MY166564A - A system and method for privacy management for internet of things services - Google Patents

Abstract

A SYSTEM AND METHOD FOR PRIVACY MANAGEMENT FOR INTERNET OF THINGS (LOT) SERVICES IS PROVIDED BY UTILIZING INFORMATION PRIVACY CONTROL MODULE (IPCM) TO INTEGRATE INTERNET OF THINGS (LOT) DEVICES AND INTERNET OF THINGS (LOT) GATEWAY. GENUINE USERS UTILIZE INTERNET OF THINGS (LOT) SERVICES ANONYMOUSLY FOR PROTECTION OF IDENTITY AND GENUINE USERS HAVE CONTROL OVER PERSONAL PRIVATE DATA THROUGH PRIVACY ACCESS POLICY. THE SYSTEM OF THE PRESENT INVENTION INCLUDES AT LEAST ONE ACCESS CONTROL SERVER (302); AT LEAST ONE INFORMATION PRIVACY CONTROL MODULE (304) WITHIN AT LEAST ONE ACCESS CONTROL SERVER (302); AT LEAST ONE PRIVACY POLICY TABLE (306) WITHIN AT LEAST ONE ACCESS CONTROL SERVER (302); A PLURALITY OF INTERNET OF THINGS GATEWAYS (312); AND A PLURALITY OF INTERNET OF THINGS SENSORS (316). THE AT LEAST ONE INFORMATION PRIVACY CONTROL MODULE (304) PROVIDES ACCESS RIGHTS TO CLIENT FOR CLIENT TO ACCESS THE INTERNET OF THINGS GATEWAY BASED ON USER PRIVACY ACCESS RIGHTS IN CLIENT PRIVACY POLICY TABLE. FURTHER, SECURE CONNECTION IS PROVIDED BY THE INFORMATION PRIVACY CONTROL MODULE FOR CLIENT TO ACCESS TO SELECTED INTERNET OF THINGS GATEWAY AND INTERNET OF THINGS GATEWAY IS INITIATED TO PERFORM CHALLENGE RESPONSE WITH INTERNET OF THINGS SENSORS TO PROVIDE UNCLONABLE IDENTITY. THE UNCLONABLE IDENTITY IS PROVIDED BY THE PHYSICALLY UNCLONABLE FUNCTIONS EMBEDDED WITHIN THE SENSORS TO ELIMINATE WRONG MEASUREMENTS BY EXTRACTING SECRET CRYPTOGRAPHIC KEYS FROM PHYSICAL CHARACTERISTIC OF INTEGRATED CIRCUIT. IN SHORT, FOR TRUST ESTABLISHMENT, INTEGRITY VERIFICATION PROTECTS AGAINST PHISING AND ROOTKITS AND INTERNET OF THINGS SENSORS EMBEDDED WITH PHYSICALLY UNCLONABLE FUNCTIONS PROVIDES UNCLONABLE IDENTITY AND ELIMINATES WRONG MEASUREMENTS. THE MOST ILLUSTRATIVE DRAWING IS