PP-SDLC The privacy protecting systems development life cycle
Many new Privacy Laws and Regulations have placed an increased importance on the correct design and implementation of information systems. This is an attempt to preserve and protect user and information privacy. Incorporating privacy regulations and guidelines into an active information system is of...
| Main Authors: | , |
|---|---|
| Format: | Conference Paper |
| Published: |
IPSI - Academic Mind
2005
|
| Subjects: | |
| Online Access: | http://www.internetconferences.net http://hdl.handle.net/20.500.11937/37337 |
| _version_ | 1848755018951294976 |
|---|---|
| author | Skinner, Geoffrey Chang, Elizabeth |
| author_facet | Skinner, Geoffrey Chang, Elizabeth |
| author_sort | Skinner, Geoffrey |
| building | Curtin Institutional Repository |
| collection | Online Access |
| description | Many new Privacy Laws and Regulations have placed an increased importance on the correct design and implementation of information systems. This is an attempt to preserve and protect user and information privacy. Incorporating privacy regulations and guidelines into an active information system is often unsuccessful and ineffective. In addition, systems that have already progressed through the development life cycle can very expensive to change once implemented. We propose the integration of privacy preservation methodologies and techniques into each phase of the system development life cycle (SDLC). This is to preserve the privacy of individuals and to protect PII (Personally Identifiable Information) data. The incorporation of IT Security measures in each SDLC phase is also discussed. This is due to its direct relevance and correlation with information system privacy issues. The proposed methodology involves identifying the privacy and security issues in each phase. From there appropriate privacy protecting and security techniques are applied to address these issues. Special mention is made of the recently proposed Common Criteria. The CC is an international standard for IT Security for Information Systems. Specifically, this paper will analyse the way the Common Criteria currently deals with privacy in information systems, and what is needed to improve its current inadequate handling of information privacy. |
| first_indexed | 2025-11-14T08:49:38Z |
| format | Conference Paper |
| id | curtin-20.500.11937-37337 |
| institution | Curtin University Malaysia |
| institution_category | Local University |
| last_indexed | 2025-11-14T08:49:38Z |
| publishDate | 2005 |
| publisher | IPSI - Academic Mind |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | curtin-20.500.11937-373372017-02-27T14:48:10Z PP-SDLC The privacy protecting systems development life cycle Skinner, Geoffrey Chang, Elizabeth privacy impact assessments Common Criteria PIA Privacy Protection Personally Identifiable Information Information Privacy Security Systems Development Life Cycle Trust Privacy information systems SDLC PII Many new Privacy Laws and Regulations have placed an increased importance on the correct design and implementation of information systems. This is an attempt to preserve and protect user and information privacy. Incorporating privacy regulations and guidelines into an active information system is often unsuccessful and ineffective. In addition, systems that have already progressed through the development life cycle can very expensive to change once implemented. We propose the integration of privacy preservation methodologies and techniques into each phase of the system development life cycle (SDLC). This is to preserve the privacy of individuals and to protect PII (Personally Identifiable Information) data. The incorporation of IT Security measures in each SDLC phase is also discussed. This is due to its direct relevance and correlation with information system privacy issues. The proposed methodology involves identifying the privacy and security issues in each phase. From there appropriate privacy protecting and security techniques are applied to address these issues. Special mention is made of the recently proposed Common Criteria. The CC is an international standard for IT Security for Information Systems. Specifically, this paper will analyse the way the Common Criteria currently deals with privacy in information systems, and what is needed to improve its current inadequate handling of information privacy. 2005 Conference Paper http://hdl.handle.net/20.500.11937/37337 http://www.internetconferences.net IPSI - Academic Mind fulltext |
| spellingShingle | privacy impact assessments Common Criteria PIA Privacy Protection Personally Identifiable Information Information Privacy Security Systems Development Life Cycle Trust Privacy information systems SDLC PII Skinner, Geoffrey Chang, Elizabeth PP-SDLC The privacy protecting systems development life cycle |
| title | PP-SDLC The privacy protecting systems development life cycle |
| title_full | PP-SDLC The privacy protecting systems development life cycle |
| title_fullStr | PP-SDLC The privacy protecting systems development life cycle |
| title_full_unstemmed | PP-SDLC The privacy protecting systems development life cycle |
| title_short | PP-SDLC The privacy protecting systems development life cycle |
| title_sort | pp-sdlc the privacy protecting systems development life cycle |
| topic | privacy impact assessments Common Criteria PIA Privacy Protection Personally Identifiable Information Information Privacy Security Systems Development Life Cycle Trust Privacy information systems SDLC PII |
| url | http://www.internetconferences.net http://hdl.handle.net/20.500.11937/37337 |