Privacy as first-class requirements in software development: A socio-technical approach
Privacy requirements have become increasingly important as information about us is continuously accumulated and digitally stored. However, despite the many proposed methodologies and tools to address these requirements, privacy is often underperformed in most domains of the software industry. Two of the major reasons underlying this under-performance are (1) the low expertise and understanding of privacy by the two main actors in requirements engineering, users and analysts, and (2) the fact that software developers often do not perceive privacy requirements as a priority for their companies, thus neglecting to meet these requirements even when they do have the required knowledge, skills, and supporting tools to do so. To address these two problems, we designed PR1SED (Privacy Requirements as 1st class citizens in SoftwarE Development), an iterative, customizable, socio-technical environment. PR1SED integrates knowledge from software engineering and organizational psychology to better facilitate privacy requirements during systems design. It welds technical tools for eliciting, modeling, and designing privacy aspects, thus addressing the knowledge gap of both data subjects and analysts, with social mechanisms for achieving a supportive and sustainable organizational privacy climate within a company, thus reorienting the organizational attention and engagement toward addressing privacy requirements. This work-in-progress paper presents the framework we developed to build PR1SED and discusses how the different components of the environment will be developed.
Thu 18 NovDisplayed time zone: Hobart change
09:00 - 10:00
|Performance Testing for Cloud Computing with Dependent Data Bootstrapping|
|Privacy as first-class requirements in software development: A socio-technical approach|
|Towards a Serverless Java Runtime|