1 of 34

Slide Notes

DownloadGo Live

Privacy by design - from a coders perspective

Published on Jan 28, 2016

No Description

View Outline

MORE DECKS TO EXPLORE

PRESENTATION OUTLINE

1.

Privacy by design

FROM A CODERS PERSPECTIVE
Photo by "lapolab"
2.

A Guide for Start-ups

FROM A CODERS PERSPECTIVE
Photo by marksweb
3.

PRIVACY

Photo by arnoKath
4.

Privacy partially overlaps with security (confidentiality) but may also take the form of bodily integrity (inviolability of the physical body).

Photo by Yu. Samoilov
5.

THE GOOD
THE BAD
THE UGLY

Photo by csullens
6.

the BAD

Photo by Profound Whatever
7.

AIL statistics 2015

8.

the good

Photo by black.zack00
9.

General Data Protection Regulation

  • Europe wide harmonisation
  • stronger responsibility & DPIA
  • administrative sanctions
  • right to be forgotton
  • data portability
  • privacy by desgin/default
Photo by the_digitalmonkey
10.

the ugly

Photo by Pedro Vezini
11.

Untitled Slide

12.

DESIGN

Photo by <Fernando>
13.

Creation of a plan for the construction of a system, considering the aesthetic, functional, economic and sociopolitical dimensions

Photo by George L Smyth
14.

Real-life privacy

GOES BEYOND
Photo by paul bica
15.

Forget about law
privacy is too important to keep it to lawyers ;)

Photo by chrisinplymouth
16.

secure coding

applied to privacy concerns
Photo by ruiwen
17.

Phases

  • Architecture
  • Design
  • Implementation
  • Operation
  • Testing
  • Maintenance
  • Evaluation
Photo by SivamDesign
18.

architecture

Privacy relevant principles
Photo by Thristian
19.

KEY decisions

  • Program organisation (modules)
  • Major data structures
  • Key algorithms
  • Error processing
  • Active or passive privacy
  • Fault tolerance
Photo by garrettc
20.

PRINCIPLES

  • "working backwards"
  • know your ennemy
  • chain of trust
  • Auth/Aut/Acc/Aud
  • Res/Recog/Recov
  • Fail/degrade safely
Photo by vintagedept
21.

principles (2)

  • event repeatability
  • multi-layer defense
  • KISS (modularise)
  • Seek statelessness
  • Reuse code
  • Address "weak links"
Photo by vintagedept
22.

DESIGN

PRIVACY RELEVANT PRINCIPLES
Photo by Matthias Rhomberg
23.

principles

  • DPIA
  • Compartmentalization
Photo by vintagedept
24.

IMPLEMENTATION

PRIVACY RELEVANT PRINCIPLES
Photo by MildlyDiverting
25.

PRINCIPLES

  • Handle data with care
  • Thoroughly review
  • Use checklists
  • Create maintainable code
  • Reuse code
Photo by adactio
26.

OPERATIONS

PRIVACY RELEVANT PRINCIPLES
Photo by jonasginter
27.

PRINCIPLES

  • Harden network / connections
  • Secure OS
  • Deploy carefully
  • Sound operation practices
Photo by psd
28.

Phases

  • Architecture
  • Design
  • Implementation
  • Operation
  • Testing
  • Maintenance
  • Evaluation
Photo by SivamDesign
29.

Untitled Slide

30.

Resources

Photo by RichGrundy
31.

OECD Privacy Guidelines

  • Collection Limitation Principle
  • Data Quality Principle
  • Purpose Specification Principle
  • Use Limitation Principle
  • Security Safeguards Principle
  • Openness Principle
  • Individual Participation Principle
  • Accountability Principle
Photo by Organisation for Economic Co-operation and Develop
32.

Untitled Slide

33.

Untitled Slide

34.

Thank YOU

Pascal Steichen
Photo by woodleywonderworks

Pascal Steichen

https://lhc.lu/