TY - JOUR
T1 - A Systematic Mapping Study of Privacy by Design in Software Engineering
AU - Morales-Trujillo, Miguel Ehécatl
AU - García-Mireles, Gabriel Alberto
AU - Matla-Cruz, Erick Orlando
AU - Piattini, Mario
N1 - Publisher Copyright:
© 2019 Latin American Center for Informatics Studies. All Rights Reserved.
PY - 2019
Y1 - 2019
N2 - Protecting the personal data contained in current software systems is a complex issue that requires legal regulations and constraints that can be used to manage personal data, along with methodological support with which to develop software systems that will safeguard their respective users’ data privacy. The Privacy by Design (PbD) approach has, therefore, been proposed in order to address this issue and has been applied to systems development in a variety of application domains. The aim of this work is to determine the presence of PbD and the extent to which it exists in software development efforts. A systematic mapping study was conducted in order to identify relevant literature that collects PbD goals in software development, in addition to methods and/or practices that support privacy aware software development. Of the 49 papers selected, 30 address PbD from a theoretical perspective. The majority of the contributions (34) were categorized as being software requirements and software design. The main privacy goal discussed in the primary papers is data minimization. The findings suggest that PbD in software engineering is still an immature field and that there is a need for privacy-aware approaches for software engineering and their validation in industrial settings.
AB - Protecting the personal data contained in current software systems is a complex issue that requires legal regulations and constraints that can be used to manage personal data, along with methodological support with which to develop software systems that will safeguard their respective users’ data privacy. The Privacy by Design (PbD) approach has, therefore, been proposed in order to address this issue and has been applied to systems development in a variety of application domains. The aim of this work is to determine the presence of PbD and the extent to which it exists in software development efforts. A systematic mapping study was conducted in order to identify relevant literature that collects PbD goals in software development, in addition to methods and/or practices that support privacy aware software development. Of the 49 papers selected, 30 address PbD from a theoretical perspective. The majority of the contributions (34) were categorized as being software requirements and software design. The main privacy goal discussed in the primary papers is data minimization. The findings suggest that PbD in software engineering is still an immature field and that there is a need for privacy-aware approaches for software engineering and their validation in industrial settings.
KW - GDPR
KW - privacy by design
KW - software development
KW - software engineering
KW - systematic mapping study
UR - http://www.scopus.com/inward/record.url?scp=85143915042&partnerID=8YFLogxK
U2 - 10.19153/cleiej.22.1.4
DO - 10.19153/cleiej.22.1.4
M3 - Artículo
AN - SCOPUS:85143915042
SN - 0717-5000
VL - 22
JO - CLEI Eletronic Journal (CLEIej)
JF - CLEI Eletronic Journal (CLEIej)
IS - 1
M1 - 4
ER -