Upload
webinos-project
View
477
Download
0
Tags:
Embed Size (px)
Citation preview
1
webinos clearly connected
M2M and IOT
IOT Challenges
2
Interoperability
Privacy
Security
Efficiency
Privacy Security and safety
fears hit smart metering programme
– http://www.computerweekly.com/news/2240114668/Security-and-safety-fears-could-hold-smart-metering-programme-back
Who owns my data
Who has access to my data
Can I see my data
Can I delete my data
What is my data being used for
Why Smart People Are Suspicious of Smart Meters
http://www.forbes.com/sites/williampentland/2010/12/10/why-smart-people-are-suspicious-of-smart-meters/
Security
Halted development
Service Owner
fears
Device owner
concerns
Consumer Fears
Data provenance
Device integrity
Network integrity
Sever
Inverting Data Ownership
DBApp 1
DBApp 2
DBApp 3
Company 1
Company 1
Company 1
User
User Contact data
User Contact data
User Contact data
User Contact data
Shifting data, under consumers control
STATE OF THE ART(firefoxOS, ChromeOS,
Tizen, WebOS)
ADVANCED UBIAPPS ARCHITECTURE
Web RendererPolicy
APIs
Con
tac
ts
Packager
Apps
File
NFC
Loca
tio
nO
ther
…
Proprietary non interoperable
package formats
Connection Manager
Simple proprietary and
non manageable
policy
Non extensible pre-defined API
set
PKI
Application logic separated from UI for security and
flexibility reasons
TECHNOLOGY BREAKDOWN
Technical questions that require standards….
How to I call functions across devices? How do I describe an API/functions? How do I discover an API/Service? How do I identify and object/device/thing? How do I authenticate a user? How do I authenticate a device? How do connect locally (no internet)? How do I manage permissions? Is there anything different about IOT?
Webinos core technology components Specification Purpose
TLS Mutually authenticated TLS for secure bi-lateral comms
PKI Distributed certificate schema for person/device identity
OAauth Distributed authentication
WebIDL Definition of a functional interface
Feature-URI Distributed mechanism for method, permission description
JSON-RPC Web friendly mechanism for remote method invocation
XACML OASIS defined standard for general access control
Widget Spec Interoperable application packaging
Webinos-address Permanent web address for “entity”
Webinos-discovery
Discovery algorithm: local and remote
APIs A suite of rich but extensible APIs
9
THREE MODELS OF IOT INTEGRATION
Full Fat Version
Full NodeWorks for 2Mb+ devices. Fully node implementation. Advantages Full policy on devices Device has own ID On device
programmability Flexible Peer to peer
networking
11
Policy
APIs
Con
tac
ts
Packager
Apps
File
NFC
Loca
tio
nO
ther
…
PKI
PZH PZH
PZP
Webinos Driver model
JavaScript DriverHighly flexible modelGood for legacy devicesVery easy to develop forUses ID and policy from hub
12
Policy
APIs
SE
NS
OR
Packager
AppsA
CTU
ATO
R
NFC
Loca
tion
Oth
er…
PKI
REST SerialBluetoot
hANT Other
Webinos lite (work in progress)
MicroPZPTarget 64kb-2mb device rangeRaw C++ implementation stackShared secret identityLightweight TLSSubset of policyBSON alternative to JSONTinyJS interpretationLightweight application signing
13
Policy
APIs
Con
tac
ts
Packager
Apps
File
NFC
Loca
tio
nO
ther
…
PKI
PZH PZH
PZP
General Data Collector
Device
IOT Data Collector
Websocket
Policy
APIs
SE
NS
OR
Packager
Apps
AC
TU
ATO
R
NFC
Loca
tion
Oth
er…
PKI
PZH
XML Http
TLS
Data CollectionSimple cloud entityCollects pushed data via web adaptorsPublishes realtime data via web socketStores historical dataGeneric Sensor adaptor written on PZH
Other technologies
– Z-wave: licensed non profit– CoAP: ietf: low level protocol– Evrythng– Pachube/Xively– MQTT:– Weightless– KNX: licensable non-profit– 1-wire– Allshare– AllJoyn
APPLICATIONS
IOT Sensors and ControlSame protocols – Same code works with IOT devices
Heating management with Raspberry PI
FS720
Simple JSON-RPC drivers
Full management on attached device
Remote management and “Service Management”
Health devices also available
IOT Dasboard
Telematics Insurance
UBI InsuranceData from - RPM, gears, temperature - how fast you drive - where you drive, when you drive - accelerometer, how fast you break
Who owns this dataHow long do they hold it for, use it forWho pays for the device
Health – Midwife Scenario
UBI InsurancePersonal sensitive dataShared at mothers discursionRealtime observation and triageMultiple device types – no lockingCommunity support, not just single model
VERTICAL OUTREACH
Products
Media Hub Health Hub Automation Hub
Travel Hub
Stores, aggregates and plays media on home devices. Shares media, and remotely controls media through cloud
Aggregates multiple health devices under common data dashboard. Shares data with friends and health professionals
Pools sensors and controls for many home automation devices. Supplies a primary “controller”. Allows remote control and sharing though cloud
Tracks cars and car data. Shares navigation data with friends and services. Shares car mechanical details with mechanic professionals
Four complementary hubs, All based on a home hosted Raspberry PI (or alternative). Each hub addresses a different application with complementary device ports.
All hubs have the ability (through a cloud service), to host backup and share data. Also have access to 3rd party applications and services
Driver Examples
This should be our portfolio on website. Pictures of Kit. Plus SDK and how to
ODB2 for automotive. Uses TNO serial driver
FS20 home controller, Drivers for 2.4 ghz.
Full suite of drivers as (HTTP, Serial) for arduino
SAT-IP driver to implement TV API
Zephyr HRM, Bluetooth serial for health
HMM heath scales, HTTP custom driver
A driver onto native software. VLC for renderer
Vehicle API
Generic S/A API
Generic S/A API
Generic S/A API
Generic S/A API
TV API
Audio /Video API
WHY – WHAT DOES WEBINOS GIVE YOU
Utility
New FunctionalityRemotely attach to devicesAccess from a browser technologyAddress devices in a universal wayAccess native like Apis
25
Ubiquity
Every Device One technology to write applications inSame protocol to communicate to all devicesRoyalty FreeNon proprietary
26
Security
Distributed Security Model
Outlook comparisonDistributed authenticationDistributed identityUser centric policy model
27
Innovation
New StuffAll the new things you have not thought of yet
- Eco + - Media + - Car + - Health + - Automation + - PC + - Mobile + - Other
28
Disruption
Nature of InternetIOT/M2M is NOT a new business
Remove lock inDisrupt existing businessesShock the incumbents
29
END
30
webinos Payment across screens A webinos browser comes with in-built NFC support and Payment API
support Retailers and brand owners can create websites that “add-value” to the
physical shopping experience– Curated content: links to catalogue and stock data– Media: links to magazines and articles that mention or are about this
product– Social: links to social media streams and commentary
All this can be delivered using standard HTML and JavaScript – using a universal browser
Demo: – Use of webinos Payment API– Pay for goods shopped on one devices
with your wallet stored on your mobile: Secure, Simple, Fast
– Read more: http://www.webinos.org/blog/2013/02/22/webinos-payment-across-screens/
KatwarnEmergency Warning
Katwarn is a service that informs citizens about nearby emergencies in order to provide possibilities for immediate reactions.
InRush will deliver a system for subscription on emergency notifications and management of counter-measures by extending the existing Katwarn service.
Improved location awareness (dynamic notification based on locations of the users devices) levaraging on the webinos personal zone concept to address people rather than devices.
InRush app does not need to be installed on each device as webinos takes care on finding the appropriate devices for notifying the citizen about emergency cases.
Depending on the emergency level different actions can be triggered on available devices.
Through the integration of IoT features, such as sensors and actuators for home automation, additional actions beside of notifications can be taken: closing windows and doors automatically based on certain alert level.
File Share
File Manager is an app for "enhanced" file management.
It adds to the common file management operations (rename, copy, move..) features to:– Selectively share data
among personal devices and users.
– Controlling also who can access what.
– Enable/disable version management of files.
– Stick notes on data. These notes may contain for example comments or context related information.
Webinos added value: Support for – Security and
synchronisation – Device related and
Context based information
PC Mobile Runtimes also provided for PC
and Mobile PC and mobiles can share
services and APIs with each other
Full appstore integration and commercialisation route fro web applications
Rich API suite for enhance browser experience
Entire software stack available as open source
All protocols Open Standard ensuring maximum cross device interoperability
Partyplayer
Allows users to share music stored on their devices on other devices (e.g. TVs)
In control of own data – data remains on own device
Ad hoc sharing across devices and users
Adding songs to a play list Voting for favourite songs
webinos approach
webinos technology
39
Approach Focus on delivery on top of reseach
– Components not shell, rapid prototyping, iterative development
Reuse specifications, innovate solutions for “the gaps”
Focus on openness and speed Ensure long term duration
40
webinos Technology Platform positioning
Tizen B2GArduino PIChrome
OS
B2G
Tizen
ChromeOS
Chrome
PhoneGap
Webinos – like Chrome – is a virtualised application environmentNOT and OS in its own right
41
webinos Technology Focus on open standards, innovation and security
webinos makes extensive use of node.JS to ensure OS portability– node.JS is used as porting layer– node.JS is used as server technology– Android platform is based on “anode” open source project
webinos uses existing standards based web app technologies– HTML 5– JavaScript– W3C API’s– JSON-RPC – + others
webinos incorporates an innovative user authentication concept webinos connects all of a users devices and the cloud webinos facilitates access to existing and new device resources webinos design is driven to be secure and respect user privacy
42
webinos Architecture Focus on open standards, innovation and security
webinos Architecture & API specification
webinos Device/PZP Architecture
– PZH Farm– webinos Networking model
webinos API’s
43
webinos Architecture
Comprised by core system and APIs
webin
os
APIs
webin
os
Arc
hit
ect
ure
44
webinos Architecture
Supporting a Personal Zone Concept
PZH Personal Zone Hub
• Single sign on / Auth• Sync across devices• Storage preferences, policies,
• Discovery & access• Policy / Trust
PZPPersonal
Zone Proxy
PZP PZP PZP
Personal Zone
PZH
PZP PZP PZP PZP
PZH
PZP PZP PZP PZP
3) Communication between devices
(bearer independent)
2) Discovery, Authentication,Syncronisation
1) Identified by a URL,supports a RESTful API based upon JSON RPC
45
webinos Architecture
Supporting a Personal Zone Concept
TLS
Direct P2P (e.g. Bluetooth, WiFi Direct)
TLS
Internet/CloudLocal
Devices Devices
Peter’s Personal Zone John’s Personal Zone
TLS
Server / PZH (Logical Entity)
Server / PZH (Logical Entity)
46
webinos Architecture Supporting a Personal Zone Concept - reproducable
46
John: First PZP(Personal Zone Proxy)
John: PZH(Personal Zone Hub)
Security Policy
Peter: PZH(Personal Zone Hub)
Security Policy
Security Policy
Routing
OpenID AuthOpenID Auth
Peter: Second PZP(Personal Zone Proxy)
Security Policy
QRCode or NFC
QRCode
Peter PZH John PZH
Internet/Cloud
Local
Peter: First PZP(Personal Zone Proxy)
Security Policy
PZH Server Farm
PZH Server(Logical Entity)
PZH Server(Logical Entity)
PZP (device)PZP (device)PZP (device)
47
webinos Architecture
Complementing device OS and browser app PZH
Native Device OS
webinos API
PZPBrowser/ WidgetWeb Runtime
Messaging Manager
Widget Manager
Discovery Manager
Context Manager
TLS
Session Manager
Native Discovery Mechanisms
Drivers
Routing
User Data Device
TLS Authentication HTTPS
(Currently WebSocket)
Certificate Manager Key Storage
RPC Handler/Manager
Messaging queueError recovery
APIs
APIs
APIs
APIs
APIs
RPC
Policy Manager
Sync Manager
Yet to be Implemented
Sharing services
Webinos Private Cloud
Connections between People
Users devices
Personal Cloud Agent
(PZH)
Widget
PolicyAPIs
Widget
PolicyAPIs
Widget
PolicyAPIs
Connections between devices
Server based agent- issues identities
(PKI) - acts as messaging
hub for devices- synchronisation
agent for data
Data and services can be shared securely with other people using permissioning infrastructure XACML +PKI
Private cloud is a secure virtual network connecting all devices over open standards
Webinos browsers (PZP) running on devices act as browsers and local servers, allowing them to communicate with each other locally and remotely
Other PZH
JSON-RPC
W3C Widgets
PKI
TLS
XACML
WebIDL
Feature URI
OpenID
mDNS
Services defined by WebIDL – discovered using feature URI
Webinos Open Source Assets
An open source web
platform for
running applications on and
across multiple devices
htttp://developer.webions.orghttp://www.webinos.org/blog/2013/02/19/webinos-and-iot-applications/
http://www.bbc.co.uk/news/technology-19152751
http://www.wired.com/autopia/2012/10/bmw-webinos/
http://www.telegraph.co.uk/technology/mobile-phones/8020191/Webinos-universal-app-project-receives-10m-funding.html
https://www.press.bmwgroup.com/pressclub/p/pcgl/pressDetail.html?title=the-infinite-world-of-the-web-experts-from-bmw-group-research-and-technology-are-developing-in-the&outputChannelId=6&id=T0133028EN&left_menu_item=node__2367
http://developer.sonymobile.com/tag/webinos/
UbiApps Products
UBITV
UBIIOT
UBIEMS
TV Software platform based on HTML
Widget based application ecosystem
Cross device (mobile control)
Local and cloud media sharing
High performance graphics options
Device porting and optimisation
Pre integrated: Health, Heating and Telematics
devices
IOT data management framework
IOT dat/service a sharing framework
Device porting and optimisation
Enterprise grade security for HTML5 and cloud solutions
Optimised and secure networking
Remote application management
Remote device/Service management
Encrypted data at rest
Follow up
website • http://webinos.org
Developer site • http://developer.webinos.org
Downloads• https://developer.webinos.org/webinos-
installers
Email • [email protected]
Press • [email protected]
Webinos project is keen to hear from press, application developers and new project
contributors
UbiApps can help with deployments of IOT and Web
applications
website
• http://www.ubiapps.com
mail • [email protected]
Thankyou
BACKUP
Privacy Security and safety
fears hit smart metering programme
– http://www.computerweekly.com/news/2240114668/Security-and-safety-fears-could-hold-smart-metering-programme-back
Who owns my data
Who has access to my
data
Can I see my data
Can I delete my data
What is my data being
used for
Why Smart People Are Suspicious of Smart Meters
http://www.forbes.com/sites/williampentland/2010/12/10/why-smart-people-are-suspicious-of-smart-meters/
Technical questions that require standards….
How to I call functions across devices? How do I describe an API/functions? How do I discover an API/Service? How do I identify and object/device/thing? How do I authenticate a user? How do I authenticate a device? How do connect locally (no internet)? How do I manage permissions? Is there anything different about IOT?
How to describe functions?
WSDL 2.0
WebIDL
http://www.w3.org/TR/WebIDL/
How do I identify an object?
http://en.wikipedia.org/wiki/Uniform_resource_identifier
URI
UNIVERSAL RESOURCE IDENTIFIER
Webinos Private Cloud
Users devices
Personal Cloud Agent
(PZH)
https://her_domain.com/webinos/other_user/laptop/urn:services-webinos-org:calender#A0B3
How do I authenticate a device?
PKI
TLS
Root CA
Mutually authenticated using TLS and pre shared keys
Key distribution protocol
Device issue certificate
How do I authenticate a user?
OpenIDOpenID
OAuth
Device based ID
OPe
nID
PZH
How do I discover a service?
Webinos Private Cloud
Personal Cloud Agent
(PZH)
Webinos Private Cloud
Personal Cloud Agent
(PZH)
Widget Feature URI
XMPP SDP WSDL
How do I authorise someone/ to something?
Webinos Private Cloud
Personal Cloud Agent
(PZH)
Webinos Private Cloud
Personal Cloud Agent
(PZH)
XACML
Policy
Policy Policy
Policy
How do I work offline?
Personal Cloud Agent
(PZH)
Personal Cloud Agent
(PZH)
PolicyPolicy
mdns
IOT SPECIFIC BITS
“Open” Web App Framework
W3C Widgets
Chromium EmbeddedOR Android - WebView
XACML = WAC + Subject = person
W3C + WAC + Webinos
Each of these elem
ents can be improved
(e.g.JSO
N m
anifests etc) but These elem
ents are standardised, testable agreed and can be
deployed now
Web Renderer
Policy
APIs
Cont
acts
Cale
ndar
Geo
Loca
tion
Orie
ntati
on
Oth
ers
Packager
Apps
CRX
Decoupled Browser(Warning disruptive!!)
Standard Browser(Firefox, Chrome, Safari ec..)
Supporting web sockets
Websocket – with domain origin test
Widget URI OR HTTP URI OR FILE URI
Also remote http (normal website)
User grants access of domain to feature
(ala geo-location)
Policy
APIs
Cont
acts
Cale
ndar
Geo
Loca
tion
Orie
ntati
on
Oth
ers
Packager
Apps
+ D
ecouple Appstore
Server
webinos for M2M/webinos for server apps
Policy
APIs
Cont
acts
Cale
ndar
Geo
Loca
tion
Orie
ntati
on
Oth
ers
Packager
Background Apps
NO UI
Web Services and Embedded
Servers very similar
Two methods of IOT integration
API Driver
Fully addressable object
Sensor DeviceGateway PZP
API Drivers
WebID
L Generic SensorGeneric Actuator
Serv
er
Apps
Policy
APIs
Arduino Serial A
Arduino Serial B
Arduino HTTPS
Zigbee
Bluetooth HRM
CANBusE,g• PC• Phone• Rasperry Pi
Configuration
Addressable Sensor Device
Full PZP
WebID
L Generic SensorGeneric Actuator
Serv
er
Apps
Policy
APIs
WIFI
Serial
Bluetooth
Zigbee
ANT
CANBus
Principle difference is whether the sensor is directly addressable – or a service bound to
another device and where the policy is enforced
Health Care Permissioning and Privacy Example
DOCTOR 1
DOCTOR 2
TRAINER 2
Micro PZP
Micro PZP
PZH ?
Same scenario for In car telematics and swapping insurers.
Same scenario for Smart Meters.
UbiAppsUbiApps is an enterprise management
solution for HTML5 applications.Supports PC, Tablets, Mobiles, Automotive,
TV and IOT
Manage Devices, Applications and Data Streams
BACKUP
the value of open
webinos supports 3 essential open principles that we believe are essential for long term success and help foster innovation
Open Standards• All webinos standards are created under a royalty free IPR
framework ensuring anyone can implement without licence fee and ensuring compatibility with W3C specifications
Open Source• Webinos code is delivered under Open Source license, delivered under
an open community. This ensures widest participation and minimised the fragmentation (we do not anticipated multiple implementations)
Open Market• Webinos technology is AppStore agnostic. Unlike Chrome or
Mozilla, we encourage many appstores, not just one - under an open web friendly ethos.”
webinos: key deliveriesFive Target Devices
7 Ported OS’s
Platform
APIs
Apps Store
Security
Applications
SDK and Portal
how it works
Webinos Private Cloud
Connections between People
Users devices
Personal Cloud Agent
(PZH)
Widget
PolicyAPIs
Widget
PolicyAPIs
Widget
PolicyAPIs
Connections between devices
Server based agent- issues identities
(PKI) - acts as messaging
hub for devices- synchronisation
agent for data
Data and services can be shared securely with other people using permissioning infrastructure
Private cloud is a secure virtual network connecting all devices over open standards
Webinos browsers (PZP) running on devices act as browsers and local servers, allowing them to communicate with each other locally and remotely
Other PZH
JSON-RPC
W3C Widgets
PKI
TLS
XACML
RESTful
MQTT
CoAP
how it works
Webinos Private Cloud
Connections between People
Users devices
Personal Cloud Agent
(PZH)
Widget
PolicyAPIs
Widget
PolicyAPIs
Widget
PolicyAPIs
Connections between devices
Server based agent- issues identities
(PKI) - acts as messaging
hub for devices- synchronisation
agent for data
Data and services can be shared securely with other people using permissioning infrastructure
Private cloud is a secure virtual network connecting all devices over open standards
Webinos browsers (PZP) running on devices act as browsers and local servers, allowing them to communicate with each other locally and remotely
Other PZH
Connects Vehicle Provides an open web applications
platform for rapid development of – Navigation functions– In car media– In car messaging/communications– Engine monitoring– Driver assist
Allows mobile to directly and securely access realtime and historical car data and services
In car “private cloud” gives seamless secure interaction with phones at tablets
Remote “private cloud” means telematics, engine data and driving behaviour can be shared with 3rd parties (new business models)
Connects TV Provides an open web applications
platform for rapid development of – Streaming TV– Media: Videos, Pictures Music– Appstore and Games
Local wifi “private cloud” gives seamless secure interaction with phones at tablets
– Use as remote control– User to watch or sync media– Use dual screen app - e.g. dual screen
advertising
Remote “private cloud” means media and experience can be shared with friends long distance
All protocols and code are open, meaning no technology lock-in – maximum interoperability
Party Player app: examples of fun community based cross device applications
Connects Sensors Provides software stack
implementing multiple protocols for Internet of Things attachment
Implemented on Arduino boards and embedded Linux
Hub allows user to manage access to data to all devices from a centralised place
Access currently provide to – Multiple sensors (temperature,
humidity, light)– Multiple actuators (switches , valves)– Heating control systems– GPS monitors– Health monitors (Heart Rate etc)
webinos payment and retail
Your phone as your “personal” “intelligent” scanner.
A webinos browser comes with in-built NFC support and Payment API support
Retailers and brand owners can create websites that “add-value” to the physical shopping experience
– Curated content: links to catalogue and stock data– Media: links to magazines and articles that mention
or are about this product– Social: links to social media streams and
commentary
Deutsche Telekom integrated wallet exposed through payment API – means payment can be simple, fast and secure
All this can be delivered using standard HTML and JavaScript – using a universal browser
Also demoing cross device payment – pay for movies on your TV from your secure mobile phone
InRush Katwarn is a service that informs citizens about
nearby emergencies in order to provide possibilities for immediate reactions.
InRush will deliver a system for subscription on emergency notifications and management of counter-measures by extending the existing Katwarn service.
Improved location awareness (dynamic notification based on locations of the users devices) levaraging on the webinos personal zone concept to address people rather than devices.
InRush app does not need to be installed on each device as webinos takes care on finding the appropriate devices for notifying the citizen about emergency cases.
Depending on the emergency level different actions can be triggered on available devices.
Through the integration of IoT features, such as sensors and actuators for home automation, additional actions beside of notifications can be taken: closing windows and doors automatically based on certain alert level.
Connects PC and Mobile
Runtimes also provided for PC and Mobile
PC and mobiles can share services and APIs with each other
Full appstore integration and commercialisation route fro web applications
Rich API suite for enhance browser experience
Entire software stack available as open source
All protocols Open Standard ensuring maximum cross device interoperability
RECENT MEDIA COVERAGE
http://www.bbc.co.uk/news/technology-19152751
http://www.wired.com/autopia/2012/10/bmw-webinos/
http://www.telegraph.co.uk/technology/mobile-phones/8020191/Webinos-universal-app-project-receives-10m-funding.html
https://www.press.bmwgroup.com/pressclub/p/pcgl/pressDetail.html?title=the-infinite-world-of-the-web-experts-from-bmw-group-research-and-technology-are-developing-in-the&outputChannelId=6&id=T0133028EN&left_menu_item=node__2367
http://developer.sonymobile.com/tag/webinos/
Follow up
website • http://webinos.org
Developer site • http://developer.webinos.org
Downloads • https://developer.webinos.org/webinos-installers
Email • [email protected]
Press • [email protected]
Twitter • @webinosproject
Webinos project is keen to hear from press, application developers and new project contributors