This document discusses the development of an open IoT certification mark to help consumers identify connected products that respect user privacy and security. The certification would be opt-in and aim to address issues like products bricking after a company shuts down, aggressive changes to terms of service, data retention after selling a product, and lack of transparency about digital dependencies and updates. The organizers are defining the certification's principles, assessing different governance models, and seeking more contributors to the effort.

1. @iot__mark
An Open #iot certification mark
Asking & Offering
ada conf, Malmo, November 25th 2017

2. Warning

3. Where to find us
iotmark.wordpress.com
@iot__mark on twitter
iotmark.slack.com

4. What is it?
A global community effort to help consumers
have the choice of better connected products
through a certification mark.

5. What’s a certification mark?

6. Is that like a standard?
No, it’s opt-in.
It’s visible to consumers.
It helps smaller organisation compete.

7. What is a better connected product?
Respects GDPR
Gives options for service provision
Makes the mechanisms and dependencies clear
Offers clear support timelines
Offers support for repairability
Factory resets
Secure

8. What are we protecting consumers from?
Hardware that gets bricked if/when a company gets
acquired or shuts down.
by
Enabling them to move to another software service provider

9. What are we protecting consumers from?
Aggressive changes in terms and conditions that leads to
core functionality being restrained or stopped.
by
Asking the company to commit to maintaining the core
functionality intact no matter how they pivot.

10. What are we protecting consumers from?
Their data being tied to the physical product when they
want to sell it on or give it away.
by
Asking the company to offer physical factory resets.

11. What are we protecting consumers from?
Being confused about how something works.
by
Asking the company to be clear about the digital
dependencies in the use of a physical object.

12. What are we protecting consumers from?
Being defrauded or their devices being hacked.
by
Suggesting a path to secure hardware, firmware, back end,
cloud services.

13. Defining open in a commercial context
Open as in open source?
Open as in transparent?
Open as in useful?

14. Our process
We have written up 30 principles
iotmark.wordpress.com/principles
All of them are assessible.

15. Our process
We are drawing up a competitive landscape
to find our sweet spot.
We think it might be startup friendly and lightweight.

16. Our process
We need more eyeballs on this.

17. Our process
We need to figure out if it’s a self-certified process or a
verified process.
What will be easier to adopt and by who?
What will give consumers more confidence?

18. Our process
We need to figure out the governance structure of this
project.
Do we partner with test houses?
Do we become a company, a foundation, a cooperative?

19. Get involved
iotmark.wordpress.com
@iot__mark
iotmark.slack.com

20. Tack
alex@designswarm.com
@iotwatch