ACM Public Policy Groups Release Guiding Principles for Internet of Things Privacy and Security
New York, NY, May 31, 2017—The ACM US Public Policy Council (USACM) and the ACM Europe Council Policy Committee (EUACM) today released a Statement on IoT Privacy and Security addressing existing and expected privacy and security concerns in the Internet of Things (IoT) ecosystem.
IoT is catalyzing new applications and opportunities for society. The benefits to productivity and efficiency are unprecedented. The growing dependence on IoT components makes the reach and impact of the technology unparalleled.
At the same time, the IoT ecosystem, characterized by the pervasiveness and the diversity of its components, raises unique privacy and security concerns. The implications for physical safety and the threat of unexpected risks enhance the need for appropriate privacy and security protections of IoT components. Advancements in predictive analytics and algorithms that facilitate large-scale collection, use, analysis, and sharing of user data amplify these concerns.
The principles embodied in the USACM/EUACM Statement on IoT Privacy and Security propose policy and technical approaches to tackle emerging privacy and security challenges while ensuring that the technology continues to move forward. The Statement on IoT Privacy and Security highlights the complementary nature of privacy and security and the importance of addressing IoT privacy and security throughout the entire lifecycle of a product.
The Statement on IoT Privacy and Security is guided by the belief that a variety of stakeholders—including government officials, academia, industry, nonprofits, technical experts, and consumer advocates—need to jointly address the challenges brought on by the large-scale nature and reach of IoT. The statement calls for coordinated efforts among stakeholders, including internationally, as many of these issues will cross borders. The statement raises the importance of educating consumers. Transparency and consumer empowerment are integral to promoting consumer trust and safety.
“These principles seek to address and avoid problems at their source,” said Stuart Shapiro, USACM Chair. “With the ubiquity of IoT, retrofitting is not always a possibility, and, when it is, it can be difficult and costly.”
Fabrizio Gagliardi, EUACM Chair, added that the global nature of IoT calls for an international strategy. “IoT issues cross borders and international coordination is necessary,” said Gagliardi. “The privacy and security of the IoT ecosystem is an important topic for computing experts globally. The Statement on IoT Privacy and Security provides solid guidance for policymakers in the United States and in Europe.”
The Statement on IoT Privacy and Security will serve as a foundation for a forthcoming Policy White Paper on IoT.
About the ACM US Public Policy Council
The ACM US Public Policy Council (USACM) serves as the focal point for ACM's interactions with the US government in matters of US public policy related to information technology. ACM US Public Policy Council statements represent the views of the Council and do not necessarily represent the views of the Association.
The ACM Europe Policy Committee (EUACM) is a standing committee of ACM Europe. It serves as the focal point for ACM’s interactions with governmental bodies in Europe, the computing community, and the public in matters of European public policy related to computing and technology. ACM Europe Policy Committee statements represent the views of the Committee and do not necessarily represent the views of the Association.
ACM, the Association for Computing Machinery, is the world's largest educational and scientific computing society, uniting educators, researchers and professionals to inspire dialogue, share resources and address the field's challenges. ACM strengthens the computing profession's collective voice through strong leadership, promotion of the highest standards, and recognition of technical excellence. ACM supports the professional growth of its members by providing opportunities for life-long learning, career development, and professional networking.