Blockchain-based Privacy Enforcement in the IoT domain
In 2021 there are 13.8 billion interconnected IoT devices, with an upward trend. IoT devices collect data on the surrounding environment, including sensitive and private information (e.g., wearable IoT devices). As a result, users are experiencing a loss of control over how their data is distributed and processed. Even worse, users are often unaware of which new data could be inferred from the collected ones. In contrast, end users, being the owners of the data, must be able to state which data can be collected, for which purpose and how these can be accessed and, more importantly must have the guarantee that his/her privacy preferences are enforced independently from the IoT devices they interact with.
In contrast, end users, being the owners of the data, must be able to state which data can be collected, for which purpose and how these can be accessed and, more importantly must have the guarantee that his/her privacy preferences are enforced independently from the IoT devices they interact with.
Traditionally, due to a lack of trust in the consumer, privacy enforcement is entrusted to a third party. Thanks to the introduction of blockchain technology, we can eliminate the centralized trusted entity to rely on an inherently reliable distributed system.
With the implementation of this platform, we have demonstrated how a non-centralized entity, such as the blockchain, can guarantee user privacy with transparency in a demanding scenario like IoT.
Blockchain-based Privacy Enforcement in the IoT domain https://ieeexplore.ieee.org/document/9528990
(By: Barbara Carminati and Elena Ferrari , University of Insumbria)