| Summary: | 碩士 === 國立臺灣科技大學 === 資訊管理系 === 106 === IoT devices bring efficiency and convenience to our daily life. However, the devices may collect a myriad of data from people without their consent when they interact with devices. The individuals are unaware of what data is being collected and how it is being used by service providers, thereby hesitating whether to use IoT devices. Since personal data and privacy protection has become an important factor in the development of the IoT, the Privacy Enhancing Technologies (PETs) can effectively enhance privacy by protecting users’ Personally Identifiable Information (PII). Although many researchers have stressed the importance of PETs and proposed applications in different fields of the IoT, to the best of our knowledge, none of the research analyzes the PETs in IoT from different aspects.
As a result, this study conducted a literature review on the applications of PETs in the field of IoT, which filtered from a large number of the published academic papers to 120 primary studies published between 2014 and 2017. After collecting the papers, we categorized them based on the functions and the coverage of privacy protection, and analyzed them from different aspects, ranging from high-level principles (GDPR) and ISO/IEC 29100:2011 requirements to actual resolution of privacy threats in IoT. Thus, we aim to identify the current state of development of the PETs in various fields and examine whether the existing PETs comply with the latest legal principles and privacy standard and reduce the privacy threats.
The results of the literature review shown that current PETs in IoT were not mature enough to comply with the principles summarized from the GDPR and the ISO/IEC 29100:2011 standard. Each research paper could support an average of six privacy principles in total fifteen principles. In addition, we still need to put more efforts into research of PETs in the category of Holistic Privacy Preservation since most of the papers are still in the phase of proof of concept. With regard to the future research, the utilization of blockchain technology and the differential privacy in PETs are the promising mechanisms to reduce the privacy threats in IoT and support the privacy principles. Finally, recommendations for future research were proposed based on the results, which may help researches to discover deficiencies of current researches on PETs in IoT.
|
|---|
