Al-Momani, Ala'a; Balenson, David; Mann, Zoltán Ádám; Pape, Sebastian; Petit, Jonathan; Bösch, Christoph Navigating Privacy Patterns in the Era of Robotaxis Proceedings Article In: IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) 2024, International Workshop on Privacy Engineering (IWPE) 2024, pp. 32-39, 2024. Abstract | Links | BibTeX | Tags: AUTOMOTIVE, AUTOPSY, IoT, PETs, Privacy Pape, Sebastian; Syed-Winkler, Sarah; Garcia, Armando Miguel; Chah, Badreddine; Bkakria, Anis; Hiller, Matthias; Walcher, Tobias; Lombard, Alexandre; Abbas-Turki, Abdeljalil; Yaich, Reda A Systematic Approach for Automotive Privacy Management Proceedings Article In: CSCS '23: ACM Computer Science in Cars Symposium, Darmstadt, Germany, December 5th, 2023, ACM, 2023. BibTeX | Tags: AUTOMOTIVE, AUTOPSY, GDPR, PETs, Privacy Chah, Badreddine; Lombard, Alexandre; Bkakria, Anis; Yaich, Reda; Abbas-Turki, Abdeljalil; Galland, Stéphane Privacy Threat Analysis for connected and autonomous vehicles Journal Article In: Procedia Computer Science, vol. 210, pp. 36-44, 2022, ISSN: 1877-0509, (The 13th International Conference on Emerging Ubiquitous Systems and Pervasive Networks (EUSPN) / The 12th International Conference on Current and Future Trends of Information and Communication Technologies in Healthcare (ICTH-2022) / Affiliated Workshops). Abstract | Links | BibTeX | Tags: Autonomous Vehicle, Connected, Cyber-Physical Systems (CPS), Privacy, Privacy engineering framework, Security, Threat Analysis Syed-Winkler, Sarah; Pape, Sebastian; Sabouri, Ahmad A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility Proceedings Article In: CSCS '22: ACM Computer Science in Cars Symposium, Ingolstadt, Germany, December 8th, 2022, ACM, 2022. Links | BibTeX | Tags: AUTOPSY, cloud computing, IoT, PETs, Privacy2024
@inproceedings{ABMPPB24iwpe,
title = {Navigating Privacy Patterns in the Era of Robotaxis},
author = {Ala'a Al-Momani and David Balenson and Zoltán Ádám Mann and Sebastian Pape and Jonathan Petit and Christoph Bösch},
url = {https://ieeexplore.ieee.org/abstract/document/10628728},
doi = {10.1109/EuroSPW61312.2024.00011},
year = {2024},
date = {2024-01-01},
booktitle = {IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) 2024, International Workshop on Privacy Engineering (IWPE) 2024},
pages = {32-39},
abstract = {Privacy engineering encompasses various method-ologies and tools, including privacy strategies and privacy patterns, aimed at achieving systems that inherently respect privacy. Despite the collection of numerous privacy patterns, their practical application remains under-explored. This paper investigates the applicability of privacy patterns in the context of robotaxis, a use case in the broader Mobility-as-a-Service (MaaS) ecosystem. Using the LINDDUN framework for privacy threat elicitation, we analyze existing privacy patterns to address identified privacy threats. Our findings reveal challenges in applying these patterns due to inconsis-tencies and a lack of guidance, as well as a lack of suitable privacy patterns for addressing several privacy threats. To fill the gaps, we propose ideas for new privacy patterns.},
keywords = {AUTOMOTIVE, AUTOPSY, IoT, PETs, Privacy},
pubstate = {published},
tppubtype = {inproceedings}
}
2023
@inproceedings{PSGCBHWLAY23cscs,
title = {A Systematic Approach for Automotive Privacy Management},
author = {Sebastian Pape and Sarah Syed-Winkler and Armando Miguel Garcia and Badreddine Chah and Anis Bkakria and Matthias Hiller and Tobias Walcher and Alexandre Lombard and Abdeljalil Abbas-Turki and Reda Yaich},
year = {2023},
date = {2023-01-01},
booktitle = {CSCS '23: ACM Computer Science in Cars Symposium, Darmstadt, Germany, December 5th, 2023},
volume = {to appear},
publisher = {ACM},
keywords = {AUTOMOTIVE, AUTOPSY, GDPR, PETs, Privacy},
pubstate = {published},
tppubtype = {inproceedings}
}
2022
@article{CHAH202236,
title = {Privacy Threat Analysis for connected and autonomous vehicles},
author = {Badreddine Chah and Alexandre Lombard and Anis Bkakria and Reda Yaich and Abdeljalil Abbas-Turki and Stéphane Galland},
url = {https://www.sciencedirect.com/science/article/pii/S1877050922015733},
doi = {https://doi.org/10.1016/j.procs.2022.10.117},
issn = {1877-0509},
year = {2022},
date = {2022-01-01},
journal = {Procedia Computer Science},
volume = {210},
pages = {36-44},
abstract = {Connected and autonomous vehicles produce, store and communicate a large amount of personal data (the route taken, the stop points, home and work addresses, etc.). The development of this type of vehicles brings the opportunity to offer new services to road users, with more software and hardware components on the vehicle. Many of these components suffer from weaknesses that can be exploited. The issue is that a single vulnerability in one element of the system will threaten the privacy of the vehicle's users (The weakest link principle of IT security). In this paper, we present a privacy threat analysis on the general architecture of connected and autonomous vehicles, to point out privacy risks according to formal privacy requirements. We present a use case modularization and its analysis that helps us to discern the privacy requirements of this use case, which can be enabled by manufacturers. To meet the previous objectives, we follow a LINDDUN methodology of privacy threat analysis},
note = {The 13th International Conference on Emerging Ubiquitous Systems and Pervasive Networks (EUSPN) / The 12th International Conference on Current and Future Trends of Information and Communication Technologies in Healthcare (ICTH-2022) / Affiliated Workshops},
keywords = {Autonomous Vehicle, Connected, Cyber-Physical Systems (CPS), Privacy, Privacy engineering framework, Security, Threat Analysis},
pubstate = {published},
tppubtype = {article}
}
@inproceedings{SPS22cscs,
title = {A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility},
author = {Sarah Syed-Winkler and Sebastian Pape and Ahmad Sabouri},
url = {https://dl.acm.org/doi/abs/10.1145/3568160.3570231},
doi = {10.1145/3568160.3570231},
year = {2022},
date = {2022-01-01},
booktitle = {CSCS '22: ACM Computer Science in Cars Symposium, Ingolstadt, Germany, December 8th, 2022},
publisher = {ACM},
keywords = {AUTOPSY, cloud computing, IoT, PETs, Privacy},
pubstate = {published},
tppubtype = {inproceedings}
}
Navigating Privacy Patterns in the Era of Robotaxis Proceedings Article In: IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) 2024, International Workshop on Privacy Engineering (IWPE) 2024, pp. 32-39, 2024. A Systematic Approach for Automotive Privacy Management Proceedings Article In: CSCS '23: ACM Computer Science in Cars Symposium, Darmstadt, Germany, December 5th, 2023, ACM, 2023. Privacy Threat Analysis for connected and autonomous vehicles Journal Article In: Procedia Computer Science, vol. 210, pp. 36-44, 2022, ISSN: 1877-0509, (The 13th International Conference on Emerging Ubiquitous Systems and Pervasive Networks (EUSPN) / The 12th International Conference on Current and Future Trends of Information and Communication Technologies in Healthcare (ICTH-2022) / Affiliated Workshops). A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility Proceedings Article In: CSCS '22: ACM Computer Science in Cars Symposium, Ingolstadt, Germany, December 8th, 2022, ACM, 2022.2024
2023
2022