Upload
medialawguy
View
212
Download
0
Embed Size (px)
Citation preview
8/17/2019 The Internet of Things and Privacy Concerns
1/19
THE INTERNET OF THINGS AND PRIVACY CONCERNS
Charles Joseph KoronkowskiProessor Ran!" Dr"er
HONOR ##$%&''( The )ni*ersi+" o )+ah
INTROD)CTION The In+erne+ o Thin,s -IoT. is an e*er&e/pan!in, ne+work o
o01e2+s 2onne2+e! +o +he In+erne+ ei+her +hro3,h wires4 or4 5ore
2o55onl"4 +hro3,h wireless sensors6 These o01e2+s in+era2+ an!
2o553ni2a+e wi+h one ano+her4 sharin, inor5a+ion in +he or5 o
!a+a6 As +his ne+work ,rows4 i+ o7ers 5ore an! 5ore 0ene8+s +o
8/17/2019 The Internet of Things and Privacy Concerns
2/19
in!i*i!3als4 pri*a+e 8r5s4 an! ,rea+er so2ie+"6 These 0ene8+s ran,e
ro5 2on*enien2e an! +i5e sa*in, a2+ors4 +o os+erin, e92ien2"4 +o
pro5o+in, sae+" an! sa*in, li*es6 The IoT has alrea!" 0e2o5e a
5assi*e aspe2+ o how 2o553ni+ies are r3n +o!a"4 an! as +i5e
pro,resses4 i+ will 0e2o5e an essen+ial +ool or 5an" par+s o lie6:i+h +he ,row+h o IoT4 howe*er4 2er+ain risk a2+ors arise4 5os+
2o55onl" rela+in, +o pri*a2" 2on2erns6 The 5ore o01e2+s re2or! !a+a
a0o3+ !ail" lie an! +he ha0i+s o in!i*i!3als4 an! +he 5ore +hese
!e*i2es 2o553ni2a+e +his inor5a+ion o*er +he In+erne+4 +he 5ore +he
in!i*i!3al risks an in*asion o his or her pri*a2"6 This risk 2o5es 0o+h
ro5 +he en+i+ies +ha+ 2olle2+ +he inor5a+ion4 who 5i,h+ sell i+ +o
5arke+ers or ins3ran2e 2o5panies4 an! ro5 ha2kers who 5i,h+ wish
+o s+eal inor5a+ion or personal ,ain6 The IoT is alrea!" a par+ o so2ie+"4 an! will 2on+in3e +o 0e6
In!i*i!3als will nee! +o 5ake +he 2hoi2e 0e+ween pri*a2" an!
2on*enien2e +ha+ is ri,h+ or +he56 A+ an a,,re,a+e le*el4 howe*er4
sae,3ar!s an! pro+e2+ion will nee! +o 0e p3+ in+o pla2e +o ens3re +ha+
+he IoT is as se23re as i+ 2an 0e6 This will 0e a 5assi*e e7or+4 whi2h will
re;3ire 0o+h +he 2oopera+ion o 0o+h +he pri*a+e an! p30li2 se2+ors4 03+
+o ens3re an" le*el o pri*a2"4 will nee! +o 0e 3n!er+aken6
8/17/2019 The Internet of Things and Privacy Concerns
3/19
an! +o ea2h o+her +hro3,h s5all4 e50e!!e! sensors an! wire! an!
wireless +e2hnolo,ies4 2rea+in, an e2os"s+e5 o 30i;3i+o3s 2o5p3+in,>
-FTC4 ('?@4 p6 @.6 O+hers ar,3e +he !e8nin, poin+ is si5pl" e50e!!e!
in+elli,en2e in ph"si2al o01e2+s6 Howe*er4 =wBha+ all !e8ni+ions o +he
IoT ha*e in 2o55on is +ha+ +he" o23s on how 2o5p3+ers4 sensors4 an!
o01e2+s in+era2+ wi+h one ano+her an! pro2ess !a+a> -FTC4 ('?@4 p6 @.6 The IoT is no+ "e+ a 30i;3i+o3s par+ o e*er"!a" lie4 03+
es+i5a+es 2lai5 +here will 0e as 5an" as si/+een 0illion !e*i2es
2onne2+e! +o +he In+erne+ 0" ('(' -Clark4 ('?% i!!le+on e+ al64 ('?#
Press4 ('?%.6 In a 5a++er o "ears4 pra2+i2all" e*er" !ail" a2+i*i+" will 0e
a3+o5a+e!4 2onne2+e! +o +he In+erne+4 an! ,a+herin, !a+a6 In +he
ho5e4 +he IoT will s+ar+ +he 2o7ee 5aker 0eore "o3 wake 3p4 learn
"o3r +e5pera+3re ha0i+s an! a!13s+ a22or!in,l"4 lower +he sha!es +o
0lo2k a+ernoon s3n4 aler+ "o3 when "o3 are low on essen+ials s32h as
5ilk or 0rea!4 an! 3nlo2k "o3r !oors +o "o3r ho5e as "o3 approa2h in
"o3r 2ar4 a5on, 2o3n+less o+her possi0ili+ies6 The IoT will e/+en! ar 0e"on! pro*i!in, 2on*enien2e or +he
a*era,e 2ons35er6 The in2rease! po+en+ial or e92ien2" +ha+ 2o5es
wi+h an In+erne+&in+er,ra!e! worl! is enor5o3s6 The IoT will 2han,e +he
wa"s 03sinesses are r3n an! +he wa" 2i+ies are or,anie!6 I+ will
2han,e 5an3a2+3rin,4 2rea+e sae+" 5eas3res pre*io3sl" i5possi0le4
an! +hro3,h i+s appli2a+ion in heal+h2are4 sa*e li*es6 Fro5 si5ple
a22ess 2on+rol +o pre!i2+i*e 5ain+enan2e4 +he IoT will s+rea5line +he
pro2esses o an" in!3s+r" in 2o3n+less wa"s6
8/17/2019 The Internet of Things and Privacy Concerns
4/19
+ake real&+i5e in*en+or"4 +ra2k asse+s4 op+i5ie ener," 2ons35p+ion4
an! 0e++er pro+e2+ e5plo"ees +hro3,h a ne+work o in+er2onne2+e!
5a2hines in 2ons+an+ 2on*ersa+ion wi+h one ano+her6 In +he 5e!i2al
8el!4 !o2+ors will 0e a0le +o re5o+el" 5oni+or +heir pa+ien+s4 +ra2k +heir
e/er2ise an! !ie+ ha0i+s4 an! 0e a0le +o re5o+el" 2he2k on pa2e5akers
an! o+her 5e!i2al !e*i2es6 A503lan2es will ,e+ pa+ien+s +o +he hospi+al
as+er +hro3,h real&+i5e +ra92 5oni+orin,6 Ci+ies will 0e 5a!e in+o
=s5ar+ 2i+ies> +ra92 will 0e 2on+rolle!4 po+en+ial pipeline leaks will
0e !e+e2+e!4 an! p30li2 +ranspor+a+ion 2an 0e op+i5ie!6All o +hese appli2a+ions onl" s2ra+2h +he s3ra2e o +he po+en+ial
+he IoT has or 5akin, a 5ore s+rea5line! an! e92ien+ 2o553ni+"6
These 0ene8+s will no+ onl" 0e +i5esa*in, 5e2hanis5s4 03+ will also
5ake a so2ie+" +ha+ is 5ore pro!32+i*e4 5ore resilien+4 an! saer6
8/17/2019 The Internet of Things and Privacy Concerns
5/19
!ire2+l" inp3+6 =IoT !e*i2es learn a0o3+ 2ons35ers 0" o0ser*in, +heir
ha0i+s4 +en!en2ies4 an! preeren2es as well a+ +heir en*iron5en+s6
earnin, is 0ase! on 0eha*iors an! pheno5ena in +he na+3ral4 ph"si2al
worl! as oppose! +o +he s+ri2+l" online worl!> -:ein0er,4 ilne4
An!ono*a4 an! Ha11a+4 ('?@4 p6 ?&?.6 This +"pe o !a+a 2olle2+ion
por+ra"s no+ onl" a 5ore a223ra+e4 03+ also a 5ore in+i5a+e4 !epi2+ion
o an in!i*i!3als ha0i+s an! a2+i*i+ies6 Da+a 2olle2+ion +his
2o5prehensi*e will 2rea+e +hree 5ain areas o 0ene8+2on*enien2e4
e92ien2"4 an! lie sa*in,6A well&!isperse! an! well&2onne2+e! IoT will sa*e +i5e an! 5ake
e*er"!a" lie easier or +he a*era,e 2ons35er6 )sin, a s5ar+ !e*i2e4
s32h as a s5ar+phone4 +a0le+4 lap+op4 e+264 +he in!i*i!3al will ha*e
re5o+e 2on+rol o*er 532h o +he ho5e6=Ho5e a3+o5a+ion s"s+e5s 2an pro*i!e 2ons35ers wi+h a Lsin,le
pla+or5 +ha+ 2an 2onne2+ all !e*i2es wi+hin +he ho5e4 wi+hB a sin,le
app or 2on+rollin, +he5> -FTC4 ('?@4 p6 &.6 One 0ene8+ o s32h
2on+rol is +he a0ili+" +o s+a" 2onne2+e! when awa" ro5 ho5e6 =For
e/a5ple4 people 2an a22ess an! 3+ilie +heir ho5e 2o5p3+ers or 2a0le
+ele*ision ser*i2e when awa" ro5 ho5e> -:ein0er, e+ al64 ('?@4 p6
?.6 A !i73se IoT has 5ore 3n2+ional 0ene8+s +han si5pl" s+a"in,
2onne2+e!4 howe*er6 In!i*i!3als will 0e ,i*en +he a0ili+" +o essen+iall"
r3n +he ho5e while preo223pie! or awa"6 For e/a5ple4 +he IoT will
=allow 2ons35ers +o Lse+ +heirB +e5pera+3res re5o+el"M4 ,o ro5 0ake
+o 0roilM4 an!B 5oni+or +heirB pro!32+s ro5 *ario3s lo2a+ions insi!eM
8/17/2019 The Internet of Things and Privacy Concerns
6/19
an! o3+si!e +heirB ho5esB> -FTC4 ('?@4 p6 .6 The lis+ o +i5esa*in,
3ses +he IoT en+ails ,oes well 0e"on! +his 23rsor" lis+ o e/a5ples4 an!
as +he IoT ,rows4 i+s 3ses will 2on+in3e +o e/pan!6
The IoT will pro5o+e e92ien2" or in!i*i!3al 2ons35ers4 p30li2
3+ili+ies4 an! pri*a+e en+i+ies6 In +he 5an3a2+3rin, se2+or as well as
o+her se2+ors o 03siness4 +he 3+ilia+ion o IoT +e2hnolo," will
=enhan2e res+o2kin, or o+her s3ppl" 2hain 5ana,e5en+ ser*i2es>
-:ein0er, e+ al64 ('?@4 p6 ?.6 This will in +3rn sa*e +he 2o5pan" 0o+h
5one" an! +i5e +hro3,h in2rease! pro!32+i*i+"4 allowin, *al3a0le
reso3r2es +o 0e !e*o+e! +o o+her areas4 s32h as resear2h an!
!e*elop5en+6 The wa"s in whi2h 8r5s 5ake 5one" an! 2har,e or
ser*i2es 2an 0e si5ilarl" re*ol3+ionie! +hro3,h +he IoT6 =For e/a5ple4
pa"&as&"o3&,o 2o3l! 0e 0roa!ene! 0e"on! 5o0ile phone ser*i2es an!
a3+o5o0ile ren+alsM+o al5os+ an" appli2a+ion4 s32h as ins3ran2e>
-:ein0er, e+ al64 ('?@4 p6 ?.6 S32h inno*a+ion 2o3l! 0o+h sa*e
2ons35ers 5one" an! a++ra2+ new 2ons35ers who 5i,h+ 0e war" o
lon,&+er5 5one+ar" 2o55i+5en+s6A!!i+ionall"4 in!i*i!3als an! p30li2 an! pri*a+e en+i+ies will 0e
a0le +o work +o,e+her or 2o553nal e92ien2" +hro3,h +he IoT6 For
e/a5ple4 =s5ar+ 5e+ers 2an ena0le ener," pro*i!ers +o anal"e
2ons35er ener," 3se an! i!en+i" iss3es wi+h ho5e applian2es4 Le*en
aler+in, ho5eowners i +heir ins3la+ion see5s ina!e;3a+e 2o5pare! +o
+heir nei,h0ors4 +h3s e5powerin, 2ons35ers +o L5ake 0e++er
!e2isions a0o3+ how +he" 3se ele2+ri2i+"> -FTC4 ('?@4 p6 .6 S32h
8/17/2019 The Internet of Things and Privacy Concerns
7/19
!i,i+al 2o553ni2a+ion an! 2oopera+ion 2o3l! e/+en! +o pra2+i2all" all
areas o lie4 si53l+aneo3sl" pro*i!in, 5ore 2o5ple+e inor5a+ion an!
eli5ina+in, ine92ien2ies6
The IoT will !o 5ore +han pre*en+ was+e an! sa*e 5one"4
howe*er6 :hen applie! +o +he a3+o5o+i*e se2+or4 +he IoT will ,o
0e"on! pro5o+in, 2on*enien2e i+ will os+er sae+" an! po+en+iall"
sa*e li*es =sensors on a 2ar 2an no+i" !ri*ers o !an,ero3s roa!
2on!i+ions4 an! so+ware 3p!a+es 2an o223r wirelessl"4 o0*ia+in, +he
nee! or 2ons35ers +o *isi+ +he !ealership> -FTC4 ('?@4 p6 .6 The
i5por+an2e o wirelessl" 2onne2+e! sensors 0e2o5es in2reasin,l"
o0*io3s in +he e*en+ o an a22i!en+6 =Conne2+e! 2ars also 2an Lo7er
real&+i5e *ehi2le !ia,nos+i2s +o !ri*ers an! ser*i2e a2ili+iesMan!
sen!B a3+o5a+i2 aler+s +o 8rs+ respon!ers when air0a,s are !eplo"e!>
-FTC4 ('?@4 p6 .6 Dri*in, an a3+o5o0ile is one o +he 5os+ !an,ero3s
a2+i*i+ies +he a*era,e in!i*i!3al en,a,es in on a !ail" 0asis6 The IoT
will re*ol3+ionie +he wa" +his en+ire par+ o lie opera+es6 In +he shor+&
+er54 sensors in 2ars will 0e a0le +o a*oi! +ra924 pre*en+ a22i!en+s4
an! 2all e5er,en2" ser*i2es when ne2essar"6 In +he lon,&+er54
howe*er4 +he po+en+ial 2rea+e! 0" +he IoT 0e2o5es e*en 5ore
in+eres+in,6 As so2ie+" 5o*es +owar!s a 2o5ple+el" a3+o5a+e!
+ranspor+a+ion s"s+e54 +he IoT 0e2o5es in+e,ral6 A s"s+e5 o sel&
!ri*in, 2ars wo3l! 0e i5possi0le wi+ho3+ IoT +e2hnolo,"6 S32h
+e2hnolo," is pro1e2+e! +o no+ onl" 0e a*aila0le4 03+ wi!esprea! in +he
ne/+ !e2a!es4 an! a+ +he hear+ o +he s"s+e5 is +he IoT6
8/17/2019 The Internet of Things and Privacy Concerns
8/19
The IoT ,oes 0e"on! sae+" pro5o+ion i+ will 0e e5plo"e! +o
+ransor5 5e!i2ine an! sa*e li*es6 The possi0ili+ies ran,e ro5 ,eneral
well&0ein, pro5o+ion4 +o en!&o&lie&2are4 +o +he pre*en+ion an!
+rea+5en+ o serio3s !iseases6 As +he Fe!eral Tra!e Co55ission no+e!
in +heir ('?@ S+a7 Repor+ on +he IoT4 when applie! +o heal+h2are4 i+ will
=i5pro*e ;3ali+" o lie an! sae+" 0" pro*i!in, a ri2her so3r2e o !a+a
+o +he pa+ien+s !o2+or or !ia,nosis an! +rea+5en+4BMi5pro*e !isease
pre*en+ion4 5akin, +he heal+h2are s"s+e5 5ore e92ien+ an! !ri*in,
2os+s !own4BMan!B pro*i!e an in2re!i0le weal+h o !a+a4
re*ol3+ioniin, 5e!i2al resear2h an! allowin, +he 5e!i2al 2o553ni+"
+o 0e++er +rea+4 an! 3l+i5a+el" era!i2a+e !iseases> -FTC4 ('?@4 p6 $&.6
This will all 0e !one +hro3,h 5e!i2al !e*i2es4 ei+her worn or in,es+e!4
+ha+ are 2onne2+e! +o +he In+erne+6 This pro*i!es ei+her +he in!i*i!3al
or his or her !o2+or wi+h !a+a 2olle2+e! in real&+i5e6 For e/a5ple4 =a
2ons35er wearin, a heal+h&rela+e! IoT !e*i2e 5a" allow or 2ons+an+
2olle2+ion o *i+al inor5a+ion4 s32h as p3lse4 0o!" +e5pera+3re4 an!
!is+an2e +ra*ele!> -:ein0er, e+ al64 ('?@4 p6 ?.6 S32h weara0le
!e*i2es wo3l! allow a pri5ar" 2are ph"si2ian +o 5oni+or a pa+ien+s
e/er2ise ha0i+s4 or e/a5ple4 in or!er +o !e+er5ine wha+ +he 0es+
2o3rse o +rea+5en+ wo3l! 0e or +he in!i*i!3al6 F3r+her4 2onne2+e!
5e!i2al !e*i2es 2o3l! o0*ia+e so5e nee! or assis+e! li*in, or
re+ire5en+ ho5es4 0ein, =espe2iall" 0ene82ial or a,in, pa+ien+s4 or
who5 2onne2+e! heal+h !e*i2es 2an pro*i!e L+rea+5en+ op+ions +ha+
8/17/2019 The Internet of Things and Privacy Concerns
9/19
wo3l! allow +he5 +o 5ana,e +heir heal+h 2are a+ ho5e wi+ho3+ +he
nee! or lon,&+er5 hospi+al s+a"s or +ransi+ion +o a lon,&+er5 2are
a2ili+"> -FTC4 ('?@4 p6 $.6
:hile weara0le !e*i2es ha*e a li5i+e! ran,e o 3ses4 in1e2+e! or
in,es+e! !e*i2es wo3l! allow =!Ba+a +oBM0e 2olle2+e! or 8ner ,rain
heal+h&rela+e! pheno5ena s32h as 0loo! ow4 ne3ral a2+i*i+"4 or
3l+i5a+el"pro+e2+ion ro5 lie&+hrea+enin, ai2+ions> -:ein0er, e+
al64 ('?@4 p6 ?.6 A!*an2e! 3ses o IoT +e2hnolo," s32h as +hese are
s+ill on +he peripher" o 23rren+ +e2hnolo,"6 Howe*er4 i+ 2an 0e inerre!
+ha+ +hro3,h +he e*er&in2reasin, spee! o inno*a+ion4 +he 3ses or
In+erne+ 2onne2+e! 5e!i2al !e*i2es o +his na+3re 2o3l! 0e pra2+i2all"
en!less6 I+ 2o3l! 0e possi0le4 in +he near 3+3re4 a weara0le or in,es+e!
!e*i2e an! i+s peripherals 2o3l! pre!i2+ a lie&+hrea+enin, e*en+ s32h
as a hear+ a++a2k or s+roke4 2on+a2+ e5er,en2" ser*i2es4 an! rela" +he
pa+ien+s *i+al s+a+is+i2s +o e5er,en2" personnel who are en ro3+e4 as
well as +he re2ei*in, hospi+al6
RISKSDespi+e +he po+en+ial 0ene8+s o a wi!el" !is+ri03+e! IoT4 wi+h
s32h hi,h le*els o 2onne2+i*i+"4 2o5e hi,h le*els o risk6 os+ o +he
pro0a0le +hrea+s +ha+ 2o5e wi+h a ne+work o ph"si2al o01e2+s
2onne2+e! +o +he In+erne+ rela+e +o +he si5ple iss3e o pri*a2"6 :i+h
+ens o 0illions o o01e2+s pro1e2+e! +o 0e in+era2+in, wi+h one ano+her4
+he se23ri+" risks 0e2o5e *er" real4 as ea2h o +hese 2o553ni2a+ions
53s+ 0e se23re! a,ains+ in+r3!ers6 =The n350er o a++a2k *e2+ors
8/17/2019 The Internet of Things and Privacy Concerns
10/19
a*aila0le +o 5ali2io3s a++a2kers 5i,h+ 0e2o5e s+a,,erin,4 as ,lo0al
2onne2+i*i+" -La22ess an"one. an! a22essi0ili+" -La22ess an"how4
an"+i5e. are ke" +ene+s o +he IoT> -Ro5an4 Qho34 an! ope4 ('?#4 p6
(($'.6 E*en i one en+i+" has i+s own ne+work o o01e2+s a!e;3a+el"
se23re!4 i so5e o +hose o01e2+s are in+era2+in, wi+h an e/+ernal
ne+work wi+ho3+ sae,3ar!s4 +he en+i+"s ne+work i+s +heore+i2all"
*3lnera0le +o a++a2k6 D3e +o +he e/+en+ o +he IoT4 se23rin, all aspe2+s
o i+ 0e2o5es in+rinsi2all" pro0le5a+i2 =+he inheren+ 2o5ple/i+" o +he
IoT4 where 53l+iple he+ero,eneo3s en+i+ies lo2a+e! in !i7eren+ 2on+e/+s
2an e/2han,e inor5a+ion wi+h ea2h o+her4 3r+her 2o5pli2a+es +he
!esi,n an! !eplo"5en+ o e92ien+4 in+eropera0le an! s2ala0le se23ri+"
5e2hanis5s> -Ro5an e+ al64 ('?#4 p6 (($'.6 The 5ore ones lie is 2onne2+e! +o +he IoT4 +he 5ore serio3s o a
pri*a2" risk +he IoT 0e2o5es6 Inor5a+ion is 0o+h *al3a0le an!
personal4 an! +he 5ore inor5a+ion +ha+ is s+ore! in a !i,i+al or54 +he
5ore *3lnera0le +he in!i*i!3al 0e2o5es6 This 2o3l! in2l3!e inno23o3s
0i+s o inor5a+ion4 s32h as when one 0e,ins +o 0rew 2o7ee in +he
5ornin,4 wha+ +e5pera+3re one likes +o keep +heir ho5e a+ in +he
ni,h+4 or when one has r3n o3+ o 5ilk6 Howe*er4 +he 5ore 30i;3i+o3s
+he IoT 0e2o5es4 +he 5ore areas o ones lie i+ s30s35es6 V3lnera0le
!a+a 2an in2l3!e 0ankin, inor5a+ion4 who one asso2ia+es wi+h4 when
one is an! is no+ a+ ho5e4 a5on, 2o3n+less o+her sensi+i*e pie2es o
inor5a+ion6 The loss o s32h !a+a lea*es one open +o ra3!4 +he+4
0la2k5ail4 e+26 Si5ilarl"4 +hro3,h +he a,,re,a+ion o !a+a 2olle2+e!
8/17/2019 The Internet of Things and Privacy Concerns
11/19
ro5 53l+iple !e*i2es4 a ha2ker 2o3l! 2rea+e a 3ll 0eha*ioral pro8le o
an in!i*i!3al4 in2l3!in, ones ha0i+s4 *i2es4 an! 5o*e5en+6 The e/+en+
o har53l a2+i*i+ies a ha2ker wi+h 5ali2io3s in+en+ions 2an !o wi+h
inor5a+ion 2on+aine! wi+hin +he IoT ne+work is pra2+i2all" en!less6 The 8rs+ poin+ +o 0e 2onsi!ere! 0ase! on +hese risk a2+ors is +he
inheren+ *al3e an in!i*i!3al pla2es on pri*a2"6 This wo3l! 0e 3ni;3e +o
ea2h 2ons35er6 So5e 5i,h+ 5in! +he possi0ili+" +ha+ all o +heir
5o*e5en+s are 0ein, !i,i+all" !o235en+e!4 while o+hers 5i,h+ no+6
E*en prior +o a h"po+he+i2al ha2kin,4 +he 2hroni2lin, o an in!i*i!3als
e*er" a2+ion an! preeren2e 2o3l! 0e !is2on2er+in,6 Th3s +here are +wo
le*els +o pri*a2" risk +o 2onsi!er when e*al3a+in, IoT inno*a+ion
si5ple !a+a 2olle2+ion4 an! +he po+en+ial +ha+ +ha+ !a+a will all in+o +he
wron, han!s6 There will 0e an inheren+ +ra!eo7 0e+ween +he
2on*enien2e 2rea+e! 0" IoT +e2hnolo,ies4 an! personal pri*a2" +he
2ons35er will !e+er5ine +he e/+en+ +o whi2h +ha+ +ra!eo7 is
wor+hwhile6One area where +he !a+a&loss risk 2rea+e! 0" +he IoT 2o5es in+o
s+ark relie is 5e!i2al inor5a+ion6 e!i2al inor5a+ion +en!s +o 0e
hi,hl" sensi+i*e in na+3re4 ran,in, ro5 +hin,s one 5i,h+ 8n! sensi+i*e4
s32h as a2+i*i+" le*el or !ie+4 +o +hin,s 5os+ wo3l! 8n! +o 0e personal4
s32h as pro2e!3re his+or"4 5e!i2al 2on!i+ions4 an! +he 5e!i2a+ions
one is +akin,6 The 5ore +his inor5a+ion is 2olle2+e! an! s+ore! in a
2onne2+e! !i,i+al ne+work4 +he 5ore *3lnera0le +he in!i*i!3al is +o
in+r3sions 3pon pri*a2"6 For e/a5ple4 +he si5ple 3se o a weara0le
8/17/2019 The Internet of Things and Privacy Concerns
12/19
5e!i2al !e*i2e +ha+ 5oni+ors +hin,s like hear+ ra+e an! a2+i*i+" 2o3l!
har5 +he in!i*i!3als 3+3re prospe2+s =+he !a+a ,a+here! 0" +he
!e*i2e 2o3l! 0e 3se! in +he 3+3re +o pri2e heal+h or lie ins3ran2e or +o
iner +he 3sers s3i+a0ili+" or 2re!i+ or e5plo"5en+> -FTC4 ('?@4 p6 ?.6
There are 53l+iple a2e+s +o 0e 2onsi!ere!4 e*en when onl" !ealin,
wi+h +he 5os+ s3per82iall" 2onne2+e! weara0le 5e!i2al !e*i2es6 As i+
is a pri*a+e 8r5 +ha+ o+en 2rea+es +he !e*i2e an! 2olle2+s +he !a+a4 i+ is
si5ilarl" o+en +ha+ 8r5 +ha+ owns +he ri,h+s +o +he !a+a6 This 5eans
+ha+ +he" 2an sell +he !a+a or a pro8+4 i +he" so 2hoose6 The 2ons35er
53s+ 2onsi!er wi+h who5 +he" are 2o5or+a0le sharin, +heir personal
5e!i2al inor5a+ion6 The" sho3l! 2onsi!er +heir !e*i2es pri*a2" poli2"4
i i+ has one6 The 5ain pro0le5 is +ha+ 2ons35ers o+en !o no+ realie
+ha+ +he" are 2on*e"in, sensi+i*e inor5a+ion +hro3,h a ph"si2al
!e*i2e6 an" in!i*i!3als +o!a" sae,3ar! +heir online presen2e4 0e i+
+hro3,h e5ail4 so2ial 5e!ia4 e+260e2a3se +he" 3n!ers+an! +his !a+a
+o 0e +o so5e !e,ree *3lnera0le6 Howe*er4 5an" 2ons35ers !o no+
"e+ 3n!ers+an! +he pri*a2" risks o ph"si2al o01e2+ wi+h 03il+&in wireless
sensors4 in2reasin, +heir *3lnera0ili+"6Si5ilarl"4 as 5e!i2al re2or!s 0e2o5e in2reasin,l" !i,i+ie!4 an!
po+en+iall" share! 0e+ween ne+works4 +here e/is+s an in2rease! risk o
pri*a2" *iola+ions6 e!i2al re2or!s 2an 0e a+ risk o +he+ an! 5is3se
0o+h ro5 wi+hin a 5e!i2al ins+i+3+ion an! wi+ho3+6 :hile a 0rea2h o
personal heal+h inor5a+ion 2an 0e ina!*er+en+ or 5ali2io3s4 5os+
in!i*i!3als wo3l! 2onsi!er +his 0e a 5a1or 0rea2h o +heir pri*a2" ri,h+s
8/17/2019 The Internet of Things and Privacy Concerns
13/19
ei+her wa"6On +he 5ore serio3s si!e o po+en+ial risks asso2ia+e! wi+h IoT
ena0le! 5e!i2al !e*i2es 2o5es +he ha2kin, o a2+3al !e*i2es6 :hile
+his is a risk +ha+ is o+en sensa+ionalie!4 +here ha*e 0een re2or!e!
ins+an2es +ha+ *ali!a+e +his possi0ili+"6 For e/a5ple4 +he FTC repor+s an
ins+an2e where an in!i*i!3al was a0le +o =ha2k re5o+el" in+oM
2onne2+e! ins3lin p35ps an! 2han,e +heir se++in,s so +ha+ +he" no
lon,er !eli*ere! 5e!i2ine> -FTC4 ('?@4 p6 ?(.6 Si5ilar +hrea+s 2o3l! 0e
i5a,ine! a!*an2e! hearin, ai!s or a!*an2e! pros+he+i2 li50s 2o3l!
0e !isa0le!4 an! wirelessl" 2onne2+e! pa2e5akers 2o3l! 0e sh3+ o76
:he+her or no+ +hese +hrea+s will presen+ +he5sel*es +o 0e likel"
o223rren2es4 +he IoT will a+ +he *er" leas+ 5ake +he5 possi0le4 an!
+h3s 2anno+ 0e +aken li,h+l"6Ano+her area in whi2h +he IoT presen+s a serio3s risk +o sae+" is
wi+h 2onne2+e! a3+o5o0iles6 Conne2+e! sensors 2o3l! +rans5i+ +o
ins3ran2e 2o5panies +he e/+en+ +o whi2h a !ri*er 0rakes s3!!enl"4
spee!s4 e+26 an! ,i*e 5o+i*e +o s30se;3en+l" in2rease ra+es6 Howe*er4
si5ilar +o 2onne2+e! 5e!i2al !e*i2es4 2onne2+e! a3+o5o0iles pro!32e
a 5ore serio3s risk6 I+ 0e2o5es possi0le or =an a++a2ker +oB ,ain
La22ess +o +he 2ars in+ernal 2o5p3+er ne+work wi+ho3+ e*er ph"si2all"
+o32hin, +he 2ar> -FTC4 ('?@4 p6 ?(.4 in +3rn 2rea+in, +he po+en+ial or
+he a++a2ker +o re5o+el" ass35e 2on+rol o +he *ehi2le6 This ,i*es a
ha2ker a se*eral&+ho3san! po3n! weapon +o 2on+rol4 whi2h poses a
serio3s sae+" risk no+ onl" +o +hose insi!e +he *ehi2le4 03+ also +o
8/17/2019 The Internet of Things and Privacy Concerns
14/19
o+hers on or near +he roa!6A wi!esprea! IoT also 2rea+es 5assi*e po+en+ial or a03se6
:he+her i+ is +o 0e 3+ilie! 0" e!eral or lo2al ,o*ern5en+s4 or 0" a
poli2e or2e4 +he po+en+ial s3r*eillan2e appara+3s 2rea+e! 0" +he IoT is
e/+ensi*e6 A 2o5ple+e 0eha*ioral pro8le4 whi2h in2l3!es an in!i*i!3als
a2;3ain+an2es4 a2+i*i+ies4 5o*e5en+s4 p3r2hases4 5e!i2al his+or"4
preeren2es an! pre!isposi+ions4 an! e*en personali+"4 2an 0e or5e!
an! e/ploi+e!6 An en+i+" +ha+ wishe! +o a03se a22ess +o s32h an
appara+3s 2o3l! 3se i+ +o s3r*eil 2i+iens4 sear2hin, or 2ri5inal
a2+i*i+"4 perhaps wi+ho3+ pro0a0le 2a3se6 :orse4 s32h s3r*eillan2e
2o3l! 0e a03se! +o e7e2+i*el" ra5e an in!i*i!3al4 ,i*en +he 5assi*e
!a+a +ha+ 2o3l! 0e 2olle2+e!6
RECCOENDATIONS The IoT is an inheren+l" 2o5ple/ en+i+"4 an! +h3s se23rin, i+
a,ains+ po+en+ial +hrea+s is an inheren+l" 53l+ia2e+e! iss3e6 The ran,e
o !e*i2es +ha+ 2ons+i+3+e +he IoT is ,rowin, e*er 5ore !i*erse an!
!ispara+e+he" are 5a!e 0" !i7eren+ 8r5s4 or !i7eren+ 5arke+s4 or
!i7eren+ p3rposes6 I+ +hen ollows +ha+ +here 2anno+ 0e one o*erar2hin,
sol3+ion +o se23rin, +he IoT6 A +wo&pron,e! an! e/i0le approa2h 53s+
0e +aken or +he ,rea+es+ !e,ree o se23ri+" +o 0e a2hie*e!6 The 8rs+
pie2e 53s+ 0e 2on+ri03+e! 0" +he pri*a+e se2+or4 whi2h 53s+ work +o
ens3re +he" 03il! +he 5os+ s+rin,en+ possi0le sae,3ar!s in+o +heir
!e*i2es6 This 2an 0e 3se! +o 5arke+ +heir pro!32+s as saer +han ol!er
5o!els4 or +han +heir 2o5pe+i+ors6 To ens3re +he pri*a+e se2+or is
8/17/2019 The Internet of Things and Privacy Concerns
15/19
hol!in, 3p +o +heir pro5ises4 an! keepin, 3p wi+h e*er&2han,in,
inno*a+ion4 +he p30li2 se2+or will 0e re;3ire! +o pass le,isla+ion
!e5an!in, s+an!ar!s4 pro+e2+ions4 an! a22o3n+a0ili+"6
The pri*a+e se2+or 53s+ re2o,nie +he risks +ha+ will 0e
asso2ia+e! wi+h +he 2onne2+e! !e*i2es +he" sell4 an! +ake 0o+h
a!e;3a+e pre2a3+ions an! a22o3n+a0ili+" or +he56 =:Bi+h e/+ensi*e
2ons35er !a+a ine/+ri2a0l" linke! +o +he i5ple5en+a+ion an!
e7e2+i*eness o IoT an! +he res3l+in, ele*a+e! i5por+an2e o pri*a2"4 i+
0e2o5es 2ri+i2al or 5arke+ers +o raise +heir ,a5e as re,ar!s pri*a2"
;3ali+"4 respe2+in, 2ons35ers4 an! 03il!in, an! 5ain+ainin, s+ron,4
+r3s+wor+h" 23s+o5er rela+ionships> -:ein0er, e+ al64 ('?@4 p6 (#.6
The 0es+ wa" +o !o +his is +o pro5o+e +he 2on2ep+ o =pri*a2" 0"
!esi,n6> =Pri*a2" 0" !esi,n is a pro2ess +ha+ 2alls or proa2+i*e
2onsi!era+ion o pri*a2" o01e2+i*es an! ai5s ro5 +he s+ar+4 +hen
2on+in3es +hro3,ho3+ +he !esi,n an! !eli*er" pro2ess o pro!32+s an!
rela+e! a2+ions> -:ein0er, e+ al64 ('?@4 p6 (#.6 The i!ea is +o 03il!
pri*a2" pro+e2+ions in+o 2onne2+e! !e*i2es4 an! +h3s +he en+ire
ne+work o +he IoT4 +ha+ works proa2+i*el" ra+her +han rea2+i*el"6 The
hi,hes+ pri*a2" sae,3ar!s 0e2o5e +he !ea3l+6 Transparen2" is 3se!
+hro3,ho3+ +he pro2ess4 an! e*er"+hin, is 03il+ wi+h +he pri*a2"
in+eres+s o +he 2ons35er in 5in!6Fo3r 5ain prin2iples4 or pri*a2" re;3ire5en+s4 53s+ 0e
i5ple5en+e!4 as is well o3+line! in Rol :e0ers -('?'. pie2e Internet
of Things—New security and privacy challenges1. Resilience to attacks The s"s+e5 has +o a*oi! sin,le poin+s o
8/17/2019 The Internet of Things and Privacy Concerns
16/19
ail3rean! sho3l! a!13s+ i+sel +o no!e ail3res6
(6 Data authentication As a prin2iple4 re+rie*e! a!!ress an!
o01e2+inor5a+ion 53s+ 0e a3+hen+i2a+e!6
#6 Access control Inor5a+ion pro*i!ers 53s+ 0e a0le +o
i5ple5en+a22ess 2on+rol on +he !a+a pro*i!e!6
%6 Client privacy eas3res nee! +o 0e +aken +ha+ onl" +he
inor5a+ion pro*i!er is a0le +o iner ro5 o0ser*in, +he 3se o look3p
s"s+e5 rela+e! +o a spe2i82 2ons35er a+ leas+4 ineren2e sho3l! 0e
*er"har! +o 2on!32+6
-:e0er4 ('?'4 p6 (%.6
I pri*a+e en+i+ies s322ess3ll" i5ple5en+ +hese 5eas3res ro5 +he
o3+se+4 as oppose! +o in rea2+ion +o 0rea2hes4 +he IoT 2o3l! 0e a
reasona0l" se23re pla+or5 or sensi+i*e !a+a6 The pri*a+e se2+or
sho3l! +ake +he on3s 3pon +he5sel*es +o 5ake +hese sae,3ar!s
s+an!ar!4 no+ onl" +o appease 2ons35ers4 03+ +o ens3re se23ri+" an!
lon,e*i+" or +he IoT4 whi2h will in +3rn pro*i!e 0ene8+s or 8r5s in
n35ero3s wa"s6
Sel&re,3la+ion 0" +he pri*a+e se2+or is 3nlikel" +o 0e s322ess3l i
le+ +o i+s own !e*i2es4 howe*er6 e,isla+ion will likel" 0e ne2essar" +o
ens3re +he se23ri+" o +he IoT6 This 2o3l! ran,e ro5 si5ple in2en+i*es
+ha+ 3r,e pri*a+e 8r5s +ha+ 03il! 2onne2+e! !e*i2es +o in2l3!e
s+rin,en+ sae+" 5eas3res a+ +he low en!4 +o re,3la+ion +ha+ re;3ires all
8r5s +ha+ pro!32e s32h !e*i2es +o 5ee+ 2er+ain pri*a2" an! se23ri+"
8/17/2019 The Internet of Things and Privacy Concerns
17/19
s+an!ar!s on +he hi,h en!6 :hile 3ll re,3la+ion is preera0le4 i+ 53s+
s+ill +ake in+o a22o3n+ +he preeren2es an! re;3es+s o +he in!3s+r"6
e,isla+ion sho3l! re;3ire 8r5s +o 5ee+ +he a0o*e o3r pri*a2"
prin2iples in a 5anner +ha+ 5ee+s +he =pri*a2" 0" !esi,n> ,oal6
F3r+her4 a s"s+e5 o =pri*a2" ra+in,s> sho3l! 0e le,isla+e!4 so +ha+ a
!e*i2e 2an 0e ra+e! ro5 soewhat safe +o very safe6 This wo3l! ,i*e
2ons35ers +he inor5a+ion ne2essar" +o no+ onl" 03" +he !e*i2es
s3i+a0le +o +he54 03+ also ha*e +he a3+hori+" +o 3se +heir p3r2hasin,
power +o 2rea+e in2en+i*es or 8r5s6 e,isla+ion sho3l! also a!!ress
+he po+en+ial a03se o 2onne2+e! ne+works6 Ci*il a3+hori+ies an!
,o*ern5en+ a,en2ies 53s+ 0e re;3ire! +o o0+ain a warran+ 0eore
3+iliin, an" aspe2+ o an IoT ne+work +o s3r*eil a s3spe2+6
)nwarran+e! s3r*eillan2e 53s+ 0e pre*en+e!4 no 5a++er +he s2ale6
:i+h +his 2o50ina+ion o pri*a+e an! p30li2 e7or+ +o 23r+ail +hrea+s an!
pro5o+e se23ri+" an! pri*a2"4 +he IoT 2an 0e2o5e +he 5os+ e92ien+
an! 3se3l 5a2ro&ne+work i+ 2an 0e6
CONC)SION
The 2on+in3e! !e*elop5en+ o +he IoT will 3n!o30+e!l"
re*ol3+ionie! +he wa" one li*es his or her lie an! how so2ie+" will
3n2+ion as a whole6 I+ 2o3l! *er" well +3rn o3+ +o 0e +he 5os+
i5por+an+ a!*an2e5en+ sin2e +he In+erne+ i+sel6 This is wh" i+s
inno*a+ion 53s+ 0e a!e;3a+el" pro+e2+e!6 The 0ene8+ so2ie+" s+an!s +o
8/17/2019 The Internet of Things and Privacy Concerns
18/19
reap ro5 a 5assi*e ne+work o 2onne2+e! o01e2+s is 3na+ho5a0le4
03+ +he har5 +he IoT 2an 2a3se4 i no+ 2are! or4 2o3l! 0e !isas+ro3s6
In!i*i!3als 53s+ no+ 0e re;3ire! +o orei+ +heir pri*a2" ri,h+s in +he
na5e o 2on*enien2e4 e92ien2"4 or e*en sae+"6 Ra+her4 i +he p30li2
an! pri*a+e se2+ors +ake +he ne2essar" s+eps4 a +r3l" awe&inspirin,
ne+work 2an 0e 03il+ aro3n! +he worl!6 I+ will no+ onl" 2han,e lie or
+he h35an spe2ies4 03+ i+ will 5ake +he spe2ies s+ron,er an! 5ore
resilien+6 H35ans ha*e 0een 2o&e*ol*in, wi+h +e2hnolo," or 5illennia
now4 an! +he IoT is +he ne/+4 *er" lar,e4 s+ep6 I+ 53s+ 0e ens3re! +ha+
+his ne/+ s+ep is no+ in+o a 2a,e4 an! no+ in+o 2haos6 The IoT 2an an!
sho3l! 0e a reein, or2e4 13s+ as i+s ne2essar" pre!e2essor4 +he
In+erne+4 was 0eore i+6
REFERENCES
Clark4 D6 -('?%4 Jan3ar" @.6 LIn+erne+ o +hin,s in rea2h Co5paniesr3sh in+o !e*i2es
like s5ar+ !oors lo2ks4 applian2es4 03+ li5i+a+ions e/is+6 The !all"treet
#ournal6
FTC S+a7 Repor+6 -('?@4 Jan3ar".6 Internet of things$ %rivacy & securityin a
connected world.
e!a,lia4 C64 Ser0ana+i4 A6 -('?'.6 The internet of things6 New York4NY Sprin,er
New York6
i!!le+on4 P64 K1el!sen4 P64 T3ll"4 J6 -('?#4 No*e50er ?.6 Fore2as+ The in+erne+ o
+hin,s4 worl!wi!e4 ('?#6 'artner 6
8/17/2019 The Internet of Things and Privacy Concerns
19/19
Press4 G6 -('?%4 A3,3s+ ((.6 In+erne+ o +hin,s 0" +he n350ers arke+es+i5a+es an!
ore2as+s6 (or)es6
Ro5an4 R64 Qho34 J64 ope4 J6 -('?#.6 On +he ea+3res an! 2hallen,es
o se23ri+" an!pri*a2" in !is+ri03+e! in+erne+ o +hin,s6 Coputer Networks4@$-?'.4 ((&
(($6
S+a2kowiak4 R64 i2h+4 A64 An++ha4 V64 Na,o!e4 6 -('[email protected] *ig data andthe internet of
things$ +nterprise inforation architecture for a new age6 Apress6
:e0er4 R6 -('?'.6 In+erne+ o +hin,sNew se23ri+" an! pri*a2"2hallen,es6
Coputer ,aw & "ecurity Review4 (-?.4 (#'6
:ein0er,4