Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements

Duaa Alkubaisy; Karl Cox; Haralambos Mouratidis

doi:10.1109/RCIS.2019.8876999

Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements

Duaa Alkubaisy, Karl Cox, Haralambos Mouratidis

Doctoral College

Research output: Chapter in Book/Conference proceeding with ISSN or ISBN › Conference contribution with ISSN or ISBN › peer-review

Abstract

requirement engineering live in a world were contradiction is the norm. Hence, development of software engineering is usually an adjustable and upgrading cyclical process. We found in the literature that some requirements conflict with other requirements. We will focus in this study on identification and resolution of conflicts between security and privacy requirements. Although, most the recent studies focus on identifying conflicts without proposing a solution to resolve it. This paper presents an approach to identifying and resolving conflicting privacy and security requirements as patterns. By using patterns to describe the problem we can propose a solution for each conflict.

Original language	English
Title of host publication	Proceedings
Subtitle of host publication	RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems
Editors	Manuel Kolp, Jean Vanderdonckt, Monique Snoeck, Yves Wautelet
Publisher	IEEE Computer Society
ISBN (Electronic)	9781728148441
DOIs	https://doi.org/10.1109/RCIS.2019.8876999
Publication status	Published - 31 May 2019
Event	13th IEEE International Conference on Research Challenges in Information Science, RCIS 2019 - Brussels, Belgium Duration: 29 May 2019 → 31 May 2019

Publication series

Name	Proceedings - International Conference on Research Challenges in Information Science
Volume	2019-May
ISSN (Print)	2151-1349
ISSN (Electronic)	2151-1357

Conference

Conference	13th IEEE International Conference on Research Challenges in Information Science, RCIS 2019
Country/Territory	Belgium
City	Brussels
Period	29/05/19 → 31/05/19

Bibliographical note

© 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

Keywords

conflict
privacy requirements
security requirements
software engineering
strategy of resolution

Access to Document

10.1109/RCIS.2019.8876999

Towards Detecting and Mitigating Conflicts for Privacy and SecurityAccepted author manuscript, 960 KB

Cite this

Alkubaisy, D., Cox, K., & Mouratidis, H. (2019). Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements. In M. Kolp, J. Vanderdonckt, M. Snoeck, & Y. Wautelet (Eds.), Proceedings: RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems Article 8876999 (Proceedings - International Conference on Research Challenges in Information Science; Vol. 2019-May). IEEE Computer Society. https://doi.org/10.1109/RCIS.2019.8876999

Alkubaisy, Duaa ; Cox, Karl ; Mouratidis, Haralambos. / Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements. Proceedings: RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems. editor / Manuel Kolp ; Jean Vanderdonckt ; Monique Snoeck ; Yves Wautelet. IEEE Computer Society, 2019. (Proceedings - International Conference on Research Challenges in Information Science).

@inproceedings{5a44a2ba89074db4b28e2c704f73a833,

title = "Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements",

abstract = "requirement engineering live in a world were contradiction is the norm. Hence, development of software engineering is usually an adjustable and upgrading cyclical process. We found in the literature that some requirements conflict with other requirements. We will focus in this study on identification and resolution of conflicts between security and privacy requirements. Although, most the recent studies focus on identifying conflicts without proposing a solution to resolve it. This paper presents an approach to identifying and resolving conflicting privacy and security requirements as patterns. By using patterns to describe the problem we can propose a solution for each conflict.",

keywords = "conflict, privacy requirements, security requirements, software engineering, strategy of resolution",

author = "Duaa Alkubaisy and Karl Cox and Haralambos Mouratidis",

note = "{\textcopyright} 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. ; 13th IEEE International Conference on Research Challenges in Information Science, RCIS 2019 ; Conference date: 29-05-2019 Through 31-05-2019",

year = "2019",

month = may,

day = "31",

doi = "10.1109/RCIS.2019.8876999",

language = "English",

series = "Proceedings - International Conference on Research Challenges in Information Science",

publisher = "IEEE Computer Society",

editor = "Manuel Kolp and Jean Vanderdonckt and Monique Snoeck and Yves Wautelet",

booktitle = "Proceedings",

}

Alkubaisy, D, Cox, K & Mouratidis, H 2019, Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements. in M Kolp, J Vanderdonckt, M Snoeck & Y Wautelet (eds), Proceedings: RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems., 8876999, Proceedings - International Conference on Research Challenges in Information Science, vol. 2019-May, IEEE Computer Society, 13th IEEE International Conference on Research Challenges in Information Science, RCIS 2019, Brussels, Belgium, 29/05/19. https://doi.org/10.1109/RCIS.2019.8876999

Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements. / Alkubaisy, Duaa; Cox, Karl; Mouratidis, Haralambos.
Proceedings: RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems. ed. / Manuel Kolp; Jean Vanderdonckt; Monique Snoeck; Yves Wautelet. IEEE Computer Society, 2019. 8876999 (Proceedings - International Conference on Research Challenges in Information Science; Vol. 2019-May).

Research output: Chapter in Book/Conference proceeding with ISSN or ISBN › Conference contribution with ISSN or ISBN › peer-review

TY - GEN

T1 - Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements

AU - Alkubaisy, Duaa

AU - Cox, Karl

AU - Mouratidis, Haralambos

N1 - © 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

PY - 2019/5/31

Y1 - 2019/5/31

N2 - requirement engineering live in a world were contradiction is the norm. Hence, development of software engineering is usually an adjustable and upgrading cyclical process. We found in the literature that some requirements conflict with other requirements. We will focus in this study on identification and resolution of conflicts between security and privacy requirements. Although, most the recent studies focus on identifying conflicts without proposing a solution to resolve it. This paper presents an approach to identifying and resolving conflicting privacy and security requirements as patterns. By using patterns to describe the problem we can propose a solution for each conflict.

AB - requirement engineering live in a world were contradiction is the norm. Hence, development of software engineering is usually an adjustable and upgrading cyclical process. We found in the literature that some requirements conflict with other requirements. We will focus in this study on identification and resolution of conflicts between security and privacy requirements. Although, most the recent studies focus on identifying conflicts without proposing a solution to resolve it. This paper presents an approach to identifying and resolving conflicting privacy and security requirements as patterns. By using patterns to describe the problem we can propose a solution for each conflict.

KW - conflict

KW - privacy requirements

KW - security requirements

KW - software engineering

KW - strategy of resolution

UR - http://www.scopus.com/inward/record.url?scp=85074543717&partnerID=8YFLogxK

U2 - 10.1109/RCIS.2019.8876999

DO - 10.1109/RCIS.2019.8876999

M3 - Conference contribution with ISSN or ISBN

AN - SCOPUS:85074543717

T3 - Proceedings - International Conference on Research Challenges in Information Science

BT - Proceedings

A2 - Kolp, Manuel

A2 - Vanderdonckt, Jean

A2 - Snoeck, Monique

A2 - Wautelet, Yves

PB - IEEE Computer Society

T2 - 13th IEEE International Conference on Research Challenges in Information Science, RCIS 2019

Y2 - 29 May 2019 through 31 May 2019

ER -

Alkubaisy D, Cox K, Mouratidis H. Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements. In Kolp M, Vanderdonckt J, Snoeck M, Wautelet Y, editors, Proceedings: RCIS 2019 - IEEE 13th International Conference on Research Challenges in Information Science: Towards a Design Science for Information Systems. IEEE Computer Society. 2019. 8876999. (Proceedings - International Conference on Research Challenges in Information Science). doi: 10.1109/RCIS.2019.8876999

Towards Detecting and Mitigating Conflicts for Privacy and Security Requirements

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this