{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,2]],"date-time":"2026-03-02T14:53:21Z","timestamp":1772463201683,"version":"3.50.1"},"reference-count":43,"publisher":"Springer Science and Business Media LLC","issue":"6","license":[{"start":{"date-parts":[[2019,1,30]],"date-time":"2019-01-30T00:00:00Z","timestamp":1548806400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Softw Syst Model"],"published-print":{"date-parts":[[2019,12]]},"DOI":"10.1007\/s10270-019-00718-z","type":"journal-article","created":{"date-parts":[[2019,1,30]],"date-time":"2019-01-30T03:59:07Z","timestamp":1548820747000},"page":"3235-3264","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":38,"title":["Privacy-enhanced BPMN: enabling data privacy analysis in business processes models"],"prefix":"10.1007","volume":"18","author":[{"given":"Pille","family":"Pullonen","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jake","family":"Tom","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Raimundas","family":"Matulevi\u010dius","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Aivo","family":"Toots","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,1,30]]},"reference":[{"issue":"C","key":"718_CR1","doi-asserted-by":"publisher","first-page":"244","DOI":"10.1016\/j.is.2013.12.006","volume":"47","author":"R Accorsi","year":"2015","unstructured":"Accorsi, R., Lehmann, A., Lohmann, N.: Information leak detection in business process models. Inf. Syst. 47(C), 244\u2013257 (2015)","journal-title":"Inf. Syst."},{"issue":"4","key":"718_CR2","first-page":"93","volume":"4","author":"O Altuhhova","year":"2013","unstructured":"Altuhhova, O., Matulevi\u010dius, R., Ahmed, N.: An extension of business process model and notification for security risk management. IJISMD 4(4), 93\u2013113 (2013)","journal-title":"IJISMD"},{"key":"718_CR3","unstructured":"Anati, I., Gueron, S., Johnson, S., Scarlata, V.: Innovative technology for CPU based attestation and sealing. In: Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy, vol.\u00a013. ACM New York, NY (2013)"},{"key":"718_CR4","doi-asserted-by":"crossref","unstructured":"Argyropoulos, N., Mouratidis, H., Fish, A.: Attribute-based security verification of business process models,. In: Proceedings of the 19th Conference on Business Informatics, pp. 43\u201352 (2017)","DOI":"10.1109\/CBI.2017.37"},{"key":"718_CR5","doi-asserted-by":"crossref","unstructured":"Ayed,\u00a0G.B., Ghernaouti-Helie, S.: Processes view modeling of identity-related privacy business interoperability: considering user-supremacy federated identity technical model and identity contract negotiation. In: Proceedings of the ASONAM 2012 (2012)","DOI":"10.1109\/ASONAM.2012.162"},{"key":"718_CR6","doi-asserted-by":"crossref","unstructured":"Blakley, G.R.: Safeguarding cryptographic keys. In: Proceedings of the 1979 AFIPS National Computer Conference, pp. 313\u2013317. AFIPS Press, Montvale (1979)","DOI":"10.1109\/MARK.1979.8817296"},{"key":"718_CR7","doi-asserted-by":"crossref","unstructured":"Braun, R., Esswein, W.: Classification of domain-specific BPMN extensions. In: The Practice of Enterprise Modeling, LNBIP, pp. 42\u201357. Springer, Berlin (2014)","DOI":"10.1007\/978-3-662-45501-2_4"},{"key":"718_CR8","doi-asserted-by":"crossref","unstructured":"Brucker, A.D., Hang, I., L\u00fcckemeyer, G., Ruparel, R.: SecureBPMN: modeling and enforcing access control requirements in business processes. In: Proceedings of the SACMAT 2012, pp. 123\u2013126. ACM (2012)","DOI":"10.1145\/2295136.2295160"},{"key":"718_CR9","doi-asserted-by":"crossref","unstructured":"Cherdantseva, Y., Hilton, J., Rana, O.: Towards SecureBPMN\u2014aligning BPMN with the information assurance and security domain. In: Business Process Model and Notation, LNBIP, pp. 107\u2013115. Springer, Berlin (2012)","DOI":"10.1007\/978-3-642-33155-8_9"},{"key":"718_CR10","doi-asserted-by":"crossref","unstructured":"Chergui, M.E.A., Benslimane, S.M.: A valid BPMN extension for supporting security requirements based on cyber security ontology. In: MEDI 2018, LNCS 11163, pp. 216\u2013232 (2018)","DOI":"10.1007\/978-3-030-00856-7_14"},{"key":"718_CR11","unstructured":"Danezis, G., Domingo-Ferrer, J., Hansen, M., Hoepman, J.-H., Metayer, D.L., Tirtea, R., Schiffner, S.: Privacy and data protection by design-from policy to engineering. Technical report, European Union Agency for Network and Information Security (2015)"},{"key":"718_CR12","first-page":"139","volume":"43","author":"AR Silva da","year":"2015","unstructured":"da Silva, A.R.: Model-driven engineering. Comput. Lang. Syst. Struct. 43, 139\u2013155 (2015)","journal-title":"Comput. Lang. Syst. Struct."},{"issue":"6","key":"718_CR13","doi-asserted-by":"publisher","first-page":"644","DOI":"10.1109\/TIT.1976.1055638","volume":"22","author":"W Diffie","year":"2006","unstructured":"Diffie, W., Hellman, M.: New directions in cryptography. IEEE Trans. Inf. Theor. 22(6), 644\u2013654 (2006)","journal-title":"IEEE Trans. Inf. Theor."},{"key":"718_CR14","first-page":"62","volume":"2016","author":"M Dumas","year":"2016","unstructured":"Dumas, M., Garc\u00eda-Ba\u00f1uelos, L., Laud, P.: Differential privacy analysis of data processing workflows. Proc. Third Int. Workshop GraMSec 2016, 62\u201379 (2016)","journal-title":"Proc. Third Int. Workshop GraMSec"},{"key":"718_CR15","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33143-5","volume-title":"Fundamentals of Business Process Management","author":"M Dumas","year":"2013","unstructured":"Dumas, M., La Rosa, M., Mendling, J., Reijers, H.: Fundamentals of Business Process Management. Springer, Berlin (2013)"},{"key":"718_CR16","doi-asserted-by":"crossref","unstructured":"Dumas, M., Garcia-Banuelos, L., Laud, P.: Disclosure analysis of SQL workflows. In: Fifth International Workshop on Graphical Models for Security. (GramSec 2018), co-located with CSF 2018 (2018)","DOI":"10.29007\/6bpx"},{"key":"718_CR17","doi-asserted-by":"crossref","unstructured":"Gentry, C.: Fully homomorphic encryption using ideal lattices. In: Proceedings of the Forty-first Annual ACM Symposium on Theory of Computing, STOC \u201909, pp. 169\u2013178, New York, NY, USA. ACM (2009)","DOI":"10.1145\/1536414.1536440"},{"key":"718_CR18","unstructured":"Greenberg, A.: Apple\u2019s \u2019differential privacy\u2019 is about collecting your data\u2013but not your data. In: Wired (2016)"},{"key":"718_CR19","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2015.05.002","volume":"53","author":"J Heurix","year":"2015","unstructured":"Heurix, J., Zimmermann, P., Neubauer, T., Fenz, S.: A taxonomy for privacy enhancing technologies. Comput. Secur. 53, 1\u201317 (2015)","journal-title":"Comput. Secur."},{"key":"718_CR20","unstructured":"International Organization for Standardization: ISO\/IEC DIS 29134: Information technology\u2014security techniques\u2014privacy impact assessment\u2014guidelines. Technical report, International Organization for Standardization (2016)"},{"key":"718_CR21","unstructured":"JOINT\u00a0TASK FORCE and TRANSFORMATION INITIATIVE. Security and privacy controls for federal information systems and organizations. NIST Special Publication, 800, 53 (2013)"},{"key":"718_CR22","unstructured":"Koorn, R., van Gils, H., ter Hart, J., Overbeek, P., Tellegen, R., Borking, J.: Privacy enhancing technologies, white paper for decision makers. In: Ministry of the Interior and Kingdom Relations, the Netherlands (2004)"},{"key":"718_CR23","doi-asserted-by":"crossref","unstructured":"Ladha, W., Mehandjiev, N., Sampaio, P.: Modelling of privacy-aware business processes in BPMN to protect personal data. In: Proceedings of the 29th Annual ACM Symposium on Applied Computing, pp. 1399\u20131405 (2014)","DOI":"10.1145\/2554850.2555014"},{"key":"718_CR24","doi-asserted-by":"crossref","unstructured":"Lepinski, M., Levin, D., McCarthy, D., Watro, R., Lack, M., Hallenbeck, D., Slater, D.: Privacy-enhanced android for smart cities applications. In: Leon-Garcia, A., Lenort, R., Holman, D., Sta\u0161, D., Krutilova, V., Wicher, P., Cag\u00e1\u0148ov\u00e1, D., \u0160pirkov\u00e1, D., Golej, J., Nguyen, K., (eds.) Smart City 360, pp 66\u201377. Springer, Cham (2016)","DOI":"10.1007\/978-3-319-33681-7_6"},{"key":"718_CR25","doi-asserted-by":"crossref","unstructured":"Maines, C.L., Llewelly-Jone, D., Tang, S., Zhou, A.: Cyber security ontology for BPMN-security extensions. In: Proceeding of the IEEE International Conference on Computer and Information Technology; Ubiquitous Computing and Communication; Dependable, Autonomic and Secure Computing; Pervasive Intelligence and Computing, pp. 1756\u20131763 (2015)","DOI":"10.1109\/CIT\/IUCC\/DASC\/PICOM.2015.265"},{"key":"718_CR26","first-page":"41","volume":"2009","author":"M Menzel","year":"2009","unstructured":"Menzel, M., Thomas, I., Meinel, C.: Security requirements specification in service-oriented business process management. ARES 2009, 41\u201349 (2009)","journal-title":"ARES"},{"issue":"3","key":"718_CR27","doi-asserted-by":"publisher","first-page":"1","DOI":"10.4018\/jsse.2012070101","volume":"3","author":"H Mouratidis","year":"2012","unstructured":"Mouratidis, H., Kalloniatis, C., Islam, S., Hudic, A., Zechner, L.: Model based process to support security and privacy requirements engineering. Int. J. Secure Softw. Eng. 3(3), 1\u201322 (2012)","journal-title":"Int. J. Secure Softw. Eng."},{"key":"718_CR28","unstructured":"M\u00fclle, J., von Stackelberg, S., B\u00f6hm, K.: A security language for BPMN process models 2011, 9. Technical Report\u00a09, Karlsruhe Reports in Informatics (2011)"},{"key":"718_CR29","unstructured":"OMG. Business Process Model and Notation (BPMN). http:\/\/www.omg.org\/spec\/BPMN\/2.0\/"},{"key":"718_CR30","unstructured":"Privacy management reference model and methodology (PMRM) version 1.0. OASIS Committee Specification 02, (2016). http:\/\/docs.oasis-open.org\/pmrm\/PMRM\/v1.0\/cs02\/PMRM-v1.0-cs02.html"},{"key":"718_CR31","unstructured":"Pullonen, P., Matulevicius, R., Bogdanov, D.: PE-BPMN: privacy-enhanced business process model and notation. In: Business Process Management\u201415th International Conference, BPM 2017, Barcelona, Spain, September 10\u201315, 2017, Proceedings, pp. 40\u201356 (2017)"},{"key":"718_CR32","unstructured":"Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation), 2016. http:\/\/data.europa.eu\/eli\/reg\/2016\/679\/oj"},{"issue":"4","key":"718_CR33","doi-asserted-by":"publisher","first-page":"745","DOI":"10.1093\/ietisy\/e90-d.4.745","volume":"90","author":"A Rodriguez","year":"2007","unstructured":"Rodriguez, A., Fernandez-Medina, E., Piattini, M.: A BPMN extension for the modeling of security requirements in business processes. IEICE Trans. Inf. Syst. 90(4), 745\u2013752 (2007)","journal-title":"IEICE Trans. Inf. Syst."},{"key":"718_CR34","doi-asserted-by":"crossref","unstructured":"Saleem, M.Q., Jaafar, J.B., Hassan, M.F.: A domain-specific language for modelling security objectives in business process models of SOA applications. Adv. Inf. Sci. Serv. Sci. (AISS) 4(1) (2012)","DOI":"10.4156\/aiss.vol4.issue1.45"},{"key":"718_CR35","first-page":"200","volume":"175","author":"M Salnitri","year":"2014","unstructured":"Salnitri, M., Dalpiaz, F., Giorgini, P.: Modelling and verifying security policies in business processes. Lect. Notes Bus. Inf. Process. LNBIP 175, 200\u2013214 (2014)","journal-title":"Lect. Notes Bus. Inf. Process. LNBIP"},{"key":"718_CR36","doi-asserted-by":"crossref","unstructured":"Sang, K.S., Zhou, B.: BPMN security extensions for healthcare process. In: Proceeding of the IEEE International Conference on Computer and Information Technology; Ubiquitous Computing and Communication; Dependable, Autonomic and Secure Computing; Pervasive Intelligence and Computing, pp. 2340\u20132345 (2015)","DOI":"10.1109\/CIT\/IUCC\/DASC\/PICOM.2015.346"},{"issue":"11","key":"718_CR37","doi-asserted-by":"publisher","first-page":"612","DOI":"10.1145\/359168.359176","volume":"22","author":"A Shamir","year":"1979","unstructured":"Shamir, A.: How to share a secret. Commun. ACM 22(11), 612\u2013613 (1979)","journal-title":"Commun. ACM"},{"key":"718_CR38","doi-asserted-by":"crossref","unstructured":"Solove, D.J.: A taxonomy of privacy. University of Pennsylvania law review, pp. 477\u2013564 (2006)","DOI":"10.2307\/40041279"},{"key":"718_CR39","doi-asserted-by":"crossref","unstructured":"Souza, A.R.R., Silva, B.L.B., Lins, F.A.A., Damasceno, J.C., Rosa, N.S., Maciel, P.R.M., Medeiros, R.W.A., Stephenson, B., Motahari-Nezhad, H.R., Li, J., Northfleet, C.: Incorporating security requirements into service composition: from modelling to execution. In: ICSOC-ServiceWave 2009, LNCS 5900, pp. 373\u2013388 (2009)","DOI":"10.1007\/978-3-642-10383-4_27"},{"key":"718_CR40","doi-asserted-by":"crossref","unstructured":"Su, J., Shukla, A., Goel, S., Narayanan, A.: De-anonymizing web browsing data with social networks. In: Proceedings of the 26th International Conference on World Wide Web, WWW \u201917, pp. 1261\u20131269. International World Wide Web Conferences Steering Committee (2017)","DOI":"10.1145\/3038912.3052714"},{"key":"718_CR41","doi-asserted-by":"crossref","unstructured":"Tom, J., Sing, E., Matulevi\u010dius, R.: Conceptual representation of the gdpr: Model and application directions. In: International Conference on Business Informatics Research, pp. 18\u201328. Springer, Berlin (2018)","DOI":"10.1007\/978-3-319-99951-7_2"},{"key":"718_CR42","unstructured":"Weiss, M.A., Archick, K.: US-EU data privacy: from safe harbor to privacy shield. In: Congressional Research Service (2016)"},{"key":"718_CR43","doi-asserted-by":"publisher","first-page":"211","DOI":"10.1016\/j.sysarc.2008.10.002","volume":"55","author":"C Wolter","year":"2009","unstructured":"Wolter, C., Menzel, M., Schaad, A., Miseldine, P., Meinel, C.: Model-driven business process requirements specification. J. Syst. Archit. 55, 211\u2013223 (2009)","journal-title":"J. Syst. Archit."}],"container-title":["Software and Systems Modeling"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s10270-019-00718-z\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10270-019-00718-z.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s10270-019-00718-z.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,9,11]],"date-time":"2022-09-11T03:17:39Z","timestamp":1662866259000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s10270-019-00718-z"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,1,30]]},"references-count":43,"journal-issue":{"issue":"6","published-print":{"date-parts":[[2019,12]]}},"alternative-id":["718"],"URL":"https:\/\/doi.org\/10.1007\/s10270-019-00718-z","relation":{},"ISSN":["1619-1366","1619-1374"],"issn-type":[{"value":"1619-1366","type":"print"},{"value":"1619-1374","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019,1,30]]},"assertion":[{"value":"28 February 2018","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"17 November 2018","order":2,"name":"revised","label":"Revised","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"31 December 2018","order":3,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"30 January 2019","order":4,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}