Privacy has emerged as a key concern for business and social computing as security breaches have compromised personal data for millions. Despite this, much of existing work on privacy requirements deal with them as a special case of security requirements, thereby missing essential traits of such requirements. In this context, wrong design decisions may be made due to an insufficient understanding of privacy. The main contribution of this paper is an ontology for privacy requirements that subsumes whatever proposals exist in the literature. The ontology was obtained through a systematic literature review concerning the literature on privacy, conducted in two phases, and followed by a consolidation phase where similar concepts were combined. The proposed ontology has been developed to be used by software engineers when dealing with privacy requirements, and since it is based on a systematic literature review, it is more comprehensive in coverage than all ontologies included in our systematic review. This constitutes a preliminary validity check for the comprehensiveness of our proposal, which needs to be complemented in the future with empirical validation through controlled studies.
An Ontology for Privacy Requirements via a Systematic Literature Review / Gharib, Mohamad; Giorgini, Paolo; Mylopoulos, John. - In: JOURNAL ON DATA SEMANTICS. - ISSN 1861-2032. - 9:4(2020), pp. 123-149. [10.1007/s13740-020-00116-5]
An Ontology for Privacy Requirements via a Systematic Literature Review
Gharib, Mohamad;Giorgini, Paolo;Mylopoulos, John
2020-01-01
Abstract
Privacy has emerged as a key concern for business and social computing as security breaches have compromised personal data for millions. Despite this, much of existing work on privacy requirements deal with them as a special case of security requirements, thereby missing essential traits of such requirements. In this context, wrong design decisions may be made due to an insufficient understanding of privacy. The main contribution of this paper is an ontology for privacy requirements that subsumes whatever proposals exist in the literature. The ontology was obtained through a systematic literature review concerning the literature on privacy, conducted in two phases, and followed by a consolidation phase where similar concepts were combined. The proposed ontology has been developed to be used by software engineers when dealing with privacy requirements, and since it is based on a systematic literature review, it is more comprehensive in coverage than all ontologies included in our systematic review. This constitutes a preliminary validity check for the comprehensiveness of our proposal, which needs to be complemented in the future with empirical validation through controlled studies.File | Dimensione | Formato | |
---|---|---|---|
Gharib2020_Article_AnOntologyForPrivacyRequiremen.pdf
Solo gestori archivio
Tipologia:
Versione editoriale (Publisher’s layout)
Licenza:
Tutti i diritti riservati (All rights reserved)
Dimensione
674.63 kB
Formato
Adobe PDF
|
674.63 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione