The PREprocess

The Privacy Requirements Engineering Process (PREprocess)

PREprocess is a methodological framework for the construction of application-specific privacy requirements models. It addresses the problem of translating the privacy-preserving behavior elicited through user studies into actionable requirements for the development of privacy-aware applications. The framework prescribes a series of steps for systematically creating and refining application-specific privacy requirements models from privacy-related information (shown below). The Privacy Analyst’s Work eNvironment (PAWN) is designed to aid this process by providing means to manage , visualize, and query privacy-related information.

With the increased ubiquity of technology comes the challenge of addressing the privacy concerns of the intended users. Privacy is an extremely complex social phenomenon with myriads of variations. Difficulties in designing privacy-aware applications, however, do not stem from a lack of privacy models or design frameworks. Rather, they stem from the gap between the two, the lack of guidance in eliciting privacy requirements. We address this issue through a methodological framework for privacy requirements engineering, the Privacy Requirements Engineering Process (PREprocess). The PREprocess will lead to the systematic support of creating application-specific privacy requirements models from privacy-related information. The development of privacy-aware applications is supported by providing support for their design based on the resulting privacy requirements models.