The Internet of Things and Privacy Concerns

8/17/2019 The Internet of Things and Privacy Concerns

1/19

THE INTERNET OF THINGS AND PRIVACY CONCERNS

Charles Joseph KoronkowskiProessor Ran!" Dr"er

HONOR ##$%&''( The )ni*ersi+" o )+ah

INTROD)CTION The In+erne+ o Thin,s -IoT. is an e*er&e/pan!in, ne+work o

o01e2+s 2onne2+e! +o +he In+erne+ ei+her +hro3,h wires4 or4 5ore

2o55onl"4 +hro3,h wireless sensors6 These o01e2+s in+era2+ an!

2o553ni2a+e wi+h one ano+her4 sharin, inor5a+ion in +he or5 o

!a+a6 As +his ne+work ,rows4 i+ o7ers 5ore an! 5ore 0ene8+s +o


2/19

in!i*i!3als4 pri*a+e 8r5s4 an! ,rea+er so2ie+"6 These 0ene8+s ran,e

ro5 2on*enien2e an! +i5e sa*in, a2+ors4 +o os+erin, e92ien2"4 +o

pro5o+in, sae+" an! sa*in, li*es6 The IoT has alrea!" 0e2o5e a

5assi*e aspe2+ o how 2o553ni+ies are r3n +o!a"4 an! as +i5e

pro,resses4 i+ will 0e2o5e an essen+ial +ool or 5an" par+s o lie6:i+h +he ,row+h o IoT4 howe*er4 2er+ain risk a2+ors arise4 5os+

2o55onl" rela+in, +o pri*a2" 2on2erns6 The 5ore o01e2+s re2or! !a+a

a0o3+ !ail" lie an! +he ha0i+s o in!i*i!3als4 an! +he 5ore +hese

!e*i2es 2o553ni2a+e +his inor5a+ion o*er +he In+erne+4 +he 5ore +he

in!i*i!3al risks an in*asion o his or her pri*a2"6 This risk 2o5es 0o+h

ro5 +he en+i+ies +ha+ 2olle2+ +he inor5a+ion4 who 5i,h+ sell i+ +o

5arke+ers or ins3ran2e 2o5panies4 an! ro5 ha2kers who 5i,h+ wish

+o s+eal inor5a+ion or personal ,ain6 The IoT is alrea!" a par+ o so2ie+"4 an! will 2on+in3e +o 0e6

In!i*i!3als will nee! +o 5ake +he 2hoi2e 0e+ween pri*a2" an!

2on*enien2e +ha+ is ri,h+ or +he56 A+ an a,,re,a+e le*el4 howe*er4

sae,3ar!s an! pro+e2+ion will nee! +o 0e p3+ in+o pla2e +o ens3re +ha+

+he IoT is as se23re as i+ 2an 0e6 This will 0e a 5assi*e e7or+4 whi2h will

re;3ire 0o+h +he 2oopera+ion o 0o+h +he pri*a+e an! p30li2 se2+ors4 03+

+o ens3re an" le*el o pri*a2"4 will nee! +o 0e 3n!er+aken6


3/19

an! +o ea2h o+her +hro3,h s5all4 e50e!!e! sensors an! wire! an!

wireless +e2hnolo,ies4 2rea+in, an e2os"s+e5 o 30i;3i+o3s 2o5p3+in,>

-FTC4 ('?@4 p6 @.6 O+hers ar,3e +he !e8nin, poin+ is si5pl" e50e!!e!

in+elli,en2e in ph"si2al o01e2+s6 Howe*er4 =wBha+ all !e8ni+ions o +he

IoT ha*e in 2o55on is +ha+ +he" o23s on how 2o5p3+ers4 sensors4 an!

o01e2+s in+era2+ wi+h one ano+her an! pro2ess !a+a> -FTC4 ('?@4 p6 @.6 The IoT is no+ "e+ a 30i;3i+o3s par+ o e*er"!a" lie4 03+

es+i5a+es 2lai5 +here will 0e as 5an" as si/+een 0illion !e*i2es

2onne2+e! +o +he In+erne+ 0" ('(' -Clark4 ('?% i!!le+on e+ al64 ('?#

Press4 ('?%.6 In a 5a++er o "ears4 pra2+i2all" e*er" !ail" a2+i*i+" will 0e

a3+o5a+e!4 2onne2+e! +o +he In+erne+4 an! ,a+herin, !a+a6 In +he

ho5e4 +he IoT will s+ar+ +he 2o7ee 5aker 0eore "o3 wake 3p4 learn

"o3r +e5pera+3re ha0i+s an! a!13s+ a22or!in,l"4 lower +he sha!es +o

0lo2k a+ernoon s3n4 aler+ "o3 when "o3 are low on essen+ials s32h as

5ilk or 0rea!4 an! 3nlo2k "o3r !oors +o "o3r ho5e as "o3 approa2h in

"o3r 2ar4 a5on, 2o3n+less o+her possi0ili+ies6 The IoT will e/+en! ar 0e"on! pro*i!in, 2on*enien2e or +he

a*era,e 2ons35er6 The in2rease! po+en+ial or e92ien2" +ha+ 2o5es

wi+h an In+erne+&in+er,ra!e! worl! is enor5o3s6 The IoT will 2han,e +he

wa"s 03sinesses are r3n an! +he wa" 2i+ies are or,anie!6 I+ will

2han,e 5an3a2+3rin,4 2rea+e sae+" 5eas3res pre*io3sl" i5possi0le4

an! +hro3,h i+s appli2a+ion in heal+h2are4 sa*e li*es6 Fro5 si5ple

a22ess 2on+rol +o pre!i2+i*e 5ain+enan2e4 +he IoT will s+rea5line +he

pro2esses o an" in!3s+r" in 2o3n+less wa"s6


4/19

+ake real&+i5e in*en+or"4 +ra2k asse+s4 op+i5ie ener," 2ons35p+ion4

an! 0e++er pro+e2+ e5plo"ees +hro3,h a ne+work o in+er2onne2+e!

5a2hines in 2ons+an+ 2on*ersa+ion wi+h one ano+her6 In +he 5e!i2al

8el!4 !o2+ors will 0e a0le +o re5o+el" 5oni+or +heir pa+ien+s4 +ra2k +heir

e/er2ise an! !ie+ ha0i+s4 an! 0e a0le +o re5o+el" 2he2k on pa2e5akers

an! o+her 5e!i2al !e*i2es6 A503lan2es will ,e+ pa+ien+s +o +he hospi+al

as+er +hro3,h real&+i5e +ra92 5oni+orin,6 Ci+ies will 0e 5a!e in+o

=s5ar+ 2i+ies> +ra92 will 0e 2on+rolle!4 po+en+ial pipeline leaks will

0e !e+e2+e!4 an! p30li2 +ranspor+a+ion 2an 0e op+i5ie!6All o +hese appli2a+ions onl" s2ra+2h +he s3ra2e o +he po+en+ial

+he IoT has or 5akin, a 5ore s+rea5line! an! e92ien+ 2o553ni+"6

These 0ene8+s will no+ onl" 0e +i5esa*in, 5e2hanis5s4 03+ will also

5ake a so2ie+" +ha+ is 5ore pro!32+i*e4 5ore resilien+4 an! saer6


5/19

!ire2+l" inp3+6 =IoT !e*i2es learn a0o3+ 2ons35ers 0" o0ser*in, +heir

ha0i+s4 +en!en2ies4 an! preeren2es as well a+ +heir en*iron5en+s6

earnin, is 0ase! on 0eha*iors an! pheno5ena in +he na+3ral4 ph"si2al

worl! as oppose! +o +he s+ri2+l" online worl!> -:ein0er,4 ilne4

An!ono*a4 an! Ha11a+4 ('?@4 p6 ?&?.6 This +"pe o !a+a 2olle2+ion

por+ra"s no+ onl" a 5ore a223ra+e4 03+ also a 5ore in+i5a+e4 !epi2+ion

o an in!i*i!3als ha0i+s an! a2+i*i+ies6 Da+a 2olle2+ion +his

2o5prehensi*e will 2rea+e +hree 5ain areas o 0ene8+2on*enien2e4

e92ien2"4 an! lie sa*in,6A well&!isperse! an! well&2onne2+e! IoT will sa*e +i5e an! 5ake

e*er"!a" lie easier or +he a*era,e 2ons35er6 )sin, a s5ar+ !e*i2e4

s32h as a s5ar+phone4 +a0le+4 lap+op4 e+264 +he in!i*i!3al will ha*e

re5o+e 2on+rol o*er 532h o +he ho5e6=Ho5e a3+o5a+ion s"s+e5s 2an pro*i!e 2ons35ers wi+h a Lsin,le

pla+or5 +ha+ 2an 2onne2+ all !e*i2es wi+hin +he ho5e4 wi+hB a sin,le

app or 2on+rollin, +he5> -FTC4 ('?@4 p6 &.6 One 0ene8+ o s32h

2on+rol is +he a0ili+" +o s+a" 2onne2+e! when awa" ro5 ho5e6 =For

e/a5ple4 people 2an a22ess an! 3+ilie +heir ho5e 2o5p3+ers or 2a0le

+ele*ision ser*i2e when awa" ro5 ho5e> -:ein0er, e+ al64 ('?@4 p6

?.6 A !i73se IoT has 5ore 3n2+ional 0ene8+s +han si5pl" s+a"in,

2onne2+e!4 howe*er6 In!i*i!3als will 0e ,i*en +he a0ili+" +o essen+iall"

r3n +he ho5e while preo223pie! or awa"6 For e/a5ple4 +he IoT will

=allow 2ons35ers +o Lse+ +heirB +e5pera+3res re5o+el"M4 ,o ro5 0ake

+o 0roilM4 an!B 5oni+or +heirB pro!32+s ro5 *ario3s lo2a+ions insi!eM


6/19

an! o3+si!e +heirB ho5esB> -FTC4 ('?@4 p6 .6 The lis+ o +i5esa*in,

3ses +he IoT en+ails ,oes well 0e"on! +his 23rsor" lis+ o e/a5ples4 an!

as +he IoT ,rows4 i+s 3ses will 2on+in3e +o e/pan!6

The IoT will pro5o+e e92ien2" or in!i*i!3al 2ons35ers4 p30li2

3+ili+ies4 an! pri*a+e en+i+ies6 In +he 5an3a2+3rin, se2+or as well as

o+her se2+ors o 03siness4 +he 3+ilia+ion o IoT +e2hnolo," will

=enhan2e res+o2kin, or o+her s3ppl" 2hain 5ana,e5en+ ser*i2es>

-:ein0er, e+ al64 ('?@4 p6 ?.6 This will in +3rn sa*e +he 2o5pan" 0o+h

5one" an! +i5e +hro3,h in2rease! pro!32+i*i+"4 allowin, *al3a0le

reso3r2es +o 0e !e*o+e! +o o+her areas4 s32h as resear2h an!

!e*elop5en+6 The wa"s in whi2h 8r5s 5ake 5one" an! 2har,e or

ser*i2es 2an 0e si5ilarl" re*ol3+ionie! +hro3,h +he IoT6 =For e/a5ple4

pa"&as&"o3&,o 2o3l! 0e 0roa!ene! 0e"on! 5o0ile phone ser*i2es an!

a3+o5o0ile ren+alsM+o al5os+ an" appli2a+ion4 s32h as ins3ran2e>

-:ein0er, e+ al64 ('?@4 p6 ?.6 S32h inno*a+ion 2o3l! 0o+h sa*e

2ons35ers 5one" an! a++ra2+ new 2ons35ers who 5i,h+ 0e war" o

lon,&+er5 5one+ar" 2o55i+5en+s6A!!i+ionall"4 in!i*i!3als an! p30li2 an! pri*a+e en+i+ies will 0e

a0le +o work +o,e+her or 2o553nal e92ien2" +hro3,h +he IoT6 For

e/a5ple4 =s5ar+ 5e+ers 2an ena0le ener," pro*i!ers +o anal"e

2ons35er ener," 3se an! i!en+i" iss3es wi+h ho5e applian2es4 Le*en

aler+in, ho5eowners i +heir ins3la+ion see5s ina!e;3a+e 2o5pare! +o

+heir nei,h0ors4 +h3s e5powerin, 2ons35ers +o L5ake 0e++er

!e2isions a0o3+ how +he" 3se ele2+ri2i+"> -FTC4 ('?@4 p6 .6 S32h


7/19

!i,i+al 2o553ni2a+ion an! 2oopera+ion 2o3l! e/+en! +o pra2+i2all" all

areas o lie4 si53l+aneo3sl" pro*i!in, 5ore 2o5ple+e inor5a+ion an!

eli5ina+in, ine92ien2ies6

The IoT will !o 5ore +han pre*en+ was+e an! sa*e 5one"4

howe*er6 :hen applie! +o +he a3+o5o+i*e se2+or4 +he IoT will ,o

0e"on! pro5o+in, 2on*enien2e i+ will os+er sae+" an! po+en+iall"

sa*e li*es =sensors on a 2ar 2an no+i" !ri*ers o !an,ero3s roa!

2on!i+ions4 an! so+ware 3p!a+es 2an o223r wirelessl"4 o0*ia+in, +he

nee! or 2ons35ers +o *isi+ +he !ealership> -FTC4 ('?@4 p6 .6 The

i5por+an2e o wirelessl" 2onne2+e! sensors 0e2o5es in2reasin,l"

o0*io3s in +he e*en+ o an a22i!en+6 =Conne2+e! 2ars also 2an Lo7er

real&+i5e *ehi2le !ia,nos+i2s +o !ri*ers an! ser*i2e a2ili+iesMan!

sen!B a3+o5a+i2 aler+s +o 8rs+ respon!ers when air0a,s are !eplo"e!>

-FTC4 ('?@4 p6 .6 Dri*in, an a3+o5o0ile is one o +he 5os+ !an,ero3s

a2+i*i+ies +he a*era,e in!i*i!3al en,a,es in on a !ail" 0asis6 The IoT

will re*ol3+ionie +he wa" +his en+ire par+ o lie opera+es6 In +he shor+&

+er54 sensors in 2ars will 0e a0le +o a*oi! +ra924 pre*en+ a22i!en+s4

an! 2all e5er,en2" ser*i2es when ne2essar"6 In +he lon,&+er54

howe*er4 +he po+en+ial 2rea+e! 0" +he IoT 0e2o5es e*en 5ore

in+eres+in,6 As so2ie+" 5o*es +owar!s a 2o5ple+el" a3+o5a+e!

+ranspor+a+ion s"s+e54 +he IoT 0e2o5es in+e,ral6 A s"s+e5 o sel&

!ri*in, 2ars wo3l! 0e i5possi0le wi+ho3+ IoT +e2hnolo,"6 S32h

+e2hnolo," is pro1e2+e! +o no+ onl" 0e a*aila0le4 03+ wi!esprea! in +he

ne/+ !e2a!es4 an! a+ +he hear+ o +he s"s+e5 is +he IoT6


8/19

The IoT ,oes 0e"on! sae+" pro5o+ion i+ will 0e e5plo"e! +o

+ransor5 5e!i2ine an! sa*e li*es6 The possi0ili+ies ran,e ro5 ,eneral

well&0ein, pro5o+ion4 +o en!&o&lie&2are4 +o +he pre*en+ion an!

+rea+5en+ o serio3s !iseases6 As +he Fe!eral Tra!e Co55ission no+e!

in +heir ('?@ S+a7 Repor+ on +he IoT4 when applie! +o heal+h2are4 i+ will

=i5pro*e ;3ali+" o lie an! sae+" 0" pro*i!in, a ri2her so3r2e o !a+a

+o +he pa+ien+s !o2+or or !ia,nosis an! +rea+5en+4BMi5pro*e !isease

pre*en+ion4 5akin, +he heal+h2are s"s+e5 5ore e92ien+ an! !ri*in,

2os+s !own4BMan!B pro*i!e an in2re!i0le weal+h o !a+a4

re*ol3+ioniin, 5e!i2al resear2h an! allowin, +he 5e!i2al 2o553ni+"

+o 0e++er +rea+4 an! 3l+i5a+el" era!i2a+e !iseases> -FTC4 ('?@4 p6 $&.6

This will all 0e !one +hro3,h 5e!i2al !e*i2es4 ei+her worn or in,es+e!4

+ha+ are 2onne2+e! +o +he In+erne+6 This pro*i!es ei+her +he in!i*i!3al

or his or her !o2+or wi+h !a+a 2olle2+e! in real&+i5e6 For e/a5ple4 =a

2ons35er wearin, a heal+h&rela+e! IoT !e*i2e 5a" allow or 2ons+an+

2olle2+ion o *i+al inor5a+ion4 s32h as p3lse4 0o!" +e5pera+3re4 an!

!is+an2e +ra*ele!> -:ein0er, e+ al64 ('?@4 p6 ?.6 S32h weara0le

!e*i2es wo3l! allow a pri5ar" 2are ph"si2ian +o 5oni+or a pa+ien+s

e/er2ise ha0i+s4 or e/a5ple4 in or!er +o !e+er5ine wha+ +he 0es+

2o3rse o +rea+5en+ wo3l! 0e or +he in!i*i!3al6 F3r+her4 2onne2+e!

5e!i2al !e*i2es 2o3l! o0*ia+e so5e nee! or assis+e! li*in, or

re+ire5en+ ho5es4 0ein, =espe2iall" 0ene82ial or a,in, pa+ien+s4 or

who5 2onne2+e! heal+h !e*i2es 2an pro*i!e L+rea+5en+ op+ions +ha+


9/19

wo3l! allow +he5 +o 5ana,e +heir heal+h 2are a+ ho5e wi+ho3+ +he

nee! or lon,&+er5 hospi+al s+a"s or +ransi+ion +o a lon,&+er5 2are

a2ili+"> -FTC4 ('?@4 p6 $.6

:hile weara0le !e*i2es ha*e a li5i+e! ran,e o 3ses4 in1e2+e! or

in,es+e! !e*i2es wo3l! allow =!Ba+a +oBM0e 2olle2+e! or 8ner ,rain

heal+h&rela+e! pheno5ena s32h as 0loo! ow4 ne3ral a2+i*i+"4 or

3l+i5a+el"pro+e2+ion ro5 lie&+hrea+enin, ai2+ions> -:ein0er, e+

al64 ('?@4 p6 ?.6 A!*an2e! 3ses o IoT +e2hnolo," s32h as +hese are

s+ill on +he peripher" o 23rren+ +e2hnolo,"6 Howe*er4 i+ 2an 0e inerre!

+ha+ +hro3,h +he e*er&in2reasin, spee! o inno*a+ion4 +he 3ses or

In+erne+ 2onne2+e! 5e!i2al !e*i2es o +his na+3re 2o3l! 0e pra2+i2all"

en!less6 I+ 2o3l! 0e possi0le4 in +he near 3+3re4 a weara0le or in,es+e!

!e*i2e an! i+s peripherals 2o3l! pre!i2+ a lie&+hrea+enin, e*en+ s32h

as a hear+ a++a2k or s+roke4 2on+a2+ e5er,en2" ser*i2es4 an! rela" +he

pa+ien+s *i+al s+a+is+i2s +o e5er,en2" personnel who are en ro3+e4 as

well as +he re2ei*in, hospi+al6

RISKSDespi+e +he po+en+ial 0ene8+s o a wi!el" !is+ri03+e! IoT4 wi+h

s32h hi,h le*els o 2onne2+i*i+"4 2o5e hi,h le*els o risk6 os+ o +he

pro0a0le +hrea+s +ha+ 2o5e wi+h a ne+work o ph"si2al o01e2+s

2onne2+e! +o +he In+erne+ rela+e +o +he si5ple iss3e o pri*a2"6 :i+h

+ens o 0illions o o01e2+s pro1e2+e! +o 0e in+era2+in, wi+h one ano+her4

+he se23ri+" risks 0e2o5e *er" real4 as ea2h o +hese 2o553ni2a+ions

53s+ 0e se23re! a,ains+ in+r3!ers6 =The n350er o a++a2k *e2+ors


10/19

a*aila0le +o 5ali2io3s a++a2kers 5i,h+ 0e2o5e s+a,,erin,4 as ,lo0al

2onne2+i*i+" -La22ess an"one. an! a22essi0ili+" -La22ess an"how4

an"+i5e. are ke" +ene+s o +he IoT> -Ro5an4 Qho34 an! ope4 ('?#4 p6

(($'.6 E*en i one en+i+" has i+s own ne+work o o01e2+s a!e;3a+el"

se23re!4 i so5e o +hose o01e2+s are in+era2+in, wi+h an e/+ernal

ne+work wi+ho3+ sae,3ar!s4 +he en+i+"s ne+work i+s +heore+i2all"

*3lnera0le +o a++a2k6 D3e +o +he e/+en+ o +he IoT4 se23rin, all aspe2+s

o i+ 0e2o5es in+rinsi2all" pro0le5a+i2 =+he inheren+ 2o5ple/i+" o +he

IoT4 where 53l+iple he+ero,eneo3s en+i+ies lo2a+e! in !i7eren+ 2on+e/+s

2an e/2han,e inor5a+ion wi+h ea2h o+her4 3r+her 2o5pli2a+es +he

!esi,n an! !eplo"5en+ o e92ien+4 in+eropera0le an! s2ala0le se23ri+"

5e2hanis5s> -Ro5an e+ al64 ('?#4 p6 (($'.6 The 5ore ones lie is 2onne2+e! +o +he IoT4 +he 5ore serio3s o a

pri*a2" risk +he IoT 0e2o5es6 Inor5a+ion is 0o+h *al3a0le an!

personal4 an! +he 5ore inor5a+ion +ha+ is s+ore! in a !i,i+al or54 +he

5ore *3lnera0le +he in!i*i!3al 0e2o5es6 This 2o3l! in2l3!e inno23o3s

0i+s o inor5a+ion4 s32h as when one 0e,ins +o 0rew 2o7ee in +he

5ornin,4 wha+ +e5pera+3re one likes +o keep +heir ho5e a+ in +he

ni,h+4 or when one has r3n o3+ o 5ilk6 Howe*er4 +he 5ore 30i;3i+o3s

+he IoT 0e2o5es4 +he 5ore areas o ones lie i+ s30s35es6 V3lnera0le

!a+a 2an in2l3!e 0ankin, inor5a+ion4 who one asso2ia+es wi+h4 when

one is an! is no+ a+ ho5e4 a5on, 2o3n+less o+her sensi+i*e pie2es o

inor5a+ion6 The loss o s32h !a+a lea*es one open +o ra3!4 +he+4

0la2k5ail4 e+26 Si5ilarl"4 +hro3,h +he a,,re,a+ion o !a+a 2olle2+e!


11/19

ro5 53l+iple !e*i2es4 a ha2ker 2o3l! 2rea+e a 3ll 0eha*ioral pro8le o

an in!i*i!3al4 in2l3!in, ones ha0i+s4 *i2es4 an! 5o*e5en+6 The e/+en+

o har53l a2+i*i+ies a ha2ker wi+h 5ali2io3s in+en+ions 2an !o wi+h

inor5a+ion 2on+aine! wi+hin +he IoT ne+work is pra2+i2all" en!less6 The 8rs+ poin+ +o 0e 2onsi!ere! 0ase! on +hese risk a2+ors is +he

inheren+ *al3e an in!i*i!3al pla2es on pri*a2"6 This wo3l! 0e 3ni;3e +o

ea2h 2ons35er6 So5e 5i,h+ 5in! +he possi0ili+" +ha+ all o +heir

5o*e5en+s are 0ein, !i,i+all" !o235en+e!4 while o+hers 5i,h+ no+6

E*en prior +o a h"po+he+i2al ha2kin,4 +he 2hroni2lin, o an in!i*i!3als

e*er" a2+ion an! preeren2e 2o3l! 0e !is2on2er+in,6 Th3s +here are +wo

le*els +o pri*a2" risk +o 2onsi!er when e*al3a+in, IoT inno*a+ion

si5ple !a+a 2olle2+ion4 an! +he po+en+ial +ha+ +ha+ !a+a will all in+o +he

wron, han!s6 There will 0e an inheren+ +ra!eo7 0e+ween +he

2on*enien2e 2rea+e! 0" IoT +e2hnolo,ies4 an! personal pri*a2" +he

2ons35er will !e+er5ine +he e/+en+ +o whi2h +ha+ +ra!eo7 is

wor+hwhile6One area where +he !a+a&loss risk 2rea+e! 0" +he IoT 2o5es in+o

s+ark relie is 5e!i2al inor5a+ion6 e!i2al inor5a+ion +en!s +o 0e

hi,hl" sensi+i*e in na+3re4 ran,in, ro5 +hin,s one 5i,h+ 8n! sensi+i*e4

s32h as a2+i*i+" le*el or !ie+4 +o +hin,s 5os+ wo3l! 8n! +o 0e personal4

s32h as pro2e!3re his+or"4 5e!i2al 2on!i+ions4 an! +he 5e!i2a+ions

one is +akin,6 The 5ore +his inor5a+ion is 2olle2+e! an! s+ore! in a

2onne2+e! !i,i+al ne+work4 +he 5ore *3lnera0le +he in!i*i!3al is +o

in+r3sions 3pon pri*a2"6 For e/a5ple4 +he si5ple 3se o a weara0le


12/19

5e!i2al !e*i2e +ha+ 5oni+ors +hin,s like hear+ ra+e an! a2+i*i+" 2o3l!

har5 +he in!i*i!3als 3+3re prospe2+s =+he !a+a ,a+here! 0" +he

!e*i2e 2o3l! 0e 3se! in +he 3+3re +o pri2e heal+h or lie ins3ran2e or +o

iner +he 3sers s3i+a0ili+" or 2re!i+ or e5plo"5en+> -FTC4 ('?@4 p6 ?.6

There are 53l+iple a2e+s +o 0e 2onsi!ere!4 e*en when onl" !ealin,

wi+h +he 5os+ s3per82iall" 2onne2+e! weara0le 5e!i2al !e*i2es6 As i+

is a pri*a+e 8r5 +ha+ o+en 2rea+es +he !e*i2e an! 2olle2+s +he !a+a4 i+ is

si5ilarl" o+en +ha+ 8r5 +ha+ owns +he ri,h+s +o +he !a+a6 This 5eans

+ha+ +he" 2an sell +he !a+a or a pro8+4 i +he" so 2hoose6 The 2ons35er

53s+ 2onsi!er wi+h who5 +he" are 2o5or+a0le sharin, +heir personal

5e!i2al inor5a+ion6 The" sho3l! 2onsi!er +heir !e*i2es pri*a2" poli2"4

i i+ has one6 The 5ain pro0le5 is +ha+ 2ons35ers o+en !o no+ realie

+ha+ +he" are 2on*e"in, sensi+i*e inor5a+ion +hro3,h a ph"si2al

!e*i2e6 an" in!i*i!3als +o!a" sae,3ar! +heir online presen2e4 0e i+

+hro3,h e5ail4 so2ial 5e!ia4 e+260e2a3se +he" 3n!ers+an! +his !a+a

+o 0e +o so5e !e,ree *3lnera0le6 Howe*er4 5an" 2ons35ers !o no+

"e+ 3n!ers+an! +he pri*a2" risks o ph"si2al o01e2+ wi+h 03il+&in wireless

sensors4 in2reasin, +heir *3lnera0ili+"6Si5ilarl"4 as 5e!i2al re2or!s 0e2o5e in2reasin,l" !i,i+ie!4 an!

po+en+iall" share! 0e+ween ne+works4 +here e/is+s an in2rease! risk o

pri*a2" *iola+ions6 e!i2al re2or!s 2an 0e a+ risk o +he+ an! 5is3se

0o+h ro5 wi+hin a 5e!i2al ins+i+3+ion an! wi+ho3+6 :hile a 0rea2h o

personal heal+h inor5a+ion 2an 0e ina!*er+en+ or 5ali2io3s4 5os+

in!i*i!3als wo3l! 2onsi!er +his 0e a 5a1or 0rea2h o +heir pri*a2" ri,h+s


13/19

ei+her wa"6On +he 5ore serio3s si!e o po+en+ial risks asso2ia+e! wi+h IoT

ena0le! 5e!i2al !e*i2es 2o5es +he ha2kin, o a2+3al !e*i2es6 :hile

+his is a risk +ha+ is o+en sensa+ionalie!4 +here ha*e 0een re2or!e!

ins+an2es +ha+ *ali!a+e +his possi0ili+"6 For e/a5ple4 +he FTC repor+s an

ins+an2e where an in!i*i!3al was a0le +o =ha2k re5o+el" in+oM

2onne2+e! ins3lin p35ps an! 2han,e +heir se++in,s so +ha+ +he" no

lon,er !eli*ere! 5e!i2ine> -FTC4 ('?@4 p6 ?(.6 Si5ilar +hrea+s 2o3l! 0e

i5a,ine! a!*an2e! hearin, ai!s or a!*an2e! pros+he+i2 li50s 2o3l!

0e !isa0le!4 an! wirelessl" 2onne2+e! pa2e5akers 2o3l! 0e sh3+ o76

:he+her or no+ +hese +hrea+s will presen+ +he5sel*es +o 0e likel"

o223rren2es4 +he IoT will a+ +he *er" leas+ 5ake +he5 possi0le4 an!

+h3s 2anno+ 0e +aken li,h+l"6Ano+her area in whi2h +he IoT presen+s a serio3s risk +o sae+" is

wi+h 2onne2+e! a3+o5o0iles6 Conne2+e! sensors 2o3l! +rans5i+ +o

ins3ran2e 2o5panies +he e/+en+ +o whi2h a !ri*er 0rakes s3!!enl"4

spee!s4 e+26 an! ,i*e 5o+i*e +o s30se;3en+l" in2rease ra+es6 Howe*er4

si5ilar +o 2onne2+e! 5e!i2al !e*i2es4 2onne2+e! a3+o5o0iles pro!32e

a 5ore serio3s risk6 I+ 0e2o5es possi0le or =an a++a2ker +oB ,ain

La22ess +o +he 2ars in+ernal 2o5p3+er ne+work wi+ho3+ e*er ph"si2all"

+o32hin, +he 2ar> -FTC4 ('?@4 p6 ?(.4 in +3rn 2rea+in, +he po+en+ial or

+he a++a2ker +o re5o+el" ass35e 2on+rol o +he *ehi2le6 This ,i*es a

ha2ker a se*eral&+ho3san! po3n! weapon +o 2on+rol4 whi2h poses a

serio3s sae+" risk no+ onl" +o +hose insi!e +he *ehi2le4 03+ also +o


14/19

o+hers on or near +he roa!6A wi!esprea! IoT also 2rea+es 5assi*e po+en+ial or a03se6

:he+her i+ is +o 0e 3+ilie! 0" e!eral or lo2al ,o*ern5en+s4 or 0" a

poli2e or2e4 +he po+en+ial s3r*eillan2e appara+3s 2rea+e! 0" +he IoT is

e/+ensi*e6 A 2o5ple+e 0eha*ioral pro8le4 whi2h in2l3!es an in!i*i!3als

a2;3ain+an2es4 a2+i*i+ies4 5o*e5en+s4 p3r2hases4 5e!i2al his+or"4

preeren2es an! pre!isposi+ions4 an! e*en personali+"4 2an 0e or5e!

an! e/ploi+e!6 An en+i+" +ha+ wishe! +o a03se a22ess +o s32h an

appara+3s 2o3l! 3se i+ +o s3r*eil 2i+iens4 sear2hin, or 2ri5inal

a2+i*i+"4 perhaps wi+ho3+ pro0a0le 2a3se6 :orse4 s32h s3r*eillan2e

2o3l! 0e a03se! +o e7e2+i*el" ra5e an in!i*i!3al4 ,i*en +he 5assi*e

!a+a +ha+ 2o3l! 0e 2olle2+e!6

RECCOENDATIONS The IoT is an inheren+l" 2o5ple/ en+i+"4 an! +h3s se23rin, i+

a,ains+ po+en+ial +hrea+s is an inheren+l" 53l+ia2e+e! iss3e6 The ran,e

o !e*i2es +ha+ 2ons+i+3+e +he IoT is ,rowin, e*er 5ore !i*erse an!

!ispara+e+he" are 5a!e 0" !i7eren+ 8r5s4 or !i7eren+ 5arke+s4 or

!i7eren+ p3rposes6 I+ +hen ollows +ha+ +here 2anno+ 0e one o*erar2hin,

sol3+ion +o se23rin, +he IoT6 A +wo&pron,e! an! e/i0le approa2h 53s+

0e +aken or +he ,rea+es+ !e,ree o se23ri+" +o 0e a2hie*e!6 The 8rs+

pie2e 53s+ 0e 2on+ri03+e! 0" +he pri*a+e se2+or4 whi2h 53s+ work +o

ens3re +he" 03il! +he 5os+ s+rin,en+ possi0le sae,3ar!s in+o +heir

!e*i2es6 This 2an 0e 3se! +o 5arke+ +heir pro!32+s as saer +han ol!er

5o!els4 or +han +heir 2o5pe+i+ors6 To ens3re +he pri*a+e se2+or is


15/19

hol!in, 3p +o +heir pro5ises4 an! keepin, 3p wi+h e*er&2han,in,

inno*a+ion4 +he p30li2 se2+or will 0e re;3ire! +o pass le,isla+ion

!e5an!in, s+an!ar!s4 pro+e2+ions4 an! a22o3n+a0ili+"6

The pri*a+e se2+or 53s+ re2o,nie +he risks +ha+ will 0e

asso2ia+e! wi+h +he 2onne2+e! !e*i2es +he" sell4 an! +ake 0o+h

a!e;3a+e pre2a3+ions an! a22o3n+a0ili+" or +he56 =:Bi+h e/+ensi*e

2ons35er !a+a ine/+ri2a0l" linke! +o +he i5ple5en+a+ion an!

e7e2+i*eness o IoT an! +he res3l+in, ele*a+e! i5por+an2e o pri*a2"4 i+

0e2o5es 2ri+i2al or 5arke+ers +o raise +heir ,a5e as re,ar!s pri*a2"

;3ali+"4 respe2+in, 2ons35ers4 an! 03il!in, an! 5ain+ainin, s+ron,4

+r3s+wor+h" 23s+o5er rela+ionships> -:ein0er, e+ al64 ('?@4 p6 (#.6

The 0es+ wa" +o !o +his is +o pro5o+e +he 2on2ep+ o =pri*a2" 0"

!esi,n6> =Pri*a2" 0" !esi,n is a pro2ess +ha+ 2alls or proa2+i*e

2onsi!era+ion o pri*a2" o01e2+i*es an! ai5s ro5 +he s+ar+4 +hen

2on+in3es +hro3,ho3+ +he !esi,n an! !eli*er" pro2ess o pro!32+s an!

rela+e! a2+ions> -:ein0er, e+ al64 ('?@4 p6 (#.6 The i!ea is +o 03il!

pri*a2" pro+e2+ions in+o 2onne2+e! !e*i2es4 an! +h3s +he en+ire

ne+work o +he IoT4 +ha+ works proa2+i*el" ra+her +han rea2+i*el"6 The

hi,hes+ pri*a2" sae,3ar!s 0e2o5e +he !ea3l+6 Transparen2" is 3se!

+hro3,ho3+ +he pro2ess4 an! e*er"+hin, is 03il+ wi+h +he pri*a2"

in+eres+s o +he 2ons35er in 5in!6Fo3r 5ain prin2iples4 or pri*a2" re;3ire5en+s4 53s+ 0e

i5ple5en+e!4 as is well o3+line! in Rol :e0ers -('?'. pie2e Internet

of Things—New security and privacy challenges1. Resilience to attacks The s"s+e5 has +o a*oi! sin,le poin+s o


16/19

ail3rean! sho3l! a!13s+ i+sel +o no!e ail3res6

(6 Data authentication As a prin2iple4 re+rie*e! a!!ress an!

o01e2+inor5a+ion 53s+ 0e a3+hen+i2a+e!6

#6 Access control Inor5a+ion pro*i!ers 53s+ 0e a0le +o

i5ple5en+a22ess 2on+rol on +he !a+a pro*i!e!6

%6 Client privacy eas3res nee! +o 0e +aken +ha+ onl" +he

inor5a+ion pro*i!er is a0le +o iner ro5 o0ser*in, +he 3se o look3p

s"s+e5 rela+e! +o a spe2i82 2ons35er a+ leas+4 ineren2e sho3l! 0e

*er"har! +o 2on!32+6

-:e0er4 ('?'4 p6 (%.6

I pri*a+e en+i+ies s322ess3ll" i5ple5en+ +hese 5eas3res ro5 +he

o3+se+4 as oppose! +o in rea2+ion +o 0rea2hes4 +he IoT 2o3l! 0e a

reasona0l" se23re pla+or5 or sensi+i*e !a+a6 The pri*a+e se2+or

sho3l! +ake +he on3s 3pon +he5sel*es +o 5ake +hese sae,3ar!s

s+an!ar!4 no+ onl" +o appease 2ons35ers4 03+ +o ens3re se23ri+" an!

lon,e*i+" or +he IoT4 whi2h will in +3rn pro*i!e 0ene8+s or 8r5s in

n35ero3s wa"s6

Sel&re,3la+ion 0" +he pri*a+e se2+or is 3nlikel" +o 0e s322ess3l i

le+ +o i+s own !e*i2es4 howe*er6 e,isla+ion will likel" 0e ne2essar" +o

ens3re +he se23ri+" o +he IoT6 This 2o3l! ran,e ro5 si5ple in2en+i*es

+ha+ 3r,e pri*a+e 8r5s +ha+ 03il! 2onne2+e! !e*i2es +o in2l3!e

s+rin,en+ sae+" 5eas3res a+ +he low en!4 +o re,3la+ion +ha+ re;3ires all

8r5s +ha+ pro!32e s32h !e*i2es +o 5ee+ 2er+ain pri*a2" an! se23ri+"


17/19

s+an!ar!s on +he hi,h en!6 :hile 3ll re,3la+ion is preera0le4 i+ 53s+

s+ill +ake in+o a22o3n+ +he preeren2es an! re;3es+s o +he in!3s+r"6

e,isla+ion sho3l! re;3ire 8r5s +o 5ee+ +he a0o*e o3r pri*a2"

prin2iples in a 5anner +ha+ 5ee+s +he =pri*a2" 0" !esi,n> ,oal6

F3r+her4 a s"s+e5 o =pri*a2" ra+in,s> sho3l! 0e le,isla+e!4 so +ha+ a

!e*i2e 2an 0e ra+e! ro5 soewhat safe +o very safe6 This wo3l! ,i*e

2ons35ers +he inor5a+ion ne2essar" +o no+ onl" 03" +he !e*i2es

s3i+a0le +o +he54 03+ also ha*e +he a3+hori+" +o 3se +heir p3r2hasin,

power +o 2rea+e in2en+i*es or 8r5s6 e,isla+ion sho3l! also a!!ress

+he po+en+ial a03se o 2onne2+e! ne+works6 Ci*il a3+hori+ies an!

,o*ern5en+ a,en2ies 53s+ 0e re;3ire! +o o0+ain a warran+ 0eore

3+iliin, an" aspe2+ o an IoT ne+work +o s3r*eil a s3spe2+6

)nwarran+e! s3r*eillan2e 53s+ 0e pre*en+e!4 no 5a++er +he s2ale6

:i+h +his 2o50ina+ion o pri*a+e an! p30li2 e7or+ +o 23r+ail +hrea+s an!

pro5o+e se23ri+" an! pri*a2"4 +he IoT 2an 0e2o5e +he 5os+ e92ien+

an! 3se3l 5a2ro&ne+work i+ 2an 0e6

CONC)SION

The 2on+in3e! !e*elop5en+ o +he IoT will 3n!o30+e!l"

re*ol3+ionie! +he wa" one li*es his or her lie an! how so2ie+" will

3n2+ion as a whole6 I+ 2o3l! *er" well +3rn o3+ +o 0e +he 5os+

i5por+an+ a!*an2e5en+ sin2e +he In+erne+ i+sel6 This is wh" i+s

inno*a+ion 53s+ 0e a!e;3a+el" pro+e2+e!6 The 0ene8+ so2ie+" s+an!s +o


18/19

reap ro5 a 5assi*e ne+work o 2onne2+e! o01e2+s is 3na+ho5a0le4

03+ +he har5 +he IoT 2an 2a3se4 i no+ 2are! or4 2o3l! 0e !isas+ro3s6

In!i*i!3als 53s+ no+ 0e re;3ire! +o orei+ +heir pri*a2" ri,h+s in +he

na5e o 2on*enien2e4 e92ien2"4 or e*en sae+"6 Ra+her4 i +he p30li2

an! pri*a+e se2+ors +ake +he ne2essar" s+eps4 a +r3l" awe&inspirin,

ne+work 2an 0e 03il+ aro3n! +he worl!6 I+ will no+ onl" 2han,e lie or

+he h35an spe2ies4 03+ i+ will 5ake +he spe2ies s+ron,er an! 5ore

resilien+6 H35ans ha*e 0een 2o&e*ol*in, wi+h +e2hnolo," or 5illennia

now4 an! +he IoT is +he ne/+4 *er" lar,e4 s+ep6 I+ 53s+ 0e ens3re! +ha+

+his ne/+ s+ep is no+ in+o a 2a,e4 an! no+ in+o 2haos6 The IoT 2an an!

sho3l! 0e a reein, or2e4 13s+ as i+s ne2essar" pre!e2essor4 +he

In+erne+4 was 0eore i+6

REFERENCES

Clark4 D6 -('?%4 Jan3ar" @.6 LIn+erne+ o +hin,s in rea2h Co5paniesr3sh in+o !e*i2es

like s5ar+ !oors lo2ks4 applian2es4 03+ li5i+a+ions e/is+6 The !all"treet

#ournal6

FTC S+a7 Repor+6 -('?@4 Jan3ar".6 Internet of things$ %rivacy & securityin a

connected world.

e!a,lia4 C64 Ser0ana+i4 A6 -('?'.6 The internet of things6 New York4NY Sprin,er

New York6

i!!le+on4 P64 K1el!sen4 P64 T3ll"4 J6 -('?#4 No*e50er ?.6 Fore2as+ The in+erne+ o

+hin,s4 worl!wi!e4 ('?#6 'artner 6


19/19

Press4 G6 -('?%4 A3,3s+ ((.6 In+erne+ o +hin,s 0" +he n350ers arke+es+i5a+es an!

ore2as+s6 (or)es6

Ro5an4 R64 Qho34 J64 ope4 J6 -('?#.6 On +he ea+3res an! 2hallen,es

o se23ri+" an!pri*a2" in !is+ri03+e! in+erne+ o +hin,s6 Coputer Networks4@$-?'.4 ((&

(($6

S+a2kowiak4 R64 i2h+4 A64 An++ha4 V64 Na,o!e4 6 -('[email protected] *ig data andthe internet of

things$ +nterprise inforation architecture for a new age6 Apress6

:e0er4 R6 -('?'.6 In+erne+ o +hin,sNew se23ri+" an! pri*a2"2hallen,es6

Coputer ,aw & "ecurity Review4 (-?.4 (#'6

:ein0er,4

Documents

The Internet of Things and Privacy Concerns