Abstract
Ambient Assisted Living (AAL) tries to keep up user’s independence by means of applying technology, i.e., it collects, aggregates, and analyzes data recorded by a plethora of different sensors and controls actuators of a comparable variety. Setup and functionalities are various and can involve third parties as well as communication with service providers. Thereby, the category of data within the AAL system might require compliance to legislative regulations, e.g., if personal (identifiable) information is handled. Within this paper we provide an overview of the potential legal basis and requirements which are often applicable within the context of AAL systems, a.o., the Data Protection Directive 95/46/EC and its transformations into national legislations, respectively, and describe the conditions for a legitimate data processing in terms of informed user consent. Furthermore we describe a structured approach for AAL system analysis, which is based on BSI standards which supports in identifying the necessary information security measures in accordance to data protection requirements.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Bundesamt für Sicherheit in der Informationstechnik, BSI-Standard 100–2 - IT-Grundschutz Methodology, Version 2.0 (2008)
Bundesamt für Sicherheit in der Informationstechnik, BSI-Standard 100–3 -Risk analysis based on IT-Grundschutz, Version 2.5 (2008)
ISO/IEC, ISO 27005: Information technology - Security techniques - Information security risk management (2008)
Bundesamt für Sicherheit in der Informationstechnik, IT-Grundschutz Catalogues, Version 13 (2013)
Open Web Application Security Project, Internet of Things Top 10 Project. https://www.owasp.org/index.php/OWASP_Internet_of_Things_Top_Ten_Project#OWASP_Internet_of_Things_Top_10_for_2014, 16 Oct 2014
ARTICLE 29 Data Protection Working Party, Opinion 13/2011 on Geolocation services on smart mobile devices, 881/11/EN WP 185 (2011)
Acknowledgments
This work has been conducted within the BMBF funded project CONTACT
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this chapter
Cite this chapter
Stutz, O., Todt, S., Venzke-Caprarese, S., Boll, S., Heuten, W., Wallbaum, T. (2016). Implementing Data Protection and Information Security in AAL. In: Wichert, R., Klausing, H. (eds) Ambient Assisted Living. Advanced Technologies and Societal Change. Springer, Cham. https://doi.org/10.1007/978-3-319-26345-8_6
Download citation
DOI: https://doi.org/10.1007/978-3-319-26345-8_6
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-26343-4
Online ISBN: 978-3-319-26345-8
eBook Packages: EngineeringEngineering (R0)