Mechanizing Privacy by Design

OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 616.85 KB)

Author / Producer

Date

2025-11-22

Publication Type

Conference Paper

ETH Bibliography

yes

Citations

Altmetric
OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 616.85 KB)

Data

Rights / License

In Copyright - Non-Commercial Use Permitted north_east

Abstract

Privacy by design requires integrating data protection into systems from the outset, during their design, rather than building it in later. Related legislation does not specify how to achieve this and mainstream languages and frameworks lack support for privacy by design. To address this long-standing problem, we have developed diferent, effective technical solutions. First, we have developed powerful logic-based tools that enforce formal data protection policies at runtime by controlling relevant system actions. Second, we have proposed methods and tools for integrating privacy models into system design models, enabling model-driven privacy enforcement. We report on our methods, tools, and practical experiences using them

Permanent link

https://doi.org/10.3929/ethz-c-000789454

Publication status

published

External links

https://doi.org/10.1145/3719027.3748271 north_east

Editor

Book title

CCS '25: Proceedings of the 2025 ACM SIGSAC Conference on Computer and Communications Security

Journal / series

Volume

Pages / Article No.

2 - 5

Publisher

Association for Computing Machinery

Event

32nd ACM Conference on Computer and Communications Security (CCS)

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Data protection; Runtime enforcement; Model-driven development

Organisational unit

03634 - Basin, David / Basin, David check_circle

Notes

Funding

204796 - Model-driven Security & Privacy (SNF)

Related publications and datasets

More

Show all metadata