Enforcing context-awareness and privacy-by-design in the specification of information systems

Boris Shishkov, Marijn Janssen

Research output: Chapter in Book/Conference proceedings/Edited volumeConference contributionScientificpeer-review

6 Citations (Scopus)
18 Downloads (Pure)

Abstract

Networked physical devices, vehicles, home appliances, and other items embedded with electronics, software, sensors, actuators, and connectivity, allow for run-time acquisition of user data. This in turn can enable information systems which capture the “current” user state and act accordingly. The use of this data would result in context-aware applications that get fueled by user data (and environmental data) to adapt their behavior. Yet the use of data is often restricted by privacy regulations and norms; for example, the location of a person cannot be shared without given consent. In this paper we propose a design approach that allows for weaving context-awareness and privacy-by-design into the specification of information systems. This is to be done since the very early stages of the software development, while the enterprise needs are captured (and understood) and the software features are specified on that basis. In addition to taking into account context-awareness and privacy-sensitivity these two aspects will be balanced, especially if they are conflicting. The presented approach extends the “Software Derived from Business Components” (SDBC) approach. We partially demonstrate our proposed way of modeling, by means of a case example featuring land border security. Our proposed way of modeling would allow developers to smoothly reflect context and privacy features in the application design, supported by methodological guidelines that span over the enterprise modeling and software specification. Those features are captured as technology-independent societal demands and are in the end reflected in technology-specific (software) solutions. Traceability between the two is possible as well as re-use of modeling constructs.

Original languageEnglish
Title of host publicationProceedings of 7th International Symposium Business Modeling and Software Design 2017 ( BMSD 2017)
EditorsBoris Shishkov
PublisherSpringer
Pages87-111
Number of pages25
Volume309
ISBN (Print)9783319784274
DOIs
Publication statusPublished - 2018
Event7th International Symposium on Business Modeling and Software Design, BMSD 2017 - Barcelona, Spain
Duration: 3 May 20175 May 2017
Conference number: 7

Publication series

NameLecture Notes in Business Information Processing
Volume309
ISSN (Print)18651348

Conference

Conference7th International Symposium on Business Modeling and Software Design, BMSD 2017
Abbreviated titleBMSD 2017
CountrySpain
CityBarcelona
Period3/05/175/05/17

Keywords

  • Context-awareness
  • Enterprise modeling
  • Privacy
  • Software specification

Fingerprint Dive into the research topics of 'Enforcing context-awareness and privacy-by-design in the specification of information systems'. Together they form a unique fingerprint.

  • Cite this

    Shishkov, B., & Janssen, M. (2018). Enforcing context-awareness and privacy-by-design in the specification of information systems. In B. Shishkov (Ed.), Proceedings of 7th International Symposium Business Modeling and Software Design 2017 ( BMSD 2017) (Vol. 309, pp. 87-111). (Lecture Notes in Business Information Processing; Vol. 309). Springer. https://doi.org/10.1007/978-3-319-78428-1_5