{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T12:56:50Z","timestamp":1760101010811},"publisher-location":"Cham","reference-count":42,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319672793"},{"type":"electronic","value":"9783319672809"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-67280-9_4","type":"book-chapter","created":{"date-parts":[[2017,10,10]],"date-time":"2017-10-10T02:15:18Z","timestamp":1507601718000},"page":"52-83","source":"Crossref","is-referenced-by-count":6,"title":["A Refinement Approach for the Reuse of Privacy Risk Analysis Results"],"prefix":"10.1007","author":[{"given":"Sourya Joyee","family":"De","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniel","family":"Le M\u00e9tayer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,10,11]]},"reference":[{"key":"4_CR1","unstructured":"Article 29 Data Protection Working Party: Guidelines on Data Protection Impact Assessment (DPIA) and determining whether processing is \u201clikely to result in a high risk\u201d for the purposes of Regulation 2016\/679 (2017)"},{"key":"4_CR2","unstructured":"BBC Technology: Millions of Fingerprints Stolen in US Government Hack (2015)"},{"key":"4_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"90","DOI":"10.1007\/978-3-319-19249-9_7","volume-title":"FM 2015: Formal Methods","author":"J Bringer","year":"2015","unstructured":"Bringer, J., Chabanne, H., M\u00e9tayer, D., Lescuyer, R.: Privacy by design in practice: reasoning about privacy properties of biometric system architectures. In: Bj\u00f8rner, N., de Boer, F. (eds.) FM 2015. LNCS, vol. 9109, pp. 90\u2013107. Springer, Cham (2015). doi: 10.1007\/978-3-319-19249-9_7"},{"key":"4_CR4","volume-title":"Privacy by Design: The 7 Foundational Principles Implementation and Mapping of Fair Information Practices","author":"A Cavoukian","year":"2010","unstructured":"Cavoukian, A.: Privacy by Design: The 7 Foundational Principles Implementation and Mapping of Fair Information Practices. Office of the Information and Privacy Commissioner, Ontario, Canada Standards (2010)"},{"issue":"1","key":"4_CR5","doi-asserted-by":"crossref","first-page":"37","DOI":"10.1111\/j.1541-1338.2011.00537.x","volume":"29","author":"A Cavoukian","year":"2012","unstructured":"Cavoukian, A., Chibba, M., Stoianov, A.: Advances in biometric encryption: taking privacy by design from academic research to deployment. Rev. Policy Res. 29(1), 37\u201361 (2012)","journal-title":"Rev. Policy Res."},{"key":"4_CR6","unstructured":"Cavoukian, A., Stoianov, A.: Privacy by Design Solutions for Biometric One-to-Many Identification Systems (2014)"},{"key":"4_CR7","doi-asserted-by":"crossref","unstructured":"Colesky, M., Hoepman, J., Hillen, C.: A critical analysis of privacy design strategies. In: 2016 IEEE Security and Privacy Workshops, SP Workshops 2016, San Jose, CA, USA, 22\u201326 May 2016, pp. 33\u201340 (2016)","DOI":"10.1109\/SPW.2016.23"},{"key":"4_CR8","unstructured":"Commission Nationale de l\u2019Informatique et des Libertes (CNIL): Methodology for Privacy Risk Management - How to Implement the Data Protection Act (2012)"},{"key":"4_CR9","unstructured":"Commission Nationale de l\u2019Informatique et des Libertes (CNIL): Privacy Impact Assessment (PIA) Methodology (How to Carry Out a PIA) (2015)"},{"key":"4_CR10","unstructured":"Commission Nationale de l\u2019Informatique et des Libertes (CNIL): Privacy Impact Assessment (PIA) Tools (templates and knowledge bases) (2015)"},{"key":"4_CR11","doi-asserted-by":"crossref","unstructured":"Dantcheva, A., Elia, P., Ross, A.: What Else Does Your Biometric Data Reveal? A Survey on Soft Biometrics (2015)","DOI":"10.1109\/TIFS.2015.2480381"},{"key":"4_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"221","DOI":"10.1007\/978-3-319-47072-6_15","volume-title":"Data Privacy Management and Security Assurance","author":"SJ De","year":"2016","unstructured":"De, S.J., M\u00e9tayer, D.: PRIAM: a privacy risk analysis methodology. In: Livraga, G., Torra, V., Aldini, A., Martinelli, F., Suri, N. (eds.) DPM\/QASA -2016. LNCS, vol. 9963, pp. 221\u2013229. Springer, Cham (2016). doi: 10.1007\/978-3-319-47072-6_15"},{"key":"4_CR13","doi-asserted-by":"crossref","unstructured":"De, S.J., Le M\u00e9tayer, D.: Privacy harm analysis: a case study on smart grids. In: International Workshop on Privacy Engineering (IWPE). IEEE (2016)","DOI":"10.1109\/SPW.2016.21"},{"key":"4_CR14","doi-asserted-by":"crossref","unstructured":"De, S.J., Le M\u00e9tayer, D.: Privacy risk analysis. In: Synthesis Series. Morgan & Claypool Publishers (2016)","DOI":"10.1007\/978-3-031-02349-1"},{"key":"4_CR15","unstructured":"De, S.J., Le M\u00e9tayer, D.: A Risk-based Approach to Privacy by Design (Extended Version). No. RR-9001, December 2016"},{"key":"4_CR16","doi-asserted-by":"crossref","unstructured":"De, S.J., Le M\u00e9tayer, D.: PRIAM: A Privacy Risk Analysis Methodology. INRIA Research Report (RR-8876), July 2016","DOI":"10.1007\/978-3-319-47072-6_15"},{"issue":"1","key":"4_CR17","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1007\/s00766-010-0115-7","volume":"16","author":"M Deng","year":"2011","unstructured":"Deng, M., Wuyts, K., Scandariato, R., Preneel, B., Joosen, W.: A privacy threat analysis framework: supporting the elicitation and fulfilment of privacy requirements. Requirements Eng. 16(1), 3\u201332 (2011)","journal-title":"Requirements Eng."},{"key":"4_CR18","unstructured":"European Commission: Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation), April 2016"},{"key":"4_CR19","unstructured":"Expert Group. 2 of Smart Grid Task Force: Data Protection Impact Assessment Template for Smart Grid and Smart Metering Systems (2014)"},{"issue":"7","key":"4_CR20","doi-asserted-by":"crossref","first-page":"529","DOI":"10.1109\/TSE.2005.85","volume":"31","author":"WB Frakes","year":"2005","unstructured":"Frakes, W.B., Kang, K.: Software reuse research: status and future. IEEE Trans. Softw. Eng. 31(7), 529\u2013536 (2005)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"4_CR21","unstructured":"Friginal, J., Guiochet, J., Killijian, M.O.: A privacy risk assessment methodology for location-based systems. http:\/\/homepages.laas.fr\/guiochet\/telecharge\/MOBIQUITOUS2013.pdf . Accessed 13 July 2016"},{"key":"4_CR22","unstructured":"Garcia, M., Lefkovitz, N., Lightman, S.: Privacy Risk Management for Federal Information Systems (NISTIR 8062 (Draft)). National Institute of Standards and Technology (2015)"},{"key":"4_CR23","unstructured":"Gartland, C.: Biometrics Are a Grave Threat to Privacy (2016). The New York Times"},{"key":"4_CR24","unstructured":"G\u00fcrses, S., Troncoso, C., Diaz, C.: Engineering privacy by design. Comput. Priv. Data Prot. 14(3) (2011)"},{"key":"4_CR25","unstructured":"G\u00fcrses, S., Troncoso, C., Diaz, C.: Engineering Privacy by Design Reloaded. Amsterdam Privacy Conference (2015)"},{"key":"4_CR26","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"446","DOI":"10.1007\/978-3-642-55415-5_38","volume-title":"ICT Systems Security and Privacy Protection","author":"J-H Hoepman","year":"2014","unstructured":"Hoepman, J.-H.: Privacy design strategies. In: Cuppens-Boulahia, N., Cuppens, F., Jajodia, S., Abou El Kalam, A., Sans, T. (eds.) SEC 2014. IFIP AICT, vol. 428, pp. 446\u2013459. Springer, Heidelberg (2014). doi: 10.1007\/978-3-642-55415-5_38"},{"key":"4_CR27","unstructured":"Kobie, N.: Surveillance State: Fingerprinting Pupils Raises Safety and Privacy Concerns (2016). The Guardian"},{"key":"4_CR28","unstructured":"Mcilroy, M.: Mass produced software components (1969)"},{"key":"4_CR29","unstructured":"Miglani, S., Kumar, M.: India\u2019s Billion-member Biometric Database Raises Privacy Fears (2016). Reuters"},{"key":"4_CR30","doi-asserted-by":"crossref","unstructured":"Mili, A., Chmiel, S.F., Gottumukkala, R., Zhang, L.: An integrated cost model for software reuse. In: Proceedings of the 2000 International Conference on Software Engineering, pp. 157\u2013166. IEEE (2000)","DOI":"10.1145\/337180.337199"},{"issue":"2","key":"4_CR31","doi-asserted-by":"crossref","first-page":"126","DOI":"10.1057\/ejis.2013.18","volume":"23","author":"MC Oetzel","year":"2014","unstructured":"Oetzel, M.C., Spiekermann, S.: A systematic methodology for privacy impact assessments: a design science approach. Eur. J. Inform. Syst. 23(2), 126\u2013150 (2014)","journal-title":"Eur. J. Inform. Syst."},{"key":"4_CR32","unstructured":"Oetzel, M.C., Spiekermann, S., Gr\u00fcning, I., Kelter, H., Mull, S.: Privacy Impact Assessment Guideline for RFID Applications (2011)"},{"key":"4_CR33","unstructured":"Oppenheim, C.: Big Brother Spying is Reaching Scary Levels (2013). http:\/\/edition.cnn.com\/2013\/12\/10\/opinion\/oppenheim-privacy-reform\/"},{"key":"4_CR34","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"283","DOI":"10.1007\/978-3-642-20769-3_23","volume-title":"Privacy and Identity Management for Life","author":"S Pearson","year":"2011","unstructured":"Pearson, S., Benameur, A.: A decision support system for design for privacy. In: Fischer-H\u00fcbner, S., Duquenoy, P., Hansen, M., Leenes, R., Zhang, G. (eds.) Privacy and Identity 2010. IFIP AICT, vol. 352, pp. 283\u2013296. Springer, Heidelberg (2011). doi: 10.1007\/978-3-642-20769-3_23"},{"issue":"2","key":"4_CR35","doi-asserted-by":"crossref","first-page":"33","DOI":"10.1109\/MSECP.2003.1193209","volume":"1","author":"S Prabhakar","year":"2003","unstructured":"Prabhakar, S., Pankanti, S., Jain, A.K.: Biometric recognition: security and privacy concerns. IEEE Secur. Priv. 1(2), 33\u201342 (2003)","journal-title":"IEEE Secur. Priv."},{"key":"4_CR36","unstructured":"del Prado, N., Cortez, M., Friginal, J.: Geo-location inference attacks: from modelling to privacy risk assessment. In: Tenth European Dependable Computing Conference (EDCC), pp. 222\u2013225. IEEE (2014)"},{"issue":"3","key":"4_CR37","doi-asserted-by":"crossref","first-page":"61","DOI":"10.1109\/52.210605","volume":"10","author":"R Prieto-D\u00edaz","year":"1993","unstructured":"Prieto-D\u00edaz, R.: Status report: software reusability. IEEE Softw. 10(3), 61\u201366 (1993)","journal-title":"IEEE Softw."},{"issue":"1","key":"4_CR38","doi-asserted-by":"crossref","first-page":"67","DOI":"10.1109\/TSE.2008.88","volume":"35","author":"S Spiekermann","year":"2009","unstructured":"Spiekermann, S., Cranor, L.F.: Engineering privacy. IEEE Trans. Softw. Eng. 35(1), 67\u201382 (2009)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"5","key":"4_CR39","doi-asserted-by":"crossref","first-page":"494","DOI":"10.1109\/TSE.1984.5010272","volume":"10","author":"TA Standish","year":"1984","unstructured":"Standish, T.A.: An essay on software reuse. IEEE Trans. Softw. Eng. 10(5), 494\u2013497 (1984)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"4_CR40","unstructured":"Tillman, G.: Opinion: Stolen Fingers: The Case Against Biometric Identity Theft Protection (2009). Computer World"},{"issue":"9","key":"4_CR41","doi-asserted-by":"crossref","first-page":"1480","DOI":"10.1109\/5.628723","volume":"85","author":"JD Woodward","year":"1997","unstructured":"Woodward, J.D.: Biometrics: privacy\u2019s foe or privacy\u2019s friend? Proc. IEEE 85(9), 1480\u20131492 (1997)","journal-title":"Proc. IEEE"},{"key":"4_CR42","doi-asserted-by":"crossref","DOI":"10.1007\/978-94-007-2543-0","volume-title":"Privacy Impact Assessment","author":"D Wright","year":"2012","unstructured":"Wright, D., De Hert, P.: Privacy Impact Assessment. Springer, Netherlands (2012)"}],"container-title":["Lecture Notes in Computer Science","Privacy Technologies and Policy"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-67280-9_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,8,4]],"date-time":"2022-08-04T04:10:22Z","timestamp":1659586222000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-67280-9_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319672793","9783319672809"],"references-count":42,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-67280-9_4","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}