External Services – Physical World Data

Back to Infographic

Data Protection

Gathering information about the user’s context and presenting data within in the user’s real world context are the primary functionalities of AR devices. Some of the many types of data and mechanisms include:

• Camera-based detection of gestures
• Camera-based eye tracking
• Ultrasound or radar-based gestures detection
• Voice recognition
• Audio sensing & transmission
• Video recording & transmission
• Photodiode sensor
• Proximity touch screen
• Motion sensor
• Wireless sensor
• Touch sensors
• Thermal sensors
• Accelerometer
• GPS
• Solid state compass

Data collection on AR devices is pervasive. At a minimum, the enterprise needs to understand what data is collected by the device, the possible threats from data being captured or modified, and how data is stored. The device should allow local, automated, and remote wipe for lost and stolen devices. Data should be encrypted for confidentiality and integrity, and capabilities provided for SL3 and SL4 hardware based encryption with root keys stored in a hardware root-of-trust.

Security Protection Levels

The International Electrotechnical Commission (IEC) is an internationally-recognized non-profit organization that publishes standards for electrical, electronic and related technologies. IEC 62443-3-3, Security for industrial automation and control systems – System security requirements and security levels, defines four security levels for rating cyber threat protection elements, providing guidance on how to evaluate the protection levels for different security functions.

IEC security protection levels.

The following items are required for SL >0

• Document system data collected
• Local/Auto wipe
• Remote wipe

The following items are required for SL >1

• Segregation of system data and user data
• Encryption of sensitive data collected
• Purging sensor data

The following items are required for SL >2

• Support hardware encryption
• Fine grained access control of sensor data