From GDPR to Privacy Design Patterns: The MATERIALIST Framework

被引：5

作者：

Barletta, Vita ^{[1
]}

Desolda, Giuseppe ^{[1
]}

Gigante, Domenico ^{[1
]}

Lanzilotti, Rosa ^{[1
]}

Saltarella, Marco ^{[1
,2
]}

机构：

[1] Univ Bari Aldo Moro, Comp Sci Dept, Via Edoardo Orabona 4, I-70125 Bari, BA, Italy

[2] FINCONS SpA, Via Orfeo Mazzitelli 258-E, I-70124 Bari, BA, Italy

来源：

SECRYPT : PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY | 2022年

关键词：

Privacy Design Patterns; GDPR; ISO; 9241-210; Code Vulnerabilities;

D O I：

10.5220/0011305900003283

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Privacy is becoming an increasingly important factor in software production. Indeed, besides increasing software quality, privacy is a mandatory aspect of national and supranational regulations like GDPR. However, several aspects like lack of knowledge on privacy and data protection regulations ambiguities limit the adoption of proper privacy implementation mechanisms during the software lifecycle. To fill this gap, this paper presents a framework, MATERIALIST, which aims to guide developers in choosing privacy design patterns to be used during software development. In particular, this paper focuses on the selection of privacy design patterns starting from the GDPR requirements. In this way, what is currently prescribed by GDPR in a non-technical way becomes a practical solution that software developers can adopt during their work.

引用

页码：642 / 648

页数：7

共 50 条

[21] ConfIs: A Tool for Privacy and Security Analysis and Conflict Resolution for Supporting GDPR Compliance through Privacy-by-Design
Alkubaisy, Duaa
Piras, Luca
Al-Obeidallah, Mohammed Ghazi
Cox, Karl
Mouratidis, Haralambos
ENASE: PROCEEDINGS OF THE 16TH INTERNATIONAL CONFERENCE ON EVALUATION OF NOVEL APPROACHES TO SOFTWARE ENGINEERING, 2021, : 80 - 91
[22] Supporting Privacy by Design Using Privacy Process Patterns
Diamantopoulou, Vasiliki
Kalloniatis, Christos
Gritzalis, Stefanos
Mouratidis, Haralambos
ICT SYSTEMS SECURITY AND PRIVACY PROTECTION, SEC 2017, 2017, 502 : 491 - 505
[23] The GDPR as Privacy Pretext and the Problem of Co-Opting Privacy
Richards, Neil
HASTINGS LAW JOURNAL, 2022, 73 (05) : 1511 - 1538
[24] Privacy preservation in federated learning: An insightful survey from the GDPR perspective
Nguyen Truong
Sun, Kai
Wang, Siyao
Guitton, Florian
Guo, YiKe
COMPUTERS & SECURITY, 2021, 110
[25] Privacy icons as a component of effective transparency and controls under the GDPR: effective data protection by design based on art. 25 GDPR
von Grafenstein, Max
Kiefaber, Isabel
Heumueller, Julie
Rupp, Valentin
Grassl, Paul
Kolless, Otto
Puzst, Zsofia
COMPUTER LAW & SECURITY REVIEW, 2024, 52
[26] A Serious Game Design Framework for Software Developers to Put GDPR into Practice
Alhazmi, Abdulrahman
Arachchilage, Nalin A. G.
ARES 2021: 16TH INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY AND SECURITY, 2021,
[27] PISCES: A Framework for Privacy by Design in IoT
Foukia, Noria
Billard, David
Solana, Eduardo
2016 14TH ANNUAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST), 2016,
[28] Privacy and Inclusivity A Proposal for an Inclusive Design Approach to GDPR Implementation in Augmented Reality Technologies
Ryan, Phil J.
2018 IEEE GAMES, ENTERTAINMENT, MEDIA CONFERENCE (GEM), 2018, : 157 - 162
[29] Did App Privacy Improve After the GDPR?
Momen, Nurul
Hatamian, Majid
Fritsch, Lothar
IEEE SECURITY & PRIVACY, 2019, 17 (06) : 10 - 20
[30] Digital Privacy: GDPR and Its Lessons for Australia
Das Chaudhury, Ratul
Choe, Chongwoo
AUSTRALIAN ECONOMIC REVIEW, 2023, 56 (02) : 204 - 220

← 1 2 3 4 5 →