Browsing by Author "Riedel, Frederik"

Filter results by typing the first few letters
Now showing 1 - 2 of 2
  • Thumbnail Image
    ItemOpen Access
    Applicability analysis: elicitation of privacy risks through STPA(-Priv) in a selected IoT-scenario
    (2017) Riedel, Frederik
    Context This bachelor’s thesis discusses the usage of System-Theoretic Process Analysis (STPA) for privacy engineering. STPA has been developed for safety engineering originally. I show how this methodology can be applied to privacy risk analysis by using the extension STPA-Priv. I explain why privacy is important and why privacy risk analysis can help improve systems regarding privacy. Objective The goal is to apply the privacy extension of STPA to a real-world Internet of Things scenario to determine the applicability and possible problems with this methodology. Method STPA considers safety a system property. I think that privacy is a system property as well and therefore STPA can be applied to privacy risk analysis. Most changes from STPA to STPA-Priv have been made in its terminology, the process itself remains the same. This brings many of the advantages of systems theory to the field of privacy engineering, such as the top-down nature of STPA that helps handle complex socio-technical systems. Results I found out that STPA-Priv is a good approach to elicit privacy risks and requirements. I was able to elicit many privacy risks from our scenario using STPA-Priv which shows that the methodology works in general. Conclusions After all, I can recommend using STPA-Priv to evaluate projects for privacy risks. Nevertheless, there are still changes and improvements necessary. However, the overall methodology would not be affected by those changes. STPA-Priv is very straight-forward for people that are already familiar with STPA.
  • Thumbnail Image
    ItemOpen Access
    Exploratory study of the privacy extension for System Theoretic Process Analysis (STPA-Priv) to elicit privacy risks in eHealth
    (2017) Mindermann, Kai; Riedel, Frederik; Abdulkhaleq, Asim; Stach, Christoph; Wagner, Stefan
    Context: System Theoretic Process Analysis for Privacy (STPA-Priv) is a novel privacy risk elicitation method using a top down approach. It has not gotten very much attention but may offer a convenient structured approach and generation of additional artifacts compared to other methods. Aim: The aim of this exploratory study is to find out what benefits the privacy risk elicitation method STPA-Priv has and to explain how the method can be used. Method: Therefore we apply STPA-Priv to a real world health scenario that involves a smart glucose measurement device used by children. Different kinds of data from the smart device including location data should be shared with the parents, physicians, and urban planners. This makes it a sociotechnical system that offers adequate and complex privacy risks to be found. Results: We find out that STPA-Priv is a structured method for privacy analysis and finds complex privacy risks. The method is supported by a tool called XSTAMPP which makes the analysis and its results more profound. Additionally, we learn that an iterative application of the steps might be necessary to find more privacy risks when more information about the system is available later. Conclusions: STPA-Priv helps to identify complex privacy risks that are derived from sociotechnical interactions in a system. It also outputs privacy constraints that are to be enforced by the system to ensure privacy.