [PubMed] [Google Scholar]
88. Yan J, Han Z, Zhou Y, et al. A differential privacy approach to preserve GWAS data sharing based on a game theoretic perspective. KSII Trans Internet Inform Syst. 2022;16:1028–46. 10.3837/tiis.2022.03.015. [DOI] [Google Scholar]
89. Simmons S, Sahinalp C, Berger B. Enabling privacy-preserving GWASs in heterogeneous human populations. Cell Syst. 2016;3:54–61. 10.1016/j.cels.2016.04.013. [DOI] [PMC free article] [PubMed] [Google Scholar]
90. Almadhoun N, Ayday E, Ulusoy Ö.. Differential privacy under dependent tuples—the case of genomic privacy. Bioinformatics. 2020;36:1696–703. 10.1093/bioinformatics/btz837. [DOI] [PubMed] [Google Scholar]
91. Makarious MB, Leonard HL, Vitale D, et al. GenoML: automated machine learning for genomics. arXiv preprint arXiv:2103.03221. 2021. https://arxiv.org/abs/2103.03221.
92. Rieke N, Hancox J, Li W, et al. The future of digital health with federated learning. NPJ Digit Med. 2020;3:119. 10.1038/s41746-020-00323-1. [DOI] [PMC free article] [PubMed] [Google Scholar]
93. Boscarino N, Cartwright RA, Fox K, et al. Federated learning and indigenous genomic data sovereignty. Nat Mach Intell. 2022; 4;(11):909–911. 10.1038/s42256-022-00551-y. [DOI] [PMC free article] [PubMed] [Google Scholar]
94. Mocanu I, Smadu R, Dragoi M, et al. Testing federated learning on health and wellbeing data. In: 2021 International Conference on e-Health and Bioengineering (EHB). New York, USA: IEEE; 2021:1–4. [Google Scholar]
95. Xu J, Glicksberg BS, Su C, et al. Federated learning for healthcare informatics. J Healthc Inform Res. 2021;5:1–19. 10.1007/s41666-020-00082-4. [DOI] [PMC free article] [PubMed] [Google Scholar]
96. Kolobkov D, Mishra Sharma S, Medvedev A, et al. Efficacy of federated learning on genomic data: a study on the UK Biobank and the 1000 Genomes Project. Frontiers in big data. 2024;7:1266031. 10.3389/fdata.2024.1266031. [DOI] [PMC free article] [PubMed] [Google Scholar]
97. Gosselin R, Vieu L, Loukil F, et al. Privacy and security in federated learning: a survey. Appl Sci. 2022;12:9901. 10.3390/app12199901. [DOI] [Google Scholar]
98. Li N, Stephens M.. Modeling linkage disequilibrium and identifying recombination hotspots using single-nucleotide polymorphism data. Genetics. 2003;165:2213–33. 10.1093/genetics/165.4.2213. [DOI] [PMC free article] [PubMed] [Google Scholar]
99. Su Z, Marchini J, Donnelly P. HAPGEN2: simulation of multiple disease SNPs. Bioinformatics. 2011;27:2304–5. 10.1093/bioinformatics/btr341. [DOI] [PMC free article] [PubMed] [Google Scholar]
100. Baumdicker F, Bisschop G, Goldstein D, et al. Efficient ancestry and mutation simulation with msprime 1.0. Genetics. 2022;220:iyab229. 10.1093/genetics/iyab229. [DOI] [PMC free article] [PubMed] [Google Scholar]
101. Yelmen B, Decelle A, Ongaro L, et al. Creating artificial human genomes using generative neural networks. PLoS Genet. 2021;17:e1009303. 10.1371/journal.pgen.1009303. [DOI] [PMC free article] [PubMed] [Google Scholar]
102. Atkinson EG, Bianchi SB, Ye GY, et al. Cross-ancestry genomic research: time to close the gap. Neuropsychopharmacology. 2022;47:1737–38. 10.1038/s41386-022-01365-7. [DOI] [PMC free article] [PubMed] [Google Scholar]
103. Oprisanu B, Ganev G, De Cristofaro E. On utility and privacy in synthetic genomic data. arXiv preprint arXiv:2102.03314. 2021. https://arxiv.org/abs/2102.03314.
104. Stadler T, Oprisanu B, Troncoso C.. Synthetic data—a privacy mirage. arXiv preprint arXiv:2011.07018. 2020. https://arxiv.org/abs/2011.07018.
105. Chandra S, Bhattacharyya S, Paira S, et al. A study and analysis on symmetric cryptography. In: 2014 International Conference on Science Engineering and Management Research (ICSEMR), Chennai, India. New York, USA: IEEE; 2014:1–8. [Google Scholar]
106. Patel K. Performance analysis of AES, DES and Blowfish cryptographic algorithms on small and large data files. Int J Inform Technol. 2019;11:813–19. 10.1007/s41870-018-0271-4. [DOI] [Google Scholar]
107. Qadir AM, Varol N.. A review paper on cryptography. In: 2019 7th International Symposium on Digital Forensics and Security (ISDFS), Barcelos, Portugal. New York, USA: IEEE; 2019:1–6. [Google Scholar]
108. Jiao L, Hao Y, Feng D. Stream cipher designs: a review. Sci China Inform Sci. 2020;63:1–25. 10.1007/s11432-018-9929-x. [DOI] [Google Scholar]
109. Serrano R, Duran C, Sarmiento M, et al. ChaCha20–Poly1305 authenticated encryption with additional data for transport layer security 1.3. Cryptography. 2022;6:30. 10.3390/cryptography6020030. [DOI] [Google Scholar]
110. Senf A, Davies R, Haziza F, et al. Crypt4GH: a file format standard enabling native access to encrypted data. Bioinformatics. 2021;37:2753–54. 10.1093/bioinformatics/btab087. [DOI] [PMC free article] [PubMed] [Google Scholar]
111. Hosseini M, Pratas D, Pinho AJ. Cryfa: a secure encryption tool for genomic data. Bioinformatics. 2019;35:146–48. 10.1093/bioinformatics/bty645. [DOI] [PMC free article] [PubMed] [Google Scholar]
112. Lei X, Zhu X, Chi H, et al. Cloud-assisted privacy-preserving genetic paternity test. In: 2015 IEEE/CIC International Conference on Communications in China (ICCC). New York, USA: IEEE; 2015:1–6. [Google Scholar]
113. Kalra S, Sood SK.. Elliptic curve cryptography: survey and its security applications. In: Proceedings of the International Conference on Advances in Computing and Artificial Intelligence. New York, USA: Association for Computing Machinery; 2011:102–6. [Google Scholar]
114. Jiang Y, Shang T, Liu J. SM algorithms-based encryption scheme for large genomic data files. Digital Commun Netw. 2021;7:543–50. 10.1016/j.dcan.2020.12.004. [DOI] [Google Scholar]
115. Keller MMP-S. A versatile framework for multi-party computation. In: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security. New York, USA: Association for Computing Machinery; 2020:1575–90. [Google Scholar]
116. Yao AC. Protocols for secure computations. In: 23rd Annual Symposium on Foundations of Computer Science (sfcs 1982). Chicago, IL, USA: IEEE; 1982:160–64. [Google Scholar]
117. Bogdanov D, Kamm L, Laur S. et al. Privacy-preserving statistical data analysis on federated databases. In: Preneel B, Ikonomou D, eds. Privacy Technologies and Policy: Second Annual Privacy Forum, APF 2014, Athens, Greece, May 20–21, 2014. Proceedings 2. Switzerland: Springer, vol. 8450, 2014:30–55. [Google Scholar]
118. Xie W, Kantarcioglu M, Bush WS, et al. SecureMA: protecting participant privacy in genetic association meta-analysis. Bioinformatics. 2014;30:3334–41. 10.1093/bioinformatics/btu561. [DOI] [PMC free article] [PubMed] [Google Scholar]
119. Jagadeesh KA, Wu DJ, Birgmeier JA, et al. Deriving genomic diagnoses without revealing patient genomes. Science (1979). 2017;357:692–95. 10.1126/science.aam9710. [DOI] [PubMed] [Google Scholar]
120. Lauter K, López-Alt A, Naehrig M.. Private computation on encrypted genomic data. In: Progress in Cryptology-LATINCRYPT2014: Third International Conference on Cryptology and Information Security in Latin America Florianópolis, Brazil, September 17–19, 2014. Revised Selected Papers. Switzerland: Springer; 2015:3–27. [Google Scholar]
121. Kachouh B, Hariss K, Sliman L, et al. Privacy preservation of genome data analysis using homomorphic encryption. Service Oriented Comput Appl. 2021;15:273–87. 10.1007/s11761-021-00326-0. [DOI] [Google Scholar]
122. Gürsoy G, Chielle E, Brannon CM, et al. Privacy-preserving genotype imputation with fully homomorphic encryption. Cell Syst. 2022;13:173–82. 10.1016/j.cels.2021.10.003. [DOI] [PMC free article] [PubMed] [Google Scholar]
123. Blatt M, Gusev A, Polyakov Y, et al. Secure large-scale genome-wide association studies using homomorphic encryption. Proc Natl Acad Sci. 2020;117:11608–13. 10.1073/pnas.1918257117. [DOI] [PMC free article] [PubMed] [Google Scholar]
124. Titus AJ, Flower A, Hagerty P, et al. SIG-DB: leveraging homomorphic encryption to securely interrogate privately held genomic databases. PLoS Comput Biol. 2018;14:e1006454. 10.1371/journal.pcbi.1006454. [DOI] [PMC free article] [PubMed] [Google Scholar]
125. Thomson I. Microsoft Researchers Smash Homomorphic Encryption Speed Barrier. San Francisco: The Register; 2016. [Google Scholar]
126. Raisaro JL, Choi G, Pradervand S, et al. Protecting privacy and security of genomic data in i2b2 with homomorphic encryption and differential privacy. IEEE/ACM Trans Comput Biol Bioinform. 2018;15:1413–26.. 10.1109/TCBB.2018.2854782. [DOI] [PubMed] [Google Scholar]
127. Wu H, Wang F. A survey of noninteractive zero knowledge proof system and its applications. Sci World J. 2014;2014. 10.1155/2014/560484. [DOI] [PMC free article] [PubMed] [Google Scholar]
128. Hwang S, Ozturk E, Tsudik G. Balancing security and privacy in genomic range queries. ACM Trans Privacy Security. 2023;26:1–28. 10.1145/3575796. [DOI] [Google Scholar]
129. Yang Y, Weng J, Tong Y, et al. PriGenX: privacy-preserving query with anonymous access control for genomic data. IEEE Trans Dependable Secure Comput. 2024;21:961–974. 10.1109/TDSC.2023.3266292. [DOI] [Google Scholar]
130. Shor PW. Algorithms for quantum computation: discrete logarithms and factoring. In: Proceedings 35th Annual Symposium on Foundations of Computer Science. Santa Fe, NM, USA: IEEE; 1994:124–34. 10.1109/SFCS.1994.365700. [DOI] [Google Scholar]
131. O'Neill PH. The US is worried that hackers are stealing data today so quantum computers can crack it in a decade. 2021. https://www.technologyreview.com/2021/11/03/1039171/hackers-quantum-computers-us-homeland-security-cryptography/.
132. Avanzi R, Bos J, Ducas L, et al. CRYSTALS-Kyber algorithm specifications and supporting documentation. NIST PQC Round. 2019;2:1–43. [Google Scholar]
133. Ducas L, Kiltz E, Lepoint T, et al. Crystals-dilithium: a lattice-based digital signature scheme. In: IACR Transactions on Cryptographic Hardware and Embedded Systems. Güneysu T, Ed. Bochum, Germany: Ruhr-Universität Bochum Press; 2018:238–68. [Google Scholar]
134. Soni D, Basu K, Nabeel M, et al. FALCON. In: Hardware Architectures for Post-Quantum Digital Signature Schemes. Cham, Switzerland: Springer Nature; 2021:31–41. 10.1007/978-3-030-57682-0_3. [DOI] [Google Scholar]
135. Mcguire AL, Beskow LM.. Informed consent in genomics and genetic research. Annu Rev Genomics Hum Genet. 2010;11:361–81. 10.1146/annurev-genom-082509-141711. [DOI] [PMC free article] [PubMed] [Google Scholar]
136. Declaration of Helsinki, AMM . Ethical principles for medical research involving human subjects. JAMA. 2013; 310(20):2191–2194. 10.1001/jama.2013.281053. Accessed date: 29 APR 2024. [DOI] [PubMed] [Google Scholar]
137. Ten Have H, Jean M.. The UNESCO Universal Declaration on Bioethics and Human Rights: Background, Principles and Application. Paris, France: UNESCO; 2009. [Google Scholar]
138. Koplin JJ, Gyngell C, Savulescu J, et al. Moving from “fully” to “appropriately” informed consent in genomics: the PROMICE framework. Bioethics. 2022;36:655–65. 10.1111/bioe.13027. [DOI] [PMC free article] [PubMed] [Google Scholar]
139. Wiertz S, Boldt J.. Evaluating models of consent in changing health research environments. Med Health Care Philos. 2022;25:269–80. 10.1007/s11019-022-10074-3. [DOI] [PMC free article] [PubMed] [Google Scholar]
140. Mikkelsen RB, Gjerris M, Waldemar G, et al. Broad consent for biobanks is best—provided it is also deep. BMC Med Ethics. 2019;20:1–12. 10.1186/s12910-019-0414-6. [DOI] [PMC free article] [PubMed] [Google Scholar]
141. Tindana P, De Vries J. Broad consent for genomic research and biobanking: perspectives from low-and middle-income countries. Annu Rev Genomics Hum Genet. 2016;17:375–93. 10.1146/annurev-genom-083115-022456. [DOI] [PubMed] [Google Scholar]
142. Barazzetti G, Bosisio F, Koutaissoff D, et al. Broad consent in practice: lessons learned from a hospital-based biobank for prospective research on genomic and medical data. Eur J Hum Genet. 2020;28:915–24. 10.1038/s41431-020-0585-0. [DOI] [PMC free article] [PubMed] [Google Scholar]
143. Bunnik EM, Janssens ACJW, Schermer MHN. A tiered-layered-staged model for informed consent in personal genome testing. Eur J Hum Genet. 2013;21:596–601. 10.1038/ejhg.2012.237. [DOI] [PMC free article] [PubMed] [Google Scholar]
144. Mascalzoni D, Melotti R, Pattaro C, et al. Ten years of dynamic consent in the CHRIS study: informed consent as a dynamic process. Eur J Hum Genet. 2022;30:1391–97. 10.1038/s41431-022-01160-4. [DOI] [PMC free article] [PubMed] [Google Scholar]
145. Budin-Ljøsne I, Teare HJA, Kaye J, et al. Dynamic consent: a potential solution to some of the challenges of modern biomedical research. BMC Med Ethics. 2017;18:1–10. 10.1186/s12910-016-0162-9. [DOI] [PMC free article] [PubMed] [Google Scholar]
146. Teare HJA, Prictor M, Kaye J. Reflections on dynamic consent in biomedical research: the story so far. Eur J Hum Genet. 2021;29:649–56. 10.1038/s41431-020-00771-z. [DOI] [PMC free article] [PubMed] [Google Scholar]
147. Teare HJA, Morrison M, Whitley EA, et al. Towards ‘Engagement 2.0’: insights from a study of dynamic consent with biobank participants. Digit Health. 2015;1:2055207615605644. 10.1177/2055207615605644. [DOI] [PMC free article] [PubMed] [Google Scholar]
148. Haas MA, Madelli EO, Brown R, et al. Evaluation of CTRL: a web application for dynamic consent and engagement with individuals involved in a cardiovascular genetic disorders cohort. Eur J Hum Genet. 2023; 32:61–68. 10.1038/s41431-023-01454-1. [DOI] [PMC free article] [PubMed] [Google Scholar]
149. Spencer K, Sanders C, Whitley EA, et al. Patient perspectives on sharing anonymized personal health data using a digital system for dynamic consent and research feedback: a qualitative study. J Med Internet Res. 2016;18:e5011. 10.2196/jmir.5011. [DOI] [PMC free article] [PubMed] [Google Scholar]
150. Budin-Ljøsne I, Teare H, Kaye J, et al. Meta consent: is it new and is it fit for purpose?. BMJ. 2016;350. 10.1136/bmj.h2146. [DOI] [Google Scholar]
151. Chen C, Lee PI, Pain KJ, et al. Replacing paper informed consent with electronic informed consent for research in academic medical centers: a scoping review. AMIA Summits Transl Sci Proc. 2020;2020:80. [PMC free article] [PubMed] [Google Scholar]
152. Mishra R, Narayanan MDK, Umana GE, et al. Virtual reality in neurosurgery: beyond neurosurgical planning. Int J Environ Res Public Health. 2022;19:1719. 10.3390/ijerph19031719. [DOI] [PMC free article] [PubMed] [Google Scholar]
153. Xiao Z, Li TW, Karahalios K, et al. Inform the uninformed: improving online informed consent reading with an AI-powered chatbot. In: Proceedings of the 2023 CHI Conference on Human Factors in Computing Systems. New York, USA: Association for Computing Machinery; 2023:1–17. [Google Scholar]
154. Metke-Jimenez A, Steel J, Hansen D, et al. Ontoserver: a syndicated terminology server. J Biomed Semantics. 2018;9:1–10. 10.1186/s13326-018-0191-z. [DOI] [PMC free article] [PubMed] [Google Scholar]
155. Haas MA, Teare H, Prictor M, et al. ‘CTRL’: an online, dynamic consent and participant engagement platform working towards solving the complexities of consent in genomic research. Eur J Hum Genet. 2021;29:687–98. 10.1038/s41431-020-00782-w. [DOI] [PMC free article] [PubMed] [Google Scholar]
156. Harvey LA. REDCap: web-based software for all types of data storage and collection. Spinal Cord. 2018;56:625. 10.1038/s41393-018-0169-9. [DOI] [PubMed] [Google Scholar]
157. Zichichi M, Ferretti S, D'angelo G, et al. Data governance through a multi-dlt architecture in view of the gdpr. Cluster Comput. 2022;25:4515–42. 10.1007/s10586-022-03691-3. [DOI] [Google Scholar]
158. Prictor M, Teare HJA, Kaye J.. Equitable participation in biobanks: the risks and benefits of a “dynamic consent” approach. Front Public Health. 2018;6:253. 10.3389/fpubh.2018.00253. [DOI] [PMC free article] [PubMed] [Google Scholar]
159. Preukschat A, Reed D.. Self-Sovereign Identity. Shelter Island, New York: Manning Publications; 2021.; [Google Scholar]
160. Naik N, Jenkins P. Governing principles of self-sovereign identity applied to blockchain enabled privacy preserving identity management systems. In: 2020 IEEE International Symposium on Systems Engineering (ISSE). Vienna, Austria: IEEE; 2020:1–6. [Google Scholar]
161. Roman-Martinez I, Calvillo-Arbizu J, Mayor-Gallego VJ, et al. Blockchain-based service-oriented architecture for consent management, access control, and auditing. IEEE Access. 2023;11:12727–41. 10.1109/ACCESS.2023.3242605. [DOI] [Google Scholar]
162. Thiebes S, Schlesner M, Brors B, et al. Distributed ledger technology in genomics: a call for Europe. Eur J Hum Genet. 2020;28:139–40. 10.1038/s41431-019-0512-4. [DOI] [PMC free article] [PubMed] [Google Scholar]
163. Mamo N, Martin GM, Desira M, et al. Dwarna: a blockchain solution for dynamic consent in biobanking. Eur J Hum Genet. 2020;28:609–26. 10.1038/s41431-019-0560-9. [DOI] [PMC free article] [PubMed] [Google Scholar]
164. Albalwy F, Brass A, Davies A.. A blockchain-based dynamic consent architecture to support clinical genomic data sharing (ConsentChain): proof-of-concept study. JMIR Med Inform. 2021;9:e27816. 10.2196/27816. [DOI] [PMC free article] [PubMed] [Google Scholar]
165. Androulaki E, Barger A, Bortnikov V, et al. Hyperledger fabric: a distributed operating system for permissioned blockchains. In: Proceedings of the Thirteenth EuroSys Conference. New York, USA: Association for Computing Machinery; 2018:1–15. [Google Scholar]
166. Sunyaev A, Sunyaev A. Distributed ledger technology. In: Internet computing: principles of distributed systems and emerging internet-based technologies. Springer, Cham. 2020; 265–99. 10.1007/978-3-030-34957-8_9. [DOI] [Google Scholar]
167. Alghazwi M, Turkmen F, Van Der Velde J, et al. Blockchain for genomics: a systematic literature review. Distributed Ledger Technol Res Pract. 2022;1:1–28. 10.1145/3563044. [DOI] [Google Scholar]
168. Belchior R, Vasconcelos A, Guerreiro S, et al. A survey on blockchain interoperability: past, present, and future trends. ACM Comput Surv. 2021;54:1–41. 10.1145/3471140. [DOI] [Google Scholar]
169. Beyene M, Toussaint PA, Thiebes S, et al. A scoping review of distributed ledger technology in genomics: thematic analysis and directions for future research. J Am Med Inform Assoc. 2022;29:1433–44. 10.1093/jamia/ocac077. [DOI] [PMC free article] [PubMed] [Google Scholar]
170. Vorisek CN, Lehne M, Klopfenstein SAI, et al. Fast Healthcare Interoperability Resources (FHIR) for clinical, epidemiological and public health research: a systematic review. In: Epidemiological and Public Health Research: A Systematic Review. 2022;10(7):e35724. [DOI] [PMC free article] [PubMed] [Google Scholar]
171. Bönisch C, Kesztyüs D, Kesztyüs T.. Harvesting metadata in clinical care: a crosswalk between FHIR, OMOP, CDISC and openEHR metadata. Sci Data. 2022;9:659. 10.1038/s41597-022-01792-7. [DOI] [PMC free article] [PubMed] [Google Scholar]
172. Verbrugge S, Vannieuwenborg F, Van der Wee M, et al. Towards a personal data vault society: an interplay between technological and business perspectives. In: 2021 60th FITCE Communication Days Congress for ICT Professionals: Industrial Data–Cloud, Low Latency and Privacy (FITCE). Vienna, Austria: IEEE; 2021:1–6. [Google Scholar]
173. Sambra AV, Mansour E, Hawke S, et al. Solid: A Platform for Decentralized Social Applications Based on Linked Data. Technical report. MIT CSAIL & Qatar Computing Research Institute; 2016. [Google Scholar]
174. Werbrouck J, Pauwels P, Beetz Jet al. , Towards a decentralised common data environment using linked building data and the solid ecosystem. In: Kumar B, Rahimian F, Greenwood D, et al. 36th CIB W78 2019 Conference, p.113–23.. Newcastle, United Kingdom, 2019. [Google Scholar]
175. Inrupt Solid pods. 2023. https://www.inrupt.com/solid.
176. Bíró K, Dombrádi V, Fekete Z, et al. Investigating the knowledge of and public attitudes towards genetic testing within the Visegrad countries: a cross-sectional study. BMC Public Health. 2020;20:1–10. 10.1186/s12889-020-09473-z. [DOI] [PMC free article] [PubMed] [Google Scholar]
177. Zhong A, Darren B, Loiseau B, et al. Ethical, social, and cultural issues related to clinical genetic testing and counseling in low-and middle-income countries: a systematic review. Genet Med. 2021;23:2270–80. 10.1038/s41436-018-0090-9. [DOI] [PubMed] [Google Scholar]
178. Jonassaint CR, Santos ER, Glover CM, et al. Regional differences in awareness and attitudes regarding genetic testing for disease risk and ancestry. Hum Genet. 2010;128:249–60. 10.1007/s00439-010-0845-0. [DOI] [PMC free article] [PubMed] [Google Scholar]
179. Garrison N'A, Hudson M, Ballantyne LL, et al. Genomic research through an indigenous lens: understanding the expectations. Annu Rev Genomics Hum Genet. 2019;20:495–517. 10.1146/annurev-genom-083118-015434. [DOI] [PubMed] [Google Scholar]
180. Giroux CM, Moreau KA.. Leveraging social media for medical education: learning from patients in online spaces. Med Teach. 2020;42:970–72. 10.1080/0142159X.2020.1779920. [DOI] [PubMed] [Google Scholar]
181. Talwar D, Tseng T-S, Foster M, et al. Genetics/genomics education for nongenetic health professionals: a systematic literature review. Genet Med. 2017;19:725–32. 10.1038/gim.2016.156. [DOI] [PubMed] [Google Scholar]
182. Bennett RL, Waggoner D, Blitzer MG. Medical genetics and genomics education: how do we define success? Where do we focus our resources?. Genet Med. 2017;19:751–53. 10.1038/gim.2017.77. [DOI] [PubMed] [Google Scholar]
183. Stellefson M, Paige SR, Chaney BH, et al. Evolving role of social media in health promotion: updated responsibilities for health education specialists. Int J Environ Res Public Health. 2020;17:1153. 10.3390/ijerph17041153. [DOI] [PMC free article] [PubMed] [Google Scholar]
184. Kawasaki H, Kawasaki M, Iki T, et al. Genetics education program to help public health nurses improve their knowledge and enhance communities’ genetic literacy: a pilot study. BMC Nurs. 2021;20:1–13. 10.1186/s12912-021-00549-8. [DOI] [PMC free article] [PubMed] [Google Scholar]
185. Aarestrup FM, Albeyatti A, Armitage WJ, et al. Towards a European health research and innovation cloud (HRIC). Genome Med. 2020;12:1–14. 10.1186/s13073-020-0713-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

Associated Data

This section collects any data citations, data availability statements, or supplementary materials included in this article.

Supplementary Materials

giae021_GIGA_D_23_00243_Original_Submission

giae021_giga_d_23_00243_original_submission.pdf^{(1.8MB, pdf)}

giae021_GIGA_D_23_00243_Revision_1

giae021_giga_d_23_00243_revision_1.pdf^{(2.2MB, pdf)}

giae021_GIGA_D_23_00243_Revision_2

giae021_giga_d_23_00243_revision_2.pdf^{(2.3MB, pdf)}

giae021_Response_to_Reviewer_Comments_Original_Submission

giae021_response_to_reviewer_comments_original_submission.pdf^{(77.4KB, pdf)}

giae021_Response_to_Reviewer_Comments_Revision_1

giae021_response_to_reviewer_comments_revision_1.pdf^{(52.6KB, pdf)}

giae021_Reviewer_1_Report_Original_Submission

Bastian Greshake Tzovaras, Ph.D -- 9/28/2023

giae021_reviewer_1_report_original_submission.pdf^{(130.4KB, pdf)}

giae021_Reviewer_1_Report_Revision_1

Bastian Greshake Tzovaras, Ph.D -- 1/17/2024

giae021_reviewer_1_report_revision_1.pdf^{(117.6KB, pdf)}

giae021_Reviewer_2_Report_Original_Submission

Arianna Schuler Scott --10/20/2023

giae021_reviewer_2_report_original_submission.pdf^{(122.2KB, pdf)}

giae021_Reviewer_2_Report_Revision_1

Arianna Schuler Scott -- 2/5/2024

giae021_reviewer_2_report_revision_1.pdf^{(112.3KB, pdf)}

giae021_Reviewer_2_Report_Revision_2

Arianna Schuler Scott -- 4/9/2024

giae021_reviewer_2_report_revision_2.pdf^{(114.5KB, pdf)}

[bib1] 1. Birney E, Vamathevan J, Goodhand P.. Genomics in healthcare: GA4GH looks to 2022. Biorxiv. 2017. 203554. https://www.biorxiv.org/content/10.1101/203554v1. [Google Scholar]

[bib2] 2. Saunders G, Baudis M, Becker R, et al. Leveraging European infrastructures to access 1 million human genomes by 2022. Nat Rev Genet. 2019;20:693–701. 10.1038/s41576-019-0156-9. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib3] 3. Goodwin S, Mcpherson JD, Mccombie WR. Coming of age: ten years of next-generation sequencing technologies. Nat Rev Genet. 2016;17:333–51. 10.1038/nrg.2016.49. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib4] 4. Schwarze K, Buchanan J, Taylor JC, et al. Are whole-exome and whole-genome sequencing approaches cost-effective? A systematic review of the literature. Genet Med. 2018;20:1122–30. 10.1038/gim.2017.247. [DOI] [PubMed] [Google Scholar]

[bib5] 5. Li H, Wu K, Ruan C, et al. Cost-reduction strategies in massive genomics experiments. Mar Life Sci Technol. 2019;1:15–21. 10.1007/s42995-019-00013-2. [DOI] [Google Scholar]

[bib6] 6. Stoeklé H-C, Mamzer-Bruneel M-F, Vogt G, et al. 23andMe: a new two-sided data-banking market model. BMC Med Ethics. 2016;17:1–11. 10.1186/s12910-016-0101-9. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib7] 7. Wong E, Bertin N, Hebrard M, et al. The Singapore National Precision Medicine Strategy. Nat Genet. 2023;55:1–9. 10.1038/s41588-022-01274-x. [DOI] [PubMed] [Google Scholar]

[bib8] 8. Kowal E, Easteal S, Gooda M.. Indigenous genomics. Australas Sci. 2016;37:18–20. https://www.researchgate.net/publication/305092405_Indigenous_Genomics. [Google Scholar]

[bib9] 9. Forsberg JS, Soini S. A big step for Finnish biobanking. Nat Rev Genet. 2014;15:6. 10.1038/nrg3646. [DOI] [PubMed] [Google Scholar]

[bib10] 10. Leitsalu L, Haller T, Esko T, et al. Cohort profile: Estonian biobank of the Estonian Genome Center, University of Tartu. Int J Epidemiol. 2015;44:1137–47. 10.1093/ije/dyt268. [DOI] [PubMed] [Google Scholar]

[bib11] 11. Bycroft C, Freeman C, Petkova D, et al. The UK Biobank resource with deep phenotyping and genomic data. Nature. 2018;562:203–9. 10.1038/s41586-018-0579-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib12] 12. Malakar Y, Lacey J, Twine NA, et al. Applying a risk governance approach to examine how professionals perceive the benefits and risks of clinical genomics in Australian healthcare. New Genet Soc. 2023;42:e2192472. 10.1080/14636778.2023.2192472. [DOI] [Google Scholar]

[bib13] 13. Cheung R, Jolly S, Vimal M, et al. Who's afraid of genetic tests? An assessment of Singapore's public attitudes and changes in attitudes after taking a genetic test. BMC Med Ethics. 2022;23:5. 10.1186/s12910-022-00744-5. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib14] 14. Grishin D, Raisaro JL, Troncoso-Pastoriza JR, et al. Citizen-centered, auditable and privacy-preserving population genomics. Nat Comput Sci. 2021;1:192–98. 10.1038/s43588-021-00044-9. [DOI] [PubMed] [Google Scholar]

[bib15] 15. Malakar Y, Lacey J, Twine NA, et al. Balancing the safeguarding of privacy and data sharing: perceptions of genomic professionals on patient genomic data ownership in Australia. Eur J Hum Genet. 2023; 1–7. 10.1038/s41431-022-01273-w. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib16] 16. Gymrek M, McGuire AL, Golan D, et al. Identifying personal genomes by surname inference. Science (1979). 2013;339:321–24. 10.1126/science.1229566. [DOI] [PubMed] [Google Scholar]

[bib17] 17. Erlich Y, Williams JB, Glazer D, et al. Redefining genomic privacy: trust and empowerment. PLoS Biol. 2014;12:e1001983. 10.1371/journal.pbio.1001983. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib18] 18. Von Thenen N, Ayday E, Cicek AE. Re-identification of individuals in genomic data-sharing beacons via allele inference. Bioinformatics. 2019;35:365–71. 10.1093/bioinformatics/bty643. [DOI] [PubMed] [Google Scholar]

[bib19] 19. Raisaro JL, Tramèr F, Ji Z, et al. Addressing Beacon re-identification attacks: quantification and mitigation of privacy risks. J Am Med Inform Assoc. 2017;24:799–805. 10.1093/jamia/ocw167. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib20] 20. Shringarpure SS, Bustamante CD.. Privacy risks from genomic data-sharing beacons. Am Hum Genet. 2015;97:631–46. 10.1016/j.ajhg.2015.09.010. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib21] 21. Gürsoy G. Genome privacy and trust. Annu Rev Biomed Data Sci. 2022;5:163–81. 10.1146/annurev-biodatasci-122120-021311. [DOI] [PubMed] [Google Scholar]

[bib22] 22. Venkatesaramani R, Malin BA, Vorobeychik Y. Re-identification of individuals in genomic datasets using public face images. Sci Adv. 2021;7:eabg3296. 10.1126/sciadv.abg3296. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib23] 23. Lippert C, Sabatini R, Maher MC, et al. Identification of individuals by trait prediction using whole-genome sequencing data. Proc Natl Acad Sci. 2017;114:10166–71. 10.1073/pnas.1711125114. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib24] 24. Lee SS‐J. Excavating the personal genome: the good biocitizen in the age of precision health. Hastings Cent Rep. 2020;50:S54–S61. 10.1002/hast.1156. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib25] 25. Bullen J, Hill-Wall T, Anderson K, et al. From deficit to strength-based aboriginal health research—moving toward flourishing. Int J Environ Res Public Health. 2023;20:5395. 10.3390/ijerph20075395. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib26] 26. U.S. Department of Health and Human Services . Standards for privacy of individually identifiable health information. Federal Registrar 2002; 45 CFR, Parts 160–4.

[bib27] 27. The California Consumer Privacy Act of 2018 California Civil Code § 1798.192 2022. https://law.justia.com/codes/california/2022/code-civ/division-3/part-4/title-1-81-5/section-1798-192/.

[bib28] 28. Paltiel M, Taylor M, Newson A. Protection of genomic data and the Australian Privacy Act: when are genomic data ‘personal information’?. Int Data Privacy Law. 2023;13:47–62. 10.1093/idpl/ipad002. [DOI] [Google Scholar]

[bib29] 29. Regulation (EU) 2016/679, General Data Protection Regulation (GDPR). OJ L 119, 4.5.2016 , p. 1–88.(2016).

[bib30] 30. Tiller J, Bakshi A, Dowling G, et al. Community concerns about genetic discrimination in life insurance persist in Australia: a survey of consumers offered genetic testing. Eur J Hum Genet. 2024; 1–9. 10.1038/s41431-023-01373-1 [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib31] 31. Seh AH, Zarour M, Alenezi M, et al. Healthcare data breaches: insights and implications. Healthcare. 2020;8:133. 10.3390/healthcare8020133. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib32] 32. Pandey AK, Khan AI, Abushark YB, et al. Key issues in healthcare data integrity: analysis and recommendations. IEEE Access. 2020;8:40612–28. 10.1109/ACCESS.2020.2976687. [DOI] [Google Scholar]

[bib33] 33. Abinaya B, Santhi S.. A survey on genomic data by privacy-preserving techniques perspective. Comput Biol Chem. 2021;93:107538. 10.1016/j.compbiolchem.2021.107538. [DOI] [PubMed] [Google Scholar]

[bib34] 34. Pulivarti R, Martin N, Byers FR, et al. Cybersecurity of Genomic Data. Gaithersburg, MD: National Institute of Standards and Technology; 2023. [Google Scholar]

[bib35] 35. Olson JS, Olson G. Working Together Apart: Collaboration over the Internet. Springer Nature; 2022. https://link.springer.com/book/10.1007/978-3-031-02203-6. [Google Scholar]

[bib36] 36. Golec D, Strugar I, Belak D. The benefits of enterprise data warehouse implementation in cloud vs. on-premises. ENTRENOVA. 2021;7:67–76. 10.54820/DMZS9230. [DOI] [Google Scholar]

[bib37] 37. Wu J, Ping L, Ge X, et al. Cloud storage as the infrastructure of cloud computing. In: 2010 International Conference on Intelligent Computing and Cognitive Informatics. Kuala Lumpur, Malaysia: IEEE; 2010: 380–83. 10.1109/ICICCI.2010.119. [DOI] [Google Scholar]

[bib38] 38. Chee BJS, Franklin C Jr.. Cloud Computing: Technologies and Strategies of the Ubiquitous Data Center. Boca Raton: CRC Press; 2010.; [Google Scholar]

[bib39] 39. Chorafas DN. Cloud Computing Strategies. Boca Raton: CRC Press; 2010. [Google Scholar]

[bib40] 40. AWS GovCloud (US) region—government cloud computing. http://aws.amazon.com/govcloud-us/. Accessed 29 April 2024.

[bib41] 41. Microsoft AZURE Government. https://azure.microsoft.com/en-us/explore/global-infrastructure/government. Accessed 29 April 2024.

[bib42] 42. Reddy VK, Rao BT. et al. Research Issues in cloud computing. Global J Comput Sci Technol. 2011;11:59–64. [Google Scholar]

[bib43] 43. Ghani A, Badshah A, Jan S, et al. Issues and challenges in cloud storage architecture: a survey. 2020;1: 50–64. 10.48550/arXiv.2004.06809. [DOI] [Google Scholar]

[bib44] 44. Prajapati P, Shah P.. A review on secure data deduplication: cloud storage security issue. J King Saud Univ. 2022;34:3996–4007. 10.1016/j.jksuci.2020.10.021. [DOI] [Google Scholar]

[bib45] 45. Odun-Ayo I, Ajayi O, Akanle B, et al. An overview of data storage in cloud computing. In: 2017 International Conference on Next Generation Computing and Information Systems (ICNGCIS), Jammu. New York, USA: IEEE; 2017:29–34. 10.1109/ICNGCIS.2017.9. [DOI] [Google Scholar]

[bib46] 46. Khan AR, Alnwihel LK.. A brief review on cloud computing authentication frameworks. Eng Technol Appl Sci Res 2023;13:9997–10004. 10.48084/etasr.5479. [DOI] [Google Scholar]

[bib47] 47. Rajani S, Ghorpade V, Dhange M. Multi-factor authentication as a service for cloud data security. Int J Comput Sci Eng. 2016;4:43–46. [Google Scholar]

[bib48] 48. AWS multi-factor authentication (MFA). https://aws.amazon.com/what-is/mfa/. Accessed 29 April 2024.

[bib49] 49. Microsoft AZURE MFA. https://www.microsoft.com/en-au/security/business/identity-access/microsoft-entra-mfa-multi-factor-authentication. Accessed 29 April 2024.

[bib50] 50. Deflaux N, Selvaraj MS, Condon HR, et al. Demonstrating paths for unlocking the value of cloud genomics through cross cohort analysis. Nat Commun. 2023;14:5419. 10.1038/s41467-023-41185-x. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib51] 51. Thorne N, Birch K, Marty A, et al. Genovic: a secure, scalable and modular system for genomic testing. Pathology (Phila). 2019;51:S120–21. 10.1016/j.pathol.2018.12.345. [DOI] [Google Scholar]

[bib52] 52. Wong M, Mayoh C, Lau LMS, et al. Whole genome, transcriptome and methylome profiling enhances actionable target discovery in high-risk pediatric cancer. Nat Med. 2020;26:1742–53. 10.1038/s41591-020-1072-4. [DOI] [PubMed] [Google Scholar]

[bib53] 53. Huston G. AARNet. In: LaQuey TL, Ed.The User's Directory of Computer Networks. Netherlands: Elsevier; 1990:199–201. 10.1016/B978-1-55558-047-6.50020-5. [DOI] [Google Scholar]

[bib54] 54. Murray A, Kim D, Combs J. The promise of a decentralized internet: what is Web3 and how can firms prepare?. Bus Horiz. 2023;66:191–202. 10.1016/j.bushor.2022.06.002. [DOI] [Google Scholar]

[bib55] 55. Sharma P, Jindal R, Borah MD. Blockchain-based decentralized architecture for cloud storage system. J Inform Security Applications. 2021;62:102970. 10.1016/j.jisa.2021.102970. [DOI] [Google Scholar]

[bib56] 56. Benet J. IPFS—content addressed, versioned, P2P file system. arXiv preprintarXiv:1407.35612014.

[bib57] 57. Mani V, Manickam P, Alotaibi Y, et al. Hyperledger Healthchain: patient-centric IPFS-based storage of health records. Electronics (Basel). 2021;10:3003. 10.3390/electronics10233003. [DOI] [Google Scholar]

[bib58] 58. Azbeg K, Ouchetto O, Jai Andaloussi S. BlockMedCare: a healthcare system based on IoT, blockchain and IPFS for data management security. Egypt Inform J. 2022;23:329–43. 10.1016/j.eij.2022.02.004. [DOI] [Google Scholar]

[bib59] 59. Kumar R, Marchang N, Tripathi R.. Distributed off-chain storage of patient diagnostic reports in healthcare system using IPFS and blockchain. In: 2020 International Conference on COMmunication Systems & NETworkS (COMSNETS). Bengaluru, India. New York, USA: IEEE; 2020:1–5. 10.1109/COMSNETS48256.2020.9027313. [DOI] [Google Scholar]

[bib60] 60. Mackey TK, Calac AJ, Chenna Keshava BS, et al. Establishing a blockchain-enabled indigenous data sovereignty framework for genomic data. Cell. 2022;185:2626–31. 10.1016/j.cell.2022.06.030. [DOI] [PubMed] [Google Scholar]

[bib61] 61. Filecoin: a decentralized market for storage. https://filecoin.io. Accessed 29 April 2024. .

[bib62] 62. Liebau D, Schueffel P.. Crypto-currencies and ICOs: are they scams? An empirical study. SSRN Electronic J. 2019. 10.2139/ssrn.3320884. [DOI]

[bib63] 63. Tiwari M, Gepp A, Kumar K.. The future of raising finance—a new opportunity to commit fraud: a review of initial coin offering (ICOs) scams. Crime Law Soc Change. 2020;73:417–41. 10.1007/s10611-019-09873-2. [DOI] [Google Scholar]

[bib64] 64. Aminzade M. Confidentiality, integrity and availability—finding a balanced IT framework. Network Security. 2018;2018:9–11. 10.1016/S1353-4858(18)30043-6. [DOI] [Google Scholar]

[bib65] 65. Cheah PY, Piasecki J. Data access committees. BMC Med Ethics. 2020;21:12. 10.1186/s12910-020-0453-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib66] 66. Dyke SOM. Genomic data access policy models. In: Jiang X, Tang H, eds. Responsible Genomic Data Sharing. Cambridge, MA, USA: Elsevier;2020:19–32. [Google Scholar]

[bib67] 67. Dyke SOM, Linden M, Lappalainen I, et al. Registered access: authorizing data access. Eur J Hum Genet. 2018;26:1721–31. 10.1038/s41431-018-0219-y. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib68] 68. Rehm HL, Page AJH, Smith L, et al. GA4GH: international policies and standards for data sharing across genomic research and healthcare. Cell Genomics. 2021;1:100029. 10.1016/j.xgen.2021.100029. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib69] 69. Dyke SOM, Kirby E, Shabani M, et al. Registered access: a “triple-A” approach. Eur J Hum Genet. 2016;24:1676–80. 10.1038/ejhg.2016.115. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib70] 70. Voisin C, Linden M, Dyke SOM, et al. GA4GH Passport standard for digital identity and access permissions. Cell Genomics. 2021;1:100030. 10.1016/j.xgen.2021.100030. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib71] 71. Sakimura N, Bradley J, Jones M, et al. Openid connect core 1.0. OpenID Foundation. 2014;S3. [Google Scholar]

[bib72] 72. Hardt D. The OAuth 2.0 Authorization Framework. 2012. https://www.rfc-editor.org/rfc/rfc6749.

[bib73] 73. Lawson J, Cabili MN, Kerry G, et al. The data use ontology to streamline responsible access to human biomedical datasets. Cell Genomics. 2021;1:100028. 10.1016/j.xgen.2021.100028. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib74] 74. Debnath S, Chattopadhyay A, Dutta S.. Brief review on journey of secured hash algorithms. In: 2017 4th International Conference on Opto-Electronics and Applied Optics (Optronix), Kolkata, India. New York, USA: IEEE; 2017:1–5. [Google Scholar]

[bib75] 75. Preneel B, Govaerts R, Vandewalle J. Cryptographic hash functions: an overview. In: Proceedings of the 6th international computer security and virus conference (ICSVC 1993). vol. 19. 1993. https://www.esat.kuleuven.be/cosic/publications/article-289.pdf. [Google Scholar]

[bib76] 76. Stinson DR. Some observations on the theory of cryptographic hash functions. Des Codes Cryptogr. 2006;38:259–77. 10.1007/s10623-005-6344-y. [DOI] [Google Scholar]

[bib77] 77. Ayday E, Tang Q, Yilmaz A.. Cryptographic solutions for credibility and liability issues of genomic data. IEEE Trans Dependable Secure Comput. 2017;16:33–43. 10.1109/TDSC.2017.2690422. [DOI] [Google Scholar]

[bib78] 78. Sweeney L. k-anonymity: a model for protecting privacy. Int J Uncertainty Fuzziness Knowledge Based Syst. 2002;10:557–70. 10.1142/S0218488502001648. [DOI] [Google Scholar]

[bib79] 79. Rajendran K, Jayabalan M, Rana ME.. A study on k-anonymity, l-diversity, and t-closeness techniques. IJCSNS. 2017;17:172. http://paper.ijcsns.org/07_book/201712/20171225.pdf. [Google Scholar]

[bib80] 80. Malin BA. Protecting genomic sequence anonymity with generalization lattices. Methods Inf Med. 2005;44:687–92. 10.1055/s-0038-1634025. [DOI] [PubMed] [Google Scholar]

[bib81] 81. Humbert M, Ayday E, Hubaux J-P, et al. Reconciling utility with privacy in genomics. In: Proceedings of the 13th Workshop on Privacy in the Electronic Society. New York, USA: Association for Computing Machinery. 2014:11–20. [Google Scholar]

[bib82] 82. Bonomi L, Huang Y, Ohno-Machado L.. Privacy challenges and research opportunities for genomic data sharing. Nat Genet. 2020;52:646–54. 10.1038/s41588-020-0651-0. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib83] 83. Hekel R, Budis J, Kucharik M, et al. Privacy-preserving storage of sequenced genomic data. Bmc Genomics [Electronic Resource]. 2021;22:1–13. 10.1186/s12864-021-07996-2. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib84] 84. Aggarwal CC. On k-anonymity and the curse of dimensionality. VLDB. 2005;5:901–9. [Google Scholar]

[bib85] 85. Dwork C, Roth A.. The algorithmic foundations of differential privacy. Foundations Trends Theoret Comput Sci. 2014;9:211–407. 10.1561/0400000042. [DOI] [Google Scholar]

[bib86] 86. Rambla J, Baudis M, Ariosa R, et al. Beacon v2 and beacon networks: a “lingua franca” for federated data discovery in biomedical genomics, and beyond. Hum Mutat. 2022;43:791–99. 10.1002/humu.24369. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib87] 87. Aziz MMA, Ghasemi R, Waliullah M, et al. Aftermath of bustamante attack on genomic beacon service. BMC Med Genomics. 2017;10:43–54. 10.1186/s12920-017-0278-x. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib88] 88. Yan J, Han Z, Zhou Y, et al. A differential privacy approach to preserve GWAS data sharing based on a game theoretic perspective. KSII Trans Internet Inform Syst. 2022;16:1028–46. 10.3837/tiis.2022.03.015. [DOI] [Google Scholar]

[bib89] 89. Simmons S, Sahinalp C, Berger B. Enabling privacy-preserving GWASs in heterogeneous human populations. Cell Syst. 2016;3:54–61. 10.1016/j.cels.2016.04.013. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib90] 90. Almadhoun N, Ayday E, Ulusoy Ö.. Differential privacy under dependent tuples—the case of genomic privacy. Bioinformatics. 2020;36:1696–703. 10.1093/bioinformatics/btz837. [DOI] [PubMed] [Google Scholar]

[bib91] 91. Makarious MB, Leonard HL, Vitale D, et al. GenoML: automated machine learning for genomics. arXiv preprint arXiv:2103.03221. 2021. https://arxiv.org/abs/2103.03221.

[bib92] 92. Rieke N, Hancox J, Li W, et al. The future of digital health with federated learning. NPJ Digit Med. 2020;3:119. 10.1038/s41746-020-00323-1. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib93] 93. Boscarino N, Cartwright RA, Fox K, et al. Federated learning and indigenous genomic data sovereignty. Nat Mach Intell. 2022; 4;(11):909–911. 10.1038/s42256-022-00551-y. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib94] 94. Mocanu I, Smadu R, Dragoi M, et al. Testing federated learning on health and wellbeing data. In: 2021 International Conference on e-Health and Bioengineering (EHB). New York, USA: IEEE; 2021:1–4. [Google Scholar]

[bib95] 95. Xu J, Glicksberg BS, Su C, et al. Federated learning for healthcare informatics. J Healthc Inform Res. 2021;5:1–19. 10.1007/s41666-020-00082-4. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib96] 96. Kolobkov D, Mishra Sharma S, Medvedev A, et al. Efficacy of federated learning on genomic data: a study on the UK Biobank and the 1000 Genomes Project. Frontiers in big data. 2024;7:1266031. 10.3389/fdata.2024.1266031. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib97] 97. Gosselin R, Vieu L, Loukil F, et al. Privacy and security in federated learning: a survey. Appl Sci. 2022;12:9901. 10.3390/app12199901. [DOI] [Google Scholar]

[bib98] 98. Li N, Stephens M.. Modeling linkage disequilibrium and identifying recombination hotspots using single-nucleotide polymorphism data. Genetics. 2003;165:2213–33. 10.1093/genetics/165.4.2213. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib99] 99. Su Z, Marchini J, Donnelly P. HAPGEN2: simulation of multiple disease SNPs. Bioinformatics. 2011;27:2304–5. 10.1093/bioinformatics/btr341. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib100] 100. Baumdicker F, Bisschop G, Goldstein D, et al. Efficient ancestry and mutation simulation with msprime 1.0. Genetics. 2022;220:iyab229. 10.1093/genetics/iyab229. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib101] 101. Yelmen B, Decelle A, Ongaro L, et al. Creating artificial human genomes using generative neural networks. PLoS Genet. 2021;17:e1009303. 10.1371/journal.pgen.1009303. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib102] 102. Atkinson EG, Bianchi SB, Ye GY, et al. Cross-ancestry genomic research: time to close the gap. Neuropsychopharmacology. 2022;47:1737–38. 10.1038/s41386-022-01365-7. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib103] 103. Oprisanu B, Ganev G, De Cristofaro E. On utility and privacy in synthetic genomic data. arXiv preprint arXiv:2102.03314. 2021. https://arxiv.org/abs/2102.03314.

[bib104] 104. Stadler T, Oprisanu B, Troncoso C.. Synthetic data—a privacy mirage. arXiv preprint arXiv:2011.07018. 2020. https://arxiv.org/abs/2011.07018.

[bib105] 105. Chandra S, Bhattacharyya S, Paira S, et al. A study and analysis on symmetric cryptography. In: 2014 International Conference on Science Engineering and Management Research (ICSEMR), Chennai, India. New York, USA: IEEE; 2014:1–8. [Google Scholar]

[bib106] 106. Patel K. Performance analysis of AES, DES and Blowfish cryptographic algorithms on small and large data files. Int J Inform Technol. 2019;11:813–19. 10.1007/s41870-018-0271-4. [DOI] [Google Scholar]

[bib107] 107. Qadir AM, Varol N.. A review paper on cryptography. In: 2019 7th International Symposium on Digital Forensics and Security (ISDFS), Barcelos, Portugal. New York, USA: IEEE; 2019:1–6. [Google Scholar]

[bib108] 108. Jiao L, Hao Y, Feng D. Stream cipher designs: a review. Sci China Inform Sci. 2020;63:1–25. 10.1007/s11432-018-9929-x. [DOI] [Google Scholar]

[bib109] 109. Serrano R, Duran C, Sarmiento M, et al. ChaCha20–Poly1305 authenticated encryption with additional data for transport layer security 1.3. Cryptography. 2022;6:30. 10.3390/cryptography6020030. [DOI] [Google Scholar]

[bib110] 110. Senf A, Davies R, Haziza F, et al. Crypt4GH: a file format standard enabling native access to encrypted data. Bioinformatics. 2021;37:2753–54. 10.1093/bioinformatics/btab087. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib111] 111. Hosseini M, Pratas D, Pinho AJ. Cryfa: a secure encryption tool for genomic data. Bioinformatics. 2019;35:146–48. 10.1093/bioinformatics/bty645. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib112] 112. Lei X, Zhu X, Chi H, et al. Cloud-assisted privacy-preserving genetic paternity test. In: 2015 IEEE/CIC International Conference on Communications in China (ICCC). New York, USA: IEEE; 2015:1–6. [Google Scholar]

[bib113] 113. Kalra S, Sood SK.. Elliptic curve cryptography: survey and its security applications. In: Proceedings of the International Conference on Advances in Computing and Artificial Intelligence. New York, USA: Association for Computing Machinery; 2011:102–6. [Google Scholar]

[bib114] 114. Jiang Y, Shang T, Liu J. SM algorithms-based encryption scheme for large genomic data files. Digital Commun Netw. 2021;7:543–50. 10.1016/j.dcan.2020.12.004. [DOI] [Google Scholar]

[bib115] 115. Keller MMP-S. A versatile framework for multi-party computation. In: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security. New York, USA: Association for Computing Machinery; 2020:1575–90. [Google Scholar]

[bib116] 116. Yao AC. Protocols for secure computations. In: 23rd Annual Symposium on Foundations of Computer Science (sfcs 1982). Chicago, IL, USA: IEEE; 1982:160–64. [Google Scholar]

[bib117] 117. Bogdanov D, Kamm L, Laur S. et al. Privacy-preserving statistical data analysis on federated databases. In: Preneel B, Ikonomou D, eds. Privacy Technologies and Policy: Second Annual Privacy Forum, APF 2014, Athens, Greece, May 20–21, 2014. Proceedings 2. Switzerland: Springer, vol. 8450, 2014:30–55. [Google Scholar]

[bib118] 118. Xie W, Kantarcioglu M, Bush WS, et al. SecureMA: protecting participant privacy in genetic association meta-analysis. Bioinformatics. 2014;30:3334–41. 10.1093/bioinformatics/btu561. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib119] 119. Jagadeesh KA, Wu DJ, Birgmeier JA, et al. Deriving genomic diagnoses without revealing patient genomes. Science (1979). 2017;357:692–95. 10.1126/science.aam9710. [DOI] [PubMed] [Google Scholar]

[bib120] 120. Lauter K, López-Alt A, Naehrig M.. Private computation on encrypted genomic data. In: Progress in Cryptology-LATINCRYPT2014: Third International Conference on Cryptology and Information Security in Latin America Florianópolis, Brazil, September 17–19, 2014. Revised Selected Papers. Switzerland: Springer; 2015:3–27. [Google Scholar]

[bib121] 121. Kachouh B, Hariss K, Sliman L, et al. Privacy preservation of genome data analysis using homomorphic encryption. Service Oriented Comput Appl. 2021;15:273–87. 10.1007/s11761-021-00326-0. [DOI] [Google Scholar]

[bib122] 122. Gürsoy G, Chielle E, Brannon CM, et al. Privacy-preserving genotype imputation with fully homomorphic encryption. Cell Syst. 2022;13:173–82. 10.1016/j.cels.2021.10.003. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib123] 123. Blatt M, Gusev A, Polyakov Y, et al. Secure large-scale genome-wide association studies using homomorphic encryption. Proc Natl Acad Sci. 2020;117:11608–13. 10.1073/pnas.1918257117. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib124] 124. Titus AJ, Flower A, Hagerty P, et al. SIG-DB: leveraging homomorphic encryption to securely interrogate privately held genomic databases. PLoS Comput Biol. 2018;14:e1006454. 10.1371/journal.pcbi.1006454. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib125] 125. Thomson I. Microsoft Researchers Smash Homomorphic Encryption Speed Barrier. San Francisco: The Register; 2016. [Google Scholar]

[bib126] 126. Raisaro JL, Choi G, Pradervand S, et al. Protecting privacy and security of genomic data in i2b2 with homomorphic encryption and differential privacy. IEEE/ACM Trans Comput Biol Bioinform. 2018;15:1413–26.. 10.1109/TCBB.2018.2854782. [DOI] [PubMed] [Google Scholar]

[bib127] 127. Wu H, Wang F. A survey of noninteractive zero knowledge proof system and its applications. Sci World J. 2014;2014. 10.1155/2014/560484. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib128] 128. Hwang S, Ozturk E, Tsudik G. Balancing security and privacy in genomic range queries. ACM Trans Privacy Security. 2023;26:1–28. 10.1145/3575796. [DOI] [Google Scholar]

[bib129] 129. Yang Y, Weng J, Tong Y, et al. PriGenX: privacy-preserving query with anonymous access control for genomic data. IEEE Trans Dependable Secure Comput. 2024;21:961–974. 10.1109/TDSC.2023.3266292. [DOI] [Google Scholar]

[bib130] 130. Shor PW. Algorithms for quantum computation: discrete logarithms and factoring. In: Proceedings 35th Annual Symposium on Foundations of Computer Science. Santa Fe, NM, USA: IEEE; 1994:124–34. 10.1109/SFCS.1994.365700. [DOI] [Google Scholar]

[bib131] 131. O'Neill PH. The US is worried that hackers are stealing data today so quantum computers can crack it in a decade. 2021. https://www.technologyreview.com/2021/11/03/1039171/hackers-quantum-computers-us-homeland-security-cryptography/.

[bib132] 132. Avanzi R, Bos J, Ducas L, et al. CRYSTALS-Kyber algorithm specifications and supporting documentation. NIST PQC Round. 2019;2:1–43. [Google Scholar]

[bib133] 133. Ducas L, Kiltz E, Lepoint T, et al. Crystals-dilithium: a lattice-based digital signature scheme. In: IACR Transactions on Cryptographic Hardware and Embedded Systems. Güneysu T, Ed. Bochum, Germany: Ruhr-Universität Bochum Press; 2018:238–68. [Google Scholar]

[bib134] 134. Soni D, Basu K, Nabeel M, et al. FALCON. In: Hardware Architectures for Post-Quantum Digital Signature Schemes. Cham, Switzerland: Springer Nature; 2021:31–41. 10.1007/978-3-030-57682-0_3. [DOI] [Google Scholar]

[bib135] 135. Mcguire AL, Beskow LM.. Informed consent in genomics and genetic research. Annu Rev Genomics Hum Genet. 2010;11:361–81. 10.1146/annurev-genom-082509-141711. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib136] 136. Declaration of Helsinki, AMM . Ethical principles for medical research involving human subjects. JAMA. 2013; 310(20):2191–2194. 10.1001/jama.2013.281053. Accessed date: 29 APR 2024. [DOI] [PubMed] [Google Scholar]

[bib137] 137. Ten Have H, Jean M.. The UNESCO Universal Declaration on Bioethics and Human Rights: Background, Principles and Application. Paris, France: UNESCO; 2009. [Google Scholar]

[bib138] 138. Koplin JJ, Gyngell C, Savulescu J, et al. Moving from “fully” to “appropriately” informed consent in genomics: the PROMICE framework. Bioethics. 2022;36:655–65. 10.1111/bioe.13027. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib139] 139. Wiertz S, Boldt J.. Evaluating models of consent in changing health research environments. Med Health Care Philos. 2022;25:269–80. 10.1007/s11019-022-10074-3. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib140] 140. Mikkelsen RB, Gjerris M, Waldemar G, et al. Broad consent for biobanks is best—provided it is also deep. BMC Med Ethics. 2019;20:1–12. 10.1186/s12910-019-0414-6. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib141] 141. Tindana P, De Vries J. Broad consent for genomic research and biobanking: perspectives from low-and middle-income countries. Annu Rev Genomics Hum Genet. 2016;17:375–93. 10.1146/annurev-genom-083115-022456. [DOI] [PubMed] [Google Scholar]

[bib142] 142. Barazzetti G, Bosisio F, Koutaissoff D, et al. Broad consent in practice: lessons learned from a hospital-based biobank for prospective research on genomic and medical data. Eur J Hum Genet. 2020;28:915–24. 10.1038/s41431-020-0585-0. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib143] 143. Bunnik EM, Janssens ACJW, Schermer MHN. A tiered-layered-staged model for informed consent in personal genome testing. Eur J Hum Genet. 2013;21:596–601. 10.1038/ejhg.2012.237. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib144] 144. Mascalzoni D, Melotti R, Pattaro C, et al. Ten years of dynamic consent in the CHRIS study: informed consent as a dynamic process. Eur J Hum Genet. 2022;30:1391–97. 10.1038/s41431-022-01160-4. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib145] 145. Budin-Ljøsne I, Teare HJA, Kaye J, et al. Dynamic consent: a potential solution to some of the challenges of modern biomedical research. BMC Med Ethics. 2017;18:1–10. 10.1186/s12910-016-0162-9. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib146] 146. Teare HJA, Prictor M, Kaye J. Reflections on dynamic consent in biomedical research: the story so far. Eur J Hum Genet. 2021;29:649–56. 10.1038/s41431-020-00771-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib147] 147. Teare HJA, Morrison M, Whitley EA, et al. Towards ‘Engagement 2.0’: insights from a study of dynamic consent with biobank participants. Digit Health. 2015;1:2055207615605644. 10.1177/2055207615605644. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib148] 148. Haas MA, Madelli EO, Brown R, et al. Evaluation of CTRL: a web application for dynamic consent and engagement with individuals involved in a cardiovascular genetic disorders cohort. Eur J Hum Genet. 2023; 32:61–68. 10.1038/s41431-023-01454-1. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib149] 149. Spencer K, Sanders C, Whitley EA, et al. Patient perspectives on sharing anonymized personal health data using a digital system for dynamic consent and research feedback: a qualitative study. J Med Internet Res. 2016;18:e5011. 10.2196/jmir.5011. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib150] 150. Budin-Ljøsne I, Teare H, Kaye J, et al. Meta consent: is it new and is it fit for purpose?. BMJ. 2016;350. 10.1136/bmj.h2146. [DOI] [Google Scholar]

[bib151] 151. Chen C, Lee PI, Pain KJ, et al. Replacing paper informed consent with electronic informed consent for research in academic medical centers: a scoping review. AMIA Summits Transl Sci Proc. 2020;2020:80. [PMC free article] [PubMed] [Google Scholar]

[bib152] 152. Mishra R, Narayanan MDK, Umana GE, et al. Virtual reality in neurosurgery: beyond neurosurgical planning. Int J Environ Res Public Health. 2022;19:1719. 10.3390/ijerph19031719. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib153] 153. Xiao Z, Li TW, Karahalios K, et al. Inform the uninformed: improving online informed consent reading with an AI-powered chatbot. In: Proceedings of the 2023 CHI Conference on Human Factors in Computing Systems. New York, USA: Association for Computing Machinery; 2023:1–17. [Google Scholar]

[bib154] 154. Metke-Jimenez A, Steel J, Hansen D, et al. Ontoserver: a syndicated terminology server. J Biomed Semantics. 2018;9:1–10. 10.1186/s13326-018-0191-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib155] 155. Haas MA, Teare H, Prictor M, et al. ‘CTRL’: an online, dynamic consent and participant engagement platform working towards solving the complexities of consent in genomic research. Eur J Hum Genet. 2021;29:687–98. 10.1038/s41431-020-00782-w. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib156] 156. Harvey LA. REDCap: web-based software for all types of data storage and collection. Spinal Cord. 2018;56:625. 10.1038/s41393-018-0169-9. [DOI] [PubMed] [Google Scholar]

[bib157] 157. Zichichi M, Ferretti S, D'angelo G, et al. Data governance through a multi-dlt architecture in view of the gdpr. Cluster Comput. 2022;25:4515–42. 10.1007/s10586-022-03691-3. [DOI] [Google Scholar]

[bib158] 158. Prictor M, Teare HJA, Kaye J.. Equitable participation in biobanks: the risks and benefits of a “dynamic consent” approach. Front Public Health. 2018;6:253. 10.3389/fpubh.2018.00253. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib159] 159. Preukschat A, Reed D.. Self-Sovereign Identity. Shelter Island, New York: Manning Publications; 2021.; [Google Scholar]

[bib160] 160. Naik N, Jenkins P. Governing principles of self-sovereign identity applied to blockchain enabled privacy preserving identity management systems. In: 2020 IEEE International Symposium on Systems Engineering (ISSE). Vienna, Austria: IEEE; 2020:1–6. [Google Scholar]

[bib161] 161. Roman-Martinez I, Calvillo-Arbizu J, Mayor-Gallego VJ, et al. Blockchain-based service-oriented architecture for consent management, access control, and auditing. IEEE Access. 2023;11:12727–41. 10.1109/ACCESS.2023.3242605. [DOI] [Google Scholar]

[bib162] 162. Thiebes S, Schlesner M, Brors B, et al. Distributed ledger technology in genomics: a call for Europe. Eur J Hum Genet. 2020;28:139–40. 10.1038/s41431-019-0512-4. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib163] 163. Mamo N, Martin GM, Desira M, et al. Dwarna: a blockchain solution for dynamic consent in biobanking. Eur J Hum Genet. 2020;28:609–26. 10.1038/s41431-019-0560-9. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib164] 164. Albalwy F, Brass A, Davies A.. A blockchain-based dynamic consent architecture to support clinical genomic data sharing (ConsentChain): proof-of-concept study. JMIR Med Inform. 2021;9:e27816. 10.2196/27816. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib165] 165. Androulaki E, Barger A, Bortnikov V, et al. Hyperledger fabric: a distributed operating system for permissioned blockchains. In: Proceedings of the Thirteenth EuroSys Conference. New York, USA: Association for Computing Machinery; 2018:1–15. [Google Scholar]

[bib166] 166. Sunyaev A, Sunyaev A. Distributed ledger technology. In: Internet computing: principles of distributed systems and emerging internet-based technologies. Springer, Cham. 2020; 265–99. 10.1007/978-3-030-34957-8_9. [DOI] [Google Scholar]

[bib167] 167. Alghazwi M, Turkmen F, Van Der Velde J, et al. Blockchain for genomics: a systematic literature review. Distributed Ledger Technol Res Pract. 2022;1:1–28. 10.1145/3563044. [DOI] [Google Scholar]

[bib168] 168. Belchior R, Vasconcelos A, Guerreiro S, et al. A survey on blockchain interoperability: past, present, and future trends. ACM Comput Surv. 2021;54:1–41. 10.1145/3471140. [DOI] [Google Scholar]

[bib169] 169. Beyene M, Toussaint PA, Thiebes S, et al. A scoping review of distributed ledger technology in genomics: thematic analysis and directions for future research. J Am Med Inform Assoc. 2022;29:1433–44. 10.1093/jamia/ocac077. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib170] 170. Vorisek CN, Lehne M, Klopfenstein SAI, et al. Fast Healthcare Interoperability Resources (FHIR) for clinical, epidemiological and public health research: a systematic review. In: Epidemiological and Public Health Research: A Systematic Review. 2022;10(7):e35724. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib171] 171. Bönisch C, Kesztyüs D, Kesztyüs T.. Harvesting metadata in clinical care: a crosswalk between FHIR, OMOP, CDISC and openEHR metadata. Sci Data. 2022;9:659. 10.1038/s41597-022-01792-7. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib172] 172. Verbrugge S, Vannieuwenborg F, Van der Wee M, et al. Towards a personal data vault society: an interplay between technological and business perspectives. In: 2021 60th FITCE Communication Days Congress for ICT Professionals: Industrial Data–Cloud, Low Latency and Privacy (FITCE). Vienna, Austria: IEEE; 2021:1–6. [Google Scholar]

[bib173] 173. Sambra AV, Mansour E, Hawke S, et al. Solid: A Platform for Decentralized Social Applications Based on Linked Data. Technical report. MIT CSAIL & Qatar Computing Research Institute; 2016. [Google Scholar]

[bib174] 174. Werbrouck J, Pauwels P, Beetz Jet al. , Towards a decentralised common data environment using linked building data and the solid ecosystem. In: Kumar B, Rahimian F, Greenwood D, et al. 36th CIB W78 2019 Conference, p.113–23.. Newcastle, United Kingdom, 2019. [Google Scholar]

[bib175] 175. Inrupt Solid pods. 2023. https://www.inrupt.com/solid.

[bib176] 176. Bíró K, Dombrádi V, Fekete Z, et al. Investigating the knowledge of and public attitudes towards genetic testing within the Visegrad countries: a cross-sectional study. BMC Public Health. 2020;20:1–10. 10.1186/s12889-020-09473-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib177] 177. Zhong A, Darren B, Loiseau B, et al. Ethical, social, and cultural issues related to clinical genetic testing and counseling in low-and middle-income countries: a systematic review. Genet Med. 2021;23:2270–80. 10.1038/s41436-018-0090-9. [DOI] [PubMed] [Google Scholar]

[bib178] 178. Jonassaint CR, Santos ER, Glover CM, et al. Regional differences in awareness and attitudes regarding genetic testing for disease risk and ancestry. Hum Genet. 2010;128:249–60. 10.1007/s00439-010-0845-0. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib179] 179. Garrison N'A, Hudson M, Ballantyne LL, et al. Genomic research through an indigenous lens: understanding the expectations. Annu Rev Genomics Hum Genet. 2019;20:495–517. 10.1146/annurev-genom-083118-015434. [DOI] [PubMed] [Google Scholar]

[bib180] 180. Giroux CM, Moreau KA.. Leveraging social media for medical education: learning from patients in online spaces. Med Teach. 2020;42:970–72. 10.1080/0142159X.2020.1779920. [DOI] [PubMed] [Google Scholar]

[bib181] 181. Talwar D, Tseng T-S, Foster M, et al. Genetics/genomics education for nongenetic health professionals: a systematic literature review. Genet Med. 2017;19:725–32. 10.1038/gim.2016.156. [DOI] [PubMed] [Google Scholar]

[bib182] 182. Bennett RL, Waggoner D, Blitzer MG. Medical genetics and genomics education: how do we define success? Where do we focus our resources?. Genet Med. 2017;19:751–53. 10.1038/gim.2017.77. [DOI] [PubMed] [Google Scholar]

[bib183] 183. Stellefson M, Paige SR, Chaney BH, et al. Evolving role of social media in health promotion: updated responsibilities for health education specialists. Int J Environ Res Public Health. 2020;17:1153. 10.3390/ijerph17041153. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib184] 184. Kawasaki H, Kawasaki M, Iki T, et al. Genetics education program to help public health nurses improve their knowledge and enhance communities’ genetic literacy: a pilot study. BMC Nurs. 2021;20:1–13. 10.1186/s12912-021-00549-8. [DOI] [PMC free article] [PubMed] [Google Scholar]

[bib185] 185. Aarestrup FM, Albeyatti A, Armitage WJ, et al. Towards a European health research and innovation cloud (HRIC). Genome Med. 2020;12:1–14. 10.1186/s13073-020-0713-z. [DOI] [PMC free article] [PubMed] [Google Scholar]

PERMALINK

Future-proofing genomic data and consent management: a comprehensive review of technology innovations

Adrien Oliva

Anubhav Kaphle

Roc Reguant

Letitia M F Sng

Natalie A Twine

Yuwan Malakar

Anuradha Wickramarachchi

Marcel Keller

Thilina Ranbaduge

Eva K F Chan

James Breen

Sam Buckberry

Boris Guennewig

Matilda Haas

Alex Brown

Mark J Cowley

Natalie Thorne

Yatish Jain

Denis C Bauer

Abstract

Introduction

Genomic Data Storage Solutions

Table 1:

On-premises storage

Cloud storage

Hybrid storage

Decentralized storage

Genomic Data Privacy and Security

Availability

Integrity and privacy-preserving techniques

Table 2:

k-anonymity

Differential privacy (DP)

Federated learning (FL)

Privacy-preserving synthetic genomic data

Confidentiality and cryptography methods

Table 3:

Encryption

Multiparty computation (MPC)

Secret sharing

Garbled circuit method

Homomorphic encryption

Zero-knowledge proof

Postquantum cryptography

Informed Consent Management

Consent models

Broad consent

Tiered consent

Dynamic consent

Digital systems for consent management

IAM component

Personalized consent materials

Information storage component

Decentralized approaches

Decentralized identity

Immutable ledger technology

Current barriers for DLT

Personal data server

Suggested Framework

Figure 1:

Conclusion

Abbreviations

Supplementary Material

Acknowledgement

Contributor Information

Competing Interests

References

Associated Data

Supplementary Materials

ACTIONS

PERMALINK

RESOURCES

Similar articles

Cited by other articles

Links to NCBI Databases