Abstract
We present an overview of the Databox application development environment or SDK as a means of enabling trusted IoT app development at the network edge. The Databox platform is a dedicated domestic platform that stores IoT, mobile and cloud data and executes local data processing by third party apps to provide end-user control over data flow. Key challenges for building apps in edge environments concern (i) the complexity of IoT devices and user requirements, and (ii) supporting privacy preserving features that meet new data protection regulations. We examine how the Databox SDK can ease the burden of regulatory compliance and be used to sensitize developers to privacy related issues in the very course of building apps.
Highlights
Nodes at the edge perform the bulk of storage and processing, keeping data off the core network, reducing latency and improving the potential for data privacy
Though our SDK addresses all of these challenges, this paper focuses exclusively upon (iii), i.e. how developers can be supported when creating domestic Internet of Things (IoT) privacy preserving apps that are compliant with the letter and spirit of GDPR
This paper has two main contributions: (i) an assessment of the implications of GDPR upon the creation of edge-based personal data processing systems (ii) design and implementation of a development environment for building GDPR compliant domestic apps. This latter contribution has relevance beyond a description of design and implementation choices; it points to a new set of general features we expect will be of value to any development environment geared towards writing code that operates upon personal data
Summary
The predominant paradigm for computing is centred in the cloud. as the Internet of Things (IoT) emerges, the requirement to push increasing volumes of data to the network for centralized storage and processing will impact system resilience, network traffic, latency and privacy. Our end-user development environment (SDK) has been designed to build apps for the Databox platform and to: (i) simplify IoT app development for domestic environments, in particular data processing across multiple devices and sensors; (ii) open up development to a broad cohort of developers and (iii) enable compliance with key features of GDPR. This paper has two main contributions: (i) an assessment of the implications of GDPR upon the creation of edge-based personal data processing systems (ii) design and implementation of a development environment for building GDPR compliant domestic apps. This latter contribution has relevance beyond a description of design and implementation choices; it points to a new set of general features we expect will be of value to any development environment geared towards writing code that operates upon personal data
Sign-in/Register to view highlights & summary 
Submitted Version (
Free)
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call