compliance by construction
play

Compliance-by-Construction ? Privacy Compliance via Model - PowerPoint PPT Presentation

Jan 16, 2023 •135 likes •223 views

Compliance-by-Construction ? Privacy Compliance via Model Transformations T. Antignac, R. Scandariato, G. Schneider Riccardo Scandariato Software Engineering Division Chalmers | University of Gothenburg riccardo.scandariato@cse.gu.se Holistic

  1. Compliance-by-Construction ? Privacy Compliance via Model Transformations T. Antignac, R. Scandariato, G. Schneider Riccardo Scandariato Software Engineering Division Chalmers | University of Gothenburg riccardo.scandariato@cse.gu.se Holistic Security of www.scandariato.org Connected Vehicles

  2. GDPR challenges… …that we often discuss with industrial parners • What does it mean? vs (for technical ppl) – How do find we are not in compliance? – How do we fix a non-compliance issue? • Lack of privacy experts • Large-scale systems (micro-services, IoT…) 2

  3. Technical compliance to GDPR At the level of design models • Model-based ( PA-DFD ), automated T. Antignac, R. Scandariato, G. Schneider, A Privacy-Aware • Recipe Conceptual Model for Handling Personal Data , ISoLA 2016 – Where : Identify hotspots This – What : Apply model transformations paper – Why : Proven privacy properties Next paper ;) 3

  4. Privacy principles • Purpose limitation • Retention time • Accountability of data controller • Right to erasure

  5. Hotspots in a PA-DFD A.k.a. interactions usage collection disclosure Entity Entity Proc. (Data Subject) personal data r e retrieval c o r d i n g Data Data Store e r u subject s a X r Purpose e Retention

  6. Constructive approach to GDPR compliance Towards proven model transformations Transformations (what) Hotspots (where) Privacy-sensitive part d,pol d Process of the design model Limit Log d d,pol r e g External External i s t pol Log r entity a Entity Customer t i i n o f n o pol pol Request P collection WiP Registration 1. Transformed model is well-formed Proof 2. Functionality is preserved 3. Privacy properties hold: ü Purpose limitation ü Accountability of data controller ü Data subject’s right to change 6

  7. TLDR ;) Technical definition of (GDPR) compliance @ design (I know, I know… it’s not the entire GDPR) Automation for compliance-by-construction (yes, yes… the model might become a mess) 7

  8. Questions ? riccardo.scandariato@cse.gu.se www.scandariato.org 8

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Construction Projects and Construction Projects and ADA Accessibility Compliance Drafting Design

Construction Projects and Construction Projects and ADA Accessibility Compliance Drafting Design

Presenting a live 90 minute webinar with interactive Q&A Construction Projects and Construction Projects and ADA Accessibility Compliance Drafting Design and Construction Contracts to Manage ADA Risks TUES DAY, MAY 21, 2013 1pm Eastern

850 views • 81 slides
Construction Construction Performance Audits: How to Achieve How to Achieve Compliance and

Construction Construction Performance Audits: How to Achieve How to Achieve Compliance and

Construction Construction Performance Audits: How to Achieve How to Achieve Compliance and Program Goals Presenters: Curtis Matthews Partner Curtis Matthews, Partner Shirley Komoto, Senior Manager October 7, 2010 Agenda Agenda Current

433 views • 41 slides
Board of Visitors Audit, Compliance, and Risk Committee September 2018 1 Construction

Board of Visitors Audit, Compliance, and Risk Committee September 2018 1 Construction

Board of Visitors Audit, Compliance, and Risk Committee September 2018 1 Construction Management: Financial Controls and Project Monitoring 1. Overview of Business 2. Construction Process 3. University Hospital Expansion Project 4.

914 views • 32 slides
EDUCATE. CONNECT. G R O W. MWSBE Compliance on Construction Contracts Presented by: E D U C A T

EDUCATE. CONNECT. G R O W. MWSBE Compliance on Construction Contracts Presented by: E D U C A T

EDUCATE. CONNECT. G R O W. MWSBE Compliance on Construction Contracts Presented by: E D U C A T E . C O N N E C T . G R O W . MARSHA E. MURRAY, Deputy Director BARBARA FISHER & TIFNEY SCOTT Procurement Specialists, OBO Department Services

747 views • 74 slides
Environmental compliance Construction sites Al Galloway, Regulatory Manager, SEPA Graeme

Environmental compliance Construction sites Al Galloway, Regulatory Manager, SEPA Graeme

Environmental compliance Construction sites Al Galloway, Regulatory Manager, SEPA Graeme Henderson, Senior, SEPA Types of construction we see Trunk/main roads Forestry roads Estate access roads Renewables (hydro, wind);

787 views • 29 slides
Construction Site Stormwater Compliance Presentation for CALBIG September 21, 2016 Peter

Construction Site Stormwater Compliance Presentation for CALBIG September 21, 2016 Peter

Construction Site Stormwater Compliance Presentation for CALBIG September 21, 2016 Peter Schultze Allen, EOA, Inc. LEED AP, Bay Friendly Qualified Professional on behalf of the San Mateo Countywide Water Pollution Prevention Program

865 views • 54 slides
ADA Construction Training Achieving Compliance on SHA Projects Presented by Norie Calvert John

ADA Construction Training Achieving Compliance on SHA Projects Presented by Norie Calvert John

ADA Construction Training Achieving Compliance on SHA Projects Presented by Norie Calvert John Gover Statutory Authority Americans with Disabilities Act (ADA) of 1990 is a civil rights law that requires equal access to all individuals

946 views • 69 slides
Bureau of Labor Law Compliance Enforcement of the Construction Workplace Misclassification Act

Bureau of Labor Law Compliance Enforcement of the Construction Workplace Misclassification Act

Bureau of Labor Law Compliance Enforcement of the Construction Workplace Misclassification Act (Act 72) 1 S COPE OF B UREAU OF L ABOR L AW C OMPLIANCE S E NFORCEMENT Minimum Wage Apprenticeship Prevailing Wage Child Labor Wage Payment and

252 views • 23 slides
Construction Site Stormwater Compliance Presentation for CALBIG October 11, 2017 Peter Schultze

Construction Site Stormwater Compliance Presentation for CALBIG October 11, 2017 Peter Schultze

Construction Site Stormwater Compliance Presentation for CALBIG October 11, 2017 Peter Schultze Allen, EOA, Inc. LEED AP, Bay Friendly Qualified Professional on behalf of the San Mateo Countywide Water Pollution Prevention Program

991 views • 54 slides
Overview of the New Construction General Permit John Teravskis John Teravskis Compliance Specialist

Overview of the New Construction General Permit John Teravskis John Teravskis Compliance Specialist

Overview of the New Construction General Permit John Teravskis John Teravskis Compliance Specialist The new Construction General Permit (CGP) was Th C t ti G l P it (CGP) adopted on September 2, 2009. Goes into effect July 1 2010

479 views • 27 slides
Tax Compliance and Budget Update Seminar ASPIRE BUSINESS PARTNERSHIP LLP Tax Compliance &

Tax Compliance and Budget Update Seminar ASPIRE BUSINESS PARTNERSHIP LLP Tax Compliance &

Tax Compliance and Budget Update Seminar ASPIRE BUSINESS PARTNERSHIP LLP Tax Compliance & Budget Update Seminar Who is in the room? A. Construction B. Umbrella C. Agency D. Legal Advisor E. Software Provider 0% 0% 0% 0% 0% 0% F.

1.2k views • 106 slides
Compliance Andy McDaniel, P.E. If you remember only one thing from this presentation

Compliance Andy McDaniel, P.E. If you remember only one thing from this presentation

Managing Stormwater Runoff NPDES Stormwater Program Compliance Andy McDaniel, P.E. If you remember only one thing from this presentation Compliance with NCDOTs Post-Construction Stormwater Program (PCSP) = Compliance with Stormwater

532 views • 31 slides
INTERNATIONAL GREEN CONSTRUCTION CODE (IgCC) IgCC 2012 Compliance with National Green Building

INTERNATIONAL GREEN CONSTRUCTION CODE (IgCC) IgCC 2012 Compliance with National Green Building

INTERNATIONAL GREEN CONSTRUCTION CODE (IgCC) IgCC 2012 Compliance with National Green Building Standard August 2014 Our Philosophy Builders should have a choice in green certification programs ANSI-approved NGBS is national, credible,

344 views • 18 slides
BIM and IPD the Defence Perspective Construction Contractual and Procurement Strategy

BIM and IPD the Defence Perspective Construction Contractual and Procurement Strategy

BIM and IPD the Defence Perspective Construction Contractual and Procurement Strategy Infrastructure Division - DSRG Bob Baird AM Executive Director Capital Facilities Processes and Compliance Construction Contractual and Procurement Strategy

175 views • 17 slides
Compliance Overview and Compliance by Design [CbD] aka Doing the Right Things at the Right

Compliance Overview and Compliance by Design [CbD] aka Doing the Right Things at the Right

Compliance Overview and Compliance by Design [CbD] aka Doing the Right Things at the Right Time ASQ Meeting, 14 August 2012, Santa Ana, CA Dr. Raymond W. Brullo, DPM Compliance Officer , FDA Los Angeles District Office, Irvine, CA Doctor

516 views • 40 slides
HUB Construction Reporting Welcome to HUBSCO System Training! John Guenther Compliance Officer

HUB Construction Reporting Welcome to HUBSCO System Training! John Guenther Compliance Officer

Office for Historically Underutilized Businesses HUB Construction Reporting Welcome to HUBSCO System Training! John Guenther Compliance Officer HUB Office 919-807-2436 John.Guenther@doa.nc.gov http://ncadmin.nc.gov/businesses/hub

691 views • 47 slides
Slides for Lecture 21 ENEL 353: Digital Circuits Fall 2013 Term Steve Norman, PhD, PEng

Slides for Lecture 21 ENEL 353: Digital Circuits Fall 2013 Term Steve Norman, PhD, PEng

Slides for Lecture 21 ENEL 353: Digital Circuits Fall 2013 Term Steve Norman, PhD, PEng Electrical & Computer Engineering Schulich School of Engineering University of Calgary 28 October, 2013 slide 2/14 ENEL 353 F13 Section 02 Slides

424 views • 14 slides
ASL Introduction AIRS Retrievals of Dust-Contaminated Data L2CCR: No Cloud-Cleared Radiances

ASL Introduction AIRS Retrievals of Dust-Contaminated Data L2CCR: No Cloud-Cleared Radiances

ASL Introduction AIRS Retrievals of Dust-Contaminated Data L2CCR: No Cloud-Cleared Radiances Dust L1B vs L2CC UMBC vs L2 retrievals Sergio DeSouza-Machado, Larrabee Strow, Conclusions S. E. Hannon, B. Imbiriba Atmospheric Spectroscopy

327 views • 20 slides
MiniBooNE: OverviewandResults JoeGrange UniversityofFlorida

MiniBooNE: OverviewandResults JoeGrange UniversityofFlorida

MiniBooNE: OverviewandResults JoeGrange UniversityofFlorida 7/15/10 grange@fnal.gov Outline MoBvaBons OscillaBons CrossSecBons MiniBooNE LogisBcs

985 views • 87 slides
Built-in Self-test October 26, 2011 1 Introduction Test generation and response evaluation

Built-in Self-test October 26, 2011 1 Introduction Test generation and response evaluation

Built-in Self-test October 26, 2011 1 Introduction Test generation and response evaluation done on-chip. Only a few external pins to control BIST operation. Additional hardware overhead. Additional hardware overhead. Offers

628 views • 61 slides
Trust in the context of smart cities Synchronicity: Privacy by Design Strategy for Smart Cities

Trust in the context of smart cities Synchronicity: Privacy by Design Strategy for Smart Cities

Trust in the context of smart cities Synchronicity: Privacy by Design Strategy for Smart Cities Connected Smart Cities Brussels, January 17, 2019 Dile ilemma & & D Dua ual Stra l Strate tegy gy Priva Privacy R y Risk isks for

518 views • 16 slides
Loop Transformations Sebastian Hack Saarland University Compiler Construction W2015 saarland

Loop Transformations Sebastian Hack Saarland University Compiler Construction W2015 saarland

Loop Transformations Sebastian Hack Saarland University Compiler Construction W2015 saarland university computer science 1 Loop Transformations: Example matmul.c 2 Optimization Goals Increase locality (caches) Facilitate

551 views • 20 slides
Exploiting Depmap cancer dependency data using the depmap R package Theo Killian Gatto Lab 1

Exploiting Depmap cancer dependency data using the depmap R package Theo Killian Gatto Lab 1

UCLouvain Institut de Duve - Computational Biology and Bioinformatics Exploiting Depmap cancer dependency data using the depmap R package Theo Killian Gatto Lab 1 Cancer Dependency Map Precision cancer medicine seeks to target

504 views • 13 slides
MODESTO: Data-centric Analytic Optimization of Complex Stencil Programs on Heterogeneous

MODESTO: Data-centric Analytic Optimization of Complex Stencil Programs on Heterogeneous

spcl.inf.ethz.ch @spcl_eth T OBIAS G YSI , T OBIAS G ROSSER , AND T ORSTEN H OEFLER MODESTO: Data-centric Analytic Optimization of Complex Stencil Programs on Heterogeneous Architectures spcl.inf.ethz.ch @spcl_eth Stencil Programs Motivation:

199 views • 19 slides

More recommend