15 years in the IAM space. IoT believer. Open Source hacker.
- 2 Comment(s)
- Handling Privacy and Security Concerns in the IoT: Big Data and Privacy
- Good points. I certainly agree, whilst standards are now being put in place for a lot of the interop and comms related use cases, I think on the security, registration and authN/authZ use cases this is lacking. I agree that local crypto and key management will be area of issue, especially with low processing capabilities and storage of key materials being an immediate problem. I see a contextual issue developing where devices will certainly need to be grounded to either an individual or service via linking and perhaps token issuance. "Offline" authentication and authorization via token introspection - even basic JWT signing for example - could assist here.