TUM Logo

A Systematization of Privacy Requirements for Cloud-Based Services

A Systematization of Privacy Requirements for Cloud-Based Services

Supervisor(s): Immanuel Kunz
Status: finished
Topic: Others
Author: Eray Tufan
Submission: 2021-08-16
Type of Thesis: Masterthesis
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching

Description

With the increasing concerns over privacy, governments enacted laws and regulations
which force organizations to implement privacy requirements into their software systems.
However, recent researches show that the organizations and software developers struggle
with managing privacy requirements. In this thesis, we propose a privacy ontology to sup-
port privacy requirements, privacy knowledge management and help software developers
embed privacy requirements during the design stage of the software development by com-
bining both organizational requirements and privacy requirements. We implemented the
privacy ontology by using an ontology tool (Prote ́ge ́) and we created an instantiation of
the privacy ontology to demonstrate how the privacy ontology could work in a real world
environment. Furthermore, we propose a methodology for automated test case generation
from the privacy ontology.