Nada Alhirabi scite author profile

Nada Alhirabi

4Publications

31Citation Statements Received

39Citation Statements Given

How they've been cited

How they cite others

106

Affiliations

Cardiff University, King Saud University

Publications

Order By: Most citations

Security and Privacy Requirements for the Internet of Things

Alhirabi

Rana

Perera

2021

ACM Trans. Internet Things

View full text Add to dashboard Cite

The design and development process for internet of things (IoT) applications is more complicated than that for desktop, mobile, or web applications. First, IoT applications require both software and hardware to work together across many different types of nodes with different capabilities under different conditions. Second, IoT application development involves different types of software engineers such as desktop, web, embedded, and mobile to work together. Furthermore, non-software engineering personnel such as business analysts are also involved in the design process. In addition to the complexity of having multiple software engineering specialists cooperating to merge different hardware and software components together, the development process requires different software and hardware stacks to be integrated together (e.g., different stacks from different companies such as Microsoft Azure and IBM Bluemix). Due to the above complexities, non-functional requirements (such as security and privacy, which are highly important in the context of the IoT) tend to be ignored or treated as though they are less important in the IoT application development process. This article reviews techniques, methods, and tools to support security and privacy requirements in existing non-IoT application designs, enabling their use and integration into IoT applications. This article primarily focuses on design notations, models, and languages that facilitate capturing non-functional requirements (i.e., security and privacy). Our goal is not only to analyse, compare, and consolidate the empirical research but also to appreciate their findings and discuss their applicability for the IoT.

show abstract

Synthesising Privacy by Design Knowledge Towards Explainable Internet of Things Application Designing in Healthcare

Alkhariji¹,

Alhirabi²,

Alraja³

et al. 2020

Preprint

View full text Add to dashboard Cite

Privacy by Design (PbD) is the most common approach followed by software developers who aim to reduce risks within their application designs, yet it remains commonplace for developers to retain little conceptual understanding of what is meant by privacy. A vision is to develop an intelligent privacy assistant to whom developers can easily ask questions in order to learn how to incorporate different privacy-preserving ideas into their IoT application designs. This paper lays the foundations toward developing such a privacy assistant by synthesising existing PbD knowledge so as to elicit requirements. It is believed that such a privacy assistant should not just prescribe a list of privacy-preserving ideas that developers should incorporate into their design. Instead, it should explain how each prescribed idea helps to protect privacy in a given application design context-this approach is defined as 'Explainable Privacy'. A total of 74 privacy patterns were analysed and reviewed using ten different PbD schemes to understand how each privacy pattern is built and how each helps to ensure privacy. Due to page limitations, we have presented a detailed analysis in [3]. In addition, different real-world Internet of Things (IoT) use-cases, including a healthcare application, were used to demonstrate how each privacy pattern could be applied to a given application design. By doing so, several knowledge engineering requirements were identified that need to be considered when developing a privacy assistant. It was also found that, when compared to other IoT application domains, privacy patterns can significantly benefit healthcare applications. In conclusion, this paper identifies the research challenges that must be addressed if one wishes to construct an intelligent privacy assistant that can truly augment software developers' capabilities at the design phase.CCS Concepts: • Security and privacy → Human and societal aspects of security and privacy; Social aspects of security and privacy; • Software and its engineering → Software development process management; • Human-centered computing → Ubiquitous computing.

show abstract

Synthesising Privacy by Design Knowledge Toward Explainable Internet of Things Application Designing in Healthcare

Alkhariji

Alhirabi

Alraja

et al. 2021

ACM Trans. Multimedia Comput. Commun. Appl.

View full text Add to dashboard Cite

Privacy by Design (PbD) is the most common approach followed by software developers who aim to reduce risks within their application designs, yet it remains commonplace for developers to retain little conceptual understanding of what is meant by privacy. A vision is to develop an intelligent privacy assistant to whom developers can easily ask questions to learn how to incorporate different privacy-preserving ideas into their IoT application designs. This article lays the foundations toward developing such a privacy assistant by synthesising existing PbD knowledge to elicit requirements. It is believed that such a privacy assistant should not just prescribe a list of privacy-preserving ideas that developers should incorporate into their design. Instead, it should explain how each prescribed idea helps to protect privacy in a given application design context—this approach is defined as “Explainable Privacy.” A total of 74 privacy patterns were analysed and reviewed using ten different PbD schemes to understand how each privacy pattern is built and how each helps to ensure privacy. Due to page limitations, we have presented a detailed analysis in Reference [3]. In addition, different real-world Internet of Things (IoT) use-cases, including a healthcare application, were used to demonstrate how each privacy pattern could be applied to a given application design. By doing so, several knowledge engineering requirements were identified that need to be considered when developing a privacy assistant. It was also found that, when compared to other IoT application domains, privacy patterns can significantly benefit healthcare applications. In conclusion, this article identifies the research challenges that must be addressed if one wishes to construct an intelligent privacy assistant that can truly augment software developers’ capabilities at the design phase.

show abstract

Demo Abstract: PARROT: Privacy by Design Tool for Internet of Things

Alhirabi

Rana

Perera

2022

View full text Add to dashboard Cite

The design process for applications that make use of Internet of Things (IoT) can be more complex than for desktop, mobile or web-based platforms. IoT applications typically collect and analyse personal data categorised as sensitive. These data may be subject to a higher degree of protection under data privacy laws. We present PARROT (PrivAcy by design tool foR inteRnet Of Things) -an interactive IoT application design tool for privacy-aware IoT applications. PARROT enables developers to consider privacy compliance during the design process and provides real-time feedback on potential privacy concerns that may need to be considered. From a privacy compliance perspective, PARROT incorporates privacy-specific design features into the IoT application from the beginning rather than retrospectively.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Nada Alhirabi

Security and Privacy Requirements for the Internet of Things

Synthesising Privacy by Design Knowledge Towards Explainable Internet of Things Application Designing in Healthcare

Synthesising Privacy by Design Knowledge Toward Explainable Internet of Things Application Designing in Healthcare

Demo Abstract: PARROT: Privacy by Design Tool for Internet of Things

Contact Info

Product

Resources

About