C3-VULMAP: A LINDDUN-CWE privacy healthcare-related vulnerability dataset

Summary

This document presents a comprehensive narrative of applying the LINDDUN privacy threat modeling methodology to a Healthcare Information System (HIS). It covers system modeling with Data Flow Diagrams (DFDs), iterative threat identification across seven LINDDUN categories, and threat mapping to Common Weakness Enumeration (CWE) standards. All key formulas are explicitly shown, and the primary mapping matrix (Table 1) is included. For deeper scenarios, refer to the accompanying files: LINDDUN_Threat Trees (detailing use and misuse-case trees) and UseMisuse Cases vs CWE Category (mapping scenarios to CWE categories).

Keywords:	C3-VULMAP, LINDDUN, privacy threat modelling, common weakness enumeration
Creators:	Ameh, Jude https://orcid.org/0009-0001-4523-5204 Otebolaku, Abayomi https://orcid.org/0000-0002-4320-9061 Shenfield, Alex https://orcid.org/0000-0002-2931-8077 Ikpehai, Augustine
Academic units:	Faculty of Science, Technology and Arts (STA) > Academic Departments > Department of Engineering and Mathematics
Funders:	Funder Name Grant Number Funder ID Sheffield Hallam University UNSPECIFIED
Publisher of the data:	GitHub
Publication date:	15 May 2025
Data last accessed:	No data downloaded yet
URL of the data (if published elsewhere):	https://github.com/juxam/C3-VULMAP
SHURDA URI:	https://shurda.shu.ac.uk/id/eprint/273
Additional details Additional details Types of data: Dataset Collection period: From To 2025 UNSPECIFIED Resource language: English Metadata language: English Depositing User: Peter Smith Date Deposited: 10 Jun 2025 12:30 Last Modified: 10 Jun 2025 12:30