20160505 smart cities final web version v1.1 ld.pptx
TRANSCRIPT
UNCLASSIFIED
UNCLASSIFIED
Smart Cities Monday 9 May 5 - 6.30 pm Level 5 Theatrette, 121 Exhibition Street Melbourne
Privacy and Data Protection Week 9-13 May 2016
UNCLASSIFIED
UNCLASSIFIED
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
2UNCLASSIFIED
PresentersAgency Name Role
BudKapoor Asia-PacificJapanSalesManagerforSmart+ConnectedCommuniCes
ProfessorThasANirmalathas
DirectorofMelbourneNetworkedSocietyInsCtute
MeganRichardson
ProfessorofLawattheMelbourneLawSchool
Mar<nHarris SpecialistDataProtecConAdvisor,CommissionerforPrivacyandDataProtecConandformerAssistantDirectorProtecCveSecurityPolicyOutreach,ALorneyGeneralsDepartment
UNCLASSIFIED
UNCLASSIFIED
Bud Kapoor
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 4
UNCLASSIFIED
UNCLASSIFIED
Smart+ConnectedCommuni<es
BudKapoorSalesManager,Smart+ConnectedCommuni<esAsia-PacificJapan
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 5
UNCLASSIFIED
UNCLASSIFIED
NewRevenueStreams
EfficienciesCommunityNetwork
Citizen Engagement
2 1 3
Economic Growth Through Innovation
4
Smart+ConnectedCommuniCes–enablingbusinessoutcomes
Connected Transportation
Rail, Bus, Roadways
VehicleAreaNetwork(VAN)
Connected Vehicle
Safety & Security Parking
Cloud
Wi-Fi Mesh
Power
Lighting
FOG Analytics
Citizen Experience Analytical Insights
Cisco CMX/eMSP
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 6
UNCLASSIFIED
UNCLASSIFIED
Smart Lighting
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 7
UNCLASSIFIED
UNCLASSIFIED
Smart Parking
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 8
UNCLASSIFIED
UNCLASSIFIED
Traffic Analysis
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 9
UNCLASSIFIED
UNCLASSIFIED
Smart+ConnectedCommuni<es-OpenPlaForm
CityDigitalPlaTorm
CityWi-FiNetwork
Wireless WAN (2G/3G/4G/
Wimax) DSRC/LMR
Internet Public/Private WAN
MOBILE APPS
PARTNER APPLICATIONS AND URBAN SERVICES
Monitoring/Command Control Centers
Lighting Manageme
nt
Safety and Security
Environment
Waste Managemen
t
P Parking
Management
Water Management
Transport Management
Traffic Management
PARTNER SENSORS
Street Lighting
Safety and
Security
Environment
Waste
PParkin
g Wate
r
Traffic
STREET
People
Street Furniture
BUILDINGS
Commercial
Residential
Industrial
VEHICLES
Vehicles
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 10
UNCLASSIFIED
UNCLASSIFIED 10
Adelaide,SouthAustralia
Government&Council-
embarkingonajourneytowardsbecomingaSmartCity
© 2010 Cisco Systems, Inc. All rights reserved. Cisco Confidential Presentation_ID 11
UNCLASSIFIED
UNCLASSIFIED
ImportanceofCollisionDensityinPublicandPrivateSectorEcosystem
AEG
Cordish
Group
UNCLASSIFIED
UNCLASSIFIED
Professor Thas A Nirmalathas
UNCLASSIFIED
UNCLASSIFIED
Smart Cities
• A holistic approach to efficient management of city’s resources and its capacity to meet the needs of citizens
• Seek to improve the quality of life of its citizens through more sustainable social, economic and urban development
• Uses information and communication technologies to radically improve data flow and adopt data-driven approaches to management and service delivery
• Could it be a response to the “urbanisation challenge”?
UNCLASSIFIED
UNCLASSIFIED
Connectivity and Digitisation of Cities
Places
Things
People
InternetofEverything
AnalyCcs
Insights
ControlandManagement
Data
Manage
Knowledge
UNCLASSIFIED
UNCLASSIFIED
Transport PublicSafety U<li<es Parking Public
Spaces
Ci<zenEngagem-
ent
Tourism Events Planning Administr-a<on
Environment
Businesse-s
SmartCity
UNCLASSIFIED
UNCLASSIFIED
Is it Hype? • There are many opportunities
in horizon. • There are many real
applications already in demonstration.
• It is often referred to as a “disruptive technology”.
• Impact could be right across economic, environmental, cultural and social fabric of cities
UNCLASSIFIED
UNCLASSIFIED
Smart City Demonstrators MobileID–Barcelona:EveryciCzencanregistertogenerateanIDbasedontheirmobilephoneandaccesscityservices
Telecare–Barcelona:freehealthcareoveraconnecteddeviceforthemostvulnerableinthesociety
SFPark–SanFrancisco:Real-Cmeparkingsensorsanddemandresponsivepricingtomakeparkingeasier,reducecongesCon…
StreetBump–Boston:CiCzensparCcipaCngtoimprovethelocalneighbourhood…
Open311–Chicago:Residentstomakeortrackrequests,…
Transport–Singapore:Intelligenttransportsystemtoimprovethetrafficandtransportsystem…
Nice–France:UrbanEnvironmentMonitoring(airandsoundpolluCon,waterandenergy,waste…)
DataStore-London:800plusdatabases…citymapper–real-Cmepublictransportinfo
FlexibleStreetlighCng–Amsterdam:Control,switchordimmingofstreetlights,…
UNCLASSIFIED
UNCLASSIFIED
Smart City Demonstrators - Melbourne
EmergencyManagement
MCG,ArupEngineeringUsingvideocamerabased
crowdanalysis
People,counCng,movementanalyCcs,anomaliesincrowd
SpaCo-TemporalParCculateMaLer
Monitoring
EPA/Defence
MonitorandTrackairpolluConinkeylocaCons
wiCnVictoria
UrbanForrestMonitoring
CityofMelbourne
Microclimateanalysis,real-Cmemonitoringoftemperature,humidityacrossanumberof
parklands
UNCLASSIFIED
UNCLASSIFIED
Reality Check - Challenges • Data
• Ownership, integration, complexity
• Privacy vs transparency • Information Security
• Data integrity • Communication challenges
• Energy • Bandwidth • Latency
• Risks – fault tolerance, ‘people’ factors
UNCLASSIFIED
UNCLASSIFIED
networkedsociety.unimelb.edu.au
UNCLASSIFIED
UNCLASSIFIED
Emergency Management: MCG Crowd Monitoring • CrowdMonitoringAnalyCcs
atMCG– 100,000people,7gates– ManualcounCng
• VideoAnalyCcSoluCon:– Counttrafficinreal-Cme– ModeltherelaConshipbetweenpeople,trafficandareaavailable
– Predictunforeseenscenarios
– DevelopevacuaConstrategies
– Automatecrowdcontrolmechanisms
23
Crowd Analytics
CounCng Density Tracking Behaviour
Instances
Cameranetwork
350IPCameras
UNCLASSIFIED
UNCLASSIFIED
Urban Forest Monitoring • UrbanHeatIsland(UHI)effect
– Highernighttemperaturesintheinnercity
• Microclimateanalysis– Currentdataisinsufficient– Lackofreal-CmeinformaCon– NoesCmateswheresensorsarenot
deployed
• SoluCon– IoT-basedreal-Cmemonitoring– InteracCvevisualizaConwithesCmatesand
interpolaConsusingmachinelearningalgorithms
– Highlightsanomalies– Caninformpolicy
24
UNCLASSIFIED
UNCLASSIFIED
Spatio-Temporal Particulate Matter (PM) Monitoring • Air pollution
– Over 4.6 million deaths globally – Major cause of respiratory conditions - Asthma,
Bronchitis, COPD
• PM are 2.5 to 10 µm in size. – Particles can penetrate the deepest parts of the lungs – Particles can be absorbed into the bloodstream
• In Australia – 10µg/m3 increase in PM2.5 resulted in 8% increase in
cardiovascular related hospital admissions in Adelaide – 10µg/m3 in PM10 resulted in 4% increase in respiratory
related emergency hospital admissions in Brisbane
UNCLASSIFIED
UNCLASSIFIED
Telerehabilitation for Chronic Obstructive Pulmonary Disease (COPD)
• EsCmated65millionpaCentsworldwide– ShortnessofbreathonexerCon
– Disability
– PotenCallyfrequenthospitalisaCons
• TrialledaremoterespiratoryrehabilitaConsoluConforallowingpaCentstostayintheirownhomes.
UNCLASSIFIED
UNCLASSIFIED
A Living Lab for Connected Cities
• Creating research and innovation infrastructure to support research and innovation to meet the challenges facing connected cities
• Unique Infrastructure – Infrastructure for research,
technology validation and supporting local innovation
Federated OpenStack
OpenStack
Storage
Compute
OpenStack
Storage
Compute
Data aggregationAccess Control
Sampling / SketchingLoad Balancing
Data aggregationAccess Control
Sampling / Sketching
Load Balancing
Data aggregationAccess Control
Sampling / SketchingLoad Balancing
MN
SI A
PI
MN
SI A
PI
MN
SI A
PI
MN
SI A
PI
MN
SI A
PI
MNSI API
Connected Infrastructure
AARNETLiving Lab
Environments
Connected Aged Care
Connected Health Care
Connected Public Spaces
Connected Farm
Connected FoodNetwork
UNCLASSIFIED
UNCLASSIFIED
Living Environments
Connected Transport Infrastructure Connected Public Spaces Connected Healthcare
Connected Aged Care Connected Fresh Food Chains Connected Farming
UNCLASSIFIED
UNCLASSIFIED
Megan Richardson
UNCLASSIFIED
UNCLASSIFIED
SmartCiCes–PrivacyChallengesMeganRichardson
UNCLASSIFIED
UNCLASSIFIED
‘Privacy’
‘Some'meswewanttobeprivate;some'meswewanttoputourselvesondisplay.Ifyousitinabardressedup,youaretheretobeseen.Ifyouareindanger,youwantyourloca'ontobeknown.What’srequiredaresophis'catedsystemsthatareabletocontrolthelevelofpublicvisibilityyouhaveatanymoment.’WilliamMitchell,‘WhyBuckRogersWillBeInvisible’(interviewwithVictorChase)PicturesoftheFuture,Spring2004
UNCLASSIFIED
UNCLASSIFIED
Privacyaslimitedvisibility
Privacyascontrol
DataprotecCon
Confiden-Cality
UNCLASSIFIED
UNCLASSIFIED
Is law a sophisticated system?
UNCLASSIFIED
UNCLASSIFIED
Asmartcityscenario
ACCTVcameraoperatedbyalocalcouncilinapublicstreetinEssex,UK,photographedamanwhohadaLemptedsuicidebyslashinghiswristswithakitchenknife.Asaresulthislifewassaved.TheCouncilsubsequentlyallowedphotographstakenfromtheCCTVfootagetobepublishedinpressfeaturesaboutthepreventaCvebenefitsofCCTV.Theman’sfacewasnotspecificallymasked.ExtractsfromtheCCTVfootagewerealsoshownonregionaltelevisioninwhichtheman’sfacehadbeenmaskedattheCouncil’srequestbuthesCllcouldberecognised.PeckvUnitedKingdom,ECHR,judgment28January2003
UNCLASSIFIED
UNCLASSIFIED
PertheEuropeanCourtofHumanRights:‘Thepresentapplicantwasinapublicstreet…Itwaslateatnight,hewasdeeplyperturbedandinastateofsomedistress.Whilehewaswalkinginpublicwieldingaknife,hewasnotlaterchargedwithanyoffence.TheactualsuicideaIemptwasneitherrecordednorthereforedisclosed.However,footageoftheimmediateaKermathwasrecordedanddisclosed…Theapplicant'siden'tywasnotadequately,orinsomecasesnotatall,maskedinthephotographsandfootagesopublishedandbroadcast.Hewasrecognisedbycertainmembersofhisfamilyandbyhisfriends,neighboursandcolleagues.Asaresult,therelevantmomentwasviewedtoanextentwhichfarexceededanyexposuretoapasser-byortosecurityobserva'on…andtoadegreesurpassingthatwhichtheapplicantcouldpossiblyhaveforeseenwhenhewalkedinBrentwoodon20August1995.Accordingly,theCourtconsidersthatthedisclosurebytheCounciloftherelevantfootagecons'tutedaseriousinterferencewiththeapplicant'srighttorespectforhisprivatelife.’
UNCLASSIFIED
UNCLASSIFIED
TheposiConinAustralia?
‘…equitymayimposeobliga'onsofconfiden'alityeventhoughthereisnoimpar'ngofinforma'onincircumstancesoftrustandconfidence.Andtheprincipleofgoodfaithuponwhichequityactstoprotectinforma'onimpartedinconfidencemayalsobeinvokedto“restrainthepublica'onofconfiden'alinforma'onimproperlyorsurrep''ouslyobtained”...Butitisthereferenceto"someprivateact"thatiscentraltothepresentproblem…Certainkindsofinforma'onaboutaperson,suchasinforma'onrela'ngtohealth,personalrela'onships,orfinances,maybeeasytoiden'fyasprivate;asmaycertainkindsofac'vity,whichareasonableperson,applyingcontemporarystandardsofmoralsandbehaviour,wouldunderstandtobemeanttobeunobserved.’ABCvLenahGameMeatsPtyLtd[2001]HCA63,GleesonCJ
UNCLASSIFIED
UNCLASSIFIED
Criminal
laws/penalties
Privacy torts & confidentiality
laws, etc Data protection &
consumer protection standards
TheidealposiCon?
Seriousness
Cf Ayres and Braithwaite, Responsive Regulation, Oxford University Press, 1992
UNCLASSIFIED
UNCLASSIFIED
Martin Harris
UNCLASSIFIED
UNCLASSIFIED
CybersecurityforSmartCi'es-AnarchitecturemodelforpublictransportEuropeanUnionAgencyForNetworkAndInforma'onSecurity
39
Cyber security for Smart Cities December 2015
28
Figure 11 Threat landscape
4.2.1 Threats from intentional attacks Incidents resulting from threats in this group are caused intentionally. The key threats from intentional attacks are eavesdropping/wiretapping, theft, tampering/alteration and unauthorized use/access.
Eavesdropping/wiretapping is a deliberate act of capturing network traffic and listening to communications between two or more parties without authorisation or consent. Eavesdropping/wiretapping may affect availability, integrity and confidentiality of data and information systems, respectively. Recent experience has shown that wireless and cellular networks are vulnerable to eavesdropping equipment based on standard components. They are the most obvious threats in the context of data exchange and may lead to follow-up attacks since they allow, for instance, tapping credentials or understanding details regarding the configuration of the network including how devices are connected. A network map is a critical piece of information to any attacker who is planning a thoughtful and deliberate attack on systems such as ITSs.19 The better connected systems are, the more severe follow-up attacks may be. The degree of vulnerability to eavesdropping differs from one type of connection to another. Eavesdropping/wiretapping may lead to the intentional disclosure of proprietary, financial, personal or otherwise sensitive information.
19 Edward Fox, “An Introduction to Cyber security Issues”.
Eavesdropping/wiretapping
Unauthorizeduse/access
Tampering/alteration Theft Distributed Denial
of Service xDDoS)
Loss ofreputation
CitizensLogistics/
freightSmart carsMetro
BusLight rail
THREATS FROM INTENTIONAL ATTACKS
THREATS FROM ACCIDENTS
Hardware failure/mulfunctioning Software
error Operator /usererror Electrical and
frequencydisturbance/interference
End ofsupport
obsolescence
Acts ofnature
Environmentalincidents
LOCAL PUBLIC TRANSPORT OPERATORSxexamples) OTHER
STAKEHOLDERS
UNCLASSIFIED
UNCLASSIFIED
SmartCi<es'4BiggestSecurityChallenges
Themessinessofpoli<csandthevulnerabilityoftheInternetofThingsinonebig,unwieldypackage
Insecureproducts&insufficienttes<ng
Huge,complexaUacksurface
Lackofoversightandorganiza<on
SaraPeters,Darkreading.com
40
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
UNCLASSIFIED
UNCLASSIFIED
FitBitChargeastonishedtestengineers:Anysmartphone
withBluetoothiswelcometothefitnesstracker.ItdoesnotpromptforaPINorotherauthen<ca<on–itsimplyconnectsandvoluntarilyhandsoverallitsdata.
Thedataisnotevenencryptedorprotectedinotherways.
AV-TEST
41
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Securityofdatatransmission
UNCLASSIFIED
UNCLASSIFIED
Manyci<eshaveoutdatedhardwareandso[warethat’sover10yearsold.Yettheydon’tswitchtonewsolu<ons
becausetheoldtechnologys<llworks.I’velostcountoftheamountof<mesI’veheardthewords,“Ifitworks,whydo
weneedtochange?”
It’sthatapproachtotechnologythatgivesaCISOulcers.Theimpactsofthiscollec<onofdisparate,outdatedlegacytechnologieswillonlyopendoorstonewthreatsaswe
witnesstheriseoftomorrow’ssmartci<es.
GaryHayslip,ChiefInforma'onSecurityOfficer,CityofSanDiego
42
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Oldtechnology
UNCLASSIFIED
UNCLASSIFIED
CesarCerrudo,CTO,IOAc'veLabs
43
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Qualityofdata
SmartCi<esbecomeDumbCi<eswhenthedatathatfeedsthemisblindlytrustedand
easilymanipulated.
UNCLASSIFIED
UNCLASSIFIED
Securingsmartci'es.org
44
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
StandardsforSmartCitytechnology
CyberSecurityGuidelinesforSmartCityTechnology
Adop<on
UNCLASSIFIED
UNCLASSIFIED
It’snotallbadnews
NSWDataAnaly<csCentreiscurrentlylookingintohowdatacouldpickoutfalsealarmsfromrealfirestoreducetheNSWfireservices'whopping97percentfalsecalloutrate,andhowitcouldusepricingdatafromthestate’sservicesta<onstoguidedriversto
thecheapestfuelop<onontheirwayhome.
ITNews
45
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
Commissioner forPrivacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
Commissionerfor Privacy and Data Protection
ORANGE – PMS 1655UPBLUE – PMS 2756UPMUSEO SLAB – 100/700
UNCLASSIFIED
UNCLASSIFIED
Thank you