首页 | 本学科首页   官方微博 | 高级检索  
     


A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements
Authors:Mina Deng  Kim Wuyts  Riccardo Scandariato  Bart Preneel  Wouter Joosen
Affiliation:(1) Electrical Engineering Department, IBBT-COSIC, K.U. Leuven Kasteelpark Arenberg 10, 3001 Heverlee, Belgium;(2) Computer Science Department, IBBT-DistriNet, K.U. Leuven Celestijnenlaan 200A, 3001 Heverlee, Belgium
Abstract:Ready or not, the digitalization of information has come, and privacy is standing out there, possibly at stake. Although digital privacy is an identified priority in our society, few systematic, effective methodologies exist that deal with privacy threats thoroughly. This paper presents a comprehensive framework to model privacy threats in software-based systems. First, this work provides a systematic methodology to model privacy-specific threats. Analogous to STRIDE, an information flow–oriented model of the system is leveraged to guide the analysis and to provide broad coverage. The methodology instructs the analyst on what issues should be investigated, and where in the model those issues could emerge. This is achieved by (i) defining a list of privacy threat types and (ii) providing the mappings between threat types and the elements in the system model. Second, this work provides an extensive catalog of privacy-specific threat tree patterns that can be used to detail the threat analysis outlined above. Finally, this work provides the means to map the existing privacy-enhancing technologies (PETs) to the identified privacy threats. Therefore, the selection of sound privacy countermeasures is simplified.
Keywords:
本文献已被 SpringerLink 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号