About us
Learn how GA4GH helps expand responsible genomic data use to benefit human health.
Data Security Work Stream
The Data Security Work Stream develops products and guidelines to safeguard privacy, data integrity, and service availability. The Work Stream also assesses GA4GH outputs for risk or security implications.
To make precision medicine a reality and tailor a person’s healthcare based on their genetics, we need to access large quantities of clinical and genomic data across borders. But such a far-reaching effort creates many security challenges. Cyberattackers already regularly target healthcare data. The Data Security Work Stream develops standards to ensure individual privacy, data confidentiality and integrity, and service availability, especially within and between GA4GH tools.
Please report potential security flaws in GA4GH standards to security-notification [at] www.ga4gh.org.
Data Security is a foundational Work Stream, which means it formally reviews all GA4GH products during the approval process.
Jump to...
Image summary: The Data Security Work Stream helps the community to keep data protected and ensure that GA4GH products are developed within a sound risk-management framework.
Contribute to this Work Stream
Subscribe to receive meeting invitations and real-time announcements.
Join the Work Stream
Technical description
Data Security develops products that ensure individual privacy, proper identity management, data confidentiality, data integrity, and service availability in clinical and genomic data sharing. Report potential security flaws in GA4GH technical tools to security-notification [at] www.ga4gh.org.
Products
Authorisation and Authentication Infrastructure (AAI)
Enables secure data sharing by communicating the permissions needed to conduct research
Bad Actors in Research Environments (BARE)
Aims to provide guidance for detecting intentional misuse of life science data in controlled environments
Cloud Security and Privacy
Aims to develop recommendations for secure and privacy-protecting use of cloud services
Data Security Infrastructure Policy (DSIP)
Provides security and technology infrastructure recommendations for genomic and related health data sharing
Passports
Contains a researcher’s securely-encoded “Visas,” which allow access to genomic datasets
Risk Assessment Methodology for Software Stacks
Aims to provide a risk assessment framework for software stacks
Publications
Community Resources
Dive deeper into our Work Stream!
Data Security develops standards that safeguard individual privacy and support proper identity management, data confidentiality, data integrity, and service availability in clinical and genomic data sharing. The Work Stream’s products enable secure data sharing by communicating the permissions needed to conduct research; provide security and technology infrastructure recommendations; and offer other capabilities and benefits.
Report potential security flaws in GA4GH products to security-notification [at] www.ga4gh.org.
#
Date
Title
Info
19 Jan 2024
In this open call, we are searching to fill two Co-Lead positions for the Data Security Work Stream.
#
Title
Info
Repeat
Day
Time
Duration
A weekly meeting to discuss the GA4GH Passports and AAI standards.
Weekly
Thursday
00:00 UTC
1 Hour
#
Date
Title
15 Dec 2023
7 Nov 2023
19 Sep 2023
14 Sep 2023
14 Sep 2023
13 Jan 2022
23 Jul 2021
15 Dec 2020
26 Mar 2020
26 Sep 2017
#
Don't see your name? Get in touch:
- Dixie Baker
Martin, Blanck and Associates - Max Barkley
DNAstack - Michael Baudis
University of Zurich - Ewan Birney
European Molecular Biology Laboratory (EMBL), EMBL's European Bioinformatics Institute (EBI) - Steven Brenner
University of California, Berkeley - Salvador Capella-Gutierrez
Barcelona Supercomputing Center - Knox Carey
Intertrust Technologies Corporation - Thomas Conner
Broad Institute of MIT and Harvard - Jaime Delgado
Universitat Politecnica de Catalunya (UPC) - Marc Fiume
DNAstack - Paul Flicek
University of Cambridge - Jean-Pierre Hubaux
EPFL - Melissa Konopko
ELIXIR - Martin Kuba
Masaryk University, ELIXIR Cloud and AAI - Jamal Nasir
University of Northampton - Tommi Nyrönen
CSC – IT CENTER FOR SCIENCE - Lucila Ohno-Machado
University of California San Diego - Kurt Rodarmer
Independent Contributor - Jessica Seegobin
Ontario Institute for Cancer Research (OICR) - Christopher Siwy
NIH Office of Data Science Strategy (ODSS) - Heidi Sofia
NIH National Human Genome Research Institute (NHGRI) - Jing Su
Wellcome Sanger Institute (WSI) - Jonathan Tedds
ELIXIR - Douglas Voet
Broad Institute of MIT and Harvard - Craig Voisin
Google LLC