Privacy-by-Design Based on Quantitative Threat Modeling

While the general concept of "Privacy-by-Design (PbD)" is increasingly a popular one, there is considerable paucity of either rigorous or quantitative underpinnings supporting PbD. Drawing upon privacy-aware modeling techniques, this paper proposes a Quantitative Threat Modeling Methodology (QTMM) that can be used to draw objective conclusions about different privacy-related attacks that might compromise a service. The proposed QTMM has been empirically validated in the context of the EU project ABC4Trust, where the end-users actually elicited security and privacy requirements of the so-called privacy-Attribute Based Credentials (privacy-ABCs) in a real-world scenario.

Provided by: Technische Universitat Darmstadt Topic: Security Date Added: Aug 2012 Format: PDF

Download Now

Find By Topic