58 A privacy preserving approach for avoiding database recovery attacks in software developments

Privacy is being considered an asset in several business domains where cybersecurity plays a key role. This is especially relevant in contexts where Personally Identifiable Information is exchanged, managed or processed, e.g. the health domain. GDPR and other regulations are stressing the privacy re...

Descripción completa

Detalles Bibliográficos
Autores: Larrucea, Xabier, Santamaría, Izaskun
Tipo de recurso: capítulo de libro
Fecha de publicación:2021
País:España
Institución:Universidad de Castilla-La Mancha
Repositorio:RUIdeRA. Repositorio Institucional de la UCLM
OAI Identifier:oai:ruidera.uclm.es:10578/28668
Acceso en línea:http://doi.org/10.18239/jornadas_2021.34.58
http://hdl.handle.net/10578/28668
Access Level:acceso abierto
Palabra clave:Information sharing
security
Privacy
Descripción
Sumario:Privacy is being considered an asset in several business domains where cybersecurity plays a key role. This is especially relevant in contexts where Personally Identifiable Information is exchanged, managed or processed, e.g. the health domain. GDPR and other regulations are stressing the privacy relevance, and the need to protect it with advanced techniques such as differential privacy. Health systems are allowing the exchange of sensitive information and, therefore, software companies building solutions including sensitive information exchange must adopt approaches to enhance privacy preservation. In order to assist these organizations in these matters, authors propose the integration of a set of steps for enhancing privacy and shifting left privacy concerns within the software implementation activities of the ISO/IEC 29110 basic profile In addition, this method is illustrated with a use case.