Tool-Supporting Data Protection Impact Assessments with CAIRIS

Coles, Joshua; Faily, Shamal; Ki-Aries, Duncan

doi:10.1109/espre.2018.00010

Cited by 12 publications

(11 citation statements)

References 8 publications

(13 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A sub-set of the IRIS concepts relevant to this paper is provided in Figure 1. Coles et al [2] demonstrated how use cases and assets provide the concepts necessary to threat model with data flow diagrams, and how -in addition to modelling system goals -the KAOS modelling language [12] is also suitable for modelling attack trees as obstacles. To make attacker assumptions more explicit, IRIS supports the specification of attackers.…”

Section: Security and Software Design Meta-modelsmentioning

confidence: 99%

Contextualisation of Data Flow Diagrams for Security Analysis

Faily

Scandariato

Shostack

et al. 2020

Graphical Models for Security

Self Cite

View full text Add to dashboard Cite

Data flow diagrams (DFDs) are popular for sketching systems for subsequent threat modelling. Their limited semantics make reasoning about them difficult, but enriching them endangers their simplicity and subsequent ease of take up. We present an approach for reasoning about tainted data flows in design-level DFDs by putting them in context with other complementary usability and requirements models. We illustrate our approach using a pilot study, where tainted data flows were identified without any augmentations to either the DFD or its complementary models.

show abstract

Section: Security and Software Design Meta-modelsmentioning

confidence: 99%

Contextualisation of Data Flow Diagrams for Security Analysis

Faily

Scandariato

Shostack

et al. 2020

Graphical Models for Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…11 DPIAs should be relatively cheap to implement with sufficient resources and tools. 12 However, while there is advice on the legal requirements for DPIA and the elements of what practitioners should do to undertake a DPIA there has been little prescription about how security and privacy requirements engineering processes map to the necessary activities of a DPIA, and how these activities can be toolsupported. 12 Coles, Fairy and Ki-Aries have studied existing privacy requirements engineering approaches and tools that support carrying out DPIAs.…”

Section: Data Protection Impact Assessmentmentioning

confidence: 99%

“…12 However, while there is advice on the legal requirements for DPIA and the elements of what practitioners should do to undertake a DPIA there has been little prescription about how security and privacy requirements engineering processes map to the necessary activities of a DPIA, and how these activities can be toolsupported. 12 Coles, Fairy and Ki-Aries have studied existing privacy requirements engineering approaches and tools that support carrying out DPIAs. 12 The existing approaches capture the elements that would be needed by a DPIA, but two barriers need to be overcome before such approaches are ready for security and practitioners to use in DPIAs: 12 1) more prescription is needed to indicate what tools and techniques map to different stages of a DPIA, and 2) such steps need to be adequately tool-supported, such that data input in one step can be used to support reasoning and analysis in others.…”

Section: Data Protection Impact Assessmentmentioning

confidence: 99%

“…12 The existing approaches capture the elements that would be needed by a DPIA, but two barriers need to be overcome before such approaches are ready for security and practitioners to use in DPIAs: 12 1) more prescription is needed to indicate what tools and techniques map to different stages of a DPIA, and 2) such steps need to be adequately tool-supported, such that data input in one step can be used to support reasoning and analysis in others. Their main contributions: 12 1) existing Requirements Engineering techniques associated with Integrating Requirements and Information Security process framework can be effective when supporting the different steps needed when carrying out a DPIA, but there is no one-to-one mapping between requirements and techniques, and several techniques might be needed to support a single step; 2) demonstration how an exemplar for Security Requirements Engineering tools supports and helps reason about potential GDPR compliance issues as a design evolves; and 3) they present a real example where their approach assessed the conceptual design of a medical application without an initial specification, and only the most preliminary of known functionality. They show that the use of this approach and the Requirements Engineering techniques in general, are effective in discovering additional functionality, and envisaging different forms of intended and unintended device use.…”

Section: Data Protection Impact Assessmentmentioning

confidence: 99%

“…They show that the use of this approach and the Requirements Engineering techniques in general, are effective in discovering additional functionality, and envisaging different forms of intended and unintended device use. 12…”

Section: Data Protection Impact Assessmentmentioning

confidence: 99%

See 2 more Smart Citations

Design Science Research towards Privacy by Design in Maritime Surveillance ICT Systems

Rajamäki¹

2019

ISIJ

View full text Add to dashboard Cite

Maritime surveillance is essential for creating maritime awareness. When open source intelligence (OSINT) is becoming a part of it, privacy in surveillance will be a special concern. However, processing of personal data in surveillance is regulated by the General Data Protection Regulation (GDPR) and/or by the Directive 2016/680 on the protection of natural persons with regard to the processing of personal data by competent authorities for the purposes of the prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties, and on the free movement of such data. In both of these regulations, Privacy by Design (PbD) approach is mandatory. GDPR encourages applying a Data Protection Impact Assessment (DPIA) to identify and minimize data protection risks as the initial step of any new project. This design science research shows how PbD and DPIA are adapted in the MARISA project and tries to be a step towards new meta-artefacts and useful methods for the design and validation of privacy requirements engineering approaches into maritime surveillance ICT systems.

show abstract

Tool-Assisted Risk Analysis for Data Protection Impact Assessment

Dashti

Ranise

2020

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Unlike the classical risk analysis that protects the assets of the company in question, the GDPR protects data subject's rights and freedoms, that is, the right to data protection and the right to have full control and knowledge about data processing concerning them. The GDPR articulates Data Protection Impact Assessment (DPIA) in article 35. DPIA is a risk-based process to enhance and demonstrate compliance with these requirements. We propose a methodology to conduct the DPIA in three steps and provide a supporting tool. In this paper, we particularly elaborate on risk analysis as a step of this methodology. The provided tool assists controllers to facilitate data subject's rights and freedoms. The assistance that our tool provides differentiates our work from the existing ones.

show abstract

Tool-Supporting Data Protection Impact Assessments with CAIRIS

Cited by 12 publications

References 8 publications

Contextualisation of Data Flow Diagrams for Security Analysis

Contextualisation of Data Flow Diagrams for Security Analysis

Design Science Research towards Privacy by Design in Maritime Surveillance ICT Systems

Tool-Assisted Risk Analysis for Data Protection Impact Assessment

Contact Info

Product

Resources

About