Privacy protection goals and their implications for eID systems

IFIP Advances in Information and Communication Technology

Volumn 375 AICT, Issue , 2012, Pages 245-260

  Zwingelberg, Harald ^a   Hansen, Marit ^a  

^a Unabhängiges Landeszentrum für Datenschutz Schleswig Holstein ^*  (Germany)

Author keywords

eID Systems; Electronic Identity; Identities Management; Privacy Protection Goals

Indexed keywords

ELECTRONIC IDENTITY; PRIVACY PROTECTION; UNLINKABILITY;

INFORMATION TECHNOLOGY;

SECURITY OF DATA;

EID: 84865479777     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-642-31668-5_19     Document Type: Conference Paper

References (25)

1. Dobias, J., Hansen, M., Köpsell, S., Raguse, M., Roosendaal, A., Pfitzmann, A., Steinbrecher, S., Storf, K., Zwingelberg, H.: Identity and Privacy Issues Throughout Life. In: Camenisch, J., Fischer-Hübner, S., Rannenberg, K. (eds.) Privacy and Identity Management for Life, ch. 4, pp. 87-110. Springer, Berlin (2011)
2. Grönlund, Å.: Electronic identity management in Sweden: governance of a market approach. Identity in the Information Society 3(1), 195-211 (2010), doi:10.1007/s12394-010-0043-1
3. Rost, M., Pfitzmann, A.: Datenschutz-Schutzziele - revisited. DuD 33(12), 353-358 (2009)
4. Rost, M., Bock, K.: Privacy By Design und die Neuen Schutzziele - Grundsätze, Ziele und Anforderungen. DuD 35(1), 30-35 (2011)
5. Schleswig-Holsteinisches Gesetz zum Schutz personenbezogener Informationen (Landesdatenschutzgesetz - LDSG -). Version after the last change that has been published in: Gesetz- und Verordnungsblatt für Schleswig-Holstein, GVOBl. SH (2), 78-82 (2012), https://www.datenschutzzentrum. de/gesetze/ldsg.html
6. Hedbom, H., Schallaböck, J., Wenning, R., Hansen, M.: Contributions to Standardisation. In: Camenisch, J., Fischer-Hübner, S., Rannenberg, K. (eds.) Privacy and Identity Management for Life, pp. 479-492. Springer, Berlin (2011)
7. Federrath, H., Pfitzmann, A.: Gliederung und Systematisierung von Schutzzielen in ITSystemen. DuD 24(12), 704-710 (2000)
8. Parker, D.B.: Toward a New Framework for Information Security. In: Bosworth, S., Kabay, M.E. (eds.) The Computer Security Handbook, 4th edn. John Wiley & Sons, New York (2002), http://www.computersecurityhandbook.com/csh4/ chapter5.html
9. Wolf, G., Pfitzmann, A.: Properties of protection goals and their integration into a user interface. Computer Networks 32(6), 685-700 (2000)
10. Common Criteria for Information Technology Security Evaluation, Part 2: Security functional components, version 2.1, CCIMB-99-032 (1999), http://www.commoncriteriaportal.org/files/ccfiles/ccpart2v21.pdf
11. Common Criteria for Information Technology Security Evaluation, Part 2: Security functional components, version 3.1, Revision 3, CCMB-2009-07-002 (2009), http://www.commoncriteriaportal.org/files/ccfiles/CCPART2V3.1R3.pdf
12. Pfitzmann, A., Hansen, M.: A terminology for talking about privacy by data minimization: Anonymity, Unlinkability, Undetectability, Unobservability, Pseudonymity, and Identity Management (2010), http://dud.inf.tu-dresden.de/Anon- Terminology.shtml
13. Rost, M.: Datenschutz in 3D - Daten, Prozesse und Schutzziele in einem Modell. DuD 35(5), 351-355 (2011)
14. Kubicek, H., Noack, T.: Different countries-different paths extended comparison of the introduction of eIDs in eight European countries. Identity in the Information Society 3(1), 235-245 (2010), doi:10.1007/s12394-010-0063-x
15. Martens, T.: Electronic identity management in Estonia between market and state governance. Identity in the Information Society 3(1), 213-233 (2010), doi:10.1007/s12394-010-0044-0
16. Heichlinger, A., Gallego, P.: A new e-ID card and online authentication in Spain. Identity in the Information Society 3(1), 43-64 (2010), doi:10.1007/s12394-010-0041-3
17. European Commission: Proposal for a Regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation). COM (2012) 11 final. Brussels, January 25 (2012), http://ec.europa.eu/justice/data-protection/document/review2012/com-2012-11-en. pdf
18. Cavoukian, A., et al.: Privacy by Design Resolution. In: 32nd International Conference of Data Protection and Privacy Commissioners, Jerusalem, Israel, October 27-29 (2010), http://www.ipc.on.ca/site-documents/ pbd-resolution.pdf
19. Skinner, G., Chang, E.: PP-SDLC - The privacy protecting systems development life cycle. In: Milutinovic, V. (ed.) Proceedings of the IPSI Conference (2005), http://www.scientificcommons.org/8096648
20. Storf, K., Hansen M., Raguse M. (eds.): Requirements and concepts for identity management throughout life. PrimeLife Deliverable H1.3.5, Zürich (2009), http://www.primelife.eu/images/stories/deliverables/h1.3.5-requirements- and-concepts-for-idm-throughout-life-public.pdf
21. Krontiris, I. (ed.): Architecture for Attribute-based Credential Technologies - Version 1. ABC4Trust Deliverable D2.1, Frankfurt/Main (2011), https://abc4trust.eu/index.php/pub/107-d21architecturev1
22. Zwingelberg, H.: Necessary Processing of Personal Data: The Need-to-Know Principle and Processing Data from the New German Identity Card. In: Fischer-Hübner, S., Duquenoy, P., Hansen, M., Leenes, R., Zhang, G. (eds.) Privacy and Identity 2010. IFIP AICT, vol. 352, pp. 151-163. Springer, Heidelberg (2011), doi:10.1007/978-3-642-20769-3-13
23. Fischer-Hübner, S., Zwingelberg, H. (eds.): UI Prototypes: Policy Administration and Presentation - Version 2. PrimeLife Deliverable D4.3.2, Zürich (2010), http://www.primelife.eu/results/documents/115-432d
24. Wästlund, E., Fischer-Hübner, S. (eds.): End User Transparency Tools: UI Prototypes. PrimeLife Deliverable D4.2.2, Zürich (2010), http://www.primelife.eu/results/documents/113-422d
25. Hasso-Plattner-Institut für Softwaresystemtechnik: Vom Client zur App - Ideenkatalog zur Gestaltung der Software zum Einsatz des neuen Personalausweises, Berlin (2011), http://www.personalausweisportal.de/ SharedDocs/Downloads/DE/Begleitstudien/Studie-Usability-Volltext.html