Privacy Risk Assessment Case Studies in Support of SQUARE

Abstract

This report contributes to further development of the Security Quality Requirements Engineering (SQUARE) method to support privacy. Risk assessment is Step 4 in the standard SQUARE process. The report examines privacy definitions, privacy regulations, and risk assessment techniques for privacy. The risk assessment techniques are classified using a standard method, and promising techniques are applied to two case studies. The case study results are provided along with future plans for SQUARE in support of Privacy. Software-intensive systems are widely used for the rapid storage and retrieval of data. We trust that all types of data will reside in these systems and easily be transferred to other systems. This high level of trust poses certain privacy risks for sensitive information. If these risks are identified, we will be able to understand the potential consequences and establish the necessary preventative measures. This report summarizes the assessment of risks while focusing primarily on privacy concerns.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 2009
Accession Number
ADA512390

Entities

People

  • Prashanth Batlagundu
  • Varokas Panusuwan

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Biomedical

DTIC Thesaurus Topics

  • Business Administration
  • Case Studies
  • Commerce
  • Computer Programming
  • Department Of Defense
  • Electronic Mail
  • Health Care
  • Information Exchange
  • Information Systems
  • Law
  • Risk
  • Risk Analysis
  • Risk Management
  • Software Development
  • Standards
  • United States
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Distributed Systems and Data Platform Development
  • Software Engineering.
  • Systems Analysis and Design