Internet of Things Garage

Designing Privacy by Design IoT Applications

Interactive Design Method for Augmenting Software Design Process Toward Privacy Aware Internet of Things Application Designs

Internet of Things (IoT) applications development and design process is more complicated than others, such as the one for desktop, web, or mobile. That’s because IoT applications need both software and hardware to cooperate across multiple nodes with different capabilities. Moreover, it requires different software engineers with different expertise to cooperate (e.g., frontend, backend, database). Due to the above complications, non-functional requirements, such as security and privacy, tend to be overlooked.

Yearly, a significant number of devices and applications are connecting to the internet, which raises potential privacy risks. Typically, IoT applications collect and analyse personal data that can be used to derive sensitive information about individuals. However, thus far, privacy concerns have not been explicitly considered (i.e., as united way), despite isolated solutions (i.e., specific privacy preserving technique that address specific problem), in software engineering processes when designing and developing IoT applications, partly due to a lack of Privacy-by-Design (PbD) methods for the IoT.

The primary objective of this project is to develop a interactive design method (facilitate through a tool) that incorporate privacy-preserving techniques into the early phases of the software development lifecycle efficiently, effectively and collaboratively. We envision our tool to be collaboratively used by business analysists, requirement engineers, user experience designers, and software engineers together during the process of creating privacy by design IoT application designs. Our secondary objective is to explore whether such a tool (with minor alteration) could also be used to enhance privacy education of high school and university students.




PETRAS National Centre of Excellence for IoT Systems Cybersecurity is a consortium of eleven leading UK universities which will work together over the next three years to explore critical issues in privacy, ethics, trust, reliability, acceptability, and security.


Obeo provides open modeling software solutions to create and transform complex systems. Obeo is a provider of Open Source technologies such as Sirius (graphic modeling) and Acceleo (code generation), Obeo markets Obeo Designer and Obeo SmartEA software solutions (mapping and strategic business transformation).


Nada Alhirabi, Omer Rana, Charith Perera, Security and Privacy Requirements for the Internet of Things: A Survey, ACM Transactions on Internet of Things (TIOT), Volume 2, Issue 1(6), February 2021 (37)
Charith Perera, Mahmoud Barhamgi, and Massimo Vecchio, Envisioning Tool Support for Designing Privacy-Aware Internet of Thing Applications, IEEE Internet of Things Magazine (IOTM) Volume 4, Issue 1, March 2021 (6)