Automatically Proving Purpose Limitation in Software Architectures

  • Kai Bavendiek
  • Tobias Müller
  • Florian Wittner
  • Thea Kreutzburg
  • Christian-Alexander Behrendt
  • Wolfgang Schulz
  • Hannes Federrath
  • Sibylle Schupp

Abstract

The principle of purpose limitation is one of the corner stones in the European General Data Protection Regulation. Automatically verifying whether a software architecture is capable of collecting, storing, or otherwise processing data without a predefined, precise, and valid purpose, and more importantly, whether the software architecture allows for re-purposing the data, greatly helps designers, makers, auditors, and customers of software. In our case study, we model the architecture of an existing medical register that follows a rigid Privacy by Design approach and assess its capability to process data only for the defined purposes. We demonstrate the process by verifying one instance that satisfies purpose limitation and two that are at least critical cases. We detect a violation scenario where data belonging to a purpose-specific consent are passed on for a different and maybe even incompatible purpose.

Bibliografische Daten

OriginalspracheDeutsch
TitelICT Systems Security and Privacy Protection : 34th IFIP TC 11 International Conference, SEC 2019, Lisbon, Portugal, June 25-27, 2019, Proceedings
Redakteure/-innenGurpreet Dhillon, Fredrik Karlsson, Karin Hedström, André Zúquete
ERFORDERLICH bei Buchbeitrag: Seitenumfang14
Band562
Herausgeber (Verlag)Springer
Erscheinungsdatum05.06.2019
Seiten345-358
ISBN (Print)978-3-030-22311-3
ISBN (elektronisch)978-3-030-22312-0
StatusVeröffentlicht - 05.06.2019