TY - JOUR
T1 - Conceptualizing the silent risk of inadvertent information leakages
AU - Lechler, Thomas
AU - Wetzel, Susanne
N1 - Publisher Copyright:
© 2017 Elsevier Ltd
PY - 2017/2/1
Y1 - 2017/2/1
N2 - Cybersecurity researchers and professionals alike strive to develop and implement effective countermeasures to address the problem of data breaches. However, even if all breaches due to misbehavior were preventable, this would not imply that all challenges in the context of data breaches and privacy were addressed. In fact, even intentional sharing of data to enable collaboration bears risks. We argue that the risk of potential information leakages in complex networks by and large is still underestimated to date. This paper introduces the notion of inadvertent information leakages, develops a framework to categorize generic network structures, and analyzes the different categories with regards to their potential for inadvertent information leakages. Furthermore, this paper reviews a case study in the healthcare sector and analyzes the respective network structure based on the risk framework introduced in this paper.
AB - Cybersecurity researchers and professionals alike strive to develop and implement effective countermeasures to address the problem of data breaches. However, even if all breaches due to misbehavior were preventable, this would not imply that all challenges in the context of data breaches and privacy were addressed. In fact, even intentional sharing of data to enable collaboration bears risks. We argue that the risk of potential information leakages in complex networks by and large is still underestimated to date. This paper introduces the notion of inadvertent information leakages, develops a framework to categorize generic network structures, and analyzes the different categories with regards to their potential for inadvertent information leakages. Furthermore, this paper reviews a case study in the healthcare sector and analyzes the respective network structure based on the risk framework introduced in this paper.
KW - Case study
KW - Inadvertent information leakage
KW - Risk framework
KW - Semi-honest behavior
UR - http://www.scopus.com/inward/record.url?scp=85009250854&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85009250854&partnerID=8YFLogxK
U2 - 10.1016/j.compeleceng.2016.12.020
DO - 10.1016/j.compeleceng.2016.12.020
M3 - Article
AN - SCOPUS:85009250854
SN - 0045-7906
VL - 58
SP - 67
EP - 75
JO - Computers and Electrical Engineering
JF - Computers and Electrical Engineering
ER -