From GDPR to Privacy Design Patterns: The MATERIALIST Framework

被引：5

作者：

Barletta, Vita ^{[1
]}

Desolda, Giuseppe ^{[1
]}

Gigante, Domenico ^{[1
]}

Lanzilotti, Rosa ^{[1
]}

Saltarella, Marco ^{[1
,2
]}

机构：

[1] Univ Bari Aldo Moro, Comp Sci Dept, Via Edoardo Orabona 4, I-70125 Bari, BA, Italy

[2] FINCONS SpA, Via Orfeo Mazzitelli 258-E, I-70124 Bari, BA, Italy

来源：

SECRYPT : PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY | 2022年

关键词：

Privacy Design Patterns; GDPR; ISO; 9241-210; Code Vulnerabilities;

D O I：

10.5220/0011305900003283

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Privacy is becoming an increasingly important factor in software production. Indeed, besides increasing software quality, privacy is a mandatory aspect of national and supranational regulations like GDPR. However, several aspects like lack of knowledge on privacy and data protection regulations ambiguities limit the adoption of proper privacy implementation mechanisms during the software lifecycle. To fill this gap, this paper presents a framework, MATERIALIST, which aims to guide developers in choosing privacy design patterns to be used during software development. In particular, this paper focuses on the selection of privacy design patterns starting from the GDPR requirements. In this way, what is currently prescribed by GDPR in a non-technical way becomes a practical solution that software developers can adopt during their work.

引用

页码：642 / 648

页数：7

共 50 条

[41] Privacy Enforcement at a Large Scale for GDPR Compliance
Khaitzin, Ety
Shlomo, Roee
Anderson, Maya
SYSTOR'18: PROCEEDINGS OF THE 11TH ACM INTERNATIONAL SYSTEMS AND STORAGE CONFERENCE, 2018, : 124 - 124
[42] Threat Modelling with the GDPR towards a Security and Privacy Metrics Framework for IoT Smart-farm Application
Rudd, Steph
Cunningham, Hamish
PROCEEDINGS OF THE 7TH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS, BIG DATA AND SECURITY (IOTBDS), 2022, : 91 - 102
[43] GDPR Anti-Patterns
Shastri, Supreeth
Wasserman, Melissa
Chidambaram, Vijay
COMMUNICATIONS OF THE ACM, 2021, 64 (02) : 59 - 65
[44] From Prescription to Description: Mapping the GDPR to a Privacy Policy Corpus Annotation Scheme
Poplavska, Ellen
Norton, Thomas B.
Wilson, Shomir
Sadeh, Norman
LEGAL KNOWLEDGE AND INFORMATION SYSTEMS, 2020, 334 : 243 - 246
[45] Privacy by Design to Comply with GDPR: A Review on Third-Party Data Processors Completed Research
Kurtz, Christian
Semmann, Martin
Boehmann, Tilo
AMCIS 2018 PROCEEDINGS, 2018,
[46] Towards GDPR Compliant Software Design: A Formal Framework for Analyzing System Models
Vanezi, Evangelia
Kouzapas, Dimitrios
Kapitsaki, Georgia M.
Philippou, Anna
EVALUATION OF NOVEL APPROACHES TO SOFTWARE ENGINEERING, 2020, 1172 : 135 - 162
[47] Online privacy literacy and users' information privacy empowerment: the case of GDPR in Europe
Prince, Christine
Omrani, Nessrine
Schiavone, Francesco
INFORMATION TECHNOLOGY & PEOPLE, 2024, 37 (08) : 1 - 24
[48] Design and implementation of RDBAC framework for privacy on NEIS
Kim, YS
Hong, EK
8th International Conference on Advanced Communication Technology, Vols 1-3: TOWARD THE ERA OF UBIQUITOUS NETWORKS AND SOCIETIES, 2006, : U2213 - U2218
[49] A FRAMEWORK FOR THE DESIGN OF PRIVACY PRESERVING PERVASIVE HEALTHCARE
Moncrieff, Simon
Venkatesh, Svetha
West, Geoff
ICME: 2009 IEEE INTERNATIONAL CONFERENCE ON MULTIMEDIA AND EXPO, VOLS 1-3, 2009, : 1696 - 1699
[50] A Framework for integrating software design patterns with game design framework
Barakat, Nahla H.
PROCEEDINGS OF 2019 8TH INTERNATIONAL CONFERENCE ON SOFTWARE AND INFORMATION ENGINEERING (ICSIE 2019), 2019, : 47 - 50

← 1 2 3 4 5 →