Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Privacy Risk Assessment of Smart Home Environments: Case Study of the ME3gas Middleware Platform
KTH, School of Information and Communication Technology (ICT).
2015 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

The smart home is a domestic environment enhanced with IT-based solutions for energy efficiency, pro-active health care, security and safety, entertainment, comfort and quality of life. One critical concern is nevertheless personal privacy, due to the implications of embedding computing, sensing and networking elements into everyday objects, infrastructure and furnishing. These elements disrupt the intimacy of the home by transparently collecting, recording, processing, interpreting, analyzing and searching through our data and actions.

In this thesis we investigate privacy assessment methodologies that are suitable for the goal of identifying privacy risks in smart home applications. We argue for a “privacy-by-design” approach that considers the context in which the system will be used and understands the dynamic nature of the privacy problems from the users and stakeholders’ perspective. The idea is to shape system behavior by assessing systematically the potential privacy risks in a case-by-case basis for the elicitation of privacy requirements.

A literature review yielded four different methodologies, out of which LINDDUN by Deng et al. was selected as the most adequate to fulfill our objectives. Case study research is then used to determine the feasibility of applying such methodology in a real smart home project. The ME3gas project, “Smart Gas Meters & Middleware for Energy Efficient Embedded Services”, presented a perfect opportunity for a case study. This platform enables the implementation of smart home applications on an energy-aware middleware that supports direct connection to smart grid and cloud-based third party services.

The results produced by the analysis include system diagrams modeling the ME3gas high-level architecture and the middleware application, mappings of diagram components to relevant privacy threats and several “misuse” cases that ought to be mitigated. The study concludes with a set of recommendations for application developers in the form of privacy requirements that the smart home based on the ME3gas platform could follow.

Place, publisher, year, edition, pages
2015. , 73 p.
Series
TRITA-ICT-EX, 2015:254
Keyword [en]
Privacy, privacy risk analysis, privacy assessment, smart home, ubiquitous computing, privacy requirement elicitation.
National Category
Computer and Information Science
Identifiers
URN: urn:nbn:se:kth:diva-210322OAI: oai:DiVA.org:kth-210322DiVA: diva2:1118272
Subject / course
Computer and Systems Sciences
Educational program
Master of Science - Information and Communication Systems Security
Examiners
Available from: 2017-06-30 Created: 2017-06-30 Last updated: 2017-06-30Bibliographically approved

Open Access in DiVA

No full text

By organisation
School of Information and Communication Technology (ICT)
Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar

Total: 1 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf