OASIS Privacy by Design Documentation for Software Engineers (PbD-SE) TC
Enabling privacy to be embedded into IT system design and architecture
Completed:
The Technical Committee was closed by OASIS TC Administration on 06 September 2019 and is no longer active. Archives of its work remain publicly accessible and are linked from this page. OASIS appreciates the efforts of all those who participated in this TC.Table of Contents
- Announcements
- Overview
- Subcommittees
- TC Liaisons
- TC Tools and Approved Publications
- Technical Work Produced by the Committee
- Expository Work Produced by the Committee
- External Resources
- Mailing Lists and Comments
- Press Coverage and Commentary
- Additional Information
Gershon Janssen talks with ComputerWeekly about PMRM in "IoT benefits and privacy not mutually exclusive", 30 Apr 2015.
PbD-SE TC chairs publish article, "Privacy Policies Are Not Enough: We Need Software Transparency", 24 Jun 2014.
Participation in the OASIS PbD-SE TC is open to all interested parties. Contact join@oasis-open.org for more information.
The OASIS PbD-SE TC provides privacy governance and documentation standards for software engineers. It enables software organizations to embed privacy into the design and architecture of IT systems, without diminishing system functionality.
The PbD-SE TC work follows the Seven Foundational Principles of Privacy by Design:
- Proactive not Reactive; Preventative Not Remedial
- Privacy as the Default Setting
- Privacy Embedded into Design
- Full Functionality - Positive-Sum, Not Zero-Sum
- End-to-End Security - Full Lifecycle Protection
- Visibility and Transparency - Keep It Open
- Respect for User Privacy - Keep It User-Centric
PbD-SE offers a privacy extension/complement to OMG’s Unified Modeling Language (UML) and serves as a complement to OASIS’ eXtensible Access Control Mark-up Language (XACML) and Privacy Management Reference Model (PMRM).
For more information on PbD-SE, see the TC Charter.
No subcommittees have been formed for this TC.
No TC Liaisons have been announced for this TC.
Technical Work Produced by the Committee
This Committee has not produced technical work yet.
Expository Work Produced by the Committee
There are no approved expository work products for this TC yet.
Although not produced by the OASIS PbD-SE TC, the following information offers useful insights into its work:
- Dawn N. Jutla & Peter Bodorik: Privacy’s 7Cs and the Crowded Augmented Reality User: A Position Paper. Workshop on the Future of Privacy Notice and Choice, Carnegie Mellon University CyLab, June 27, 2014.
- Ann Cavoukian, Stuart Shapiro & R. Jason Cronk: Privacy Engineering: Proactively Embedding Privacy, by Design. Information and Privacy Commissioner, Ontario, Canada, January 2014
- Michelle Finneran Dennedy, Jonathan Fox & Thomas Finneran: The Privacy Engineer’s Manifesto: Getting from Policy to Code to QA to Value. Apress, January 2014
- Dawn N. Jutla, Peter Bodorik, Sohail Ali: Engineering Privacy for Big Data Apps with the Unified Modeling Language. IEEE Big Data Congress 2013: 38-45. Santa Clara.
- "A Foundational Framework for a PbD-PIA" by P. Jeselon and A. Fineberg
- Dawn N. Jutla, Peter Bodorik, "Sociotechnical Architecture for Online Privacy," IEEE Security and Privacy, vol. 3, no. 2, pp. 29-39, March-April 2005, doi:10.1109/MSP.2005.50
pbd-se: the list used by TC members to conduct Committee work. TC membership is required to post. TC members are automatically subscribed; the public may view archives.
pbd-se-comment: a public mail list for providing input to the OASIS PbD-SE TC members. Send a comment or view archives.
- "IoT benefits and privacy not mutually exclusive", ComputerWeekly, 30 Apr 2015
- "Privacy Policies Are Not Enough: We Need Software Transparency," Privacy Perspectives, 24 Jun 2014
- "From Big Blue to code red, Privacy by Design framework being widely adopted as industry standard," IT Business, 25 July 2013
Providing Feedback: OASIS welcomes feedback on its technical activities from potential users, developers, and others to better assure the interoperability and quality of OASIS work.