DeepAI AI Chat
Log In Sign Up

Detecting Privacy Requirements from User Stories with NLP Transfer Learning Models

02/02/2022
by   Francesco Casillo, et al.
0

To provide privacy-aware software systems, it is crucial to consider privacy from the very beginning of the development. However, developers do not have the expertise and the knowledge required to embed the legal and social requirements for data protection into software systems. Objective: We present an approach to decrease privacy risks during agile software development by automatically detecting privacy-related information in the context of user story requirements, a prominent notation in agile Requirement Engineering (RE). Methods: The proposed approach combines Natural Language Processing (NLP) and linguistic resources with deep learning algorithms to identify privacy aspects into User Stories. NLP technologies are used to extract information regarding the semantic and syntactic structure of the text. This information is then processed by a pre-trained convolutional neural network, which paved the way for the implementation of a Transfer Learning technique. We evaluate the proposed approach by performing an empirical study with a dataset of 1680 user stories. Results: The experimental results show that deep learning algorithms allow to obtain better predictions than those achieved with conventional (shallow) machine learning methods. Moreover, the application of Transfer Learning allows to considerably improve the accuracy of the predictions, ca. 10 researchers in considering the opportunities to automate privacy detection in the early phase of design, by also exploiting transfer learning models.

READ FULL TEXT

page 5

page 6

page 7

08/06/2021

Detecting Requirements Smells With Deep Learning: Experiences, Challenges and Future Work

Requirements Engineering (RE) is the initial step towards building a sof...
01/06/2020

Cross-Dataset Design Discussion Mining

Being able to identify software discussions that are primarily about des...
06/27/2019

An Approach for Reviewing Security-Related Aspects in Agile Requirements Specifications of Web Applications

Defects in requirements specifications can have severe consequences duri...
12/16/2021

An Empirical Study on Transfer Learning for Privilege Review

Protecting privileged communications and data from inadvertent disclosur...
08/02/2021

Cloud Native Privacy Engineering through DevPrivOps

Cloud native information systems engineering enables scalable and resili...