A UML Profile for Privacy Enforcement

•Als PPTX, PDF herunterladen•

0 gefällt mir•1,333 views

Slides of the paper "A UML Profile for Privacy Enforcement" accepted at the International Workshop on Security for and by Model-Driven Engineering, and presented on June 25 2018.

Wissenschaft

Data is key
User Information Email, social security number, passport…
Geolocation, videos, pictures, routines…Personal Data

Data is key
User Information Email, social security number, passport…
Geolocation, videos, pictures, routines…Personal Data
Composite information
Route to go to work…
Places to pass the night…

Data is key
User Information
Data is the new currency
Email, social security number, passport…
Geolocation, videos, pictures, routines…Personal Data
Composite information
Route to go to work…
Places to pass the night…

The Open Data Movement
Data should be freely available to everyone
to use and republish as they wish, without
restrictions from copyright, patents or other
mechanisms of control

Let’s not forget to mention…
…harmonize data privacy laws across Europe, to protect and
empower all EU citizens data privacy and to reshape the way
organizations across the region approach data privacy…

How to add this information to existing methodologies?
…how we can leverage existing model-based approaches?
…how hard would it be?
#1
#2
How to convince organizations to annotate their data?
…are they actually concerned?
…would they see it as beneficial?
#3
Is it posible to automatically annotate existing models with privacy
information?
…are there some guidelines?
#4
How to mix data with different privacy enforcement definitions?
…how to deal with UML Class associations?
…what happens when dealing with other UML diagrams?

Except where otherwise noted, content on this presentation is licensed under a Creative Commons Attribution 4.0 International license.
Thanks!
Javier L. Cánovas Izquierdo
jcanovasi@uoc.edu
@jlcanovas
Julian Salas
jsalapi@uoc.edu

Weitere ähnliche Inhalte

Ähnlich wie A UML Profile for Privacy Enforcement

Norman Sadeh's Presentation

Mediabistro

Preserving privacy of users is a key requirement of web-scale data mining applications and systems such as web search, recommender systems, crowdsourced platforms, and analytics applications, and has witnessed a renewed focus in light of recent data breaches and new regulations such as GDPR. In this tutorial, we will first present an overview of privacy breaches over the last two decades and the lessons learned, key regulations and laws, and evolution of privacy techniques leading to differential privacy definition / techniques. Then, we will focus on the application of privacy-preserving data mining techniques in practice, by presenting case studies such as Apple's differential privacy deployment for iOS / macOS, Google's RAPPOR, LinkedIn Salary, and Microsoft's differential privacy deployment for collecting Windows telemetry. We will conclude with open problems and challenges for the data mining / machine learning community, based on our experiences in industry.

Privacy-preserving Data Mining in Industry (WSDM 2019 Tutorial)

Krishnaram Kenthapadi

Oz!a 2009 sna v0.2

Mia Horrigan

Information architecture is not neutral. By organizing information for discovery and use, we not only make information accessible but also provide the lens through which people will experience it. Designing information architectures involves making and imposing value choices, which positions the work and study of information architecture in the realm of ethics. The information architecture community has considered ethics at the micro level, for instance by finding ways to do good in specific interactions. But to what extent have we thought about ethics in the context of our overall profession? When we design IAs do we, as practitioners, surrender our moral authority to someone else? Or do we follow a code?

Ethics and information architecture - The 6th Academics and Practitioners Rou...

Sarah Rice

Security Metrics are often about the performance of information security professionals - tranditional ones are centered around vulnerability close rates, timelines, or criticality ratings. But how does one measure if those metrics are the rights ones? How does one measure risk reduction, or how sucecssful your metrics program is at operationalizing that which is necessary to prevent a breach? Associated Discussion - http://www.irongeek.com/i.php?page=videos/bsideslasvegas2015/gt06-who-watches-the-watchers-metrics-for-security-strategy-michael-roytman

Who Watches the Watchers Metrics for Security Strategy - BsidesLV 2015 - Roytman

Michael Roytman

Privacy-preserving Data Mining in Industry (WWW 2019 Tutorial)

Krishnaram Kenthapadi

Revisiting Digital Media and Internet Research Ethics. A Process Oriented App...

Nele Heise

Managing and publishing sensitive data in the social sciences - Webinar trans...

ARDC

UN Global Pulse Privacy Framing

Micah Altman

AICHROTH Systemaic evaluation and decentralisation for a (bit more) trusted AI

FIAT/IFTA

Slides from my talk at #ToonTechTalks on 27 september 2018 We all see the great potential AI is bringing us. But is it really bringing it to everyone? How are we ensuring under-represented groups are included and vulnerable people are protected? What to do when our technology is unintended biased and discriminating against certain groups. And what if the data and AI is correct, but the by-effect of it is that some groups are put at risk? All questions we need to think about when we are advancing technology for the benefit of humanity. Sharing what I've learned from my work in diversity, digital and from following great minds in this field such as Joanna Bryson, Virginia Dignum, Rumman Chowdhury, Juriaan van Diggelen, Valerie Frissen, Catelijne Muller, and many more.

Technology for everyone - AI ethics and Bias

Marion Mulder

hel29999999999999999999999999999999999999999999.ppt

gealehegn

OpenSourceIntelligence-OSINT.pptx

anonymousanonymous428352

Kato Mivule: COGNITIVE 2013 - An Overview of Data Privacy in Multi-Agent Lear...

Kato Mivule

Security Privacy Concerns Third Party APIs

Dr. V Vorvoreanu

Security Concerns With Privacy in Social Media

Kenie Moses

How do we protect the privacy of users when building large-scale AI based systems? How do we develop machine learning models and systems taking fairness, accuracy, explainability, and transparency into account? Model fairness and explainability and protection of user privacy are considered prerequisites for building trust and adoption of AI systems in high stakes domains. We will first motivate the need for adopting a “fairness, explainability, and privacy by design” approach when developing AI/ML models and systems for different consumer and enterprise applications from the societal, regulatory, customer, end-user, and model developer perspectives. We will then focus on the application of privacy-preserving AI techniques in practice through industry case studies. We will discuss the sociotechnical dimensions and practical challenges, and conclude with the key takeaways and open challenges.

Privacy in AI/ML Systems: Practical Challenges and Lessons Learned

Krishnaram Kenthapadi

Privacy, Data Protection and SNS

dariphagen

Your organization and big data: Managing access, privacy, & security

Louise Spiteri

IIR 2017, Lugano Switzerland

Marco Polignano

Ähnlich wie A UML Profile for Privacy Enforcement (20)

Norman Sadeh's Presentation

Privacy-preserving Data Mining in Industry (WSDM 2019 Tutorial)

Oz!a 2009 sna v0.2

Ethics and information architecture - The 6th Academics and Practitioners Rou...

Who Watches the Watchers Metrics for Security Strategy - BsidesLV 2015 - Roytman

Privacy-preserving Data Mining in Industry (WWW 2019 Tutorial)

Revisiting Digital Media and Internet Research Ethics. A Process Oriented App...

Managing and publishing sensitive data in the social sciences - Webinar trans...

UN Global Pulse Privacy Framing

AICHROTH Systemaic evaluation and decentralisation for a (bit more) trusted AI

Technology for everyone - AI ethics and Bias

hel29999999999999999999999999999999999999999999.ppt

OpenSourceIntelligence-OSINT.pptx

Kato Mivule: COGNITIVE 2013 - An Overview of Data Privacy in Multi-Agent Lear...

Security Privacy Concerns Third Party APIs

Security Concerns With Privacy in Social Media

Privacy in AI/ML Systems: Practical Challenges and Lessons Learned

Privacy, Data Protection and SNS

Your organization and big data: Managing access, privacy, & security

IIR 2017, Lugano Switzerland

Mehr von Javier Canovas

On the Analysis of Non-Coding Roles in Open Source Development

Javier Canovas

Open Source Software Governance Guide: Developing a Matrix of Leading Questio...

Javier Canovas

A Model-based Chatbot Generation Approach to Converse with Open Data Sources

Javier Canovas

Chatbots to Democratize the Access to Information and Internet Services

Javier Canovas

Analysis and Modeling of the Governance in General Programming Languages

Javier Canovas

Automatic Generation of Test Cases for REST APIs: a Specification-Based Approach

Javier Canovas

The Role of Foundations in Open Source Projects

Javier Canovas

An Empirical Study on the Maturity of the Eclipse Modeling Ecosystem

Javier Canovas

Example-driven Web API Specification Discovery

Javier Canovas

Software Modernization Revisited:Challenges and Prospects

Javier Canovas

Findings from GitHub. Methods, Datasets and Limitations

Javier Canovas

Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...

Javier Canovas

Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...

Javier Canovas

Composing JSON-based Web APIs

Javier Canovas

Retos Actuales en el Desarrollo de Lenguajes Específicos del Dominio

Javier Canovas

Discovering Implicit Schemas in JSON Data

Javier Canovas

Enabling the Collaborative Definition of DSMLs

Javier Canovas

Domain-Specific Languages

Javier Canovas

Modernization in Eclipse

Javier Canovas

Software Modernization

Javier Canovas

Mehr von Javier Canovas (20)

On the Analysis of Non-Coding Roles in Open Source Development

Open Source Software Governance Guide: Developing a Matrix of Leading Questio...

A Model-based Chatbot Generation Approach to Converse with Open Data Sources

Chatbots to Democratize the Access to Information and Internet Services

Analysis and Modeling of the Governance in General Programming Languages

Automatic Generation of Test Cases for REST APIs: a Specification-Based Approach

The Role of Foundations in Open Source Projects

An Empirical Study on the Maturity of the Eclipse Modeling Ecosystem

Example-driven Web API Specification Discovery

Software Modernization Revisited:Challenges and Prospects

Findings from GitHub. Methods, Datasets and Limitations

Enabling the Definition and Enforcement of Governance Rules in Open Source Sy...

Exploring the Use of Labels to Categorize Issues in Open-Source Software Pro...

Composing JSON-based Web APIs

Retos Actuales en el Desarrollo de Lenguajes Específicos del Dominio

Discovering Implicit Schemas in JSON Data

Enabling the Collaborative Definition of DSMLs

Domain-Specific Languages

Modernization in Eclipse

Software Modernization

Kürzlich hochgeladen

Conjugation, transduction and transformation

Areesha Ahmad

Grade 7 - Lesson 1 - Microscope and Its Functions

OrtegaSyrineMay

Justdial Call Girls In Indirapuram, Ghaziabad, 8800357707 Escorts Service Best High Class call girls Service Escorts Service in Home Hotel in Delhi NCR 24 Hours Available Service. We provide Super Class Hot and Sexy Indian Female Escorts Service, A to Z Body and Mind Satisfaction by Top Class Female Models in Delhi Gurgaon Noida NCR in Hotel 24hrs In Call and Out Call Service At Lowest Price. We Have Indian Punjabi Kashmiri Northeast Every Type Sexy Bold Beautiful Young Soft Cute Charming Female Escorts Available. Hygienic Full AC Neat and Clean Rooms Avail. In Hotel 24hrs in Delhi NCR

Justdial Call Girls In Indirapuram, Ghaziabad, 8800357707 Escorts Service

monikaservice1

Mustard, as a crop, is susceptible to a variety of pests that can affect its growth and yield. Here’s a rundown of some common pests that target mustard plants: Aphids: These small, sap-sucking insects can cause significant damage by feeding on the leaves and stems. Aphids also excrete a sticky substance known as honeydew, which can lead to the growth of sooty mold on the plants. Flea Beetles: These tiny beetles jump like fleas when disturbed and chew small holes in the leaves. They are particularly damaging in the early growth stages of the plant. Cabbage Loopers: The larvae of a type of moth, these caterpillars are known for their distinctive looping movement. They chew large holes in the leaves and can defoliate plants if present in large numbers. Diamondback Moth Larvae: Another caterpillar pest, these larvae chew small holes in the leaves and can cause extensive damage, especially when infestations are heavy. Whiteflies: These are tiny, winged insects that feed on plant sap and can quickly become a problem in greenhouse or close planting conditions. Like aphids, they also secrete honeydew. Cutworms: These are the larvae of certain types of moths and are known for cutting young plants at the stem base at ground level. They are most destructive during the night. Root Maggots: The larvae of root maggot flies, these pests attack the roots of mustard plants, causing wilting and potentially killing young plants. Harlequin Bugs: These are colorful stink bugs that suck the sap from mustard plant stems and leaves, causing the leaves to become stippled, wilt, and eventually die if the infestation is severe. Mustard Sawfly: The larvae of the mustard sawfly can cause considerable defoliation, as they feed voraciously on the leaves. Clubroot: Caused by a fungus-like organism, clubroot affects the roots, causing them to swell and distort. While technically a disease, it is often associated with pest management because controlling it involves similar preventative strategies. Control Measures: Managing pests in mustard involves a combination of cultural, biological, and chemical methods. Crop rotation, resistant varieties, timely sowing, maintaining plant health, and using natural predators like ladybugs and parasitic wasps can help keep pest populations under control. Chemical pesticides should be used as a last resort due to their potential impact on the environment and non-target species.

Pests of mustard_Identification_Management_Dr.UPR.pdf

PirithiRaju

Choose Our GTB Nagar Call Girls Through Our WhatsApp Number: - 8250077686 Easy & Fast Booking Procedure of GTB Nagar Call Girls Call girls are ready and waiting to provide the quality essentialness that will help ease away life's tensions GTB Nagar Call Girls are regular companions of elite gentlemen. They can take them places they could only dream of visiting. These ladies take great care in maintaining themselves to look appealing; visiting salons and spas regularly keeps them looking their best; their portfolios can be found online via an escort agency website. Visit our website: https://www.prishagill.com/ Visit our website: https://www.dighacallgirls.com/ Visit our website: https://www.sheetalarora.com/ Visit our website: https://www.streetgirls69.in/

High Profile 🔝 8250077686 📞 Call Girls Service in GTB Nagar🍑

Damini Dixit

GBSN - Biochemistry (Unit 1)

Areesha Ahmad

Proteomics: types, protein profiling steps etc.

Silpa

Theoretical predictions and observational data indicate a class of sub-Neptune exoplanets may have water-rich interiors covered by hydrogen-dominated atmospheres. Provided suitable climate conditions, such planets could host surface liquid oceans. Motivated by recent JWST observations of K2-18 b, we self-consistently model the photochemistry and potential detectability of biogenic sulfur gases in the atmospheres of temperate sub-Neptune waterworlds for the first time. On Earth today, organic sulfur compounds produced by marine biota are rapidly destroyed by photochemical processes before they can accumulate to significant levels. Domagal-Goldman et al. suggest that detectable biogenic sulfur signatures could emerge in Archean-like atmospheres with higher biological production or low UV flux. In this study, we explore biogenic sulfur across a wide range of biological fluxes and stellar UV environments. Critically, the main photochemical sinks are absent on the nightside of tidally locked planets. To address this, we further perform experiments with a 3D general circulation model and a 2D photochemical model (VULCAN 2D) to simulate the global distribution of biogenic gases to investigate their terminator concentrations as seen via transmission spectroscopy. Our models indicate that biogenic sulfur gases can rise to potentially detectable levels on hydrogen-rich water worlds, but only for enhanced global biosulfur flux (20 times modern Earth’s flux). We find that it is challenging to identify DMS at 3.4 μm where it strongly overlaps with CH4, whereas it is more plausible to detect DMS and companion byproducts, ethylene (C2H4) and ethane (C2H6), in the mid-infrared between 9 and 13 μm. Unified Astronomy Thesaurus concepts: Exoplanet atmospheres (487); Exoplanet

Biogenic Sulfur Gases as Biosignatures on Temperate Sub-Neptune Waterworlds

Sérgio Sacani

Introduction to Viruses

Areesha Ahmad

Call Girls Dubai Dubai Call Girls Agency +971525547819 Vip Call Girls Dubai Hot Call Girls Dubai Out Call Girls Dubai Best Call Girls Dubai Indian And Pakistani Call Girls Dubai Independent Call Girls Dubai Dubai Indian Call Girls Agency Class Call Girls In Dubai #First Class Call Girls In Dubai #Full Massage Services Call Girls In Dubai Full Night Call Girls Dubai Hourly Call Girls Dubai Call Girls Deira Dubai Dating Call Girls In Deira Dubai Silicon Oasis Call Girls Dubai International City Call Girls Dubai Al Jaddaf Al Satwa Al Quoz Al Barsha South Media City Discovery Garden Call Girls Dubai Al Jaffiliya,Business Bay,Al Karama,Bur Dubai,Deira,Dubai,Palm Jumeirah,Al Wasl,Trade Centre,Dubai Mall,JBR,JVC,JLT,Discovery Garden Al Nahda Call Girls Dubai Al Qusais Call Girls Dubai Dating Call Girls Dubai Dubai Call Girls Services Provide In Ajman_Dubai_RAK_UMQ_Fujairah_Abu_Dhabi#Indian #Tamil #Kerala #Russian #Philippine #Morocco #Thailand #English Models In Dubai #If You Want Serv#Dubai Pakistani Call Girls Agency #Beautiful Call Girls in Dubai #High ices Just Send Me Text On Whatsapp +971525547819 #Website Link http://Dubaicallgirls.pro https://chatwith.io/s/65d1df48b2992

Dubai Call Girls Beauty Face Teen O525547819 Call Girls Dubai Young

kajalvid75

Kochi CALL GIRL 84099*07087 ❤CALL GIRLS IN Kochi ESCORT SERVICE❤CALL GIRL IN We are Providing :- ● – Private independent collage Going girls . ● – independent Models . ● – House Wife’s . ● – Private Independent House Wife’s ● – Corporate M.N.C Working Profiles . ● – Call Center Girls . ● – Live Band Girls . ●- Foreigners & Many More . Service type: 1.In call 2.out call 3. full Lip to Lip kiss 4.69 5.b-job without Condom 6. Hard Core sex & Much More. 7 Body to Body Touch 8 Kissing 9 Sucking Boobs and More 10 Enjoy by Hand 11 Relax By Oral 12 Sex with Happy Ending • In Call and Out Call Service • 3* 5* 7* Hotels Service • 24 Hours Available • Indian, Russian, Punjabi, Kashmiri Escorts • Real Models, College Girls, House Wife, Also Available • Short Time and Full Time Service Available • Hygienic Full AC Neat and Clean Rooms Avail. In Hotel 24 hours • Daily Escorts Staff Available • Minimum to Maximum Range Available.

Kochi ❤CALL GIRL 84099*07087 ❤CALL GIRLS IN Kochi ESCORT SERVICE❤CALL GIRL

kantirani197

Molecular markers are identifiable DNA sequences used to locate genes associated with specific traits or genetic conditions. A molecular marker is a specific gene fragment present at a specific position called ‘locus’ (pleural loci) in the genome of a cell. In the pool of unknown DNA or in a whole chromosome, these molecular markers help in identification of particular sequence of DNA at particular location.

Molecular markers- RFLP, RAPD, AFLP, SNP etc.

Silpa

99992-vip-66834 📞Noida Sector 22 Noida Low price 100% genuine sexy VIP call girls are provided safe and secure service .call 📞,,24 hours 🕰️-- ✅100% gesnuine young RIYA SERVICE COMPANY ✔✔✔ ★ A-Level (5 star ) ★ Strip-tease ★ BBBJ (Bareback Blowjob) Receive advanced sexual techniques in different mode make their life more pleasurable. ★ Spending time in hotel rooms ★ BJ (Blowjob Without a Condom) ★ Completion (Oral to completion) ★ Covered (Covered blowjob Without a Condom) ★ DATING (Dinner At Night) ★ DSL (Dick Sucking Lips) ★ DT (Dining at the Toes English Spanking) ★ Doggie (Sex style from behind) ★ Duo (shot with two escorts; Threesome with the client) ★ S-GFE (Special Girl Friend Experience) ★ HJ (Hand Job) ★ Special Massage ★ O-Level (Oral sex) ★ Tour (International) ★ 69 (69 sex) ★ BJ (Blowjob With Condom) ★ GFE (Girl Friend Experience) ★ CBJ (Covered Blow Job; Oral sex with a condom _ LOW PRICE V I P MODEL FULL SAFE AND SECURE CALL MExxxs CALL ME

9999266834 Call Girls In Noida Sector 22 (Delhi) Call Girl Service

nishacall1

Factory Acceptance Test( FAT).pptx .

Poonam Aher Patil

300003-World Science Day For Peace And Development.pptx

ryanrooker

chemical bonding Essentials of Physical Chemistry2.pdf

TukamushabaBismark

www.whatsapp.com+917728919243 HOT & SEXY MODELS // COLLEGE GIRLS AVAILABLE FOR COMPLETE ENJOYMENT WITH HIGH PROFILE INDIAN MODEL AVAILABLE HOTEL & HOME ★ SAFE AND SECURE HIGH CLASS SERVICE AFFORDABLE RATE SATISFACTION,UNLIMITED ENJOYMENT. ★ All Meetings are confidential and no information is provided to any one at any cost. ★ EXCLUSIVE PROFILes Are Safe and Consensual with Most Limits Respected ★ Service Available In: - HOME *Star Hotel Service .In Call & Out call SeRvIcEs : ★ A-Level ★ Strip-tease ★ BBBJ (Bareback Blowjob)Receive advanced sexual techniques in different mode make their life more pleasurable. ★ Spending time in hotel rooms ★ BJ (Blowjob Without a Condom) ★ Completion (Oral to completion) ★ Covered (Covered blowjob Without a Condom)

Call Girls Ahmedabad +917728919243 call me Independent Escort Service

shivanisharma5244

Locating and isolating a gene, FISH, GISH, Chromosome walking and jumping, te...

Silpa

Pulmonary drug delivery system M.pharm -2nd sem P'ceutics

sakshisoni2385

fruit fly, this slide mainly made for pumpkin fruit fly, this is also known as drosophila melangastor, this type of fruit fly destroyed the mainly vegetables crops. if you want to known examples this types of fly which is destroy the pumpkin, tomato, brinjal, potato, bottle guard, ridge guard, bitter guard, cucumber, water melon, musk melon, bean, long bean and other many vegetables which has fruits. they distryed fruit fly. thank you...

pumpkin fruit fly, water melon fruit fly, cucumber fruit fly

PRADYUMMAURYA1

Kürzlich hochgeladen (20)

Conjugation, transduction and transformation

Grade 7 - Lesson 1 - Microscope and Its Functions

Justdial Call Girls In Indirapuram, Ghaziabad, 8800357707 Escorts Service

Pests of mustard_Identification_Management_Dr.UPR.pdf

High Profile 🔝 8250077686 📞 Call Girls Service in GTB Nagar🍑

GBSN - Biochemistry (Unit 1)

Proteomics: types, protein profiling steps etc.

Biogenic Sulfur Gases as Biosignatures on Temperate Sub-Neptune Waterworlds

Introduction to Viruses

Dubai Call Girls Beauty Face Teen O525547819 Call Girls Dubai Young

Kochi ❤CALL GIRL 84099*07087 ❤CALL GIRLS IN Kochi ESCORT SERVICE❤CALL GIRL

Molecular markers- RFLP, RAPD, AFLP, SNP etc.

9999266834 Call Girls In Noida Sector 22 (Delhi) Call Girl Service

Factory Acceptance Test( FAT).pptx .

300003-World Science Day For Peace And Development.pptx

chemical bonding Essentials of Physical Chemistry2.pdf

Call Girls Ahmedabad +917728919243 call me Independent Escort Service

Locating and isolating a gene, FISH, GISH, Chromosome walking and jumping, te...

Pulmonary drug delivery system M.pharm -2nd sem P'ceutics

pumpkin fruit fly, water melon fruit fly, cucumber fruit fly

A UML Profile for Privacy Enforcement

1. A UML Profile for Privacy Enforcement Javier L. Cánovas Izquierdo, Julián Salas unsplash/matthew-henry

2. flickr/clark-tibbs Motivation

3. Data is key

4. Data is key User Information Email, social security number, passport… Geolocation, videos, pictures, routines…Personal Data

5. Data is key User Information Email, social security number, passport… Geolocation, videos, pictures, routines…Personal Data Composite information Route to go to work… Places to pass the night…

6. Data is key User Information Data is the new currency Email, social security number, passport… Geolocation, videos, pictures, routines…Personal Data Composite information Route to go to work… Places to pass the night…

7. Data is key User Information Data is the new currency Email, social security number, passport… Geolocation, videos, pictures, routines…Personal Data Composite information Route to go to work… Places to pass the night…

8. The Open Data Movement Data should be freely available to everyone to use and republish as they wish, without restrictions from copyright, patents or other mechanisms of control

9. The Open Data Movement Data should be freely available to everyone to use and republish as they wish, without restrictions from copyright, patents or other mechanisms of control •Geographic, geopolitical and financial data Statistics Election results Legal acts Data on crime, health, the environment, transport and scientific research

10. The Open Data Movement Data should be freely available to everyone to use and republish as they wish, without restrictions from copyright, patents or other mechanisms of control •Geographic, geopolitical and financial data Statistics Election results Legal acts Data on crime, health, the environment, transport and scientific research BUT…

11. Let’s not forget to mention… …harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy…

12. KEEP CALM AND COMPLY WITH GDPR

13. How is it treated currently?

14. How is it treated currently?…in MDE?

15. How is it treated currently?…in MDE?

16. How is it treated currently?…in MDE? Privacy and security at high-level Methodological approaches Access control policy solutions Mont, M.C., Pearson, S., Creese, S., Goldsmith, M., Papanikolaou, N.: A Conceptual Model for Privacy Policies with Consent and Revocation Requirements Allison, D.S., Yamany, H.F.E., Capretz, M.A.M.: Metamodel for privacy policies within SOA Busch, M.: Evaluating & engineering: an approach for the development of secure web applications Basso, T., Montecchi, L., Moraes, R., Jino, M., Bondavalli, A.: Towards a UML profile for privacy-aware applications Ahmadian, A.S., Peldszus, S., Ramadan, Q., Jürjens, J.: Model-based privacy and security analysis with carisma Ahmadian, A.S., Strüber, D., Riediger, V., Jürjens, J.: Model-based privacy analysis in industrial ecosystems Alshammari, M., Simpson, A.: A UML profile for privacy-aware data lifecycle models XACML, PRBAC, UMLSec, Ponder

17. Unsplash/david-iskander Our Proposal

18. Example

19. Example

20. A profile for privacy enforcement

21. A profile for privacy enforcement

22. A profile for privacy enforcement

23. A profile for privacy enforcement

24. A profile for privacy enforcement

25. A profile for privacy enforcement

26. A profile for privacy enforcement

27. Example with our profile

28. Conclusion • Profile to specify privacy • Models annotated with the profile can promote privacy enforcement What we have shown What we want to do next Application to specific fields Promoting Open Data

29. Challenges Flickr/TimPainter

30. How to add this information to existing methodologies? …how we can leverage existing model-based approaches? …how hard would it be? #1 #2 How to convince organizations to annotate their data? …are they actually concerned? …would they see it as beneficial? #3 Is it posible to automatically annotate existing models with privacy information? …are there some guidelines? #4 How to mix data with different privacy enforcement definitions? …how to deal with UML Class associations? …what happens when dealing with other UML diagrams?

31. Except where otherwise noted, content on this presentation is licensed under a Creative Commons Attribution 4.0 International license. Thanks! Javier L. Cánovas Izquierdo jcanovasi@uoc.edu @jlcanovas Julian Salas jsalapi@uoc.edu

A UML Profile for Privacy Enforcement

Empfohlen

Empfohlen

Weitere ähnliche Inhalte

Ähnlich wie A UML Profile for Privacy Enforcement

Ähnlich wie A UML Profile for Privacy Enforcement (20)

Mehr von Javier Canovas

Mehr von Javier Canovas (20)

Kürzlich hochgeladen

Kürzlich hochgeladen (20)

A UML Profile for Privacy Enforcement