PIP: A (Privacy) Injection Pattern for Inserting Privacy Patterns and Services in Software
Abstract
Sensitive data may be leaked in many ways, and misuse of personal data from information systems is very common. It is challenging to implement privacy services in existing applications without affecting other modules. We propose the concept of a master privacy injection pattern (PIP) for software engineers to use to automate dynamically “injecting” existing privacy patterns in existing or new software without modifying its code, or in some cases modifying the code to a very small extent. We illustrate our new PIP and the simplicity of its implementation with the use cases that inject well-known de-identification patterns in a banking application and a hospital management system. Early evaluation results for PIP from a small survey of practising software engineering professionals are encouraging. The majority of respondents believe that the PIP is beneficial, easy to implement, and 85% of the participants stated their intention to use the pattern.
Subject
Collections
Related items
Showing items related by title, author, creator and subject.
-
"Domestick Privacies": Biography and the Sanctifying of Privacy, from Johnson to Martineau
Harding, Anthony John (2005) -
Proposed Privacy Patterns for Privacy Preserving Healthcare Systems in Accord with Nova Scotia’s Personal Health Information Act
Aljohani, Maha; Hawkey, Kirstie; Blustein, James (Springer, 2016) -
PRIVACY PROTECTION FOR MOBILE HEALTH (MHEALTH) IN NIGERIA: A CONSIDERATION OF THE EU REGIME FOR DATA PROTECTION AS A CONCEPTUAL MODEL FOR REFORMING NIGERIA’S PRIVACY LEGISLATION
Salami, Olufunke (2015-04-07)The use of mobile technologies to provide and deliver healthcare is known as Mobile Health. Nigeria is one of the countries witnessing a profound use of these technologies. While discussions have focused on the potentials ...