Pseudonymization risk analysis in distributed systems

Neumann, Geoffrey; Grace, Paul; Burns, Daniel; Surridge, M.

doi:10.1186/s13174-018-0098-z

Cited by 20 publications

(4 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…As a graphic example, consider the use of risk analysis in one of the leading regional enterprises of Kursk city and Kursk region -JSC the Institute of Ecological Safety (INSTEB). For more effective work, a preliminary self-assessment of JSC INSTEB was carried out using SWOT analysis (Neumann, Grace, Burns, & Surridge, 2019), which resulted in the identification of positive factors and threats to the internal and external environment, as well as the organization potential. In order to provide a more comprehensive presentation of information, we will reflect the results of the conducted research and present the risk analysis in details.…”

Section: Resultsmentioning

confidence: 99%

Modern Risk Management Methodologies: Global Experience And Russian Practice

Maiakova¹

2019

The European Proceedings of Social and Behavioural Sciences

View full text Add to dashboard Cite

show abstract

Section: Resultsmentioning

confidence: 99%

Modern Risk Management Methodologies: Global Experience And Russian Practice

Maiakova¹

2019

The European Proceedings of Social and Behavioural Sciences

View full text Add to dashboard Cite

show abstract

“…Finally, pseudonymization is a process in which there is a replacement of direct and indirect identifiers by coded identifiers that do not allow their interpretation outside the context in which they are used (Starchon and Pikulik, 2019). As Neumann et al (2019) state, pseudonymization contributes to increase data security and may decrease the data caused by possible leaks. This advantage was also mentioned by CS1 as pseudonymized data and their encryption processes are kept separate.…”

Section: Discussionmentioning

confidence: 99%

The impact of general data protection regulation on software engineering practices

Leite

Santos

Almeida

2021

ICS

View full text Add to dashboard Cite

Purpose This paper aims to explore the changes imposed by the general data protection regulation (GDPR) on software engineering practices. The fundamental objective is to have a perception of the practices and phases that have experienced the greatest changes. Additionally, it aims to identify a set of good practices that can be adopted by software engineering companies. Design/methodology/approach This study uses a qualitative methodology through four case studies involving Portuguese software engineering companies. Two of these companies are small and medium enterprises (SMEs) while the other remaining two are micro-companies. The thematic analysis is adopted to identify patterns in the performed interviews. Findings The findings indicate that significant changes have occurred at all stages of software development. In particular, the initial stages of identifying requirements and modeling processes were the stages that experienced the greatest changes. On the opposite, the technical development phase has not noticeably changed but, nevertheless, it is necessary to look at the importance of training software developers for GDPR rules and practices. Research limitations/implications Two relevant limitations were identified as follows: only four case studies involving micro-companies and SMEs were considered, and only the traditional software development methodology was considered. The use of agile methodologies was not explored in this study and the findings can only be mainly applied to the waterfall model. Originality/value This study offers mainly practical contributions by identifying a set of challenges that are posed to software engineering companies by the implementation of GDPR. Through their knowledge, it is expected to help these companies to better prepare themselves and anticipate the challenges they will necessarily face.

show abstract

“…El cifrado con clave secreta es una técnica aplicada para el reconocimiento de información usando contraseñas de seguridad que permite descifrar valores o datos acerca de un usuario, su eficiencia se relaciona con el compromiso del personal autorizado en proteger los datos y almacenarlos en entornos seguros (Neumann et al, 2019).…”

Section: Secretaunclassified

Técnicas de anonimización y pseudonimización en la protección de datos personales

Córdova-Real,

López-Sevilla

2024

MQRInvestigar

View full text Add to dashboard Cite

Las técnicas de anonimización y pseudonimización ofrecen a los usuarios la protección de sus datos personales para evitar que sean difundidos y utilizados con un propósito ajeno para los cuales fueron recolectados. El presente articulo tiene como objetivo comparar las diversas técnicas de protección de datos personales como la anonimización y pseudonimización. Para ello, se examina a detalle su fundamentación teórica y características inherentes de cada técnica, los procedimientos de aplicación, beneficios y limitaciones que trae consigo la aplicación de estas metodologías. Para investigar acerca de la temática, se emplea la metodología PRISMA que permite buscar, seleccionar y analizar la literatura científica, dando como resultado de la recopilación de documentos mediante el empleo de gestores de búsqueda un total de 32 artículos científicos que fueron desarrollados entre 2018-2023 y contienen información relevante que aporta al desarrollo del presente artículo. Los resultados indican que la técnica de anonimización está enfocada en presentar datos no identificables mediante la adición de ruido, permutaciones o privacidad diferencial que contribuyen a mantener la privacidad de los datos y preservar la utilidad de los mismos. Paralelamente, la pseudonimización tiene como objetivo reemplazar la información inicial identificable con seudónimos que mantengan protegida la identidad de una persona. Como conclusión del estudio, se definen las técnicas de protección de información personal. Estas estrategias son fundamentales para identificar datos considerados como confidenciales para los usuarios, aplicando métodos de privatización que reduzcan los riesgos inherentes al compartir información con terceros; logrando el equilibrio entre utilidad y la reserva de información.

show abstract

Pseudonymization risk analysis in distributed systems

Cited by 20 publications

References 22 publications

Modern Risk Management Methodologies: Global Experience And Russian Practice

Modern Risk Management Methodologies: Global Experience And Russian Practice

The impact of general data protection regulation on software engineering practices

Técnicas de anonimización y pseudonimización en la protección de datos personales

Contact Info

Product

Resources

About