Top 10 Mistakes in System Design from a Privacy Perspective and Privacy Protection Goals

Hansen, Marit

doi:10.1007/978-3-642-31668-5_2

Cited by 24 publications

(19 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, expectations about the treatment of data must be revised to accept transparency in place of privacy, although this too cannot necessarily be assured, some of the practicalities of which are discussed in [17] . Hansen [10] sets out higher level requirements: "unlinkability when possible and desired, transparency on possible and actual linkages, and the feasibility for data subjects to exercise control or at least intervene in the processing of data." We notice "where possible": there cannot be absolute guarantees, only best efforts, hence our notion of satisficing security.…”

Section: Related Workmentioning

confidence: 99%

Policy-Carrying Data: A Step Towards Transparent Data Sharing

Padget

Vasconcelos

2015

Procedia Computer Science

View full text Add to dashboard Cite

The emerging research and application domains of the Internet-of-Things and Big Data, together with socio-technical phenomena such as social networking, as well as mobile phones (equipped with sensors, GPS, etc.) make us -companies, research centres, people in general -all (sometimes unwittingly, possibly unwillingly) producers and consumers of data. A sensitive issue for data providers concerns control over access, sharing, dissemination and use of data. By control, we mean placing limitations on who can access the data, when data can be accessed, how data can be accessed, and so on. We propose means to capture the expression of controls over data and to associate that indivisibly with the data via what we call "policy-carrying data" (PCD). The PCD establishes permissions for what the consumer may do to the data, but also -in a novel addition for such policies -establish what the consumer can/must do subsequently with the data. We formalise PCD and illustrate how it can meet potential stakeholder requirements.

show abstract

Section: Related Workmentioning

confidence: 99%

Policy-Carrying Data: A Step Towards Transparent Data Sharing

Padget

Vasconcelos

2015

Procedia Computer Science

View full text Add to dashboard Cite

show abstract

“…These goals focus on the infrastructure and the organization as a whole. From a privacy engineering perspective new approaches [7,8] argue to integrate unlinkability, transparency, intervenability in a similar way as privacy protection goals into software engineering. Several researchers ( [9][10][11]) have identified that secure software not only requires secure algorithms but that their usage has to be fostered in software engineering processes.…”

Section: Security Engineeringmentioning

confidence: 99%

Security and Privacy as Hygiene Factors of Developer Behavior in Small and Agile Teams

Loser¹,

Degeling²

2014

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

“…In this paper, we consider the generation of privacy requirements related to the protection goals for privacy engineering proposed by Hansen [5]. These protection goals include the classical security goals confidentiality, integrity, and availability and the privacy goals unlinkability, transparency, and intervenability.…”

Section: Problem-based Privacy Analysismentioning

confidence: 99%

“…End-users wish for more empowerment, i.e., they want to keep control of their personal data and how their data is processed by information systems. Hansen [5] summarizes this and other privacy needs into the privacy goal of intervenability. Hansen states "Intervenability aims at the possibility for parties involved in any privacy-relevant data processing to interfere with the ongoing or planned data processing.…”

Section: Introductionmentioning

confidence: 99%

“…The objective of intervenability is the application of corrective measures and counterbalances where necessary." [5] Intervenability is a complex software quality that is strongly coupled with other privacy-related goals. For example, end-users have to be sufficiently aware of how and what personal data is processed and which options exist to intervene in order to be able to exercise these options.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Computer-Aided Identiﬁcation and Validation of Intervenability Requirements

Meis

Heisel

2017

Information

View full text Add to dashboard Cite

Privacy as a software quality is becoming more important these days and should not be underestimated during the development of software that processes personal data. The privacy goal of intervenability, in contrast to unlinkability (including anonymity and pseudonymity), has so far received little attention in research. Intervenability aims for the empowerment of end-users by keeping their personal data and how it is processed by the software system under their control. Several surveys have pointed out that the lack of intervenability options is a central privacy concern of end-users. In this paper, we systematically assess the privacy goal of intervenability and set up a software requirements taxonomy that relates the identified intervenability requirements with a taxonomy of transparency requirements. Furthermore, we provide a tool-supported method to identify intervenability requirements from the functional requirements of a software system. This tool-supported method provides the means to elicit and validate intervenability requirements in a computer-aided way. Our combined taxonomy of intervenability and transparency requirements gives a detailed view on the privacy goal of intervenability and its relation to transparency. We validated the completeness of our taxonomy by comparing it to the relevant literature that we derived based on a systematic literature review. The proposed method for the identification of intervenability requirements shall support requirements engineers to elicit and document intervenability requirements in compliance with the EU General Data Protection Regulation.

show abstract

Top 10 Mistakes in System Design from a Privacy Perspective and Privacy Protection Goals

Cited by 24 publications

References 12 publications

Policy-Carrying Data: A Step Towards Transparent Data Sharing

Policy-Carrying Data: A Step Towards Transparent Data Sharing

Security and Privacy as Hygiene Factors of Developer Behavior in Small and Agile Teams

Computer-Aided Identiﬁcation and Validation of Intervenability Requirements

Contact Info

Product

Resources

About