Maintaining Personal Privacy, Identity and Security in the IoT era
Slide Deck
Session Abstract:
Devices that are connected to the Internet, or Internet of Things (IoT) devices, constitute a booming segment of the tech industry. By 2020, Cisco estimates that 50 billion objects will be connected to the Internet. Do you know where all the data collected about you and your activities is being stored? Do you know what it’s being used for? Do you know how it impacts your identity? Chances are, you don’t. And that means that existing issues of privacy and security are only going to get more complex.
Here are two examples:
- Your Fit Bit collects exercise data on you (or lack thereof). If you send it to your Doctor, is it now considered diagnostic data and covered by HIPAA? If it’s incorporated into your electronic health record, is it covered by HI TECH? Can Fit Bit change their terms of use and sell the data to your insurance company, who uses it to increase your rates? What if your significant other is using your Fit Bit – your identities are now confused and conflated.
- Your connected car is associated with you (you bought it), but you’re not the only one who drives it. The car doesn’t differentiate between you, your wife, or the next-door neighbor’s kid who takes it for a joy ride. The data it’s sending out, however, is going to be pinned on you: speeding, sudden stops, lane change violations, location, etc.
The proliferation of connected devices and the advent of IoT only highlights the critical need for the creation of ‘rules of the road’ for companies, government agencies, and institutions to navigate the constantly evolving landscape of online identity. The Identity Ecosystem Framework (IDEF) concisely articulates the necessary steps that organizations handling your identity need to take in order to make sure that data is secure and that an individual’s privacy is respected. The IDEF also empowers consumers to take control of their digital identities by establishing guidelines for credential issuers and consumers that enables individuals to exercise a level of control over how their data collected, stored, and used. By creating an identity layer in connected devices that adheres to the voluntary IDEF, IoT device manufacturers and application developers can actually begin to build trust into their products – and significantly reduce the risks associated with handling personally identifiable information.
Attendees will gain the following by attending this session:
A keen understanding of the implications for connected devices and wearables when it comes to your identity as a person, not just the personally identifiable data, and what it means to truly protect identity on the Internet of Things.
Speaker:
Marc-Anthony Signorino
Executive Director of the Identity Ecosystem Steering Group
Marc-Anthony Signorino is the Executive Director of the Identity Ecosystem Steering Group. In this role, he is working to transform the organization into a diverse, international, multi-industry organization. His core mission is to bring stakeholders together to help stimulate a thriving Identity Ecosystem that allows strong, privacy-enhancing identity credentials to be used for personal, commercial, educational, and governmental use. He is an attorney, Certified Information Privacy Professional (CIPP), and has recently served as secretary of the board of directors for the Internet Security Alliance, Washington D.C.’s leading cyber-security advocacy group. Prior to joining the IDESG, he was Vice President and General Counsel for 121 Strategies and Government Relations, responsible for a broad technology policy portfolio, including cybersecurity, identity management issues, consumer online privacy and security, Internet governance, telecommunications and broadband deployment, the protection of intellectual property rights, and America’s competitiveness agenda. Signorino also worked at the National Association of Manufacturers and the American Electronics Association. Additionally, he helped open eBay’s government affairs office in Washington, D.C. Signorino studied law both at Georgetown University Law Center and Northeastern University School of Law, the latter of which granted him a Juris Doctorate. He received his Bachelors of Science at Boston University’s College of Communication.
Session Tags:
Government, Enterprise, Small / Medium Enterprise
privacy, security, standards
CxO, VP / Director, Technical
Intermediate, Beginner
https://www.linkedin.com/in/marcanthonysignorino
https://twitter.com/id_eco_system
Retail, Manufacturing, Telecom, Banking, Financial Services, Insurance, Industrials, Healthcare, Consumer, Pharmaceutical / BioTech, Automotive
Join our IoT Community at https://www.linkedin.com/groups/4662022/profile
IoT Slam Virtual Internet of Things Conference
IoT Slam 2016 © Copyright license
Any unauthorized broadcasting, sharing, public performance, copying or re-recording will constitute an infringement of copyright’ and by viewing the materials you agree to the following Copyright licence terms:
IoT Slam grants you a worldwide non-exclusive royalty-free revocable license to:
- View the material on a computer or mobile device for a set period of time per your subscription level.
- Copy and store the material for your own consumption
- Print pages for your own personal and commercial use
- IoT Slam does not grant you any other rights in relation to this material. In other words, all other rights are reserved.
For the avoidance of doubt, you must not adapt, edit, change, transform, share, publish, republish, distribute, redistribute, broadcast, rebroadcast or show or play in public any of the material (in any form or media) without IoT Slam’s express prior written permission. If you have any questions, or are unsure about how the above relates to you, please send us a mail to copyright@iotslam.com