Description
As privacy gets more and more relevant in society, laws like the General Data Protection
Regulation (GDPR) in the EU are launched to increase requirements for the processing
of personal data. Consequently, privacy is gaining relevance in the software engineering
phase in order to implement privacy from the beginning of a system. There are, however,
issues when existing privacy methods are integrated into various software development
processes. This thesis therefore first identifies challenges from the use of privacy methods
like PriS, privacy design strategies, or LINDDUN and then solves some of these challenges
with an adaption of LINDDUN. In order to identify the challenges, a juxtaposition of privacy
methods with each of the software development processes, namely the V-Model, the
Sprial-Mode, and Scrum, is applied. Afterwards, an abstraction of the specific challenges is
made to obtain more general challenges for each development process that can appear for
any privacy method. Then, a new process, called LINDDUN Light, is adapted from LINDDUN
such that it solves privacy threat modeling challenges in Scrum. The LINDDUN Light
approach is illustrated in a process flow diagram to facilitate its understanding for novice
users. An adjustment towards the use in Scrum is made by adapting to the rapid evolution
within Scrum. A use of LINDDUN is thus facilitated which is one of the set goals for this thesis.
Possible limitations of the LINDDUN Light adaption are the questionable resilience of
the process in real world scenarios and that not all potential privacy threats may be elicited
by the process. Additionally, companies may use the identified challenges to adjust the
privacy methods to their preferences and may use the LINDDUN Light process as a threat
modeling technique in their Agile environment.
|
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching