Supporting privacy by design using privacy process patterns

IFIP Advances in Information and Communication Technology

Volumn 502, Issue , 2017, Pages 491-505

  Diamantopoulou, Vasiliki ^a   Kalloniatis, Christos ^a,b   Gritzalis, Stefanos ^b   Mouratidis, Haralambos ^a  

^a UNIVERSITY OF BRIGHTON   (United Kingdom)

^b UNIVERSITY OF THE AEGEAN   (Greece)

Author keywords

Information security modeling; Privacy process patterns; Requirements engineering

Indexed keywords

INFORMATION TECHNOLOGY; REQUIREMENTS ENGINEERING;

INFORMATION AND COMMUNICATION TECHNOLOGIES; INFORMATION SECURITY MODELS; JAVASCRIPT OBJECT NOTATIONS (JSON); PRIVACY CONCERNS; PRIVACY DESIGN; PRIVACY ENHANCING TECHNOLOGIES; PRIVACY REQUIREMENTS; PROCESS PATTERNS;

DATA PRIVACY;

EID: 85019701340     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-319-58469-0_33     Document Type: Conference Paper

References (33)

1. Duncan, G.T., Pearson, R.W.: Enhancing access to microdata while protecting confidentiality: Prospects for the future. Stat. Sci. 6(3), 219-232 (1991). Institute of Mathematical Statistic
2. Hes, R., Borking, J.: Privacy Enhancing Technologies: the path to anonymity. ISBN. vol. 90(74087), p. 12 (1998)
3. Kalloniatis, C., Kavakli, E., Gritzalis, S.: Addressing privacy requirements in system design: the PriS method. Requirements Eng. 13(3), 241-255 (2008). Springer
4. Romanosky, S., Acquisti, A., Hong, J., Cranor, L.F., Friedman, B.: Privacy patterns for online interactions. In: Proceedings of the 2006 Conference on Pattern Languages of Programs, p. 12. ACM (2006)
5. Chung, E.S., Hong, J.I., Lin, J., Prabaker, M.K., Landay, J.A., Liu, A.L.: Development and evaluation of emerging design patterns for ubiquitous computing. In: Proceedings of the 5th Conference on Designing Interactive Systems: Processes, Practices, Methods, and Techniques, pp. 233-242. ACM (2004)
6. Hafiz, M.: A pattern language for developing privacy enhancing technologies. Softw. Pract. Experience 43(7), 769-787 (2013). Wiley Online Library
7. Schümmer, T.: The public privacy-patterns for filtering personal information in collaborative systems. In: Proceedings of the Conference on Human Factors in Computing Systems (CHI) (2004)
8. Schumacher, M.: Security Patterns and Security Standards. In: EuroPLoP, pp. 289-300 (2002)
9. Alexander, C.: A Pattern Language: Towns, Buildings, Construction. Oxford University Press, New York (1977)
10. Mouratidis, H., Weiss, M., Giorgini, P.: Security patterns meet agent oriented software engineering: a complementary solution for developing secure information systems. In: Delcambre, L., Kop, C., Mayr, H.C., Mylopoulos, J., Pastor, O. (eds.) ER 2005. LNCS, vol. 3716, pp. 225-240. Springer, Heidelberg (2005). doi:10.1007/ 11568322_15
11. Fischer-Hübner, S.: IT-Security and Privacy: Design and Use of Privacy-Enhancing Security Mechanisms. Springer, Heidelberg (2001)
12. Cannon, J.C.: Privacy: What Developers and IT Professionals Should Know. Addison-Wesley Professional, Reading (2004)
13. Pfitzmann, A., Hansen, M.: A terminology for talking about privacy by data minimization: Anonymity, unlinkability, undetectability, unobservability, pseudonymity, and identity management (2010)
14. ISO/IEC 29100:2011(E): Information technology-Security techniques-Privacy framework (2011)
15. Gabber, E., Gibbons, P.B., Matias, Y., Mayer, A.: How to make personalized web browsing simple, secure, and anonymous. In: Hirschfeld, R. (ed.) FC 1997. LNCS, vol. 1318, pp. 17-31. Springer, Heidelberg (1997). doi:10.1007/3-540-63594-7_64
16. Reiter, M.K., Rubin, A.D.: Crowds: anonymity for web transactions. ACM Trans. Inform. Syst. Secur. (TISSEC) 1(1), 66-92 (1998). ACM
17. Goldschlag, D., Reed, M., Syverson, P.: Onion routing. Commun. ACM 42(2), 39-41 (1999). ACM, Chicago
18. Chaum, D.: The dining cryptographers problem: Unconditional sender and recipient untraceability. J. Cryptology 1(1), 65-75 (1988). Springer
19. Chaum, D.L.: Untraceable electronic mail, return addresses, and digital pseudonyms. Commun. ACM 24(2), 84-90 (1981). ACM
20. Shields, C., Levine, B.N.: A protocol for anonymous communication over the Internet. In: Proceedings of the 7th ACMConference on Computer and Communications Security, pp. 33-42. ACM (2000)
21. Bennett, K., Grothoff, C.: GAP-practical anonymous networking. In: Dingledine, R. (ed.) PET 2003. LNCS, vol. 2760, pp. 141-160. Springer, Heidelberg (2003). doi:10.1007/978-3-540-40956-4_10
22. Dingledine, R., Mathewson, N., Syverson, P.: Tor: The second-generation onion router. DTIC Document (2004)
23. Akers, T., Ware, B., Zheng, W., Kostet, M., Clark, B.: Service Aggregation Gateway. U.S. Patent Application No. 11/551,066 (2006)
24. Jain, A., Flynn, P., Ross, A.A. (eds.): Handbook of Biometrics. Springer Science & Business Media, New York (2007)
25. Weis, S.A., Sarma, S.E., Rivest, R.L., Engels, D.W.: Security and privacy aspects of low-cost radio frequency identification systems. In: Hutter, D., Müller, G., Stephan, W., Ullmann, M. (eds.) Security in Pervasive Computing. LNCS, vol. 2802, pp. 201-212. Springer, Heidelberg (2004). doi:10.1007/978-3-540-39881-3_18
26. Mulvenna, M.D., Anand, S.S., Büchner, A.G.: Personalization on the Net using Web mining: introduction. Commun. ACM 43(8), 122-125 (2000). ACM
27. Himmel, M.A., Rodriguez, H.: Method and apparatus for selective caching and cleaning of history pages for web browsers. U.S. Patent No. 6,453,342 (2002)
28. Bacard, A.: Computer Privacy Handbook: A Practical Guide to E-Mail Encryption, Data Protection, and PGP Privacy Software. Peachpit Press, Berkeley (1995)
29. Wells, J.R., Felt, E.P.: System and method for message encryption and signing in a transaction processing system. US Patent No. 7,363,495 (2008)
30. European Parliament: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (2016), April 2016
31. Crockford, D.: The application/json Media Type for JavaScript Object Notation (JSON) (2006). https://www.ietf.org/rfc/rfc4627.txt
32. Mavropoulos, O., Mouratidis, H., Fish, A., Panaousis, E., Kalloniatis, C.: Apparatus: reasoning about security requirements in the internet of things. In: Krogstie, J., Mouratidis, H., Su, J. (eds.) CAiSE 2016. LNBIP, vol. 249, pp. 219-230. Springer, Cham (2016). doi:10.1007/978-3-319-39564-7_21
33. ICTE-PAN: Methodologies and Tools for Building Intelligent Collaboration and Transaction Environments in Public Administration Networks. In: Project Deliverable D 3.1b. University of the Aegean (2005)