Concerning Privacy

Module 1: Foundational principles of privacy in technology Summarizes the foundational elements for embedding privacy in technology through privacy by design and value sensitive design; reviews the data life cycle and common privacy risk models and frameworks

https://privacy.ucsc.edu/resources/cronk-privacy-by-design-white-paper.pdf

B. Privacy by Design Foundational Principles
a. Full life cycle protection
b. Embedded into design
c. Full functionality
d. Visibility and transparency
e. Proactive not reactive
f. Privacy by default
g. Respect for users

Module 2: The role of the technology professional in privacy Reviews the fundamentals of privacy as they relate to the privacy technologist; describes the privacy technologist’s role in ensuring compliance with privacy requirements and meeting stakeholder privacy expectations; explores the relationship between privacy and security

Module 3: Privacy threats and violations Identifies inherent risks throughout the stages of the data life cycle and explores how software security helps mitigate privacy threats; examines the impacts that behavioral advertising, cyberbullying and social engineering have on privacy within the technological environment

Module 4: Technical measures and privacy-enhancing technologies Outlines the strategies and techniques for enhancing privacy throughout the data life cycle, including: identity and access management; authentication, encryption, and aggregation; collection and use of personal information

Module 5: Privacy engineering Explores the role of privacy engineering within an organization, including the objectives of privacy engineering, privacy design patterns, and software privacy risks

Module 6: Privacy-by-design methodology Illustrates the process and methodology of the privacy-by-design model; explores practices to ensure ongoing vigilance when implementing privacy by design Module

7: Technology challenges for privacy Examines the unique challenges that come from online privacy issues, including automated decision making, tracking and surveillance technologies, anthropomorphism, ubiquitous computing and mobile social computing

Begin with CH6: Interference and work "backwards." from har

https://iapp.org/resources/glossary/group/cipt/

substitute for law, reg, or policyFTC DHS

"I had no questions on Nissenbaum, FAIR, encryption, controls (architect, secure…), high/low-level design, testing, or ongoing vigilance.

Questions related to harm were mixed with other topics; never direct. Several questions on FIPPS, anonymity techniques, automated decisions, and IAM.

Couple on Carlo and Value Sensitive Design (glad I studied that one…), and design patterns. "

A. Privacy Risk Models and Frameworks
a.Nissenbaum’s Contextual Integrity b.Calo’s Harms Dimensions c.Legal Compliance d.FIPPs e.NIST/NICE frameworks f. FAIR (Factors Analysis in Information Risk)

Page updated

Google Sites

Report abuse