When and to whom shall you disclose private information?
Privacy requirements for mobile applications offer a distinct set of challenges
for requirements engineering. First, they are highly dynamic, changing over
time and locations, and across the different roles of agents involved and the
kinds of information that may be disclosed. Second, although some general
privacy requirements can be elicited a priori, users often refine them at
runtime as they interact with the system and its environment. Selectively
disclosing information to appropriate agents is therefore a key privacy
management challenge, requiring carefully formulated privacy requirements
amenable to systematic reasoning. In this paper, we introduce privacy arguments
as a means of analysing privacy requirements in general and selective
disclosure requirements (that are both content- and context-sensitive) in
particular. Privacy arguments allow individual users to express personal
preferences, which are then used to reason about privacy for each user under
different contexts. At runtime, these arguments provide a way to reason about
requirements satisfaction and diagnosis. Our proposed approach is demonstrated
and evaluated using the privacy requirements of BuddyTracker, a mobile
application we developed as part of our overall research programme.
Thein Than Tun, Arosha K. Bandara, Blaine A. Price, Yijun Yu, Charles Haley, Inah Omoronyia, and Bashar Nuseibeh (2012). "Privacy arguments: analysing selective disclosure requirements for mobile applications". In: 20th IEEE International Requirements Engineering Conference, 24-28 September 2012 , Chicago, Illinois.
Office: +44 (0) 1908 6 55562