The balance between protecting users' privacy while providing cost-effective devices that are functional and usable is a key challenge in the burgeoning Internet of Things (IoT) industry. While in traditional desktop and mobile contexts the primary user interface is a screen, in IoT screens are rare or very small, which invalidate most of the traditional approaches. We examine how end-users interact with IoT products and how those products convey information back to the users, particularly `what is going on' with regards to their data. We focus on understanding what the breadth of IoT, privacy, and ubiquitous computing literature tells us about how individuals with average technical expertise can be notified about the privacy-related information of the spaces they inhabit in an easily understandable way. In this survey, we present a review of the various methods available to notify the end-users while taking into consideration the factors that should be involved in the notification alerts within the physical domain. We identify five main factors: (1) data type, (2) data usage, (3) data storage, (4) data retention period, and (5) notification method. The survey also includes literature discussing individuals' reactions and their potentials to provide feedback about their privacy choices as a response to the received notification. The results of this survey highlight the most effective mechanisms for providing awareness of privacy and data-use-practices in the context of IoT in shared spaces.
翻译:在传统桌面和移动背景下,主要用户界面是一个屏幕,但在IoT屏幕上很少或很小,使大多数传统方法失效。我们研究了最终用户如何与IoT产品互动,以及这些产品如何将信息反馈给用户,特别是在数据方面“正在发生什么情况”。我们侧重于了解IoT、隐私和无处不在的计算文献的广度,告诉我们如何以易于理解的方式向具有平均技术专长的个人通报其所居住空间的与隐私有关的信息。在本次调查中,我们审查了可用于通知最终用户的各种方法,同时考虑到在物理领域通知警报中应当涉及的各种因素。我们确定了五个主要因素:(1)数据类型,(2)数据使用,(3)数据存储,(4)数据保留期,(5)通知方法。调查还包括讨论个人反应的文献,以及他们最有可能以易于理解的方式告知他们所居住的空间的隐私信息。我们审查了可用于通知最终用户的各种方法,同时考虑到在物理领域通知警示中应当涉及的各种因素。我们确定了五个主要因素:(1)数据类型,(2)数据使用,(3)数据空间,(4)数据保留期,(5)通知方法。调查还包括了个人对自身反应的文献,并介绍了他们在隐私调查中所作的最可能作出的反馈,以保密性机制,以提供对所收到的数据评估。