Conference Paper

Towards a UML Profile for Privacy-Aware Applications

PDF Online

Authors Tania BassoLeonardo MontecchiRegina MoraesMario JinoAndrea Bondavalli
Abstract
Personal information is continuously gathered and processed by modern web applications. Due to regulation laws and to protect the privacy of users, customers, and business partners, such information must be kept private. A recurring problem in constructing web applications and services that protect privacy is the insufficient resources for documenting them. As web applications must be developed consistently with the statements of the privacy policy in order to enforce them, a structured documentation is necessary to model privacy protection during application design. To contribute with solutions to this problem, in this paper we propose a UML profile for privacy-aware applications. This profile helps building UML models that specify and structure particular concepts of privacy and, consequently, improve privacy definition and enforcement. After introducing the main privacy concepts, we describe how they are represented in the UML language. The profile's ability to model statements of realistic privacy policies is then demonstrated on a case study.
DOI 10.1109/CIT/IUCC/DASC/PICOM.2015.53
Event 15th IEEE International Conference on Computer and Information Technology (CIT 2015)
Venue Liverpool, UK
Date October 26-28, 2015
Pages 371-378
Publisher IEEE
ISBN ELECTRONIC: 978-1-5090-0154-5
CDROM: 978-1-5090-0153-8
 
 

© 2017-2019 Leonardo Montecchi