Ame Elliott, profile picture
Uploaded byAme Elliott
664 views

Experience Design for IoT Security

This document summarizes a presentation on lessons from architecture school that can inform experience design for IoT security. Some key lessons discussed include starting design with an understanding of people in their context, considering unspoken needs, and recognizing that homes are more than just houses but reflect cultural contexts. The presentation argues that security for IoT needs a user experience focus and discusses challenges like managing profiles for ambient data capture and reimagining software updates. It concludes that the user experience problems posed by IoT security are important opportunities for design.

Embed presentation

Downloaded 13 times
Experience Design for IoT Security: Lessons from Architecture School Ame Elliott
 @ameellio ame@simplysecure.org
 Solid Conference
 June 25, 2015
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 2
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 3
4 CONNECTING CO ECTINGL L Buildings Are Becoming Sites of Surveillance
5 Buildings Are Becoming Sites of Surveillance Samsung’s Smart TVs recording and transcribing conversations and Mattel selling children’s questions to Hello Barbie are recent examples. "How we sold our souls – and more – to the internet giants," Bruce Schneier in The Guardian "Beware the Listening Machines," Ethan Zuckerman in The Atlantic
6 Buildings Are Becoming Sites of Surveillance There needs to be richer discussion than the tension between what’s technically possible and what’s legal. Security for IoT needs design.
7 Buildings Are Becoming Sites of Surveillance Feasibility Viability Desirability
The Attic. Photo by Jamie Beverly Privacy and security are exciting opportunities for UX design 8
Parthenon, 447 BCE Athens, Greece. Photo by Jonathan Cohen 9 IoT may be new, but buildings have been around a long time
Power Plant Control Panel. Photo by Marcel Wichary 10 Appropriate complexity is the key UX challenge for IoT
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 11
1905 Post Card from Dana Cuff’s Architecture: The Story of Practice. Architecture school teaches problem finding 12
Architecture School Teaches the Design Process Feedback via critique 13 Presenting work in charettes (pitch) Learning by doing Master
 and
 apprentice 
 model Building to think/ making it visual Learning to see
Architecture School Teaches the Design Process Feedback via critique 14 Presenting work in charettes (pitch) Learning by doing Master
 and
 apprentice 
 model Building to think/ making it visual Learning to see
15 Understand unspoken needs Start with people, in context Homes are more than houses Lessons from Architecture School: Learning to See Understand unspoken needsStart with people
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 16
Man Handing a Letter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 17From the Rijksmuseum
Man Handing a Letter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 18From the Rijksmuseum Windows, morality, and privacy as a dirty word
Man Handing a Letter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 19From the Rijksmuseum Internet of 1670
Man Handing a Letter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 20From the Rijksmuseum Multiple people with different privileges inhabit the home
Start With People, In Context Homes have multiple people with varied permissions. Children, and others who can’t or won’t consent, generate data. More aggressive rules govern collection of their data, and regulatory changes are likely. 21
Security Thought-Starters Plan for change and don’t take on privacy debt in a quickly-changing landscape 22 European Article 29 Working Party Sandy Clark et al’s “Honeymoon Effect” paper 22
Appropriate Complexity Managing profiles for ambient capture: right mode + right feedback 23 Netflix manages multiple profiles with explicit login, but many media services are struggling to identify group members present when video is played. 23
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 24
25Hvitträsk, Finland 1903. Photo by Markku Haverinen Design rooted in Finnish Nationalism + Romanticism
26Hvitträsk, Finland 1903. Photo by Markku Haverinen Environment inside reflects culture outside
27Hvitträsk, Finland 1903. Photo by Markku Haverinen This is the childhood home of Eero Saarinen
28TWA Terminal at the former Idlewild Airport, 1962. Photo by Sean Masrhall Eero Saarinen was the architect of New York’s JFK Airport T5
Understand Unspoken Needs 29 One generation of buildings is much longer than the 18-month hardware churn. Buildings last and are upgradable.
Security Thought-Starters Think firmware and plan an upgrade path 30 Internet Engineering Task Force (IETF) working on firmware standards, e.g. Carsten Bormann Supervisory Control and Data Aquistion (SCADA) 30
Appropriate Complexity Reimagining updates as a form of engagement: design for behavior change 31 Cautionary tale of routers, keeping the internet of 10 years ago alive 31
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 32
33Shop Houses, Singapore 2013. Photo by Peter Morgan. Nationalism Shophouses are Southeast 
 Asian vernacular architecture
34Shop Houses, Singapore 2013. Photo by Peter Morgan. Nationalism Covered awnings protect the public from sun + rain
35Shop Houses, Singapore 2013. Photo by Peter Morgan. Nationalism Designed by social custom, then Singaporean law in 1822
36Vietnam 2008.. Photo by Ame Elliott Nationalism Designed by social custom, then Singaporean law in 1822 Vernacular is not the same as amateur
Homes Are More Than Houses You can have cultural knowledge and still do a bad implementation. There are roles for standards and for professional knowledge. 37
Security Thought-Starters Don’t invent your own crypto - use professional standards 38 Open Smart Grid insecurity Real World Crypto Conference: Stanford, CA in Jan 2016 38
Appropriate Complexity Exposing the underlying systems to build knowledge 39 Interfaces on electric cars like the Toyota Prius teach engine function and driver behavior 39
Agenda Introduction Lessons from Architecture School Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 40
1905 Post Card. Architecture school teaches lessons for UX for IoT security 41
42 Start with people, in context Lessons from Architecture School Start with people, in context Homes are more than housesUnderstand unspoken needs Homes have multiple people with varied permissions Implementation matters in vernacular architecture Buildings last 
 and are upgradable
Security Thought-Starters 43 Don’t invent your own crypto– use professional standards Plan for change and don’t take on privacy debt Think firmware and plan an upgrade path
Managing profiles for ambient capture Reimagining updates as a form of engagement Exposing underlying systems to build knowledge 44 Appropriate Complexity: UX Challenge for IoT
45 IoT Security UX Problems Are Exciting There’s a need for design to shape the conversation between possible and legal. The UX problems for IoT are inspiring and important.
Thank You Ame Elliott
 @ameellio ame@simplysecure.org
Creative Commons 2.0 Photo Credits p. 7 https://www.flickr.com/photos/thesoupboy/400278091/ p. 8 https://www.flickr.com/photos/jonathancohen/6253733297/ p. 9 https://www.flickr.com/photos/mwichary/2251347415/ p. 11 http://www.cparama.com/forum/cartes2013b/1372353539-Beaux-Arts- Atelier-pascal.jpg p. 16 https://www.rijksmuseum.nl/en/collection/SK-C-147 p. 27 https://www.flickr.com/photos/7119320@N05/7452651372/ p. 31 https://www.flickr.com/photos/magicfab/3893245793/ 47

More Related Content

PPTX
The future of technology final project
bygmsalv02
 
PDF
L05 How Innovation Happens
byÓlafur Andri Ragnarsson
 
PPT
U9L1: The computer and technology revolutions
byJesSmith817
 
PPT
Unit 9 lesson 1 the computer and technology revolutions
byMrsSmithGHS
 
PDF
The ethics of cloud and mobile computing for lawyers
byNicole Black
 
PDF
Dictadura de-primo-de-rivera
byanga
 
PDF
UX for Security: Power of Design
byAme Elliott
 
PPTX
Wakaf
bymuhammad riezky
 
The future of technology final project
bygmsalv02
 
L05 How Innovation Happens
byÓlafur Andri Ragnarsson
 
U9L1: The computer and technology revolutions
byJesSmith817
 
Unit 9 lesson 1 the computer and technology revolutions
byMrsSmithGHS
 
The ethics of cloud and mobile computing for lawyers
byNicole Black
 
Dictadura de-primo-de-rivera
byanga
 
UX for Security: Power of Design
byAme Elliott
 
Wakaf
bymuhammad riezky
 

Similar to Experience Design for IoT Security

PDF
DRIVE 2016 | 26 October: Smart Industry T2T
byCLICKNL
 
PDF
ThingsConAMS - Stakeholders in a new world - Rob van Kranenburg
byThingsConAMS
 
PDF
Rob van Kranenburg @ Thingscon Amsterdam
byCLICKNL
 
PPT
Involution internet ofthings-v5
byErin Rae Hoffer
 
PDF
The unfulfilled IoT promise
byLola Oyelayo
 
PDF
Designing IoT
byStephen Bolen
 
KEY
I would DiYSE for it! A manifesto for do-it-yourself internet-of-things creation
byDries De Roeck
 
PDF
Some Lessons for Startups (pdf with notes)
byTim O'Reilly
 
PDF
The internet of things..perspectives for the Nigerian legal system
bySimon Aderinlola
 
PPT
Introduction to User Experience
byChristina Wodtke
 
PDF
Architects: the original Experience Designers
byUXDXConf
 
PPTX
The Internet of Things: Designing for a new dimension in user experience
byMegan Ellis
 
PPTX
Kits to Find the Bits that Fits
byCS, NcState
 
PDF
Software Architecture Document Final
byAli Ahmed
 
PDF
Anne Thomas Manes Using User Experience
bySOA Symposium
 
PDF
Getting the IoT into Tesco: Internet of things UX for the mass market - IoT 14
byClaire Rowland
 
PPT
Social Spaces: Lessons from Radical Architects
byChristina Wodtke
 
PDF
Evenings at the Loft Christmas Talk - Reviewing 2017 and Designing for 2018
byheykluge
 
PPTX
NISI Agile Software Architecture Slide Deck
byUtrecht University
 
PDF
SAF - architecture framework
byArnon Rotem-Gal-Oz
 
DRIVE 2016 | 26 October: Smart Industry T2T
byCLICKNL
 
ThingsConAMS - Stakeholders in a new world - Rob van Kranenburg
byThingsConAMS
 
Rob van Kranenburg @ Thingscon Amsterdam
byCLICKNL
 
Involution internet ofthings-v5
byErin Rae Hoffer
 
The unfulfilled IoT promise
byLola Oyelayo
 
Designing IoT
byStephen Bolen
 
I would DiYSE for it! A manifesto for do-it-yourself internet-of-things creation
byDries De Roeck
 
Some Lessons for Startups (pdf with notes)
byTim O'Reilly
 
The internet of things..perspectives for the Nigerian legal system
bySimon Aderinlola
 
Introduction to User Experience
byChristina Wodtke
 
Architects: the original Experience Designers
byUXDXConf
 
The Internet of Things: Designing for a new dimension in user experience
byMegan Ellis
 
Kits to Find the Bits that Fits
byCS, NcState
 
Software Architecture Document Final
byAli Ahmed
 
Anne Thomas Manes Using User Experience
bySOA Symposium
 
Getting the IoT into Tesco: Internet of things UX for the mass market - IoT 14
byClaire Rowland
 
Social Spaces: Lessons from Radical Architects
byChristina Wodtke
 
Evenings at the Loft Christmas Talk - Reviewing 2017 and Designing for 2018
byheykluge
 
NISI Agile Software Architecture Slide Deck
byUtrecht University
 
SAF - architecture framework
byArnon Rotem-Gal-Oz
 

Recently uploaded

PDF
Mercury Computer Systems & The Cell Broadband Engine
bySlide_N
 
PDF
2006 IEEE International Solid-State Circuits Conference
bySlide_N
 
PPTX
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
PDF
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
PDF
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
PPTX
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
PDF
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
PDF
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
PPTX
A CIO’s Guide to Salesforce AI Architecture, Governance, and Implementation R...
byKerry Millar
 
PDF
Profiting from Technological Innovation: Managing Intellectual Property to Bu...
byDavid Teece
 
PDF
Implementing A Data Lakehouse Using Iceberg & Spark
byAnass Nabil
 
PPTX
Spacewalk 2026 - Presented at the IMAX in Raleigh, NC
byAll Things Open
 
PDF
How Automation Powers Data Quality and Governance at Scale
bySafe Software
 
PDF
Special Reeling Cable Specification _ Anhui Feichun Special Cable Co., Ltd_.pdf
byAnhui Feichun Special Cable Co., Ltd.
 
PDF
Why Enterprises Are Moving to Dedicated Servers in the Netherlands
byAtal Networks
 
PDF
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
PDF
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
PDF
Philippine Agricultural Engineering Standard_Hand Tractor .pdf
by6xfrnmdp4b
 
PDF
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
PDF
TrustArc Webinar - Unpacking India’s DPDP Act: What You Should Know
byTrustArc
 
Mercury Computer Systems & The Cell Broadband Engine
bySlide_N
 
2006 IEEE International Solid-State Circuits Conference
bySlide_N
 
The Abomination of AI – keynote at ICoSCI 2026
byAlan Dix
 
Top 5 Best Dedicated Server Providers in Los Angeles (Updated Edition)
byAtal Networks
 
Hart, Inc. M&A Data Transition Checklist
byHart, Inc.
 
Robot Vacuums are Cleaning Up. The global robot vacuum segment has high marke...
byRobert March
 
2025-CB-NCAE-slide-deck.pptx-1-83.pdf Virtual Orientation on the Administrati...
byNelizabethEsplaguera1
 
Zniber Partners. Audience Foresight for Confident Decisions
bySamuel Zniber
 
A CIO’s Guide to Salesforce AI Architecture, Governance, and Implementation R...
byKerry Millar
 
Profiting from Technological Innovation: Managing Intellectual Property to Bu...
byDavid Teece
 
Implementing A Data Lakehouse Using Iceberg & Spark
byAnass Nabil
 
Spacewalk 2026 - Presented at the IMAX in Raleigh, NC
byAll Things Open
 
How Automation Powers Data Quality and Governance at Scale
bySafe Software
 
Special Reeling Cable Specification _ Anhui Feichun Special Cable Co., Ltd_.pdf
byAnhui Feichun Special Cable Co., Ltd.
 
Why Enterprises Are Moving to Dedicated Servers in the Netherlands
byAtal Networks
 
Intro to CrafterQ - AI Agent Platform for the Enterprise.pdf
byCrafterQ
 
Just Eat Data Scraping For Restaurant Reviews And Pricing.pdf
byfusiondata2026
 
Philippine Agricultural Engineering Standard_Hand Tractor .pdf
by6xfrnmdp4b
 
6 Insights from the Patron Saint of AI Failure
byScott M. Graffius
 
TrustArc Webinar - Unpacking India’s DPDP Act: What You Should Know
byTrustArc
 

Experience Design for IoT Security

  • 1.
    Experience Design forIoT Security: Lessons from Architecture School Ame Elliott
 @ameellio ame@simplysecure.org
 Solid Conference
 June 25, 2015
  • 2.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 2
  • 3.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 3
  • 4.
    4 CONNECTING CO ECTINGL L BuildingsAre Becoming Sites of Surveillance
  • 5.
    5 Buildings Are BecomingSites of Surveillance Samsung’s Smart TVs recording and transcribing conversations and Mattel selling children’s questions to Hello Barbie are recent examples. "How we sold our souls – and more – to the internet giants," Bruce Schneier in The Guardian "Beware the Listening Machines," Ethan Zuckerman in The Atlantic
  • 6.
    6 Buildings Are BecomingSites of Surveillance There needs to be richer discussion than the tension between what’s technically possible and what’s legal. Security for IoT needs design.
  • 7.
    7 Buildings Are BecomingSites of Surveillance Feasibility Viability Desirability
  • 8.
    The Attic. Photoby Jamie Beverly Privacy and security are exciting opportunities for UX design 8
  • 9.
    Parthenon, 447 BCEAthens, Greece. Photo by Jonathan Cohen 9 IoT may be new, but buildings have been around a long time
  • 10.
    Power Plant ControlPanel. Photo by Marcel Wichary 10 Appropriate complexity is the key UX challenge for IoT
  • 11.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 11
  • 12.
    1905 Post Cardfrom Dana Cuff’s Architecture: The Story of Practice. Architecture school teaches problem finding 12
  • 13.
    Architecture School Teachesthe Design Process Feedback via critique 13 Presenting work in charettes (pitch) Learning by doing Master
 and
 apprentice 
 model Building to think/ making it visual Learning to see
  • 14.
    Architecture School Teachesthe Design Process Feedback via critique 14 Presenting work in charettes (pitch) Learning by doing Master
 and
 apprentice 
 model Building to think/ making it visual Learning to see
  • 15.
    15 Understand unspoken needsStart with people, in context Homes are more than houses Lessons from Architecture School: Learning to See Understand unspoken needsStart with people
  • 16.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 16
  • 17.
    Man Handing aLetter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 17From the Rijksmuseum
  • 18.
    Man Handing aLetter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 18From the Rijksmuseum Windows, morality, and privacy as a dirty word
  • 19.
    Man Handing aLetter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 19From the Rijksmuseum Internet of 1670
  • 20.
    Man Handing aLetter to a Woman in the Entrance Hall of a House Pieter de Hooch, 1670 20From the Rijksmuseum Multiple people with different privileges inhabit the home
  • 21.
    Start With People,In Context Homes have multiple people with varied permissions. Children, and others who can’t or won’t consent, generate data. More aggressive rules govern collection of their data, and regulatory changes are likely. 21
  • 22.
    Security Thought-Starters Plan forchange and don’t take on privacy debt in a quickly-changing landscape 22 European Article 29 Working Party Sandy Clark et al’s “Honeymoon Effect” paper 22
  • 23.
    Appropriate Complexity Managing profiles forambient capture: right mode + right feedback 23 Netflix manages multiple profiles with explicit login, but many media services are struggling to identify group members present when video is played. 23
  • 24.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 24
  • 25.
    25Hvitträsk, Finland 1903.Photo by Markku Haverinen Design rooted in Finnish Nationalism + Romanticism
  • 26.
    26Hvitträsk, Finland 1903.Photo by Markku Haverinen Environment inside reflects culture outside
  • 27.
    27Hvitträsk, Finland 1903.Photo by Markku Haverinen This is the childhood home of Eero Saarinen
  • 28.
    28TWA Terminal atthe former Idlewild Airport, 1962. Photo by Sean Masrhall Eero Saarinen was the architect of New York’s JFK Airport T5
  • 29.
    Understand Unspoken Needs 29 Onegeneration of buildings is much longer than the 18-month hardware churn. Buildings last and are upgradable.
  • 30.
    Security Thought-Starters Think firmware andplan an upgrade path 30 Internet Engineering Task Force (IETF) working on firmware standards, e.g. Carsten Bormann Supervisory Control and Data Aquistion (SCADA) 30
  • 31.
    Appropriate Complexity Reimagining updates asa form of engagement: design for behavior change 31 Cautionary tale of routers, keeping the internet of 10 years ago alive 31
  • 32.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 32
  • 33.
    33Shop Houses, Singapore2013. Photo by Peter Morgan. Nationalism Shophouses are Southeast 
 Asian vernacular architecture
  • 34.
    34Shop Houses, Singapore2013. Photo by Peter Morgan. Nationalism Covered awnings protect the public from sun + rain
  • 35.
    35Shop Houses, Singapore2013. Photo by Peter Morgan. Nationalism Designed by social custom, then Singaporean law in 1822
  • 36.
    36Vietnam 2008.. Photoby Ame Elliott Nationalism Designed by social custom, then Singaporean law in 1822 Vernacular is not the same as amateur
  • 37.
    Homes Are MoreThan Houses You can have cultural knowledge and still do a bad implementation. There are roles for standards and for professional knowledge. 37
  • 38.
    Security Thought-Starters Don’t inventyour own crypto - use professional standards 38 Open Smart Grid insecurity Real World Crypto Conference: Stanford, CA in Jan 2016 38
  • 39.
    Appropriate Complexity Exposing the underlyingsystems to build knowledge 39 Interfaces on electric cars like the Toyota Prius teach engine function and driver behavior 39
  • 40.
    Agenda Introduction Lessons from ArchitectureSchool Start with people, in context Understand unspoken needs Homes are more than houses Conclusion 40
  • 41.
    1905 Post Card. Architectureschool teaches lessons for UX for IoT security 41
  • 42.
    42 Start with people,in context Lessons from Architecture School Start with people, in context Homes are more than housesUnderstand unspoken needs Homes have multiple people with varied permissions Implementation matters in vernacular architecture Buildings last 
 and are upgradable
  • 43.
    Security Thought-Starters 43 Don’t invent yourown crypto– use professional standards Plan for change and don’t take on privacy debt Think firmware and plan an upgrade path
  • 44.
    Managing profiles forambient capture Reimagining updates as a form of engagement Exposing underlying systems to build knowledge 44 Appropriate Complexity: UX Challenge for IoT
  • 45.
    45 IoT Security UXProblems Are Exciting There’s a need for design to shape the conversation between possible and legal. The UX problems for IoT are inspiring and important.
  • 46.
  • 47.
    Creative Commons 2.0Photo Credits p. 7 https://www.flickr.com/photos/thesoupboy/400278091/ p. 8 https://www.flickr.com/photos/jonathancohen/6253733297/ p. 9 https://www.flickr.com/photos/mwichary/2251347415/ p. 11 http://www.cparama.com/forum/cartes2013b/1372353539-Beaux-Arts- Atelier-pascal.jpg p. 16 https://www.rijksmuseum.nl/en/collection/SK-C-147 p. 27 https://www.flickr.com/photos/7119320@N05/7452651372/ p. 31 https://www.flickr.com/photos/magicfab/3893245793/ 47