{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,30]],"date-time":"2025-05-30T12:10:02Z","timestamp":1748607002242,"version":"3.41.0"},"publisher-location":"Cham","reference-count":54,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319232751"},{"type":"electronic","value":"9783319232768"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-23276-8_29","type":"book-chapter","created":{"date-parts":[[2015,9,3]],"date-time":"2015-09-03T08:51:07Z","timestamp":1441270267000},"page":"323-334","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["Conflicts Between Security and Privacy Measures in Software Requirements Engineering"],"prefix":"10.1007","author":[{"given":"Daniel","family":"Ganji","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haralambos","family":"Mouratidis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Saeed Malekshahi","family":"Gheytassi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Miltos","family":"Petridis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,9,4]]},"reference":[{"key":"29_CR1","doi-asserted-by":"crossref","unstructured":"Pearson, S.: Taking Account of Privacy when Designing Cloud Computing Services, pp. 44\u201352. IEEE (2009)","DOI":"10.1109\/CLOUD.2009.5071532"},{"key":"29_CR2","doi-asserted-by":"crossref","unstructured":"Massey, A.K., Ant\u00f3n, A.I.: A requirements-based comparison of privacy taxonomies. In: 2008 Requirements Engineering and Law (2008)","DOI":"10.1109\/RELAW.2008.1"},{"key":"29_CR3","doi-asserted-by":"crossref","unstructured":"Schneier, B.: The importance of security engineering. IEEE Comput. Reliab. Soc. 88 (2012)","DOI":"10.1109\/MSP.2012.132"},{"key":"29_CR4","volume-title":"The Rights of Publicity and Privacy","author":"J Thomas McCarthy","year":"2005","unstructured":"Thomas McCarthy, J.: The Rights of Publicity and Privacy, 2nd edn. Thomson-West, New York (2005)","edition":"2"},{"key":"29_CR5","volume-title":"Understanding Privacy","author":"DJ Solove","year":"2008","unstructured":"Solove, D.J.: Understanding Privacy. Harvard University Press, Cambridge (2008)"},{"key":"29_CR6","unstructured":"AICPA and CICA. Generally Accepted Privacy Principles. Technical Report August, American Institute of Certified Public Accountants, Inc. and Institute of Chartered Accountants (2009)"},{"key":"29_CR7","unstructured":"Perrin, C.: Privacy is security (2007)"},{"key":"29_CR8","unstructured":"ICO. Conducting privacy impact assessments code of practice. Technical report (2014)"},{"key":"29_CR9","first-page":"66","volume":"11","author":"PM Schwartz","year":"2011","unstructured":"Schwartz, P.M.: Privacy, ethics, and analytics. IEEE Comput. Reliab. Soc. 11, 66\u201369 (2011)","journal-title":"IEEE Comput. Reliab. Soc."},{"key":"29_CR10","unstructured":"Plummer, D.: Top 10 Strategic Predictions: Gartner Predicts a Disruptive and Constructive Future for IT. Technical report (2011)"},{"issue":"6","key":"29_CR11","first-page":"7","volume":"31","author":"J Koponen","year":"2014","unstructured":"Koponen, J., Mangiaracina, A.: No free lunch: personal data and privacy in eu competition law. The Comput. Internet Lawyer 31(6), 7 (2014)","journal-title":"The Comput. Internet Lawyer"},{"key":"29_CR12","unstructured":"Fujitsu: Personal data in the cloud: A global survey of consumer attitudes. Technical report (2010)"},{"key":"29_CR13","unstructured":"Federal Trade Commission. Protecting Consumer Privacy in an Era of Rapid Change: A proposed framework for businesses and policymakers. Technical report, December 2010"},{"key":"29_CR14","unstructured":"Cavoukian, A.: Privacy by design the 7 foundational principles. Technical report (2009)"},{"key":"29_CR15","doi-asserted-by":"crossref","unstructured":"Cavoukian, A.: Privacy by Design. Technical report (2011)","DOI":"10.4018\/978-1-61350-501-4.ch007"},{"key":"29_CR16","unstructured":"Clarke, R.: Privacy Impact Assessments (1999)"},{"issue":"2","key":"29_CR17","doi-asserted-by":"publisher","first-page":"126","DOI":"10.1057\/ejis.2013.18","volume":"23","author":"MC Oetzel","year":"2014","unstructured":"Oetzel, M.C., Spiekermann, S.: A systematic methodology for privacy impact assessments: a design science approach. Eur. J. Inf. Syst. 23(2), 126\u2013150 (2014)","journal-title":"Eur. J. Inf. Syst."},{"key":"29_CR18","unstructured":"Trilateral Research & Consulting. Privacy impact assessment and risk management. Technical report, May 2013"},{"key":"29_CR19","unstructured":"PISA Consortium. Handbook of Privacy and Privacy-Enhancing Technologies (2003)"},{"key":"29_CR20","first-page":"1","volume":"2739","author":"Y Shen","year":"2011","unstructured":"Shen, Y., Pearson, S.: Privacy enhancing technologies: a review. HP Laboratories 2739, 1\u201330 (2011)","journal-title":"HP Laboratories"},{"issue":"8","key":"29_CR21","doi-asserted-by":"publisher","first-page":"1306","DOI":"10.1016\/j.jss.2007.11.003","volume":"81","author":"G Goncalves","year":"2008","unstructured":"Goncalves, G., Poniszewska-Maranda, A.: Role engineering: from design to evolution of security schemes. J. Syst. Softw. 81(8), 1306\u20131326 (2008)","journal-title":"J. Syst. Softw."},{"issue":"1","key":"29_CR22","doi-asserted-by":"publisher","first-page":"61","DOI":"10.5381\/jot.2004.3.1.c6","volume":"3","author":"D Firesmith","year":"2004","unstructured":"Firesmith, D.: Specifying reusable security requirements. J. Object Technol. 3(1), 61\u201375 (2004)","journal-title":"J. Object Technol."},{"key":"29_CR23","volume-title":"Requirements Engineering: From System Goals to UML Models to Software Specifications","author":"A Van Lamsweerde","year":"2009","unstructured":"Van Lamsweerde, A.: Requirements Engineering: From System Goals to UML Models to Software Specifications. Wiley, Hoboken (2009)"},{"issue":"1","key":"29_CR24","doi-asserted-by":"publisher","first-page":"133","DOI":"10.1109\/TSE.2007.70754","volume":"34","author":"CB Haley","year":"2008","unstructured":"Haley, C.B., Laney, R., Moffett, J.D., Nuseibeh, B.: Security requirements engineering: a framework for representation and analysis. IEEE Trans. Softw. Eng. 34(1), 133\u2013153 (2008)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"2","key":"29_CR25","doi-asserted-by":"publisher","first-page":"6:1","DOI":"10.1147\/JRD.2009.5429048","volume":"53","author":"SL Pfleeger","year":"2009","unstructured":"Pfleeger, S.L., Pfleeger, C.P.: Harmonizing privacy with security principles and practices. IBM J. Res. Devel. 53(2), 6:1\u20136:12 (2009)","journal-title":"IBM J. Res. Devel."},{"key":"29_CR26","unstructured":"Microsoft. Protecting Data and Privacy in the Cloud. Technical report (2014)"},{"issue":"1","key":"29_CR27","doi-asserted-by":"publisher","first-page":"5","DOI":"10.1109\/TSE.2007.70746","volume":"34","author":"TD Breaux","year":"2008","unstructured":"Breaux, T.D., Anton, A.I.: Analyzing regulatory rules for privacy and security requirements. IEEE Trans. Softw. Eng. 34(1), 5\u201320 (2008)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"10","key":"29_CR28","doi-asserted-by":"publisher","first-page":"978","DOI":"10.1109\/32.879820","volume":"26","author":"A Van Lamsweerde","year":"2000","unstructured":"Van Lamsweerde, A., Letier, E.: Handling obstacles in goal-oriented requirements engineering. IEEE Trans. Softw. Eng. 26(10), 978\u20131005 (2000)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"4","key":"29_CR29","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1109\/MS.2011.81","volume":"28","author":"JM Carrillo de Gea","year":"2010","unstructured":"Carrillo de Gea, J.M., Nicolas, J., Fernandez Aleman, J.L., Toval, A., Ebert, C., Vizcaino, A.: Requirements engineering tools. IEEE Softw. 28(4), 86\u201391 (2010)","journal-title":"IEEE Softw."},{"issue":"1","key":"29_CR30","doi-asserted-by":"publisher","first-page":"107","DOI":"10.3844\/jcssp.2012.107.120","volume":"8","author":"S Al-Fedaghi","year":"2012","unstructured":"Al-Fedaghi, S.: Engineering privacy revisited. Comput. Sci. 8(1), 107\u2013120 (2012)","journal-title":"Comput. Sci."},{"key":"29_CR31","doi-asserted-by":"crossref","unstructured":"Dimitromanolaki, I., Loucopoulos, P.: Goal-based conflict management in scenario analysis. In: 11th International Workshop on Database and Expert Systems Applications, pp. 831\u2013835. IEEE (2000)","DOI":"10.1109\/DEXA.2000.875122"},{"key":"29_CR32","unstructured":"Easterbrook, S.M.: Resolving requirements conflicts with computer-supported negotiation. Requirements Engineering: Social and Technical Issues, pp. 41\u201365 (1994)"},{"issue":"1","key":"29_CR33","doi-asserted-by":"publisher","first-page":"35","DOI":"10.1016\/j.infsof.2012.06.013","volume":"55","author":"R Ali","year":"2013","unstructured":"Ali, R., Dalpiaz, F., Giorgini, P.: Reasoning with contextual requirements: detecting inconsistency and conflicts. Inf. Softw. Technol. 55(1), 35\u201357 (2013)","journal-title":"Inf. Softw. Technol."},{"issue":"11","key":"29_CR34","doi-asserted-by":"publisher","first-page":"908","DOI":"10.1109\/32.730542","volume":"24","author":"A Van Lamsweerde","year":"1998","unstructured":"Van Lamsweerde, A., Darimont, R., Letier, E.: Managing conflicts in goal-directed requirements engineering. IEEE Trans. Softw. Eng. 24(11), 908\u2013925 (1998)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"29_CR35","doi-asserted-by":"crossref","unstructured":"Pham, M.T., Seow, K.T.: Multiagent conflict resolution planning. In: IEEE International Conference on Systems, Man, and Cybernetics, SMC 2013, pp. 297\u2013302 (2013)","DOI":"10.1109\/SMC.2013.57"},{"key":"29_CR36","doi-asserted-by":"crossref","unstructured":"Kalloniatis, C., Kavakli, E., Gritzalis, S.: Methods for designing privacy aware information systems: a review. In: 13th Panhellenic Conference on Informatics, pp. 185\u2013194. IEEE (2009)","DOI":"10.1109\/PCI.2009.45"},{"issue":"6","key":"29_CR37","doi-asserted-by":"publisher","first-page":"483","DOI":"10.1109\/32.142871","volume":"18","author":"J Mylopoulos","year":"1992","unstructured":"Mylopoulos, J., Chung, L., Nixon, B.: Representing and using non-functional requirements: a process-oriented approach. IEEE Trans. Softw. Eng. 18(6), 483\u2013497 (1992)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"29_CR38","doi-asserted-by":"crossref","unstructured":"Yu, E.: Towards modelling and reasoning support for early-phase requirements engineering. In: 3rd IEEE International Symposium on Requirements Engineering, pp. 226\u2013235 (1997)","DOI":"10.1109\/ISRE.1997.566873"},{"issue":"3","key":"29_CR39","doi-asserted-by":"publisher","first-page":"203","DOI":"10.1023\/B:AGNT.0000018806.20944.ef","volume":"8","author":"P Bresciani","year":"2002","unstructured":"Bresciani, P., Giorgini, P., Giunchiglia, F., Mylopoulos, J., Perini, A.: TROPOS: an egent-oriented software development methodology. Auton. Agents Multi-Agent Syst. 8(3), 203\u2013236 (2002)","journal-title":"Auton. Agents Multi-Agent Syst."},{"issue":"1","key":"29_CR40","doi-asserted-by":"publisher","first-page":"10","DOI":"10.1049\/ip-sen:20040297","volume":"151","author":"W Heaven","year":"2004","unstructured":"Heaven, W., Finkelstein, A.: A UML profile to support requirements engineering with KAOS. IEEE Proc.-Softw. 151(1), 10\u201327 (2004)","journal-title":"IEEE Proc.-Softw."},{"key":"29_CR41","first-page":"29","volume":"2","author":"AI Ant\u00f3n","year":"2000","unstructured":"Ant\u00f3n, A.I., Earp, J.B.: Strategies for developing policies and requirements for secure electronic commerce systems. E-Commer. Secur. Priv. 2, 29\u201346 (2000)","journal-title":"E-Commer. Secur. Priv."},{"key":"29_CR42","first-page":"137","volume":"3","author":"Q He","year":"2003","unstructured":"He, Q., Antn, A.I.: A framework for modeling privacy requirements in role engineering. REFSQ 3, 137\u2013146 (2003)","journal-title":"REFSQ"},{"key":"29_CR43","unstructured":"Moffett, J.D., Nuseibeh, B.: A framework for security requirements engineering. In: International Workshop on Software Engineering for Secure Systems (2006)"},{"key":"29_CR44","doi-asserted-by":"crossref","unstructured":"Bellotti, V., Sellen, A.: Design for privacy in ubiquitous computing environments. In: Third European Conference on Computer-Supported Cooperative, pp. 77\u201392 (1993)","DOI":"10.1007\/978-94-011-2094-4_6"},{"key":"29_CR45","unstructured":"Jensen, C., Tullio, J., Potts, C., Mynatt, E.D.: A structured analysis framework for privacy (STRAP) (2005)"},{"issue":"3","key":"29_CR46","doi-asserted-by":"publisher","first-page":"241","DOI":"10.1007\/s00766-008-0067-3","volume":"13","author":"C Kalloniatis","year":"2008","unstructured":"Kalloniatis, C., Kavakli, E., Gritzalis, S.: Addressing privacy requirements in system design: the PriS method. Requirements Eng. 13(3), 241\u2013255 (2008)","journal-title":"Requirements Eng."},{"key":"29_CR47","doi-asserted-by":"crossref","unstructured":"Omoronyia, I., Pasquale, L., Salehie, M., Cavallaro, L., Doherty, G., Nuseibeh, B.: Caprice: a tool for engineering adaptive privacy. In: 27th IEEE\/ACM International Conference on Automated Software Engineering (ASE 2012), Essen, Germany (2012)","DOI":"10.1145\/2351676.2351745"},{"key":"29_CR48","doi-asserted-by":"crossref","unstructured":"Pasquale, L., Menghi, C., Salehie, M., Cavallaro, L., Omoronyia, I., Nuseibeh, B.: SecuriTAS: a tool for engineering adaptive security. In: ACM SIGSOFT 20th International Symposium on the Foundations of Software Engineering, pp. 1\u20144. ACM (2012)","DOI":"10.1145\/2393596.2393618"},{"key":"29_CR49","doi-asserted-by":"crossref","unstructured":"Boehm, B., Gr\u00fcnbacher, P., Briggs, R.O.: EasyWinWin: a groupware-supported methodology for requirements negotiation. In: 23rd International Conference on Software Engineering, pp. 720\u2013721 (2001)","DOI":"10.1145\/503209.503265"},{"key":"29_CR50","unstructured":"Lee, R.B.: Challenges in the design of security-aware processors. In: Proceedings of the Application-Specific Systems, Architectures, and Processors (ASAP03) (2003)"},{"key":"29_CR51","unstructured":"Liu, L., Yu, E., Mylopoulos, J.: Security and privacy requirements analysis within a social setting. In: 11th IEEE International on Requirements Engineering Conference (2003)"},{"key":"29_CR52","doi-asserted-by":"crossref","unstructured":"Compagna, L., El Khoury, P., Massacci, F., Thomas, R., Zannone, N.: How to capture, model, and verify the knowledge of legal, security, and privacy experts: a pattern-based approach. In: 11th International Conference on Artificial Intelligence and Law, pp. 149\u2013153. ACM (2007)","DOI":"10.1145\/1276318.1276346"},{"key":"29_CR53","first-page":"2276","volume":"86","author":"H Mouratidis","year":"2013","unstructured":"Mouratidis, H., Islam, S., Kalloniatis, C., Gritzalis, S.: A framework to support selection of cloud providers based on security and privacy requirements. Elsevier 86, 2276\u20132293 (2013)","journal-title":"Elsevier"},{"issue":"1","key":"29_CR54","doi-asserted-by":"publisher","first-page":"244","DOI":"10.1109\/TKDE.2003.1161596","volume":"15","author":"J Chomicki","year":"2003","unstructured":"Chomicki, J., Lobo, J., Naqvi, S.: Conflict resolution using logic programming. IEEE Trans. Knowl. Data Eng. 15(1), 244\u2013249 (2003)","journal-title":"IEEE Trans. Knowl. Data Eng."}],"container-title":["Communications in Computer and Information Science","Global Security, Safety and Sustainability: Tomorrow's Challenges of Cyber Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-23276-8_29","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,30]],"date-time":"2025-05-30T11:38:58Z","timestamp":1748605138000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-319-23276-8_29"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319232751","9783319232768"],"references-count":54,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-23276-8_29","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2015]]},"assertion":[{"value":"4 September 2015","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}