An Informed Consent Model for Handling the Privacy Paradox in Smart BuildingsWorkshop
Smart Buildings are defined as the ``buildings of the future" and use the latest Internet of Things (IoT) technologies to automate building operations and services. This is to both increase operational efficiency as well as maximize occupant comfort and environmental impact. However, these ‘‘smart devices’’ – typically used with default settings – also enable the capture and sharing of a variety of sensitive and personal data about the occupants. Given the non-intrusive nature of most IoT devices, individuals have little awareness of what data is being collected about them and what happens to it downstream. Even if they are aware, convenience overrides any privacy concerns, and they do not take sufficient steps to control the data collection, thereby exacerbating the privacy paradox. At the same time, IoT-based building automation systems are revealing highly sensitive insights about the building occupants by synthesizing data from multiple sources and this can be exploited by the device vendors and unauthorised third parties. To address the tension between privacy and convenience in an increasingly connected world, we propose a user-centric informed consent model to handle the privacy paradox in Smart Buildings. The proposed model aims to (a) inform and increase user awareness about how their data is being collected and used, (b) provide fine-grained visibility into privacy compliance and infringement by IoT devices, and (c) recommend corrective actions through nudges (or soft notifications). We illustrate how our proposed consent model works through a use case scenario of a voice-activated smart office.
Mon 21 SepDisplayed time zone: (UTC) Coordinated Universal Time change
02:50 - 03:50 | |||
02:50 12mTalk | A Risk Homeostasis Perspective on Zimbabwean Protective Point-of-Sale Transaction BehavioursWorkshop [Workshop] HCSE&CS | ||
03:02 12mTalk | Designing a Serious Game: Teaching Developers to Embed Privacy into Software SystemsWorkshop [Workshop] HCSE&CS Nalin Asanka Gamagedara Arachchilage La Trobe University, Australia, Mumtaz Abdulhameed Technovation Consulting & Training PVT | ||
03:14 12mTalk | Vulnerability Discovery Strategies Used in Software ProjectsWorkshop [Workshop] HCSE&CS Farzana Ahamed Bhuiyan Tennessee Tech University, Akond Rahman Tennessee Tech University, Patrick Morrison IBM | ||
03:26 12mTalk | An Informed Consent Model for Handling the Privacy Paradox in Smart BuildingsWorkshop [Workshop] HCSE&CS Chehara Pathmabandu Monash University, Mohan Baruwal Chhetri Data61 CSIRO Australia, John Grundy Monash University, A: Zubair Baig Deakin University | ||
03:38 12mTalk | Characterizing Co-located Insecure Coding Patterns in Infrastructure as Code ScriptsWorkshop [Workshop] HCSE&CS |