The Open UniversitySkip to content
 

Privacy arguments: analysing selective disclosure requirements for mobile applications

Tun, Thein Than; Bandara, Arosha K.; Price, Blaine A.; Yu, Yijun; Haley, Charles; Omoronyia, Inah and Nuseibeh, Bashar (2012). Privacy arguments: analysing selective disclosure requirements for mobile applications. In: 20th IEEE International Requirements Engineering Conference, 24-28 September 2012 , Chicago, Illinois, pp. 131–140.

Full text available as:
[img]
Preview
PDF (Accepted Manuscript) - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader
Download (947Kb)
URL: http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arn...
DOI (Digital Object Identifier) Link: http://dx.doi.org/10.1109/RE.2012.6345797
Google Scholar: Look up in Google Scholar

Abstract

Privacy requirements for mobile applications offer a distinct set of challenges for requirements engineering. First, they are highly dynamic, changing over time and locations, and across the different roles of agents involved and the kinds of information that may be disclosed. Second, although some general privacy requirements can be elicited a priori, users often refine them at runtime as they interact with the system and its environment. Selectively disclosing information to appropriate agents is therefore a key privacy management challenge, requiring carefully formulated privacy requirements amenable to systematic reasoning. In this paper, we introduce privacy arguments as a means of analysing privacy requirements in general and selective disclosure requirements (that are both content- and context-sensitive) in particular. Privacy arguments allow individual users to express personal preferences, which are then used to reason about privacy for each user under different contexts. At runtime, these arguments provide a way to reason about requirements satisfaction and diagnosis. Our proposed approach is demonstrated and evaluated using the privacy requirements of BuddyTracker, a mobile application we developed as part of our overall research programme.

Item Type: Conference Item
Copyright Holders: 2012 IEEE
ISBN: 1-4673-2783-2, 978-1-4673-2783-1
ISSN: 1090-750X
Extra Information: Pages 131-140
Keywords: privacy arguments; privacy requirements; mobile applications
Academic Unit/Department: Mathematics, Computing and Technology > Computing & Communications
Interdisciplinary Research Centre: Centre for Research in Computing (CRC)
Related URLs:
Item ID: 34189
Depositing User: Danielle Lilly
Date Deposited: 23 Aug 2012 08:17
Last Modified: 16 Nov 2013 18:28
URI: http://oro.open.ac.uk/id/eprint/34189
Share this page:

Altmetrics

Scopus Citations

Actions (login may be required)

View Item
Report issue / request change

Policies | Disclaimer

© The Open University   + 44 (0)870 333 4340   general-enquiries@open.ac.uk