Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
An Empirical Investigation On The Quality Of Open Source Anonymization Tools
Blekinge Institute of Technology, Faculty of Computing, Department of Software Engineering.
2022 (English)Independent thesis Advanced level (degree of Master (One Year)), 12 credits / 18 HE creditsStudent thesis
Abstract [en]

Context. In mid-2018, the GDPR legislation came into force, makingit less easy for companies to acquire personal data and use that information,for example, with machine learning. In addition, the legislationnow requires personal data to be anonymized to avoid penaltiesbefore giving up such information to other organizations. Therefore,it has been the only way to transfer such information without compliancerisks.

Objectives. In this thesis, we use the ISO-25010 model to investigatethe usability, security, and performance efficiency of anonymizationtools. The metrics consist of understanding the perceived quality ofeach tool, measuring the performance in terms of memory usage, andlastly, what security implications each tool has in their source code.

Methods. To fulfill our research questions, we conduct a quasiexperimentwith eight participants to understand their view of thetools’ usability—additionally, each tool’s performance by utilizing anapplication profiler to collect the memory usage. Finally, for security,we use a static code analysis tool to review the source code for securityimplications the anonymization tools might have.

Results. The experimental results show differences from a usabilityperspective for the tools Amnesia and ARX, indicating that Amnesiais a better choice in terms of usability. Furthermore, looking at thetools in terms of memory usage, we noticed better scalability capabilitiesfor ARX. As for security, we recorded no high-severity bugs forAmnesia, while ARX had one security-related bug.

Conclusions. We learned that the tools have their pros and cons andthat neither application was better than the other in all measured characteristics:usability, performance, and security perspectives. Here itbecomes a decision on preferences and priorities regarding what tochoose. To continue the research, we suggest, among others, understandingthe tools’ efficacy and increasing the participant count tounderstand the usability further.

Place, publisher, year, edition, pages
2022. , p. 54
Keywords [en]
Anonymization tools, Software testing, ARX, Amnesia
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:bth-24295OAI: oai:DiVA.org:bth-24295DiVA, id: diva2:1738081
Subject / course
PA2584 Research Methods and Master's Thesis in Software Engineering for Professionals
Educational program
PAASI Master of Science Programme in Software Engineering
Supervisors
Examiners
Available from: 2023-02-22 Created: 2023-02-20 Last updated: 2023-02-22Bibliographically approved

Open Access in DiVA

An empirical investigation on the quality of open source anonymization tools(625 kB)205 downloads
File information
File name FULLTEXT02.pdfFile size 625 kBChecksum SHA-512
48873b5830e4a458320b8dcce10a5f76bde54e7d66a765cb1cc49a26d743c7cf21fd7216eeab4667b00b045c65d3b167acbf8f052bd23d879ef770a5efc72e46
Type fulltextMimetype application/pdf

By organisation
Department of Software Engineering
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 206 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 241 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf