@inproceedings{bc321771c200483492032d6ddd9887c7,
title = "Privacy by Design Data Exchange between CSIRTs",
abstract = "Computer Security Incident Response Teams ({\textquoteleft}CSIRTs{\textquoteright}) may exchange personal data about incidents. A privacy by design solution can ensure the compliance with data protection law and the protection of trade secrets. An information platform of CSIRTs is proposed, where incidents are reported in encoded form. Without knowledge of other personal data, only the quantity, region and industry of the attacks can be read out. Additional data–primarily from own security incidents–can be used to calculate a similarity to other incidents.",
keywords = "CSIRTs, GDPR, Information platform, NIS directive, Privacy by design",
author = "Erich Schweighofer and Vinzenz Heu{\ss}ler and Peter Kieseberg",
note = "Publisher Copyright: {\textcopyright} 2017, Springer International Publishing AG.",
year = "2017",
doi = "10.1007/978-3-319-67280-9_6",
language = "English",
isbn = "978-3-319-67279-3",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
pages = "104--119",
editor = "Andreas Mitrakas and Erich Schweighofer and Kai Rannenberg and Herbert Leitold",
booktitle = "Privacy Technologies and Policy",
}