I am a big fan of the Internet of Things - all the smart
devices that are changing our lives by being connected to the Internet. I
consider myself a pioneer and early adopter of these gadgets. What worries me though,
are the security and privacy issues involved with using such devices. So, what
are the concerns?
Well, I am not too worried about my IrrigationCaddy sprinkler
controller. Even if someone was to hack into it, the most damage they could do
is to make my lawn look greener. After all, we’ve been conserving water heavily
in California and the lawn looks pretty dry. Similarly, I am not too worried
about all the Belkin
WeMo switches and outlets that control the lights in my house. A possible
hacking could lead to some pranks or annoyance but it would probably not
represent a significant security concern.
But I am a bit more worried about my Nest
thermostat. The concern is not so much the temperature in my house but rather
the fact that the device knows when we are home and when we are away. After
all, we set it on “away” mode when we leave town to conserve energy. Knowing we
are away could be some very useful information for a potential perpetrator
planning a break-in.
Similarly, the wearable devices represent a privacy concern.
Jawbone recently published a fascinating blog post
about the effect of the Napa earthquake on the sleep of Bay Area residents.
While the data is fascinating, it also conveys a disturbing fact – the device
knows when you are asleep! What’s the worry with that? Well, if someone were to
break into your house, knowing that you are asleep would be pretty useful
information, wouldn’t it?
The concern with cloud-based cameras such as the Dropcam – which is now owned by Nest, a
Google company – is also pretty obvious. The camera feed is available and often
also stored in the cloud, which begs another obvious privacy concern. The fact
that Google owns both Dropcam and Nest is only adding to the concerns. After
all, Google has been pretty open about their disregard of consumer privacy.
What concerns me even more is the trend towards smart cars.
Sure, the Tesla is pretty awesome and the factory’s ability to upload
and deploy patches and updates over-the-air is amazing. But what vital systems
of the vehicle can be controlled remotely? Could a possible hacker make my car
stall while driving on the on the freeway? Could they lock or switch off my
breaks? That could become a life-and-death scenario.
I was recently at a conference where I saw a panel about the
future of smart cars. It was scary to
see how the insurance companies are chomping at the bit to get the car
manufacturers to implement smart devices that would monitor our driving
behavior. They claim it is only to our benefit – the good drivers would pay
lower premiums than the bad drivers. In fact, the Progressive Snapshot
already does that, albeit on a voluntary basis. But it is a small step from
Snapshot to the Fitbit activity tracker and
if your health insurance company starts accessing your daily activity data to
adjust your premiums, you may get worried about the Internet of Things. And
rightfully so.
The Internet of Things, the world of smart devices connected
to the Internet, will make our lives better. In fact, it will make our lives amazing. But if the data falls into the wrong
hands, which is not an unreasonable concern, the smart devices could represent
a major privacy and security concern for all of us.
No comments:
Post a Comment