About securing sensors data #71
Comments
|
So as discussed F2F, the current design allows for this. For example, you could add a boolean So for example: var sensor = new HeartbeatSensor({ key: CARDIOLOGIST_PUBLIC_KEY });
var buffer = [];
sensor.ondata = (e) => {
buffer.push(e.reading);
if (buffer.length > 15) {
fetch(CARDIOLOGIST_URL, { body: JSON.stringify(buffer) });
buffer.length = 0;
}
}Now, I don't know what interest there is for something like this at this point, so it seems very early to bake it into this spec. Have you heard from implementors interested in enabling this use case? |
|
@tobie, sounds like a good start. let me check this with my tech team and marleting team, and come back to you with implementation / use cases. |
|
Note the key would obviously need to be provided through UA chrome during the permission step. |
During the TPAC sensor session [1], the question of making sure that the sensor API allows to transfer some sensor's data which are protected from reading. The use case is : a sensor is protecting itself from reading its measures (aka, only communicating ciphered data), and transfer its data to a server which will have means to read the ciphered data. In that case, the web app handling the data may have some interest to know that sensor's data van not be interpreted without special treatment.
The API should allow to tag this kind of protected data, to avoid wrong data interpretation.
[1] http://www.w3.org/2015/10/28-dap-minutes.html
The text was updated successfully, but these errors were encountered: