A Pattern-Based General Security Framework: An eBusiness Case Study

Benameur, Azzedine; Fenet, Serge; Saidane, Ayda; Sinha, Subrata

doi:10.1109/hpcc.2009.93

Cited by 5 publications

(1 citation statement)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the security domain several support systems for security have been proposed, the closest approach to our work being SERENITY [20, 21,22]. The latter supports developers from the early design phase by providing security solutions, going beyond a set of design patterns to provide both patterns and executable components.…”

Section: Related Workmentioning

confidence: 99%

A Decision Support System for Design for Privacy

Pearson

Benameur

2011

IFIP Advances in Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

Privacy is receiving increased attention from both consumers, who are concerned about how they are being tracked and profiled, and regulators, who are introducing stronger penalties and encouragements for organizations to comply with legislation and to carry out Privacy Impact Assessments (PIAs). These concerns are strengthened as usage of internet services, cloud computing and social networking spread. Therefore companies have to take privacy requirements into account just as they previously had to do this for security. While security mechanisms are relatively mature, system and product developers are not often provided with concrete suggestions from a privacy angle. This can be a problem because developers do not usually possess privacy expertise. In this paper we argue that it would be useful to move beyond current best practice -where a set of searchable privacy guidelines may be provided to developers -to automated support to software developers in early phases of software development. Specifically, our proposal is a decision support system for design for privacy focused on privacy by policy, to be integrated into the development environment. We have implemented a proof of concept and are extending this work to incorporate state-of-the art consent mechanisms derived from the EnCoRe (Ensuring Consent and Revocation) project [1].

show abstract

Section: Related Workmentioning

confidence: 99%