A User-Friendly Privacy Framework for Users to Achieve Consents With Nearby BLE Devices

Cha, Shi-Cho; Chuang, Ming-Shiung; Yeh, Kuo-Hui; Huang, Zi-Jia; Su, Chunhua

doi:10.1109/access.2018.2820716

Cited by 30 publications

(12 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Methods such as PUF [62], accelerometer data [63], and visible light (referred as Li-Fi) [64] are explored for improving authentication of Wi-Fi networks. Moreover, novel methods are introduced for securing LPWAN [52], NB-IoT [65], RFID [66], and BLE [67] authentication phases. These technologies are used for D2D or ad-hoc type authentication, which are common for IoT deployments.…”

Section: ) Possible Authentication Violationsmentioning

confidence: 99%

Survey on Multi-Access Edge Computing Security and Privacy

Ranaweera

Jurcut

Liyanage

2021

IEEE Commun. Surv. Tutorials

213

View full text Add to dashboard Cite

The European Telecommunications Standards Institute (ETSI) has introduced the paradigm of Multi-Access Edge Computing (MEC) to enable efficient and fast data processing in mobile networks. Among other technological requirements, security and privacy are significant factors in the realization of MEC deployments. In this paper, we analyse the security and privacy of the MEC system. We introduce a thorough investigation of the identification and the analysis of threat vectors in the ETSI standardized MEC architecture. Furthermore, we analyse the vulnerabilities leading to the identified threat vectors and propose potential security solutions to overcome these vulnerabilities. The privacy issues of MEC are also highlighted, and clear objectives for preserving privacy are defined. Finally, we present future directives to enhance the security and privacy of MEC services.

show abstract

Section: ) Possible Authentication Violationsmentioning

confidence: 99%

Survey on Multi-Access Edge Computing Security and Privacy

Ranaweera

Jurcut

Liyanage

2021

IEEE Commun. Surv. Tutorials

213

View full text Add to dashboard Cite

show abstract

“…Therefore, no sensitive data is accessed without their consent. Meanwhile, in [59], Cha considered a Blockchain framework where users set their privacy preferences for the IoT devices they interact with. Doing so ensures that no sensitive data is accessed without users' consent.…”

Section: B Overview Of Related Literaturementioning

confidence: 99%

DITrust Chain: Towards Blockchain-Based Trust Models for Sustainable Healthcare IoT Systems

et al. 2020

View full text Add to dashboard Cite

Today, internet and device ubiquity are paramount in individual, formal and societal considerations. Next generation communication technologies, such as Blockchains (BC), Internet of Things (IoT), cloud computing, etc. offer limitless capabilities for different applications and scenarios including industries, cities, healthcare systems, etc. Sustainable integration of healthcare nodes (i.e. devices, users, providers, etc.) resulting in healthcare IoT (or simply IoHT) provides a platform for efficient service delivery for the benefit of care givers (doctors, nurses, etc.) and patients. Whereas confidentiality, accessibility and reliability of medical data are accorded high premium in IoHT, semantic gaps and lack of appropriate assets or properties remain impediments to reliable information exchange in federated trust management frameworks. Consequently, We propose a Blockchain Decentralised Interoperable Trust framework (DIT) for IoT zones where a smart contract guarantees authentication of budgets and Indirect Trust Inference System (ITIS) reduces semantic gaps and enhances trustworthy factor (TF) estimation via the network nodes and edges. Our DIT IoHT makes use of a private Blockchain ripple chain to establish trustworthy communication by validating nodes based on their inter-operable structure so that controlled communication required to solve fusion and integration issues are facilitated via different zones of the IoHT infrastructure. Further, C implementation using Ethereum and ripple Blockchain are introduced as frameworks to associate and aggregate requests over trusted zones.

show abstract

“…Decoupling Consent from the individual data paths is also used in the case of Internet-of-Things (IoT). This is perhaps the only possible approach: IoT applications can be extremely challenging for Consent because devices may not even have a screen or buttons, and Users cannot always use an accessory device such as a mobile phone [32]. Particularly when there are multiple devices which collaboratively define the service, an overarching consent needs to be given by aggregating and consolidating different data sources and devices.…”

Section: Related Workmentioning

confidence: 99%

Towards an Accountable Web of Personal Information: The Web-of-Receipts

Jesus

2020

IEEE Access

View full text Add to dashboard Cite

Consent is a corner stone in any Privacy practice or public policy. Much beyond a simple ''accept'' button, we show in this paper that obtaining and demonstrating valid Consent can be a complex matter since it is a multifaceted problem. This is important for both Organisations and Users. As shown in recent cases, not only cannot an individual prove what they accepted at any point in time, but also organisations are struggling with proving such consent was obtained leading to inefficiencies and noncompliance. To a large extent, this problem has not obtained sufficient visibility and research effort. In this paper, we review the current state of Consent and tie it to a problem of Accountability. We argue for a different approach to how the Web of Personal Information operates: the need of an accountable Web in the form of Personal Data Receipts which are able to protect both individuals and organisation. We call this evolution the Web-of-Receipts: online actions, from registration to real-time usage, is preceded by valid consent and is auditable (for Users) and demonstrable (for Organisations) at any moment by using secure protocols and locally stored artefacts such as Receipts. The key contribution of this paper is to elaborate on this unique perspective, present proof-of-concept results and lay out a research agenda. INDEX TERMS Privacy, consent, accountability, web-of-receipts, personal data receipts.

show abstract

A User-Friendly Privacy Framework for Users to Achieve Consents With Nearby BLE Devices

Cited by 30 publications

References 7 publications

Survey on Multi-Access Edge Computing Security and Privacy

Survey on Multi-Access Edge Computing Security and Privacy

DITrust Chain: Towards Blockchain-Based Trust Models for Sustainable Healthcare IoT Systems

Towards an Accountable Web of Personal Information: The Web-of-Receipts

Contact Info

Product

Resources

About