Privacy and Cybersecurity Lessons at the Intersection of the Internet of Things and Police Body-Worn Cameras

45 Pages Posted: 25 Apr 2018

See all articles by Peter Swire

Peter Swire

Georgia Institute of Technology - Scheller College of Business; Georgia Tech School of Cybersecurity and Privacy; Cross-Border Data Forum

Jesse Woo

Kyoto University - Graduate School of Law

Date Written: April 2, 2018

Abstract

Prepared for the North Carolina Law Review symposium on police body-worn Cameras (“BWC”s), this Article shows that BWCs can be conceptualized as an example of the Internet of Things (“IoT”). By combining the previously separate literatures on BWCs and IoT, this Article shows how insights from each literature applies to the other.

Part I adopts the IoT definition of (1) a sensor connected to the Internet that (2) stores and/or processes data remotely, typically in the cloud. Applied to BWCs, the camera is a sensor, and the video footage and related data are stored outside of the original camera, often in the cloud.

Building on this equivalence of BWCs and IoT, Part II examines lessons from the substantial IoT literature for BWC privacy and cybersecurity. Part II systematically examines leading industry standards and Federal Trade Commission guidance for applicable criteria for good practice for BWCs. Analysis of this literature suggests three themes for operationalizing these best practices. First, police departments can and should learn from the IoT literature to improve privacy and cybersecurity for BWCs. Second, police departments should use their bargaining power to demand security and privacy best practices from their vendors. Third, where departments lack the in-house expertise to handle BWC security and privacy they should seek it from outside institutions or consultants, including from outside experts in IoT security and privacy.

Part III examines two areas where study of BWCs might offer lessons for the broader domain of IoT. First, to protect police officer privacy during breaks and for other reasons, BWCs are not always on. By contrast, IoT best practices to date have not emphasized the implications of toggling the sensor on and off. Second, an important debate for BWCs is how to promote transparency—to provide accountability while protecting individual privacy. In this respect, BWCs are an application of technology where public disclosure of the entire data feed is a higher priority than for most other IoT applications to date. Studying this debate can inform other IoT debates about when to open full data feeds to the public, consistent with privacy and cybersecurity concerns.

Suggested Citation

Swire, Peter and Woo, Jesse, Privacy and Cybersecurity Lessons at the Intersection of the Internet of Things and Police Body-Worn Cameras (April 2, 2018). North Carolina Law Review, Vol, 96, 2018, Georgia Tech Scheller College of Business Research Paper No. 18-11, Available at SSRN: https://ssrn.com/abstract=3168089 or http://dx.doi.org/10.2139/ssrn.3168089

Peter Swire (Contact Author)

Georgia Institute of Technology - Scheller College of Business ( email )

800 West Peachtree St.
Atlanta, GA 30308
United States
(404) 894-2000 (Phone)

Georgia Tech School of Cybersecurity and Privacy ( email )

Atlanta, GA 30332
United States

Cross-Border Data Forum

Jesse Woo

Kyoto University - Graduate School of Law ( email )

Yoshida-honmachi
Sakyo-ku
Kyoto, 606-8501
Japan

Do you have a job opening that you would like to promote on SSRN?

Paper statistics

Downloads
163
Abstract Views
1,242
Rank
301,772
PlumX Metrics