Difference between revisions of "Wiki for Privacy Standards and Privacy Projects"

From IPEN Wiki
Jump to navigation Jump to search
Line 15: Line 15:


== Content ==
== Content ==
== Privacy-Standards ==
{| class="mw-collapsible mw-collapsed autocollapse"
|-
| Click expand to find links to information regarding various standardisation organizations and their work on privacy and data protection standards<br/>
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/ISO ISO], International Organization for Standardisation, has standards on e.g. Privacy Engineering or BigData
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/OpenId_Foundation_Activities OpenID Foundation]&nbsp;is a non-profit international standardization organization and has Workingroups regarding e.g. privacy and health related data
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/OASIS OASIS], Organization for the Advancement of Structured Information Standards, is e.g. working on Standards for Privacy Management Reference Model and Methodology.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/W3C_Activities W3C Activities], World Wide Web Consortium, has a privacy group working e.g. on Tracking Protection.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/IETF_Activities IETF Activities], Internet Engineering Taskforce, is working on the RFC 6973&nbsp;[https://tools.ietf.org/html/rfc6973 "Privacy Considerations for Internet Protocols"]
|-
|
*There exist diverse&nbsp;[http://ipen.trialog.com/wiki/National_Level_Activities National Level Standards]&nbsp;regarding privacy, some with which IPEN members are invovled, can be found&nbsp;[http://ipen.trialog.com/wiki/National_Level_Activities here].
|-
|
*The European commission has issued a mandate to&nbsp;[http://ipen.trialog.com/wiki/CEN-CENELEC-ETSI_Activities European Standardisation Organisations], ESOs, to work on standards relating to privacy management of security products and related services.
|}
== Privacy-Engineering Projects ==
{| class="mw-collapsible mw-collapsed autocollapse"
|-
| Find in the following information on different projects that follow Privacy Engineering ideas such as privacy and data protection by design and by default.
|-
|
*With its&nbsp;[http://ipen.trialog.com/wiki/App_PETs APP Pets]&nbsp;project the&nbsp;[https://www.datenschutzzentrum.de/ Datenschutzzentrum (ULD)]&nbsp;is working on privacy enhancing technologies for smart device apps
|-
|
*The goal of&nbsp;[http://ipen.trialog.com/wiki/AN_ON_Next AN.ON-Next]&nbsp;by the&nbsp;[https://www.datenschutzzentrum.de/ Datenschutzzentrum (ULD)]&nbsp;is to integrate processes for anonymization into the internet infrastructure.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/CREDENTIAL CREDENTIAL]&nbsp;project's goal is to enable end-to-end security and improved privacy in cloud identity management services for managing secure access control.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/DNT_Guide DNT Guide]&nbsp;aims at helping website owners to implement the Do Not Track (DNT) standard.
|-
|
*With the&nbsp;[http://ipen.trialog.com/wiki/PARIS PARIS]&nbsp;project sets out to define and demonstrate a methodological approach for the development of a surveillance infrastructure which enforces the right of citizens for privacy, justice and freedom.
|-
|
*The mission of&nbsp;[http://ipen.trialog.com/wiki/PRIPARE PRIPARE]&nbsp;is to facilitate the application of a privacy and security-by-design methodology and to foster a risk management culture through educational material.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/PRISMACLOUD PRISMACLOUD]&nbsp;produces tools to enable end-to-end security and thus allowing users to protect their privacy by cryptographic means.
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/Privacypatterns Privacypatterns]&nbsp;project provides building blocks for developers to advance privacy and data protection by design.
|-
|
*[http://ipen.trialog.com/wiki/Signatu Signatu]&nbsp;provides a service for companies to MAP their data processing activities, to create privacy policies and to track their users consent or consent withdrawal.
|}
== Other Privacy projects ==
{| class="mw-collapsible mw-collapsed autocollapse"
|-
| Find in the following
|-
|
*Privacy related&nbsp;[http://ipen.trialog.com/wiki/Events Events]: see past and upcoming events in Europe
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/Business_Process_CB Business Process Cookbook]&nbsp;is an open repository to integrate Privacy and DP by design into business processes.
|-
|
*Multiple institutions have worked on&nbsp;[http://ipen.trialog.com/wiki/DPIA_and_PIA_Guidelines Guidelines]&nbsp;for Privacy and Data Protection Impact Assessments.
|-
|
*You can find various&nbsp;[http://ipen.trialog.com/wiki/Studies Studies on Privacy and DP here.]
|-
|
*The&nbsp;[http://ipen.trialog.com/wiki/OWASP OWASP Top 10 Project]&nbsp;lists the current top 10 privacy risks.
|}


The wiki will contain the following dedicated pages
The wiki will contain the following dedicated pages
Line 111: Line 216:


|}
|}
<span style="font-size:larger"><span style="line-height: 1.6"></span></span>
 
== <span style="font-size: larger;">On IPEN - Internet Privacy Engineering Network</span> ==
== <span style="font-size: larger;">On IPEN - Internet Privacy Engineering Network</span> ==



Revision as of 12:52, 2 November 2016

Objective of WIKI

During the IPEN workshop held in Leuven on June 5th 2015 (https://secure.edps.europa.eu/EDPSWEB/edps/site/mySite/lang/en/IPEN_Workshop_2015), it was agreed that the IPEN community would benefit from the creation of a repository of information on activities related to privacy engineering initiatives and standards

The objective of this wiki is to be a tool allowing stakeholders interested in privacy engineering and standardisation to find resources and to identify and seek harmonisation and convergence opportunities.

IPEN members can register to this wiki

  • as observers (i.e. getting information)
  • as contributors (i.e. providing information and comments on privacy standards activities).

Contact Antonio Kung (antonio.kung@trialog.com) or Olivier Maridat (olivier.maridat@trialog.com) with topic [IPEN privacy standards] to request access, and indicate whether you want to be an observer or a contributor

If you wish to contribute please read the Rules for Contribution

Content

Privacy-Standards

Click expand to find links to information regarding various standardisation organizations and their work on privacy and data protection standards
  • The ISO, International Organization for Standardisation, has standards on e.g. Privacy Engineering or BigData
  • The OpenID Foundation is a non-profit international standardization organization and has Workingroups regarding e.g. privacy and health related data
  • The OASIS, Organization for the Advancement of Structured Information Standards, is e.g. working on Standards for Privacy Management Reference Model and Methodology.
  • The W3C Activities, World Wide Web Consortium, has a privacy group working e.g. on Tracking Protection.

Privacy-Engineering Projects

Find in the following information on different projects that follow Privacy Engineering ideas such as privacy and data protection by design and by default.
  • The CREDENTIAL project's goal is to enable end-to-end security and improved privacy in cloud identity management services for managing secure access control.
  • The DNT Guide aims at helping website owners to implement the Do Not Track (DNT) standard.
  • With the PARIS project sets out to define and demonstrate a methodological approach for the development of a surveillance infrastructure which enforces the right of citizens for privacy, justice and freedom.
  • The mission of PRIPARE is to facilitate the application of a privacy and security-by-design methodology and to foster a risk management culture through educational material.
  • The PRISMACLOUD produces tools to enable end-to-end security and thus allowing users to protect their privacy by cryptographic means.
  • The Privacypatterns project provides building blocks for developers to advance privacy and data protection by design.
  • Signatu provides a service for companies to MAP their data processing activities, to create privacy policies and to track their users consent or consent withdrawal.

Other Privacy projects

Find in the following
  • Privacy related Events: see past and upcoming events in Europe
  • Multiple institutions have worked on Guidelines for Privacy and Data Protection Impact Assessments.

The wiki will contain the following dedicated pages

ISO activities

Link to the page
http://ipen.trialog.com/wiki/ISO
Contributors Antonio Kung, Irene Kamara

OASIS activities

Link to the page http://ipen.trialog.com/wiki/OASIS
Contributors John Sabo?, Dawn Jutla?

W3C activities

Link to the page  http://ipen.trialog.com/wiki/W3C_Activities
Contributors Ninja Marnau?

IETF activities

Link to the page http://ipen.trialog.com/wiki/IETF_Activities
Contributors Steven Farrell?

CEN-CENELEC-ETSI activities

Link to the page http://ipen.trialog.com/wiki/CEN-CENELEC-ETSI_Activities
Contributors Antonio Kung (CEN-CENELEC JWG8), Claude Tételin (CEN TC225), Irene Kamara, Carmine Rizzo (ETSI)

OpenID Foundation activities

Link to the page http://ipen.trialog.com/wiki/OpenId_Foundation_Activities
Contributors Nat Sakimura (OpenID Foundation)

National level activities

Link to the page  http://ipen.trialog.com/wiki/National_Level_Activities
Contributors Alan Shipman (BSI)

Other activities

Link to the page http://ipen.trialog.com/wiki/Other_Activities
Contributors

Antonio Kung (Smart grid DPIA template, CNIL PIA methodology, ENISA landscape document, NIST privacy risk management framework),

Florian Stahl (OWASP Top 10 Privacy Risks Project)

Matthieu Grall (CNIL PIA analysis)

On IPEN - Internet Privacy Engineering Network

The purpose of IPEN (www.engineeringprivacy.eu) is to bring together developers and data protection experts with a technical background from different areas in order to launch and support projects that build privacy into everyday tools and develop new tools which can effectively protect and enhance our privacy.

Sponsors and Support

This wiki is sponsored by Trialog and supported by the PRIPARE project

LOGO TRIALOG 200 small 2.png

Logo Pripare-Large-clear.png