A Structural and Navigational Method for Integrated Organizational Information Privacy Protection

Abdullah, Hanifa

doi:10.1109/icabcd.2018.8465138

Cited by 4 publications

(1 citation statement)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Existing academic literature attempts to identify appropriate models, frameworks, and processes to address privacy incident response. Abdullah proposes a modified conceptual framework incorporating the Forrester GRC playbook (Abdullah, 2018), but data breaches are the only harm identified for a response. Abdullah references NIST special publication 800-61, NIST special publication 800-122, and the Nymity Privacy Management Accountability Framework as sources for further development of an incident response framework.…”

Section: Literature Reviewmentioning

confidence: 99%

Developing Privacy Incident Responses to Combat Information Warfare

McElroy

McKee

2023

iccws

View full text Add to dashboard Cite

Violations of privacy harm real people, and as nation-state actors grow their information warfare capabilities, civilians suffer these harms as part of coordinated and targeted actions on objectives. When privacy harms manifest, they allow threat actors to injure data subjects by weaponizing their information to harm individuals, communities, and societies. These attacks injure civilians as the confidence of legitimate authorities, institutions, and defences is eroded, and consequences may impact national security. Distinct from cybersecurity, privacy depends upon confidentiality, integrity, and availability but encompasses a unique set of concerns. Whereas security incident response has an established practice and research history, approaches to privacy incident response, such as unauthorized disclosure, are not well researched or documented in academic literature in the unique context of privacy. By mapping privacy harm to techniques and tactics, a cohesive framework emerges to distinguish tailored mitigation strategies for each. This paper proposes a conceptual model and classification framework for privacy-related harms, tactics, techniques, and mitigation strategies to address sophisticated privacy threat actors. Using this model and framework, contingency planners can develop privacy incident response strategies to defend against the privacy harms of information warfare.

show abstract

Section: Literature Reviewmentioning

confidence: 99%