poster

Privacy-Patterns for IoT Application Developers

Authors:

Nada Alhirabi,

Stephanie Beaumont,

Omer Rana,

Charith PereraAuthors Info & Claims

UbiComp/ISWC '22 Adjunct: Adjunct Proceedings of the 2022 ACM International Joint Conference on Pervasive and Ubiquitous Computing and the 2022 ACM International Symposium on Wearable Computers

Pages 7 - 9

https://doi.org/10.1145/3544793.3560333

Published: 24 April 2023 Publication History

Get Access

Abstract

Designing Internet of things (IoT) applications (apps) is challenging due to the heterogeneous nature of the systems on which these apps are deployed. Personal data, often classified as sensitive, may be collected and analysed by IoT apps, where data privacy laws are expected to protect such information. Various approaches already exist to support privacy-by-design (PbD) schemes, enabling developers to take data privacy into account at the design phase of application development. However, developers are not widely adopting these approaches because of understandability and interpretation challenges. A limited number of tools currently exist to assist developers in this context – leading to our proposal for “PARROT" (PrivAcy by design tool foR inteRnet Of Things). PARROT supports a number of techniques to enable PbD techniques to be more widely used. We present the findings of a controlled study and discuss how this privacy-preserving tool increases the ability of IoT developers to apply privacy laws (such as GDPR) and privacy patterns. Our students demonstrate that the PARROT prototype tool increases the awareness of privacy requirements in design and increases the likelihood of the subsequent design to be more cognisant of data privacy requirements.

References

[1]

Nada Alhirabi, Omer Rana, and Charith Perera. 2021. Security and Privacy Requirements for the Internet of Things: A Survey. ACM Trans. Internet Things 2, 1, Article 6 (Feb 2021), 37 pages. https://doi.org/10.1145/3437537

Digital Library

Google Scholar

[2]

Nada Alhirabi, Omer Rana, and Charith Perera. 2022. Demo Abstract: PARROT: Privacy by Design Tool for Internet of Things. In 2022 IEEE/ACM Seventh International Conference on Internet-of-Things Design and Implementation (IoTDI). 107–108. https://doi.org/10.1109/IoTDI54339.2022.00023

Crossref

Google Scholar

[3]

Ann Cavoukian. 2009. Privacy by design: The 7 foundational principles. Information and privacy commissioner of Ontario, Canada 5 (2009), 12.

Google Scholar

[4]

Lorrie Faith Cranor, Praveen Guduru, and Manjula Arjula. 2006. User interfaces for privacy agents. ACM Transactions on Computer-Human Interaction (TOCHI) 13, 2(2006), 135–178.

Digital Library

Google Scholar

[5]

Martin Höst, Björn Regnell, and Claes Wohlin. 2000. Using students as subjects—a comparative study of students and professionals in lead-time impact assessment. Empirical Software Engineering 5, 3 (2000), 201–214.

Digital Library

Google Scholar

[6]

Sachin Kumar, Prayag Tiwari, and Mikhail Zymbler. 2019. Internet of Things is a revolutionary approach for future technology enhancement: a review. Journal of Big Data 6, 1 (2019). https://doi.org/10.1186/s40537-019-0268-2

Crossref

Google Scholar

[7]

Tianshi Li, Elizabeth Louie, Laura Dabbish, and Jason I. Hong. 2021. How Developers Talk About Personal Data and What It Means for User Privacy. Proceedings of the ACM on Human-Computer Interaction 4, CSCW3(2021), 1–28. https://doi.org/10.1145/3432919

Digital Library

Google Scholar

[8]

Daniel L. Moody, Patrick Heymans, and Raimundas Matulevičius. 2010. Visual syntax does matter: Improving the cognitive effectiveness of the i* visual notation. Requirements Engineering 15, 2 (2010), 141–175. https://doi.org/10.1007/s00766-010-0100-1

Digital Library

Google Scholar

Cited By

View all

Kosenkov OElahidoost PGorschek TFischbach JMendez DUnterkalmsteiner MFucci DMohanani R(2025)Systematic mapping study on requirements engineering for regulatory compliance of software systemsInformation and Software Technology10.1016/j.infsof.2024.107622178(107622)Online publication date: Feb-2025
https://doi.org/10.1016/j.infsof.2024.107622
Al-Momani ABalenson DMann ZPape SPetit JBösch C(2024)Navigating Privacy Patterns in the Era of Robotaxis2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)10.1109/EuroSPW61312.2024.00011(32-39)Online publication date: 8-Jul-2024
https://doi.org/10.1109/EuroSPW61312.2024.00011

Index Terms

Privacy-Patterns for IoT Application Developers
1. Human-centered computing
  1. Ubiquitous and mobile computing
    1. Ubiquitous and mobile computing design and evaluation methods
2. Security and privacy
  1. Human and societal aspects of security and privacy
    1. Usability in security and privacy

Recommendations

PARROT: Interactive Privacy-Aware Internet of Things Application Design Tool

Internet of Things (IoT) applications typically collect and analyse personal data that is categorised as sensitive or special category of personal data. These data are subject to a higher degree of protection under data privacy laws. Regardless of legal ...
Empowering IoT Developers with Privacy-Preserving End-User Development Tools

Internet of Things applications (IoT) have the potential to derive sensitive user data, necessitating adherence to privacy and data protection laws. However, developers often struggle with privacy issues, resulting in personal data misuse. Despite the ...
Designing Privacy-Aware IoT Applications for Unregulated Domains
Internet of Things (IoT) applications (apps) are challenging to design because of the heterogeneous systems on which they are deployed. IoT devices and apps may collect and analyse sensitive personal data, which is often protected by data privacy laws, ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

UbiComp/ISWC '22 Adjunct: Adjunct Proceedings of the 2022 ACM International Joint Conference on Pervasive and Ubiquitous Computing and the 2022 ACM International Symposium on Wearable Computers

September 2022

538 pages

ISBN:9781450394239

DOI:10.1145/3544793

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 24 April 2023

Check for updates

Author Tags

Qualifiers

Poster
Research
Refereed limited

Conference

UbiComp/ISWC '22

Sponsor:

UbiComp/ISWC '22: The 2022 ACM International Joint Conference on Pervasive and Ubiquitous Computing

September 11 - 15, 2022

Cambridge, United Kingdom

Acceptance Rates

Overall Acceptance Rate 764 of 2,912 submissions, 26%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
100
Total Downloads

Downloads (Last 12 months)30
Downloads (Last 6 weeks)1

Reflects downloads up to 18 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Kosenkov OElahidoost PGorschek TFischbach JMendez DUnterkalmsteiner MFucci DMohanani R(2025)Systematic mapping study on requirements engineering for regulatory compliance of software systemsInformation and Software Technology10.1016/j.infsof.2024.107622178(107622)Online publication date: Feb-2025
https://doi.org/10.1016/j.infsof.2024.107622
Al-Momani ABalenson DMann ZPape SPetit JBösch C(2024)Navigating Privacy Patterns in the Era of Robotaxis2024 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW)10.1109/EuroSPW61312.2024.00011(32-39)Online publication date: 8-Jul-2024
https://doi.org/10.1109/EuroSPW61312.2024.00011

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

HTML Format

View this article in HTML Format.

HTML Format

Abstract

References

Cited By

Index Terms

Recommendations

PARROT: Interactive Privacy-Aware Internet of Things Application Design Tool

Empowering IoT Developers with Privacy-Preserving End-User Development Tools

Designing Privacy-Aware IoT Applications for Unregulated Domains

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

HTML Format

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations