There have been concerting policy and legal initiatives to mitigate the privacy harm resulting from badly designed software technology. But one main challenge to realizing these initiatives is the difficulty in translating proposed principles and regulations into concrete and verifiable evidence in technology. This is partly due to the lack of systematic techniques and tools to address privacy in the software design, hence making it difficult for the designer to measure disclosure risk in a more intuitive way, taking into account the privacy objective that matters to each end user. To bridge this gap, we propose a framework for verifying the satisfaction of user privacy objectives in software design. Our approach is based on the (un)awareness that users acquire when information is disclosed, as it relates to the communication properties of objects in a design. This property is used to determine the expected privacy utility that users will derive from the design for a specified privacy objective. We demonstrate through case studies how this approach can help designers determine which design decision undermines users’ privacy expectations and better design alternatives.

中文翻译：

---

软件设计的隐私意识系统

已经制定了协调一致的政策和法律举措，以减轻因软件技术设计不当而造成的隐私损害。但是，实现这些举措的一个主要挑战是难以将提议的原则和法规转化为具体和可验证的技术证据。这部分是由于缺乏系统的技术和工具来解决软件设计中的隐私问题，因此设计者很难以更直观的方式衡量披露风险，同时考虑到对每个最终用户都很重要的隐私目标。为了弥合这一差距，我们提出了一个框架，用于验证软件设计中用户隐私目标的满意度。我们的方法基于用户在信息披露时获得的（不）意识，因为它与设计中对象的通信属性有关。此属性用于确定用户将从指定隐私目标的设计中获得的预期隐私实用程序。我们通过案例研究展示了这种方法如何帮助设计师确定哪些设计决策会破坏用户的隐私期望和更好的设计替代方案。