{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,5]],"date-time":"2026-05-05T02:50:23Z","timestamp":1777949423295,"version":"3.51.4"},"publisher-location":"Cham","reference-count":28,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783032160881","type":"print"},{"value":"9783032160898","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-3-032-16089-8_11","type":"book-chapter","created":{"date-parts":[[2026,5,3]],"date-time":"2026-05-03T23:16:35Z","timestamp":1777850195000},"page":"154-170","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Lessons from\u00a0a\u00a0Robotaxi: Challenges in\u00a0Selecting Privacy-Enhancing Technologies"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5752-7338","authenticated-orcid":false,"given":"Ala\u2019a","family":"Al-Momani","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0913-4852","authenticated-orcid":false,"given":"David","family":"Balenson","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9312-8000","authenticated-orcid":false,"given":"Christoph","family":"B\u00f6sch","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5741-2709","authenticated-orcid":false,"given":"Zolt\u00e1n \u00c1d\u00e1m","family":"Mann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0893-7856","authenticated-orcid":false,"given":"Sebastian","family":"Pape","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8644-1442","authenticated-orcid":false,"given":"Jonathan","family":"Petit","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,5,1]]},"reference":[{"key":"11_CR1","doi-asserted-by":"crossref","unstructured":"Adams, C.: Introduction to Privacy Enhancing Technologies: A Classification-Based Approach to Understanding PETs. Springer (2021)","DOI":"10.1007\/978-3-030-81043-6"},{"key":"11_CR2","doi-asserted-by":"crossref","unstructured":"Al-Momani, A., Balenson, D., Mann, Z.\u00c1., Pape, S., Petit, J., B\u00f6sch, C.: Navigating privacy patterns in the era of robotaxis. In: IEEE European Symposium on Security and Privacy Workshops, pp. 32\u201339, IEEE (2024)","DOI":"10.1109\/EuroSPW61312.2024.00011"},{"key":"11_CR3","doi-asserted-by":"crossref","unstructured":"Al-Momani, A., B\u00f6sch, C., Wuyts, K., Sion, L., Joosen, W., Kargl, F.: Mitigation lost in translation: leveraging threat information to improve privacy solution selection. In: ACM SAC (2022)","DOI":"10.1145\/3477314.3507107"},{"key":"11_CR4","doi-asserted-by":"crossref","unstructured":"Alhirabi, N., Beaumont, S., Rana, O., Perera, C.: Designing privacy-aware iot for unregulated domains. ACM Trans. Internet Things (2023)","DOI":"10.1145\/3648480"},{"issue":"3","key":"11_CR5","doi-asserted-by":"publisher","first-page":"987","DOI":"10.1007\/s11219-020-09501-6","volume":"28","author":"MT Baldassarre","year":"2020","unstructured":"Baldassarre, M.T., Barletta, V.S., Caivano, D., Scalera, M.: Integrating security and privacy in software development. Softw. Qual. J. 28(3), 987\u20131018 (2020)","journal-title":"Softw. Qual. J."},{"key":"11_CR6","doi-asserted-by":"publisher","unstructured":"Bellotti, V., Sellen, A.: Design for privacy in ubiquitous computing environments. In: ECSCW, pp. 77\u201392, Springer, CHam (1993). https:\/\/doi.org\/10.1007\/978-94-011-2094-4_6","DOI":"10.1007\/978-94-011-2094-4_6"},{"key":"11_CR7","doi-asserted-by":"publisher","first-page":"36","DOI":"10.1016\/j.procs.2022.10.117","volume":"210","author":"B Chah","year":"2022","unstructured":"Chah, B., Lombard, A., Bkakria, A., Yaich, R., Abbas-Turki, A., Galland, S.: Privacy threat analysis for connected and autonomous vehicles. Procedia Computer Science 210, 36\u201344 (2022)","journal-title":"Procedia Computer Science"},{"issue":"1","key":"11_CR8","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1007\/s00766-010-0115-7","volume":"16","author":"M Deng","year":"2011","unstructured":"Deng, M., Wuyts, K., Scandariato, R., Preneel, B., Joosen, W.: A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements. Requirements Eng. 16(1), 3\u201332 (2011)","journal-title":"Requirements Eng."},{"key":"11_CR9","doi-asserted-by":"crossref","unstructured":"Dev, J., Rashidi, B., Garg, V.: Models of applied privacy (map): a persona based approach to threat modeling. In: ACM CHI, pp. 1\u201315 (2023)","DOI":"10.1145\/3544548.3581484"},{"key":"11_CR10","doi-asserted-by":"crossref","unstructured":"Drozd, O.: Privacy pattern catalogue: A tool for integrating privacy principles of iso\/iec 29100 into the software development process. In: Privacy and Identity Management, pp. 129\u2013140 (2016)","DOI":"10.1007\/978-3-319-41763-9_9"},{"issue":"3","key":"11_CR11","first-page":"25","volume":"14","author":"S G\u00fcrses","year":"2011","unstructured":"G\u00fcrses, S., Troncoso, C., Diaz, C.: Engineering privacy by design. Comput. Priv. Data Prot. 14(3), 25 (2011)","journal-title":"Comput. Priv. Data Prot."},{"key":"11_CR12","doi-asserted-by":"crossref","unstructured":"Herwanto, G.B., Ekaputra, F.J., Quirchmayr, G., Tjoa, A.M.: Towards a holistic privacy requirements engineering process: insights from a systematic literature review. IEEE Access (2024)","DOI":"10.1109\/ACCESS.2024.3380888"},{"key":"11_CR13","doi-asserted-by":"crossref","unstructured":"Hoepman, J.: Privacy design strategies - (extended abstract). In: ICT Systems Security and Privacy Protection SEC, IFIP AICT, vol. 428 (2014)","DOI":"10.1007\/978-3-642-55415-5_38"},{"key":"11_CR14","doi-asserted-by":"crossref","unstructured":"Hong, J.I., Ng, J.D., Lederer, S., Landay, J.A.: Privacy risk models for designing privacy-sensitive ubiquitous computing systems. In: ACM DIS, pp. 91\u2013100 (2004)","DOI":"10.1145\/1013115.1013129"},{"key":"11_CR15","unstructured":"Jensen, C., Tullio, J., Potts, C., Mynatt, E.D.: Strap: a structured analysis framework for privacy. Georgia Inst. Technol. 1 (2005)"},{"key":"11_CR16","doi-asserted-by":"publisher","DOI":"10.3389\/fpubh.2022.814163","volume":"10","author":"S Jordan","year":"2022","unstructured":"Jordan, S., Fontaine, C., Hendricks-Sturrup, R.: Selecting privacy-enhancing technologies for managing health data use. Front. Public Health 10, 814163 (2022)","journal-title":"Front. Public Health"},{"key":"11_CR17","doi-asserted-by":"crossref","unstructured":"Kalloniatis, C., Kavakli, E., Gritzalis, S.: Addressing privacy requirements in system design: the pris method. Requirements Eng. 13 (2008)","DOI":"10.1007\/s00766-008-0067-3"},{"key":"11_CR18","unstructured":"Katcher, S., et al.: The mitre panoptic\u2122 privacy threat model tutorial. In: 2nd Workshop on Privacy Threat Modeling (WPTM) (2023)"},{"key":"11_CR19","doi-asserted-by":"crossref","unstructured":"Kung, A.: Pears: Privacy enhancing architectures. In: Privacy Technologies and Policy - 2nd Annual Privacy Forum (APF), pp. 18\u201329 (2014)","DOI":"10.1007\/978-3-319-06749-0_2"},{"key":"11_CR20","doi-asserted-by":"crossref","unstructured":"Kunz, I., Banse, C., Stephanow, P.: Selecting privacy enhancing technologies for Iot-based services. In: EAI SecureComm, pp. 455\u2013474 (2020)","DOI":"10.1007\/978-3-030-63095-9_29"},{"key":"11_CR21","doi-asserted-by":"publisher","unstructured":"Kunz, I., Binder, A.: Application-oriented selection of privacy enhancing technologies. In: Gryszczy\u0144ska, A., Pola\u0144ski, P., Gruschka, N., Rannenberg, K., Adamczyk, M. (eds.) Privacy Technologies and Policy - 10th Annual Privacy Forum, APF, LNCS, vol. 13279, pp. 75\u201387, Springer (2022). https:\/\/doi.org\/10.1007\/978-3-031-07315-1_5","DOI":"10.1007\/978-3-031-07315-1_5"},{"key":"11_CR22","doi-asserted-by":"crossref","unstructured":"L\u00f6bner, S., Tronnier, F., Pape, S., Rannenberg, K.: Comparison of de-identification techniques for privacy preserving data analysis in vehicular data sharing. In: ACM CSCS, pp. 7:1\u20137:11. ACM (2021)","DOI":"10.1145\/3488904.3493380"},{"key":"11_CR23","doi-asserted-by":"crossref","unstructured":"Mann, Z.\u00c1., Petit, J., Thornton, S.M., Buchholz, M., Millar, J.: SPIDER: interplay assessment method for privacy and other values. In: 2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), pp. 1\u20138. IEEE (2024)","DOI":"10.1109\/EuroSPW61312.2024.00007"},{"key":"11_CR24","doi-asserted-by":"crossref","unstructured":"Pape, S., Bkakria, A., Chah, B., Heymann, M., Winkler, S.S.: A framework for supporting PET selection based on GDPR principles. In: ARES (2025)","DOI":"10.1007\/978-3-032-00624-0_1"},{"key":"11_CR25","doi-asserted-by":"crossref","unstructured":"Pape, S., Rannenberg, K.: Applying privacy patterns to the internet of things\u2019 (IoT) architecture. Mob. Netw. Appl. 24(3), 925\u2013933 (2019)","DOI":"10.1007\/s11036-018-1148-2"},{"key":"11_CR26","doi-asserted-by":"crossref","unstructured":"Pape, S., et al.: A systematic approach for automotive privacy management. In: ACM CSCS (2023)","DOI":"10.1145\/3631204.3631863"},{"key":"11_CR27","doi-asserted-by":"crossref","unstructured":"de\u00a0Vries, R., Mann, Z.\u00c1.: Secure neural network inference as a service with resource-constrained clients. In: Proceedings of the IEEE\/ACM 16th International Conference on Utility and Cloud Computing (2023)","DOI":"10.1145\/3603166.3632132"},{"key":"11_CR28","unstructured":"Wuyts, K., Joosen, W.: Linddun privacy threat modeling: a tutorial. CW Reports (2015)"}],"container-title":["Lecture Notes in Computer Science","Computer Security. ESORICS 2025 International Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-032-16089-8_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,3]],"date-time":"2026-05-03T23:16:37Z","timestamp":1777850197000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-032-16089-8_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9783032160881","9783032160898"],"references-count":28,"URL":"https:\/\/doi.org\/10.1007\/978-3-032-16089-8_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"1 May 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ESORICS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Symposium on Research in Computer Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Toulouse","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 September 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 September 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"esorics2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.esorics2025.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}