Model-based privacy analysis in industrial ecosystems

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 10376 LNCS, Issue , 2017, Pages 215-231

  Ahmadian, Amir Shayan ^a   Strüber, Daniel ^a   Riediger, Volker ^a   Jürjens, Jan ^a,b  

^a University of Koblenz   (Germany)

^b Fraunhofer Institute for Software and Systems Engineering (ISST)   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

ECOSYSTEMS; SECURITY OF DATA;

DATA PROTECTION BY DESIGNS; INDUSTRIAL CASE STUDY; INDUSTRIAL ECOSYSTEMS; IT SERVICES; IT SYSTEM; MODEL-BASED OPC; PRIVACY ANALYSIS; SECURITY AND PRIVACY;

DATA PRIVACY;

EID: 85025133541     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-319-61482-3_13     Document Type: Conference Paper

References (30)

1. Personal data in the cloud: The importance of trust. Technical report, Fujitso Global Business Group, Tokyo 105-7123, Japan, September 2010
2. CARiSMA (2016). https://rgse.uni-koblenz.de/carisma/
3. The European Parliament and the Council of the European Union, Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. Official J. Eur. Union, vol. 199, pp 1-88 (April 2016)
4. VisiOn Project (2016). http://www.visioneuproject.eu/
5. Ahmadian, S., Jürjens, J.: Supporting model-based privacy analysis by exploiting privacy level agreements. In: 8th IEEE International Conference on Cloud Computing Technology and Science (CloudCom 2016) (2016)
6. Antignac, T., Métayer, D.: Privacy by design: from technologies to architectures. In: Preneel, B., Ikonomou, D. (eds.) APF 2014. LNCS, vol. 8450, pp. 1-17. Springer, Cham (2014). doi:10.1007/978-3-319-06749-0 1
7. Barker, K., Askari, M., Banerjee, M., Ghazinour, K., Mackas, B., Majedi, M., Pun, S.,Williams, A.: A Data Privacy Taxonomy, pp. 42-54. Springer, Heidelberg (2009)
8. Basso, T., Montecchi, L., Moraes, R., Jino, M., Bondavalli, A.: Towards a UML profile for privacy-aware applications. In: 2015 IEEE International Conference on Computer and Information Technology; Ubiquitous Computing and Communications; Dependable, Autonomic and Secure Computing; Pervasive Intelligence and Computing, pp. 371-378, October 2015
9. Breu, R., Burger, K., Hafner, M., Jürjens, J., Popp, G., Wimmel, G., Lotz, V.: Key issues of a formally based process model for security engineering. In: Sixteenth International Conference “Software & Systems Engineering & Their Applications”, Paris (2003)
10. Cavoukian, A., Chibba, M.: Advancing privacy and security in computing, networking and systems innovations through privacy by design. In: Proceedings of the 2009 conference of the Centre for Advanced Studies on Collaborative Research, 2-5 November 2009, Toronto, Ontario, Canada, pp. 358-360 (2009)
11. Cloud Security Alliance: Privacy Level Agreement [V2]: A Compliance Tool for Providing Cloud Services in the European Union (2013)
12. Dupressoir, F., Gordon, A.D., Jürjens, J., Naumann, D.A.: Guiding a generalpurpose C verifier to prove cryptographic protocols. J. Comput. Secur. 22(5), 823-866 (2014). http://dx.doi.org/10.3233/JCS-140508
13. Ghazinour, K., Majedi, M., Barker, K.: A lattice-based privacy aware access control model. In: International Conference on Computational Science and Engineering, CSE 2009, vol. 3, pp. 154-159, August 2009
14. Gürses, S., Gonzalez Troncoso, C., Diaz, C.: Engineering privacy by design. In:Computers, Privacy & Data Protection (2011)
15. Hafiz,M.: A pattern language for developing privacy enhancing technologies. Softw. Pract. Exper. 43(7), 769-787 (2013)
16. Hoepman, J.H.: Privacy Design Strategies, pp. 446-459. Springer, Heidelberg (2014)
17. Jin, X., Sandhu, R.S., Krishnan, R.: RABAC: role-centric attribute-based access control. In: International Conference on Mathematical Methods, Models and Architectures for Computer Network Security (MMM-ACNS), pp. 84-96 (2012)
18. Jürjens, J.: Secure information flow for concurrent processes. In: Palamidessi, C. (ed.) CONCUR 2000. LNCS, vol. 1877, pp. 395-409. Springer, Heidelberg (2000). doi:10.1007/3-540-44618-4 29
19. Jürjens, J.: Modelling audit security for smart-card payment schemes with UMLsec. In: Dupuy, M., Paradinas, P. (eds.) Trusted Information: The New Decade Challenge, pp. 93-108 (2001). Proceedings of the 16th International Conference on Information Security (SEC 2001). http://www.jurjens.de/jan
20. Jürjens, J.: Model-based security engineering with UML. In: Aldini, A., Gorrieri, R., Martinelli, F. (eds.) FOSAD 2004-2005. LNCS, vol. 3655, pp. 42-77. Springer, Heidelberg (2005). doi:10.1007/11554578 2
21. Jürjens, J.: Secure Systems Development with UML. Springer, Heidelberg (2005)
22. Kalloniatis, C., Kavakli, E., Gritzalis, S.: Addressing privacy requirements in system design: the PriS method. Requirements Eng. 13(3), 241-255 (2008)
23. Kerschbaum, F.: Privacy-Preserving Computation, pp. 41-54. Springer, Heidelberg (2014)
24. Object Management Group (OMG): UML 2.5 Superstructure Specification (2011)
25. Pearson, S.: Taking account of privacy when designing cloud computing services. In: Proceedings of the 2009 ICSE Workshop on Software Engineering Challenges of Cloud Computing, pp. 44-52, CLOUD 2009. IEEE Computer Society (2009)
26. Pearson, S., Allison, D.: A model-based privacy compliance checker. IJEBR 5(2), 63-83 (2009)
27. Schneider, K., Knauss, E., Houmb, S., Islam, S., Jürjens, J.: Enhancing security requirements engineering by organisational learning. Requirements Eng. J. (REJ) 17(1), 35-56 (2012)
28. Spiekermann, S.: The challenges of privacy by design. Commun. ACM 55(7), 38-40 (2012)
29. Spiekermann, S., Cranor, L.F.: Engineering privacy. IEEE Trans. Softw. Eng. 35(1), 67-82 (2009)
30. van Staden, W., Olivier, M.S.: Using Purpose Lattices to Facilitate Customisation of Privacy Agreements, pp. 201-209. Springer, Heidelberg (2007)