当前位置: X-MOL 学术Data Knowl. Eng. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
COPri v.2 — A core ontology for privacy requirements
Data & Knowledge Engineering ( IF 2.5 ) Pub Date : 2021-04-20 , DOI: 10.1016/j.datak.2021.101888
Mohamad Gharib , Paolo Giorgini , John Mylopoulos

Nowadays, most enterprises collect, store, and manage personal information of customers to deliver their services. In such a setting, privacy has emerged as a key concern since companies often neglect or even misuse personal data. In response to multiple massive breaches of personal data, governments around the world have enacted laws and regulations for privacy protection. These laws dictate privacy requirements for any system that acquires and manages personal data. Unfortunately, these requirements are often incomplete and/or inaccurate as many RE practitioners are insufficiently versed with privacy requirements and how are they different from other requirements, such as security. To tackle this problem, we developed a comprehensive ontology for privacy requirements. In particular, the contributions of this work include the derivation of an ontology from a previously conducted systematic literature review, an implementation using an ontology definition tool (Protégé), a demonstration of its coverage through an extensive example on Ambient Assisted Living, and a validation through competency questions. Also, we evaluate the ontology against the common pitfalls for ontologies with the help of some software tools, lexical semantics experts, and privacy and security researchers. The ontology presented herein (COPri v.2) has been enhanced with extensions motivated by the feedback received from privacy and security experts.



中文翻译:

COPri v.2 —隐私要求的核心本体

如今,大多数企业都收集,存储和管理客户的个人信息以提供其服务。在这种情况下,由于公司经常忽略甚至滥用个人数据,隐私已成为主要关注的问题。为了应对多次大规模违反个人数据的行为,世界各地的政府都颁布了保护隐私的法律和法规。这些法律规定了获取和管理个人数据的任何系统的隐私要求。不幸的是,这些要求通常是不完整和/或不准确的,因为许多RE从业人员对隐私要求不足够了解,它们与其他要求(例如安全性)有何不同。为了解决这个问题,我们针对隐私要求开发了一个全面的本体。特别是,这项工作的贡献包括从先前进行过的系统文献回顾中得出本体,使用本体定义工具(Protégé)实施,通过广泛的环境辅助生活实例证明其覆盖范围以及通过能力问题进行验证。此外,我们借助一些软件工具,词汇语义专家以及隐私和安全研究人员,针对本体的常见陷阱评估了本体。此处提出的本体(COPri v.2)已得到增强,其扩展受到了来自隐私和安全专家的反馈的激励。通过有关环境辅助生活的广泛示例来证明其覆盖范围,并通过能力问题进行验证。此外,我们借助一些软件工具,词汇语义专家以及隐私和安全研究人员,针对本体的常见陷阱评估了本体。此处提出的本体(COPri v.2)已得到增强,其扩展受到了来自隐私和安全专家的反馈的激励。通过有关环境辅助生活的广泛示例来证明其覆盖范围,并通过能力问题进行验证。此外,我们借助一些软件工具,词汇语义专家以及隐私和安全研究人员,针对本体的常见陷阱评估了本体。此处提出的本体(COPri v.2)已得到增强,其扩展受到了来自隐私和安全专家的反馈的激励。

更新日期:2021-04-20
down
wechat
bug