Compliance-by-Construction ? Privacy Compliance via Model - - PowerPoint PPT Presentation

▶

Jan 16, 2023 135 likes •224 views

Compliance-by-Construction ? Privacy Compliance via Model Transformations T. Antignac, R. Scandariato, G. Schneider Riccardo Scandariato Software Engineering Division Chalmers | University of Gothenburg riccardo.scandariato@cse.gu.se Holistic

SLIDE 1

Compliance-by-Construction ?

Riccardo Scandariato

Software Engineering Division Chalmers | University of Gothenburg

riccardo.scandariato@cse.gu.se www.scandariato.org

Privacy Compliance via Model Transformations

T. Antignac, R. Scandariato, G. Schneider

Holistic Security of Connected Vehicles

SLIDE 2

GDPR challenges…

What does it mean?

(for technical ppl)

– How do find we are not in compliance? – How do we fix a non-compliance issue?

Lack of privacy experts
Large-scale systems (micro-services, IoT…)

…that we often discuss with industrial parners

vs

SLIDE 3

Technical compliance to GDPR

Model-based (PA-DFD), automated
Recipe

– Where: Identify hotspots – What: Apply model transformations – Why: Proven privacy properties

At the level of design models

T. Antignac, R. Scandariato, G.

Schneider, A Privacy-Aware Conceptual Model for Handling Personal Data, ISoLA 2016 This paper Next paper ;)

SLIDE 4

Privacy principles

Purpose limitation
Retention time
Accountability of data controller
Right to erasure

SLIDE 5

Hotspots in a PA-DFD

A.k.a. interactions

Proc. Entity (Data Subject) Entity Data Store usage collection disclosure r e c

d i n g retrieval e r a s u r e X personal data Data subject Purpose Retention

SLIDE 6

Constructive approach to GDPR compliance Towards proven model transformations

Privacy-sensitive part

f the design model

Transformations (what)

1. Transformed model is well-formed 2. Functionality is preserved 3. Privacy properties hold: ü Purpose limitation ü Accountability of data controller ü Data subject’s right to change

Proof Hotspots (where)

Customer Registration

collection

r e g i s t r a t i

i n f

External

entity

Limit Request

pol

Log Log

pol d,pol d,pol d pol

External Entity Process

WiP

SLIDE 7

TLDR ;)

Technical definition of (GDPR) compliance @ design

(I know, I know… it’s not the entire GDPR)

Automation for compliance-by-construction

(yes, yes… the model might become a mess)

SLIDE 8

Compliance-by-Construction ?

Riccardo Scandariato

riccardo.scandariato@cse.gu.se www.scandariato.org

Privacy Compliance via Model Transformations

GDPR challenges…

(for technical ppl)

– How do find we are not in compliance? – How do we fix a non-compliance issue?

…that we often discuss with industrial parners

vs

Technical compliance to GDPR

– Where: Identify hotspots – What: Apply model transformations – Why: Proven privacy properties

At the level of design models

Privacy principles

Hotspots in a PA-DFD

A.k.a. interactions

Constructive approach to GDPR compliance Towards proven model transformations

Transformations (what)

Proof Hotspots (where)

TLDR ;)

Technical definition of (GDPR) compliance @ design

Automation for compliance-by-construction

Questions ?

riccardo.scandariato@cse.gu.se www.scandariato.org