Browser unable to execute script; please use the site map to navigate the site.

Towards Privacy Taxonomy-Based Attack Tree Analysis for the Protection of Consumer Information Privacy

Reddy, Venter, Olivier, and Currie

2008

(Citation)Citation information

K. Reddy, H. S. Venter, M. S. Olivier, and I. Currie. “Towards Privacy Taxonomy-Based Attack Tree Analysis for the Protection of Consumer Information Privacy”. In: Proceedings of the Sixth Annual Conference on Privacy, Security and Trust. Ed. by L. Korba, S. Marsh, and R. Safavi-Naini. IEEE, 2008, pp. 56–64

(Abstract)Abstract

There is a strong legal and ethical imperative for organisations to protect consumer information privacy. In this paper we present a method called privacy taxonomy-based attack tree analysis (PTATA). PTATA involves the combination of privacy violation taxonomies and attack trees. It assists organisations in protecting information privacy by providing a means to analyze weaknesses in their protective measures. We define privacy violation taxonomies, as well as review attack trees, and illustrate the practical implementation of PTATA through example scenarios. The advantages and drawbacks to our method are also discussed. The paper ends with future research which may build on this work.

(Authoritative version on publisher's site)Definitive version

The definitive version of the paper is available from the publisher.
DOI: 10.1109/PST.2008.18

(BibTeX record)BibTeX reference

@inproceedings(taxtree,
author={Kamil Reddy and Hein S Venter and Martin S Olivier and Iain Currie},
title={Towards Privacy Taxonomy-Based Attack Tree Analysis for the Protection of Consumer Information Privacy},
editor={Larry Korba and Stephen Marsh and Rei Safavi-Naini},
booktitle={Proceedings of the Sixth Annual Conference on Privacy, Security and Trust},
pages={56--64},
publisher={IEEE},
year={2008} )