Lecture 4: April 6, 2026

Reading: text, §14, [1]
Assignments: Homework 1, due April 10, 2026

  1. Greetings and felicitations!

  2. Principles of secure design (con’t.)
    1. Simplicity and restrictiveness
    2. Principle of open design
    3. Principle of separation of privilege
    4. Principle of least common mechanism
    5. Principle of least astonishment

  3. Privacy
    1. What it is
    2. Relationship to confidentiality

  4. Principles of privacy by design
    1. Proactive not reactive; preventive not remedial
    2. Privacy as the default setting
    3. Privacy embedded into design
    4. Full functionality — positive-sum, not zero-sum
    5. End-to-end security — full lifecycle protection
    6. Visibility and transparency — keep it open
    7. Respect for user privacy — keep it user-centric

  5. Access Control Matrix

References

  1. A. Cavoukian, “Privacy by Design: The Seven Foundational Principles,” The Sedona Conference Institute (May 2010). {\sc url}: https://www.thesedonaconference.org/sites/default/files/conference_papers/Recommended%20%5B08b%5D%20Privacy%20By%20Design_Cavoukian.pdf.

UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 153A, Computer & Information Security & Privacy I
Version of April 7, 2026 at 3:32PM

 You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh