When Identity Management and the Internet of Things Collide, New Opportunities Emerge

Successful organizations must be able to securely manage ever-evolving devices and connected things, as well as the billions of relationships between these devices, their users and digital services that come with the IoT.
By Daniel Raskin

Tech-savvy consumers expect privacy. But the Online Trust Alliance (OTA) Online Trust Audit found that 14 percent of leading IoT products do not have a discoverable privacy policy for consumers to review prior to purchase. That lack of attention to privacy will alienate many customers as their data is shared or compromised in ways they didn't foresee, and these businesses will suffer the consequences with customers and profits lost.

One way to fold privacy and security into IoT devices and still enable incredible new business opportunities is to implement identity-management (IM) technologies. Nearly all businesses have a way to catalog, organize and authorize access to things like email, applications and business systems. By applying these kinds of IM principles across billions of connected devices, organizations will be able to leverage similar security and privacy access and authorization frameworks to give users and customers the comfort and assurances that will ultimately enable greater IoT adoption and innovation. It's the Wild West out there, and applying IM to devices gives users the peace of mind that, for example, the health information from their Apple Watch isn't going to the wrong place or being used for fraudulent activities.

In addition to mobile and wearable devices, IM can be layered onto connected home appliances and automobiles. Inserting identity technology into connected "things" is like dipping chocolate into peanut butter. It's a natural match. Independently, they're both great, but combining the two opens up a world of new practical applications.

Imagine that an identity-enabled car could recognize the driver's phone as he or she approaches, triggering the vehicle to unlock the doors, automatically adjust the seats and mirrors, tune the radio to a favorite station, set the car's temperature, upload the phone's Google Maps directions and more. An identity-enabled TV set-top box could automatically react to the programming preferences of a specific TV viewer. When a user wearing a connected watch approaches the box, it could pull up that person's show, genre and rating history, and make credible suggestions based on those expressed preferences. These are just two examples of what can be done by tying identity to a "thing."

IM-enabled IoT devices understand who they belong to, and use real-time data and situational context to personalize and protect the customer experience. The technology is already delivering services to millions of connected devices and "things" in a secure, scalable and repeatable way. Device-makers that implement IM can quickly respond to business needs and reinvent themselves, rolling out new services to any device or thing more quickly than their competitors and delivering a significant market advantage.

Consumers who have complete control over the information collected and shared by the devices at their homes, in their cars and on their bodies are increasingly motivated to incorporate the IoT into their daily lives. When consumer privacy is respected and protected by identity technology, the opportunities for businesses of any size in the IoT space are infinite.

Daniel Raskin is the VP of strategy at ForgeRock, an open platform provider of identity-management solutions. Raskin has more than 15 years of experience building brands and driving product leadership.

Simply enter a question for our experts.
Sign up for the RFID Journal Newsletter
We will never sell or share your information
RFID Journal LIVE! RFID in Health Care LIVE! LatAm LIVE! Brasil LIVE! Europe RFID Connect Virtual Events RFID Journal Awards Webinars Presentations