PIP: A (Privacy) Injection Pattern for Inserting Privacy Patterns and Services in Software
MetadataShow full item record
Sensitive data may be leaked in many ways, and misuse of personal data from information systems is very common. It is challenging to implement privacy services in existing applications without affecting other modules. We propose the concept of a master privacy injection pattern (PIP) for software engineers to use to automate dynamically “injecting” existing privacy patterns in existing or new software without modifying its code, or in some cases modifying the code to a very small extent. We illustrate our new PIP and the simplicity of its implementation with the use cases that inject well-known de-identification patterns in a banking application and a hospital management system. Early evaluation results for PIP from a small survey of practising software engineering professionals are encouraging. The majority of respondents believe that the PIP is beneficial, easy to implement, and 85% of the participants stated their intention to use the pattern.
Showing items related by title, author, creator and subject.
Bryn, Ajith Winston (2014-04-01)Huge growth of the Internet is due to the large number of websites and web services through which information is easily accessible. E-commerce and e-services obtain much private data from users for various reasons such ...
Poole, Trevor (2014-12-23)In the last decade, with organizations’ increased reliance on digital storage of information, privacy laws have been implemented and updated to help govern the collection, use, disclosure, storage and destruction of personal ...