As we consider the exciting prospects of Ambient IoT, we must carefully note and address the security and privacy concerns raised by the technology. More than a decade of experience has shown that consumers will not adopt IoT at scale until these concerns have been resolved. The nature of planned Ambient IoT deployment (massive scale and ubiquitous presence) actually increases the magnitude of these security and privacy concerns. Government regulations such as the European Union’s Radio Equipment Directive and Cyber Resilience Act make IoT security a requirement for IoT products to be sold in Europe.
However, the special characteristics of Ambient IoT present their own challenges that may render many traditional IoT security techniques unsuitable. For example, the limits on power storage capacity and the uncertain availability of power in Ambient IoT make it difficult to engage in conventional cryptographic exchange protocols.
This talk will lay out the primary and secondary security and privacy challenges specific to Ambient IoT along with those that pertain to IoT more broadly. Existing solutions and possible novel solution approaches will be presented, showing how these concerns can be overcome