simonmoffatt

's profile
image
Identity&Access Management Director

15 years in the IAM space. IoT believer. Open Source hacker.


simonmoffatt

's contributions
  • 07.15.2015
  • Handling Privacy and Security Concerns in the IoT: Big Data and Privacy
  • Good points. I certainly agree, whilst standards are now being put in place for a lot of the interop and comms related use cases, I think on the security, registration and authN/authZ use cases this is lacking. I agree that local crypto and key management will be area of issue, especially with low processing capabilities and storage of key materials being an immediate problem. I see a contextual issue developing where devices will certainly need to be grounded to either an individual or service via linking and perhaps token issuance. "Offline" authentication and authorization via token introspection - even basic JWT signing for example - could assist here.