Challenges in Developing Secure Mobile Health Applications, A Systematic Review

Mobile health (mHealth) applications (apps) have gained significant popularity over the last few years due to its tremendous benefits. However, the sensitivity of healthcare data makes the security of mHealth apps a serious concern. The use of poor security practices and lack of Security Knowledge (SK) on developers side can embed several vulnerabilities in mHealth apps. In this review paper, we aim at identifying and analysing the challenges that the developers of mHealth apps face with respect to security. The knowledge of such challenges can help to reduce the risk of developing insecure mHealth apps. We followed Systematic Literature Review (SLR) method for this review. We selected 26 studies using predefined criteria and used thematic analysis method for analysing the extracted data. We identified seven challenges that can affect the development of secure mHealth apps. We have presented a conceptual framework which highlights the correlation between the identified challenges. Whilst mHealth apps development organizations might overlook the security, we conclude that our findings can be beneficial to assist them to identify the weaknesses and improve their security practices. Similarly, the developers of mHealth apps can identify the challenges they are facing to enable them to develop mHealth apps that do not pose security risk for users. Our review suggests further support for mHealth apps developers by continuously providing the needed SK, seeking to hire a security expert in the domain of mHealth app and providing sufficient time to deliver an app.