PRIAM: A Privacy Risk Analysis Methodology

被引:29
|
作者
De, Sourya Joyee [1 ]
Le Metayer, Daniel [1 ]
机构
[1] Univ Lyon, INRIA, Lyon, France
来源
DATA PRIVACY MANAGEMENT AND SECURITY ASSURANCE | 2016年 / 9963卷
关键词
Privacy; Personal data; Privacy Impact Assessment; PIA; Privacy Risk Analysis; PRA; Risk; Harm; IMPACT ASSESSMENT;
D O I
10.1007/978-3-319-47072-6_15
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Privacy Impact Assessments (PIA) are recognized as a key step to enhance privacy protection in new information systems and services. They will be required in Europe when the new General Data Protection Regulation becomes effective. From a technical perspective, the core of a PIA is a Privacy Risk Analysis (PRA), which has received relatively less attention than organizational and legal aspects of PIAs. In this work, we propose a rigorous and systematic PRA methodology. We illustrate it with a quantified self use-case in the extended paper [9].
引用
收藏
页码:221 / 229
页数:9
相关论文
共 50 条
  • [41] Privacy Risk Analysis Based on System Control Structures Adapting System-Theoretic Process Analysis for Privacy Engineering
    Shapiro, Stuart S.
    2016 IEEE SYMPOSIUM ON SECURITY AND PRIVACY WORKSHOPS (SPW 2016), 2016, : 17 - 24
  • [42] Risk influence analysis a methodology for identification and assessment of risk reduction strategies
    Rosness, Ragnar
    Reliability Engineering and System Safety, 1998, 60 (02): : 153 - 164
  • [43] Risk Influence Analysis - A methodology for identification and assessment of risk reduction strategies
    Rosness, R
    RELIABILITY ENGINEERING & SYSTEM SAFETY, 1998, 60 (02) : 153 - 164
  • [44] Privacy Risk Analysis and Mitigation of Analytics Libraries in the Android Ecosystem
    Liu, Xing
    Liu, Jiqiang
    Zhu, Sencun
    Wang, Wei
    Zhang, Xiangliang
    IEEE TRANSACTIONS ON MOBILE COMPUTING, 2020, 19 (05) : 1184 - 1199
  • [45] Developing A Privacy Risk Analysis Framework for Heterogeneous IoT Network
    Gupta, Sanonda Datta
    2022 30TH IEEE INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE (RE 2022), 2022, : 207 - 212
  • [46] pQUANT: A User-Centered Privacy Risk Analysis Framework
    Tesfay, Welderufael B.
    Nastouli, Dimitra
    Stamatiou, Yannis C.
    Serna, Jetzabel M.
    RISKS AND SECURITY OF INTERNET AND SYSTEMS (CRISIS 2019), 2020, 12026 : 3 - 16
  • [47] VOIP FOR TELEREHABILITATION: A RISK ANALYSIS FOR PRIVACY, SECURITY, AND HIPAA COMPLIANCE
    Cohn, Ellen R.
    INTERNATIONAL JOURNAL OF TELEREHABILITATION, 2010, 2 (02): : 1 - 1
  • [48] PlusApps: Towards a Privacy Risk Analysis for Android Plus Applications
    Alzahrani, Abdullah J.
    INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2020, 11 (11) : 684 - 693
  • [49] Privacy risk perceptions and privacy protection strategies
    Oomen, Isabelle
    Leenes, Ronald
    POLICIES AND RESEARCH IN IDENTITY MANAGEMENT, 2008, 261 : 121 - 138
  • [50] Assessing a risk analysis methodology for rock blasting operations
    Seccatore, J.
    Origliasso, C.
    De Tomi, G.
    BLASTING IN MINES - NEW TRENDS, 2013, : 51 - 60
12345