SECURITY AND PRIVACY IN THE INTERNET OF THINGS

摘要

Internet of Things (IOT) has the potential to change many of our daily activities, routines and behaviors. The physical pervasiveness of the novel sources of information can mean that a great amount of data pertaining to possibly all aspects of human activity - both public and private - will be produced, transmitted, collected, stored and processed. In this scenario it is paramount that users - private citizens, enterprises or public bodies - have the tools to manage their privacy and that their settings are correctly and strongly enforced by security features. In this context it is useful to define the relationship between security and privacy. A secure system is one that you can trust for sensitive but not necessarily personal information exchange and processing. Security in information systems is characterized by a set of interdependent security goals, mainly: Authentication (Access restriction); Confidentiality; Integrity. However some security functions used to protect sensitive information like financial data can oppose to or may be difficult to align with Privacy principles when they are used to process personal information. This is the case for principle like. Transparency (Privacy) vs. Confidentiality (Security); Verifiability (Privacy) vs. Access restriction (Security); Right purpose (Privacy) vs. Data Retention (National Security).