Skip to main content

On the Road to Secure and Privacy-Preserving IoT Ecosystems

Part of the Lecture Notes in Computer Science book series (LNISA,volume 10218)


The Internet of Things (IoT) is on the rise. Today, various IoT platforms are already available, giving access to myriads of things. Initiatives such as BIG IoT are bringing those IoT platforms together in order to form ecosystems. BIG IoT aims to facilitate cross-platform and cross-domain application developments and establish centralized marketplaces to allow resource monetization. This combination of multi-platform applications, heterogeneity of the IoT, as well as enabling marketing and accounting of resources results in crucial challenges for security and privacy. Hence, this article analyses the requirements for security in IoT ecosystems and outlines solutions followed in the BIG IoT project to tackle those challenges. Concrete analysis of an IoT use case covering aspects such as public, private transportation, and smart parking is also presented.


  • Internet of Things
  • IoT
  • Security
  • Privacy

This is a preview of subscription content, access via your institution.

Buying options

USD   29.95
Price excludes VAT (USA)
  • DOI: 10.1007/978-3-319-56877-5_7
  • Chapter length: 16 pages
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
USD   44.99
Price excludes VAT (USA)
  • ISBN: 978-3-319-56877-5
  • Instant PDF download
  • Readable on all devices
  • Own it forever
  • Exclusive offer for individuals only
  • Tax calculation will be finalised during checkout
Softcover Book
USD   59.99
Price excludes VAT (USA)
Fig. 1.
Fig. 2.
Fig. 3.


  1. 1.

  2. 2.

  3. 3.

    An entity processing and/or storing personal information.

  4. 4.


  1. Open Web Applications Security Project (OWASP).

  2. OWASP Code Review Project second edition guideline.

  3. The OWASP Software Assurance Maturity Model (SAMM).

  4. Worldsensing’s Bitcarrier.

  5. Worldsensing’s Fastprk.

  6. Allseen Alliance: Alljoyn framework.

  7. Bartel, M., Boyer, J., Fox, B., LaMacchia, B., Simon, E.: XML Signature syntax and processing, 2nd edn.

  8. Berners-Lee, T., Hendler, J., Lassila, O., et al.: The semantic web. Sci. Am. 284(5), 28–37 (2001)

    CrossRef  Google Scholar 

  9. Bröring, A., Schmid, S., Schindhelm, C.K., Khelil, A., Kaebisch, S., Kramer, D., Le Phuoc, D., Mitic, J., Anicic, D., Teniente, E.: Enabling IoT ecosystems through platform interoperability. IEEE Software (Software Engineering for the Internet of Things) (2017, forthcoming)

    Google Scholar 

  10. EU Legislation: Directive 95/46/ec (1995).

  11. EU Legislation: Directive 45/2001/ec (2001).

  12. FTC Staff: Internet of Things: privacy and security in a connected world, January 2015.

  13. IETF OAuth WG: OAuth 1.

  14. IETF OAuth WG: OAuth 2.0.

  15. Imamura, T., Dillaway, B., Simon, E.: XML encryption syntax and processing.

  16. Jones, M., Bradley, J., Sakimura, N.: JSON Web Signature (JWS).

  17. Jones, M., Hildebrand, J.: JSON Web Encryption (JWE),

  18. Meucci, M., Muller, A.: OWASP testing guideline version 4.

  19. OpenID Foundation: OpenID connect.

  20. Organization for the Advancement of Structured Information Standards (OASIS): Official Wiki of the OASIS security services (SAML) technical committee.

  21. OWASP: Application security verification standard 3.0.1.

  22. OWASP Internet of Things Project: Principles of IoT security.

  23. Raskin, A.: Privacy icons.

  24. Transport Metropolitans de Barcelona: TMB open data.

Download references


This work is mainly financially supported by the project Bridging the Interoperability Gap (BIG IoT) funded by the European Commission’s Horizon 2020 research and innovation program under grant agreement No. 688038. In addition, this work has been partially supported by the MINECO/FEDER funded projects ANFORA TEC2015-68734-R and ARPASAT TEC2015-70197-R and by the Generalitat de Catalunya grant 2014-SGR-1504.

Author information

Authors and Affiliations


Corresponding author

Correspondence to Juan Hernández-Serrano .

Editor information

Editors and Affiliations

Rights and permissions

Reprints and Permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Hernández-Serrano, J. et al. (2017). On the Road to Secure and Privacy-Preserving IoT Ecosystems. In: Podnar Žarko, I., Broering, A., Soursos, S., Serrano, M. (eds) Interoperability and Open-Source Solutions for the Internet of Things. InterOSS-IoT 2016. Lecture Notes in Computer Science(), vol 10218. Springer, Cham.

Download citation

  • DOI:

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-56876-8

  • Online ISBN: 978-3-319-56877-5

  • eBook Packages: Computer ScienceComputer Science (R0)