Privacy by Design: From Technologies to Architectures (Position Paper)
Thibaud Antignac (Inria Grenoble Rh\^one-Alpes / CITI Insa de Lyon),, Daniel Le M\'etayer (Inria Grenoble Rh\^one-Alpes / CITI Insa de Lyon, CITI)
TL;DR
This position paper argues for integrating privacy by design at the architectural level, emphasizing methodologies and formal methods to systematically explore and address privacy concerns in system design.
Contribution
It advocates for a shift from component-focused to architecture-focused privacy design, highlighting the role of formal methods and systematic exploration.
Findings
Architectural descriptions enable systematic privacy design exploration.
Formal methods are crucial for managing privacy complexities.
Ongoing work demonstrates practical implementation of the proposed approach.
Abstract
Existing work on privacy by design mostly focus on technologies rather than methodologies and on components rather than architectures. In this paper, we advocate the idea that privacy by design should also be addressed at the architectural level and be associated with suitable methodologies. Among other benefits, architectural descriptions enable a more systematic exploration of the design space. In addition, because privacy is intrinsically a complex notion that can be in tension with other requirements, we believe that formal methods should play a key role in this area. After presenting our position, we provide some hints on how our approach can turn into practice based on ongoing work on a privacy by design environment.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.