Re: [DG-IDoT] IdoT Security & Privacy Paper

National Highway Safety report on Vehicle to Vehicle comms for safety information. Very long, but well done. http://www.nhtsa.gov/staticfiles/rulemaking/pdf/V2V/Readiness-of-V2V-Technol... The purpose of this research report is to assess the readiness for application of vehicle-to-vehicle (V2V) communications, a system designed to transmit basic safety information between vehicles to facilitate warnings to drivers concerning impending crashes. Includes strong authentication to ensure that all the communications are accurate and can't be spoofed, and privacy to ensure that the communications can't be used to track cars. It is proactive in that attacking this as the system is first being designed, and not tacked on at the end. Ross On Mon, Sep 8, 2014 at 5:50 PM, Joni Brennan wrote:

I was in the moderator queue today and saw some that needed pushing... I sent a note to explain. Sorry for the confusion! But there is actually a reason ;-)

Best Regards,

Joni Brennan Kantara Initiative | Executive Director voice:+1 732-266-8994 email: joni @ kantarainitiative.org

Connecting Identity for a more trustworthy Internet - Overview http://www.slideshare.net/kantarainitiative/kantara-overview2014-37969351

On Mon, Sep 8, 2014 at 2:41 PM, Colin Wallis wrote:

...

Ha! yes! I see now. No idea why it has re-surfaced now..

------------------------------ Date: Mon, 8 Sep 2014 22:29:41 +0100 From: simon.moffatt@forgerock.com To: colin_wallis@hotmail.com; dg-idot@kantarainitiative.org Subject: Re: [DG-IDoT] IdoT Security & Privacy Paper

Hi Colin

Thanks for the reply. This mailing list still active, as this was posted over 3 months ago?

Thanks, Simon.

Thanks for this Simon

It does a fine job of rolling up what is already known, so it depends on what the target audience is... :-)

I think some more thought needs to go into the discussion on encryption and authn/authz because I don't think the current standards will scale down enough for small low power devices.

The rapidly developing maturity of sensor networks might give a better insight into what can be transferred from the web world into the IdoT world.

Thanks for sharing.

Cheers Colin

------------------------------ Date: Mon, 2 Jun 2014 09:08:00 +0100 From: simon.moffatt@forgerock.com To: dg-idot@kantarainitiative.org Subject: [DG-IDoT] IdoT Security & Privacy Paper

Dear All

Here is a paper I put online yesterday focusing on IdoT and the Privacy & Security concerns the identity management component looks to resolve.

The paper is quite descriptive, but does outline some key concerns.

It's released on Slideshare here - http://www.slideshare.net/simonmoffatt/s-moffatt-identityofthingsjune2014

Regards -- [image: ForgeRock] http://www.forgerock.com *Simon Moffatt* CISSP Principal Sales Engineer | EMEA Technical Enablement Tel: +44 7903 347 240 Skype: simon.moffatt

_______________________________________________ DG-IDoT mailing list DG-IDoT@kantarainitiative.org http://kantarainitiative.org/mailman/listinfo/dg-idot

-- [image: ForgeRock] http://www.forgerock.com *Simon Moffatt* CISSP Principal Engineer | EMEA Sales Engineering Tel: +44 7903 347 240 Skype: simon.moffatt

[image: IRM Summit] http://irmsummit.com/

_______________________________________________ DG-IDoT mailing list DG-IDoT@kantarainitiative.org http://kantarainitiative.org/mailman/listinfo/dg-idot

_______________________________________________ DG-IDoT mailing list DG-IDoT@kantarainitiative.org http://kantarainitiative.org/mailman/listinfo/dg-idot

-- Ross Foard (703) 728-1543 (cell) rfoard@gmail.com