Cristina Del-Real, Els de Busser & Bibi van den Berg provide a systematic literature review on a comprehensive synthesis of the principles, norms, and strategies associated with Security by Design (SbD) and Privacy by Design (PbD). Notably, the discussion surrounding PbD predates that of SbD and is thus more extensively developed. A detailed comparison of the principles underpinning SbD and PbD reveals that while PbD encompasses a broader range of principles, the core principles on which consensus exists are nearly identical for both. A key principle common to both SbD and PbD is prevention or proactiveness. By integrating security and privacy measures proactively, these approaches aim to prevent potential risks before they materialise, ensuring that digital systems safeguard end users from the outset.

Another central principle is embeddedness, which underscores the necessity of integrating security and privacy considerations from the initial design phase. This principle ensures that these values are not merely add-ons but rather integral components of digital technologies. Additionally, user-centricity and transparency are pivotal principles for both SbD and PbD. Both frameworks prioritise end-user protection, with SbD focusing on security and PbD on privacy. Transparency ensures that users understand how their data is managed, reinforcing trust and compliance. Together, these principles guide the effective implementation of SbD and PbD in digital technologies.

• software design
• software development
• software engineering and secure software development

Share on Facebook Share by Bluesky Share on LinkedIn Share by WhatsApp Share by Mastodon