Imagen de Google Jackets
Vista normal Vista MARC

Privacy risk analysis / Sourya Joyee De and Daniel Le Métayer.

Por: Colaborador(es): Tipo de material: TextoTextoSeries Synthesis lectures on information security, privacy and trust ; # 17.Editor: San Rafael, California : Morgan & Claypool Publishers, 2016Fecha de copyright: ©2016Descripción: xv, 117 páginas : ilustraciones, diagramas, tablas ; 24 cmTipo de contenido:
  • texto
Tipo de medio:
  • sin mediación
Tipo de soporte:
  • volumen
ISBN:
  • 9781627054256
  • 1627054251
Tema(s): Clasificación LoC:
  • BF 637.P74 D46.2016
Contenidos:
1. Introduction --
2. Terminology -- 2.1 Personal data -- 2.2 Stakeholders -- 2.3 Risk sources -- 2.4 Feared events -- 2.5 Privacy harms -- 2.6 Privacy risks -- 2.7 Privacy risk analysis --
3. Processing system -- 3.1 System attributes -- 3.2 Illustration: the BEMS system --
4. Personal data -- 4.1 European and U.S. views -- 4.2 Identifiability and anonymization -- 4.3 Categories of data -- 4.4 Personal data attributes -- 4.4.1 Attributes related to the nature of the data -- 4.4.2 Attributes related to the format of the data -- 4.4.3 Attributes related to the context -- 4.4.4 Attributes related to control -- 4.5 Illustration: the BEMS system --
5. Stakeholders -- 5.1 The nature of the stakeholders -- 5.2 Stakeholder categories -- 5.3 Stakeholder attributes -- 5.4 Illustration: the BEMS system --
6. Risk sources -- 6.1 Risk source attributes -- 6.1.1 Nature of the risk sources -- 6.1.2 Motivation -- 6.1.3 Resources -- 6.2 Illustration: the BEMS system --
7. Feared events -- 7.1 Variations in terminology -- 7.2 Feared event categories -- 7.3 Feared event attributes -- 7.4 Illustration: the BEMS system --
8. Privacy harms -- 8.1 The nature of privacy harms -- 8.1.1 Variations on privacy harms -- 8.1.2 Recognition of privacy harms by law -- 8.2 Categories of privacy harms -- 8.3 Attributes of privacy harms -- 8.3.1 Victims -- 8.3.2 Extent -- 8.3.3 Severity -- 8.4 Illustration: the BEMS system --
9. Privacy risk analysis -- 9.1 Scope and objectives of a PIA -- 9.2 DPIA template for smart grid and smart metering -- 9.3 Privacy risk analysis in existing frameworks -- 9.4 Key steps of a privacy risk analysis -- 9.5 Illustration: evaluation of the risks for the BEMS system --
10. Conclusion -- A. Summary of categories and attributes of the components of a privacy risk analysis -- B. Definitions of personal data across regulations and standards -- C. Definitions of stakeholders across regulations and standards -- D. Privacy risk analysis components in existing frameworks -- Bibliography -- Authors' biographies.
Resumen: This fills a gap in the existing literature by providing an introduction to the basic notions, requirements, and main steps of conducting a privacy risk analysis. The deployment of new information technologies can lead to significant privacy risks and a privacy impact assessment should be conducted before designing a product or system that processes personal data. However, if existing privacy impact assessment frameworks and guidelines provide a good deal of details on organizational aspects (including budget allocation, resource allocation, stakeholder consultation, etc.), they are much vaguer on the technical part, in particular on the actual risk assessment task. For privacy impact assessments to keep up their promises and really play a decisive role in enhancing privacy protection, they should be more precise with regard to these technical aspects. This book is an excellent resource for anyone developing and/or currently running a risk analysis as it defines the notions of personal data, stakeholders, risk sources, feared events, and privacy harms all while showing how these notions are used in the risk analysis process. It includes a running smart grids example to illustrate all the notions discussed in the book.
Valoración
    Valoración media: 0.0 (0 votos)
Existencias
Tipo de ítem Biblioteca actual Colección Signatura topográfica Copia número Estado Fecha de vencimiento Código de barras
Libros Biblioteca Francisco Xavier Clavigero Acervo Acervo General BF 637.P74 D46.2016 (Navegar estantería(Abre debajo)) ej. 1 Disponible UIA167408

Incluye referencias bibliográficas (páginas 101-115).

1. Introduction --

2. Terminology -- 2.1 Personal data -- 2.2 Stakeholders -- 2.3 Risk sources -- 2.4 Feared events -- 2.5 Privacy harms -- 2.6 Privacy risks -- 2.7 Privacy risk analysis --

3. Processing system -- 3.1 System attributes -- 3.2 Illustration: the BEMS system --

4. Personal data -- 4.1 European and U.S. views -- 4.2 Identifiability and anonymization -- 4.3 Categories of data -- 4.4 Personal data attributes -- 4.4.1 Attributes related to the nature of the data -- 4.4.2 Attributes related to the format of the data -- 4.4.3 Attributes related to the context -- 4.4.4 Attributes related to control -- 4.5 Illustration: the BEMS system --

5. Stakeholders -- 5.1 The nature of the stakeholders -- 5.2 Stakeholder categories -- 5.3 Stakeholder attributes -- 5.4 Illustration: the BEMS system --

6. Risk sources -- 6.1 Risk source attributes -- 6.1.1 Nature of the risk sources -- 6.1.2 Motivation -- 6.1.3 Resources -- 6.2 Illustration: the BEMS system --

7. Feared events -- 7.1 Variations in terminology -- 7.2 Feared event categories -- 7.3 Feared event attributes -- 7.4 Illustration: the BEMS system --

8. Privacy harms -- 8.1 The nature of privacy harms -- 8.1.1 Variations on privacy harms -- 8.1.2 Recognition of privacy harms by law -- 8.2 Categories of privacy harms -- 8.3 Attributes of privacy harms -- 8.3.1 Victims -- 8.3.2 Extent -- 8.3.3 Severity -- 8.4 Illustration: the BEMS system --

9. Privacy risk analysis -- 9.1 Scope and objectives of a PIA -- 9.2 DPIA template for smart grid and smart metering -- 9.3 Privacy risk analysis in existing frameworks -- 9.4 Key steps of a privacy risk analysis -- 9.5 Illustration: evaluation of the risks for the BEMS system --

10. Conclusion -- A. Summary of categories and attributes of the components of a privacy risk analysis -- B. Definitions of personal data across regulations and standards -- C. Definitions of stakeholders across regulations and standards -- D. Privacy risk analysis components in existing frameworks -- Bibliography -- Authors' biographies.

This fills a gap in the existing literature by providing an introduction to the basic notions, requirements, and main steps of conducting a privacy risk analysis. The deployment of new information technologies can lead to significant privacy risks and a privacy impact assessment should be conducted before designing a product or system that processes personal data. However, if existing privacy impact assessment frameworks and guidelines provide a good deal of details on organizational aspects (including budget allocation, resource allocation, stakeholder consultation, etc.), they are much vaguer on the technical part, in particular on the actual risk assessment task. For privacy impact assessments to keep up their promises and really play a decisive role in enhancing privacy protection, they should be more precise with regard to these technical aspects. This book is an excellent resource for anyone developing and/or currently running a risk analysis as it defines the notions of personal data, stakeholders, risk sources, feared events, and privacy harms all while showing how these notions are used in the risk analysis process. It includes a running smart grids example to illustrate all the notions discussed in the book.