Mitigating Sovereign Data Exchange Challenges: A Mapping to Apply Privacy- and Authenticity-Enhancing Technologies

TL;DR

This paper addresses the challenges of sovereign data exchange by mapping privacy- and authenticity-enhancing technologies to specific issues, aiding practitioners in selecting appropriate solutions and highlighting research gaps.

Contribution

It empirically constructs a challenge-oriented technology mapping for sovereign data exchange, integrating literature review and expert insights to guide technology selection.

Findings

Most critical challenge is data usage and access control.

Majority of PETs and AETs focus on data processing issues.

Validated mapping through investigator triangulation.

Abstract

Harmful repercussions from sharing sensitive or personal data can hamper institutions' willingness to engage in data exchange. Thus, institutions consider Authenticity Enhancing Technologies (AETs) and Privacy-Enhancing Technologies (PETs) to engage in Sovereign Data Exchange (SDE), i.e., sharing data with third parties without compromising their own or their users' data sovereignty. However, these technologies are often technically complex, which impedes their adoption. To support practitioners select PETs and AETs for SDE use cases and highlight SDE challenges researchers and practitioners should address, this study empirically constructs a challenge-oriented technology mapping. First, we compile challenges of SDE by conducting a systematic literature review and expert interviews. Second, we map PETs and AETs to the SDE challenges and identify which technologies can mitigate which challenges. We validate the mapping through investigator triangulation. Although the most critical challenge concerns data usage and access control, we find that the majority of PETs and AETs focus on data processing issues.