2023
DOI: 10.1109/msec.2022.3204364
|View full text |Cite
|
Sign up to set email alerts
|

Embedding Privacy Into Design Through Software Developers: Challenges and Solutions

Abstract: To make privacy a first-class citizen in software, we argue for equipping developers with usable tools, as well as providing support from organizations, educators, and regulators. We discuss the challenges with the successful integration of privacy features and propose solutions for stakeholders to help developers perform privacy-related tasks.

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1

Citation Types

0
3
0

Year Published

2023
2023
2024
2024

Publication Types

Select...
4
3

Relationship

0
7

Authors

Journals

citations
Cited by 11 publications
(3 citation statements)
references
References 11 publications
0
3
0
Order By: Relevance
“…Introducing software developers to privacy and legal concepts in the context of software development early in their studies might sensitize future software developers to potential privacy threats. With many CS curricula showing little focus on privacy, educating CS students on privacyrelevant topics might be a good starting point to sensitize future developers to privacy issues [88]. Future research should explore the role of privacy education.…”
Section: Recommendations For Academiamentioning
confidence: 99%
“…Introducing software developers to privacy and legal concepts in the context of software development early in their studies might sensitize future software developers to potential privacy threats. With many CS curricula showing little focus on privacy, educating CS students on privacyrelevant topics might be a good starting point to sensitize future developers to privacy issues [88]. Future research should explore the role of privacy education.…”
Section: Recommendations For Academiamentioning
confidence: 99%
“…A strand of empirical software engineering research has studied the support developers need to build privacy-friendly apps and perform privacy-related tasks [82,87], such as finding privacy issues in code [46], deciding on personalizing ads [79], and building apps that are compliant with privacy laws [3,81]. In the case of making child-directed apps compliant with privacy laws like the California Consumer Privacy Act (CCPA) [29], developers often try to satisfy app store requirements instead of laws, and they often rely on app stores and operating systems to detect privacy-related issues [3,87].…”
Section: Empirical Privacy Studies With Developersmentioning
confidence: 99%
“…The conclusion of the privacy compliance analysis of mobile apps investigated in the literature is the prevalence of questionable privacy policies, inconsistencies, lack of transparency and non-compliance with regulatory requirements. A challenge that developers face is that developers must comply with privacy laws and there is no real methodology that exists to assist in the development of a privacy policy thus developers are trying to comply with regulations without the necessary knowledge of what language and explicit terms of language are needed to implement dangerous android permission-policy declarations (DAPD) [23]. This has resulted in many mobile application developers seeking guidance on Stack Overflow for the creation of compliant privacy policies [24][25][26].…”
mentioning
confidence: 99%