Privacy aware systems: From models to patterns

Software Engineering for Secure Systems: Industrial and Research Perspectives

Volumn , Issue , 2010, Pages 232-259

  Coen Porisini, Alberto ^a   Colombo, Pietro ^a,b   Sicari, Sabrina ^a  

^a UNIVERSITY OF INSUBRIA   (Italy)

^b Dept of Electrical and Computer Engineering   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 80755141545     PISSN: None     EISSN: None     Source Type: Book    
DOI: 10.4018/978-1-61520-837-1.ch009     Document Type: Chapter

References (24)

1. Agrawal, R., Bird, P., Grandison, T., Kiernan, J., Logan, S., & Rjaibi, W. (2005). Extending Relational Database Systems to Automatically Enforce Privacy Policies. Int. Conf. on Data Engineering (ICDE 2005), (pp. 1013-1022). IEEE Computer Society.
2. Anton, A. (1996). Goal-Based Requirements Analysis. IEEE Int. Conf. on Requirements Engineering (ICRE 96), (pp. 136-144). Colorado Springs CO.
3. Blakley, B., & Heath, C. (2004). Security Design Patterns. Technical Guide, The Open Group.
4. Chung, E. S., Hong, J. I., Lin, J., Prabaker, M. K., Landay, J. A., & Liu, A. L. (2004). Development and evaluation of emerging design patterns for ubiquitous computing. Int. Conf. on Designing Interactive Systems, New York: ACM Press.
5. Chung, L. (1993). Dealing with Security Requirements during the Development of Information System. Int. Conference on Advanced Information System Engineering (CAiSE '93), Paris (France).
6. Coen-Porisini, A., Colombo, P., Sicari, S., & Trombetta, A. (2007). A Conceptual Model for Privacy Policies. In Proc. of Software Engineering Application (SEA '07). Cambridge, MS.
7. Gamma, E., Helm, R., Johnson, R., & Vlissides, J. M. (1994). Design Patterns: Elements of Reusable Object Oriented Software. Reading, MA: Addison-Wesley.
8. Hafiz, M. (2006). A collection of privacy design patterns. Int. Conf. on Pattern Languages of Programs Conference (PLOP). New York, NY, USA.
9. Kavakli, E., Kalloniatis, C., Loucopoulos, P., & Gritzalis, S. (2008). Addressing Privacy Requirements in System Design: the PriS Method. [New York: Springer]. Journal Requirements Engineering, 13(3), 241-255. doi:10.1007/s00766-008-0067-3
10. Lamsweerde, A. V., & Letier, Handling, E. (2000). Obstacles in Goal-Oriented Requirement Engineering. IEEE Transactions on Software Engineering, 26, 978-1005. doi:10.1109/32.879820
11. Liu, L., Yu, E., & Mylopoulos, J. (2002) Analyzing Security Requirements as Relationships among Strategic Actors. Symposium on Requirements Engineering for Information Security (SREIS '02). Raleigh, North Carolina, USA.
12. Mielikinen, T. (2004). Privacy Problems with Anonymized Transaction Databases. Int. Conf. on Discovery Science (DS 2004), Vol 3245 of Lecture Notes in Computer Science 3245, Springer.
13. Mouratidis, H., & Giorgini, P. (2007). Secure Tropos: A Security-Oriented Extension of the Tropos methodology. [IJSEKE]. International Journal of Software Engineering and Knowledge Engineering, 17(2), 285-309. doi:10.1142/S0218194007003240
14. Mouratidis, H., Giorgini, P., & Manson, G. A. (2003b). An Ontology for Modelling Security: The Tropos Approach. Int Conf. on KnowledgeBased Intelligent Information & Engineering Systems (KES 2003), Vol. 2773 of Lecture Notes in Computer Science, (pp. 1387-1394). Springer.
15. Mouratidis, H., Giorgini, P., & Mason, G. A. (2003a). Integrating Security and Systems Engineering towards the Modelling of Secure Information System. Int. Conf. on Advanced Information System Engineering (CAiSE '03), Vol. 2681 of Lecture Notes in Computer Science, (pp. 63-78). Springer.
16. Mylopolulos, J., Chung, L., & Nixon, B. (1992). Representing and Using non Functional Requirements: a Process Oriented Approach. IEEE Transactions on Software Engineering, 18, 483-497. doi:10.1109/32.142871
17. Narayanan, A., & Shmatikov, V. (2005). Obfuscated Databases and Group Privacy. ACM Int. Conference on Computer and Communications Security (CCS '05), (pp. 102-111). New York, NY, USA. ACM Press.
18. Ni, Q., Trombetta, A., Bertino, E., & Lobo, J. (2007). Privacy-aware Role-Based Access Control. ACM Symp. on Access Control Methods And Technologies (SACMAT '07). Sophia Antipolis, France.
19. Romanosky, S., Acquisti, A., Hong, J., Cranor, L., & Friedman, B. (2006). Privacy Patterns for Online Interactions. Int. Conf. on Pattern Languages of Programs Conference (PLOP). New York, NY, USA.
20. Schumacher, M. (2002) Security Patterns AND Security Standards. European Conf on Pattern Languages of Programs (EuroPLoP), Kloster Irsee, Germany
21. Schumacher, M., Fernandez-Buglioni, E., Hybertson, D., Buschmann, F., & Sommerlad, P. (2006). Security Patterns: Integrating Security and Systems Engineering. John Wiley & Sons.
22. Schummer, T. (2004). The Public Privacy-Patterns for Filtering Personal Information in Collaborative Systems, (Tech. Rep). Hagen, Germany: FernUnivesität in Hagen.
23. Steel, C., Nagappan, R., & Lai, R. (2005). Core Security Patterns: Best Practices and Strategies for J2EE, Web Services, and Identity Management. Prentice Hall.
24. Yoder, J., & Barcalow, J. (1997). Architectural Patterns for Enabling Application Security. Int. Conf. on Pattern Languages of Programs Conference (PLOP). Monticello, Illinois, USA.