3. Privacy
Security and safety fears
hit smart metering
programme
– http://www.computerweekly.com/news/2
240114668/Security-and-safety-fears-
could-hold-smart-metering-programme-
back
Who owns my
data
Who has access
to my data
Can I see my
data
Can I delete my
data
What is my data
being used for
Why Smart People Are
Suspicious of Smart Meters
http://www.forbes.com/sites/williampentlan
d/2010/12/10/why-smart-people-are-
suspicious-of-smart-meters/
5. Inverting Data Ownership
DBApp 1
DBApp 2
DBApp 3
Company 1
Company 1
Company 1
User
User Contact
data
User Contact
data
User Contact
data
User Contact
data
Shifting data, under consumers control
6. STATE OF THE ART
(firefoxOS, ChromeOS, Tizen,
WebOS)
ADVANCED UBIAPPS
ARCHITECTURE
Web RendererPolicy
APIs
Contact
s
Packager
Apps
File
NFC
Locatio
n
Other…
Proprietary non
interoperable
package formats
Connection Manager
Simple
proprietary and
non manageable
policy
Non extensible
pre-defined API
set
PKI
Application logic
separated from UI for
security and flexibility
reasons
8. Technical questions that
require standards….
How to I call functions across devices?
How do I describe an API/functions?
How do I discover an API/Service?
How do I identify and object/device/thing?
How do I authenticate a user?
How do I authenticate a device?
How do connect locally (no internet)?
How do I manage permissions?
Is there anything different about IOT?
9. Webinos core
technology components
Specification Purpose
TLS Mutually authenticated TLS for secure bi-lateral
comms
PKI Distributed certificate schema for person/device
identity
OAauth Distributed authentication
WebIDL Definition of a functional interface
Feature-URI Distributed mechanism for method, permission
description
JSON-RPC Web friendly mechanism for remote method
invocation
XACML OASIS defined standard for general access control
Widget Spec Interoperable application packaging
Webinos-address Permanent web address for “entity”
Webinos-discovery Discovery algorithm: local and remote
9
11. Full Fat Version
Full Node
Works for 2Mb+ devices. Fully
node implementation.
Advantages
Full policy on devices
Device has own ID
On device programmability
Flexible Peer to peer
networking
11
Policy
APIs
Contact
s
Packager
Apps
File
NFC
Locatio
n
Other…
PKI
PZH PZH
PZP
12. Webinos Driver model
JavaScript Driver
Highly flexible model
Good for legacy devices
Very easy to develop for
Uses ID and policy from hub
12
Policy
APIs
SENSOR
Packager
AppsACTUATOR
NFC
Location
Other…
PKI
REST Serial Bluetooth ANT Other
13. Webinos lite (work in
progress)
MicroPZP
Target 64kb-2mb device range
Raw C++ implementation
stack
Shared secret identity
Lightweight TLS
Subset of policy
BSON alternative to JSON
TinyJS interpretation
Lightweight application signing
13
Policy
APIs
Contact
s
Packager
Apps
File
NFC
Locatio
n
Other…
PKI
PZH PZH
PZP
14. General Data Collector
Device
IOT Data
Collector
Websocket
Policy
APIs
SENSOR
Packager
Apps
ACTUATOR
NFC
Location
Other…
PKI
PZH
XML Http
TLS
Data Collection
Simple cloud entity
Collects pushed data via web
adaptors
Publishes realtime data via
web socket
Stores historical data
Generic Sensor adaptor
written on PZH
17. IOT Sensors and
Control
Same protocols – Same code works
with IOT devices
Heating management with Raspberry
PI
FS720
Simple JSON-RPC drivers
Full management on attached device
Remote management and “Service
Management”
Health devices also available
19. Telematics Insurance
UBI Insurance
Data from
- RPM, gears, temperature
- how fast you drive
- where you drive, when you
drive
- accelerometer, how fast you
break
Who owns this data
How long do they hold it for,
use it for
Who pays for the device
20. Health – Midwife
Scenario
UBI Insurance
Personal sensitive data
Shared at mothers discursion
Realtime observation and
triage
Multiple device types – no
locking
Community support, not just
single model
22. Products
Media Hub Health Hub Automation Hub Travel Hub
Stores,
aggregates and
plays media on
home devices.
Shares media,
and remotely
controls media
through cloud
Aggregates
multiple health
devices under
common data
dashboard.
Shares data with
friends and health
professionals
Pools sensors
and controls for
many home
automation
devices. Supplies
a primary
“controller”. Allows
remote control
and sharing
though cloud
Tracks cars and
car data. Shares
navigation data
with friends and
services. Shares
car mechanical
details with
mechanic
professionals
Four complementary hubs, All based on a home hosted Raspberry PI (or
alternative). Each hub addresses a different application with complementary
device ports.
All hubs have the ability (through a cloud service), to host backup and share data.
Also have access to 3rd party applications and services
23. Driver Examples
This should be our portfolio on website. Pictures of Kit. Plus SDK
and how to
ODB2 for
automotive. Uses
TNO serial driver
FS20 home
controller, Drivers
for 2.4 ghz.
Full suite of
drivers as (HTTP,
Serial) for arduino
SAT-IP driver to
implement TV
API
Zephyr HRM,
Bluetooth serial
for health
HMM heath
scales, HTTP
custom driver
A driver onto
native software.
VLC for renderer
Vehicle API
Generic S/A API
Generic S/A API
Generic S/A API
Generic S/A API
TV API
Audio /Video API
28. Innovation
New Stuff
All the new things you have
not thought of yet
- Eco +
- Media +
- Car +
- Health +
- Automation +
- PC +
- Mobile +
- Other
28
32. webinos Payment across
screens
A webinos browser comes with in-built NFC support and Payment API support
Retailers and brand owners can create websites that “add-value” to the physical
shopping experience
– Curated content: links to catalogue and stock data
– Media: links to magazines and articles that mention or are about this product
– Social: links to social media streams and commentary
All this can be delivered using standard HTML and JavaScript – using a universal
browser
Demo:
– Use of webinos Payment API
– Pay for goods shopped on one devices
with your wallet stored on your mobile:
Secure, Simple, Fast
– Read more:
http://www.webinos.org/blog/2013/02/22/webinos-payment-across-screens/
33. Katwarn
Emergency Warning
Katwarn is a service that informs citizens about
nearby emergencies in order to provide
possibilities for immediate reactions.
InRush will deliver a system for subscription on
emergency notifications and management of
counter-measures by extending the existing
Katwarn service.
Improved location awareness (dynamic notification
based on locations of the users devices) levaraging
on the webinos personal zone concept to address
people rather than devices.
InRush app does not need to be installed on each
device as webinos takes care on finding the
appropriate devices for notifying the citizen about
emergency cases.
Depending on the emergency level different actions
can be triggered on available devices.
Through the integration of IoT features, such as
sensors and actuators for home automation,
additional actions beside of notifications can be
taken: closing windows and doors automatically
based on certain alert level.
34. File Share
File Manager is an app for
"enhanced" file management.
It adds to the common file
management operations
(rename, copy, move..) features
to:
– Selectively share data among
personal devices and users.
– Controlling also who can
access what.
– Enable/disable version
management of files.
– Stick notes on data. These
notes may contain for example
comments or context related
information.
Webinos added value:
Support for
– Security and
synchronisation
– Device related and Context
based information
35. PC Mobile
Runtimes also provided for PC and
Mobile
PC and mobiles can share services
and APIs with each other
Full appstore integration and
commercialisation route fro web
applications
Rich API suite for enhance browser
experience
Entire software stack available as
open source
All protocols Open Standard
ensuring maximum cross device
interoperability
36. Partyplayer
Allows users to share
music stored on their
devices on other devices
(e.g. TVs)
In control of own data – data
remains on own device
Ad hoc sharing across devices
and users
Adding songs to a play list
Voting for favourite songs
39. 39
Approach
Focus on delivery on top of reseach
– Components not shell, rapid prototyping, iterative
development
Reuse specifications, innovate solutions for “the gaps”
Focus on openness and speed
Ensure long term duration
40. 40
webinos Technology
Platform positioning
Tizen B2GArduino PI
Chrome
OS
B2G
Tizen
ChromeO
S
Chrome
PhoneGap
Webinos – like Chrome – is a virtualised application environment
NOT and OS in its own right
41. 41
webinos Technology
Focus on open standards, innovation and security
webinos makes extensive use of node.JS to ensure OS portability
– node.JS is used as porting layer
– node.JS is used as server technology
– Android platform is based on “anode” open source project
webinos uses existing standards based web app technologies
– HTML 5
– JavaScript
– W3C API’s
– JSON-RPC
– + others
webinos incorporates an innovative user authentication concept
webinos connects all of a users devices and the cloud
webinos facilitates access to existing and new device resources
webinos design is driven to be secure and respect user privacy
42. 42
webinos Architecture
Focus on open standards, innovation and security
webinos Architecture & API specification
webinos Device/PZP Architecture
– PZH Farm
– webinos Networking model
webinos API’s
44. 44
webinos Architecture
Supporting a Personal Zone Concept
PZH Personal Zone Hub
• Single sign on / Auth
• Sync across devices
• Storage preferences, policies,
• Discovery & access
• Policy / Trust
PZP
Personal
Zone
Proxy
PZP PZP PZP
Personal Zone
PZH
PZP PZP PZP PZP
PZH
PZP PZP PZP PZP
3) Communication
between devices
(bearer independent)
2) Discovery, Authentication,
Syncronisation
1) Identified by a URL,
supports a RESTful API
based upon JSON RPC
45. 45
webinos Architecture
Supporting a Personal Zone Concept
TLS
Direct P2P
(e.g. Bluetooth, WiFi Direct)
TLS
Internet/Cloud
Local
John: PZH
(Personal Zone Hub)
Security Policy
Peter: PZP
Peter: PZPJohn: PZP
(Personal Zone Proxy)
Security Policy
Peter: PZH
(Personal Zone Hub)
Security Policy
Peter: PZP
Peter: PZPPeter: PZP
(Personal Zone Proxy)
Security Policy
Devices Devices
Peter’s Personal Zone John’s Personal Zone
TLS
Server / PZH
(Logical Entity)
Server / PZH
(Logical Entity)
46. 46
webinos Architecture
Supporting a Personal Zone Concept - reproducable
46
John: First PZP
(Personal Zone Proxy)
John: PZH
(Personal Zone Hub)
Security Policy
Peter: PZH
(Personal Zone Hub)
Security Policy
Security Policy
PZH “Farm”
Security Policy
Routing
Peter: Second PZP
(Personal Zone Proxy)
Security Policy
QRCode or NFC
QRCode
Peter PZH John PZH
Internet/Cloud
Local
Peter: First PZP
(Personal Zone Proxy)
Security Policy
PZH Server Farm
PZH Server
(Logical Entity)
PZH Server
(Logical Entity)
PZP (device)PZP (device)PZP (device)
47. 47
webinos Architecture
Complementing device OS and browser app
PZH
Native Device OS
webinos API
PZPBrowser/ Widget
Web Runtime
Messaging Manager
Widget
Manager
Discovery Manager
Context Manager
TLS
Session Manager
Native Discovery
Mechanisms
Drivers
Routing
User Data Device
TLS Authentication HTTP
S
(Currently WebSocket)
Certificate Manager Key Storage
RPC Handler/Manager
Messaging queueError recovery
APIs
APIs
APIs
APIs
APIs
RPC
PolicyManager
Sync Manager
Yet to be
Implemented
48. Sharing services
Webinos Private
Cloud
Connections between
People
Users devices
Personal Cloud
Agent (PZH)
Widget
Policy
APIs
Widget
Policy
APIs
Widget
Policy
APIs
Connections between
devices
Server based agent
- issues identities (PKI)
- acts as messaging hub
for devices
- synchronisation agent
for data
Data and services can be
shared securely with other
people using
permissioning
infrastructure XACML
+PKI
Private cloud is a
secure virtual
network connecting
all devices over
open standards
Webinos browsers (PZP) running
on devices act as browsers and
local servers, allowing them to
communicate with each other
locally and remotely
Other
PZH
JSON-RPC
W3C Widgets
PKI
TLS
XACML
WebIDL
Feature URI
OpenID
mDNS
Services defined by
WebIDL – discovered
using feature URI
49. Webinos Open Source
Assets
An open
source web
platform for
running
applications
on and
across
multiple
devices
htttp://developer.webions.org
http://www.webinos.org/blog/2013/02/19/webinos-and-iot-applications/
51. UbiApps Products
UBI
TV
UBI
IOT
UBI
EMS
TV Software platform based on
HTML
Widget based application
ecosystem
Cross device (mobile control)
Local and cloud media sharing
High performance graphics
options
Device porting and optimisation
Pre integrated: Health, Heating
and Telematics devices
IOT data management
framework
IOT dat/service a sharing
framework
Device porting and optimisation
Enterprise grade security for
HTML5 and cloud solutions
Optimised and secure
networking
Remote application
management
Remote device/Service
management
Encrypted data at rest
52. Follow up
website • http://webinos.org
Developer
site
• http://developer.webinos.org
Downloads
• https://developer.webinos.org/webinos-
installers
Email • hello@webinos.org
Press • press@webinos.org
Twitter • @webinosproject
Webinos project is keen to hear
from press, application developers
and new project contributors
UbiApps can help with
deployments of IOT and Web
applications
website • http://www.ubiapps.com
mail • nick@ubiapps.com
55. Privacy
Security and safety fears
hit smart metering
programme
– http://www.computerweekly.com/news/2
240114668/Security-and-safety-fears-
could-hold-smart-metering-programme-
back
Who owns my
data
Who has access
to my data
Can I see my
data
Can I delete my
data
What is my data
being used for
Why Smart People Are
Suspicious of Smart Meters
http://www.forbes.com/sites/williampentlan
d/2010/12/10/why-smart-people-are-
suspicious-of-smart-meters/
56. Technical questions that
require standards….
How to I call functions across devices?
How do I describe an API/functions?
How do I discover an API/Service?
How do I identify and object/device/thing?
How do I authenticate a user?
How do I authenticate a device?
How do connect locally (no internet)?
How do I manage permissions?
Is there anything different about IOT?
58. How do I identify an
object?
http://en.wikipedia.org/wiki/Uniform_resource_identifier
URI
UNIVERSAL RESOURCE IDENTIFIER
Webinos Private
Cloud
Users devices
Personal Cloud
Agent (PZH)
https://her_domain.com/webinos/other_user/laptop/urn:services-webinos-
org:calender#A0B3
59. How do I authenticate a
device?
PKI
TLS
Root CA
Mutually
authenticated
using TLS and
pre shared keys
Key distribution
protocol
Device issue
certificate
60. How do I authenticate a
user?
OpenIDOpenID
OAuth
Device based ID
OPenID
PZH
61. How do I discover a
service?
Webinos Private
Cloud
Personal Cloud
Agent (PZH)
Webinos Private
Cloud
Personal Cloud
Agent (PZH)
Widget Feature URI
XMPP SDP WSDL
62. How do I authorise
someone/ to something?
Webinos Private
Cloud
Personal Cloud
Agent (PZH)
Webinos Private
Cloud
Personal Cloud
Agent (PZH)
XACML
Policy
Policy Policy
Policy
63. How do I work offline?
Personal Cloud
Agent (PZH)
Personal Cloud
Agent (PZH)
Policy
Policy
mdns
66. Decoupled Browser
(Warning disruptive!!)
Standard Browser
(Firefox, Chrome, Safari ec..)
Supporting web sockets
Websocket – with
domain origin test
Widget URI OR HTTP
URI OR FILE URI
Also remote http (normal
website)
User grants access
of domain to feature
(ala geo-location)
Policy
APIs
Contacts
Calendar
GeoLocation
Orientation
Others
Packager
Apps
+DecoupleAppstore
67. Server
webinos for M2M/
webinos for server apps
Policy
APIs
Contacts
Calendar
GeoLocation
Orientation
OthersPackager
Background
Apps
NO UI
Web Services and
Embedded
Servers very
similar
68. Two methods of IOT
integration
API Driver
Fully addressable
object
69. Sensor Device
Gateway PZP
API Drivers
WebIDL
Generic
Sensor
Generic
Actuator
Server
Apps
Policy
APIs
Arduino Serial A
Arduino Serial B
Arduino HTTPS
Zigbee
Bluetooth HRM
CANBus
E,g
• PC
• Phone
• Rasperry Pi
Configuration
71. Health Care
Permissioning and Privacy
Example
DOCTOR 1
DOCTOR 2
TRAINER 2
Micro PZP
Micro PZP
PZH ?
Same scenario for In car telematics and
swapping insurers.
Same scenario for Smart Meters.
72. UbiApps
UbiApps is an enterprise management solution
for HTML5 applications.
Supports PC, Tablets, Mobiles, Automotive, TV and
IOT
Manage Devices, Applications and Data Streams
75. the value of open
webinos supports 3 essential open principles that we believe
are essential for long term success and help foster innovation
Open Standards
• All webinos standards are created under a royalty free
IPR framework ensuring anyone can implement
without licence fee and ensuring compatibility with
W3C specifications
Open Source
• Webinos code is delivered under Open Source license,
delivered under an open community. This ensures
widest participation and minimised the fragmentation
(we do not anticipated multiple implementations)
Open Market
• Webinos technology is AppStore agnostic. Unlike
Chrome or Mozilla, we encourage many appstores,
not just one - under an open web friendly ethos.”
76. webinos: key deliveries
Five Target Devices
7 Ported OS’s
Platform
• Platform for all devices includes client side super-browser and
server side user agent all connected via a private cloud – all
delivered as Apache 2.0 Open Source
APIs • 28 Powerful JavaScript APIs for accessing data
Apps Store • A model for connecting to Appstore that is vendor independent
Security
• A comprehensive security model for handling identify and policy
across devices and people in a distributed manner
Applications • A selection of compelling demo applications for each device type
SDK and Portal
• An Open Source portal, SDK and Developer tools to help with
ecosystem development
77. how it works
Webinos Private
Cloud
Connections between
People
Users devices
Personal Cloud
Agent (PZH)
Widget
Policy
APIs
Widget
Policy
APIs
Widget
Policy
APIs
Connections between
devices
Server based agent
- issues identities (PKI)
- acts as messaging hub
for devices
- synchronisation agent
for data
Data and services can be
shared securely with other
people using
permissioning
infrastructure
Private cloud is a
secure virtual
network connecting
all devices over
open standards
Webinos browsers (PZP) running
on devices act as browsers and
local servers, allowing them to
communicate with each other
locally and remotely
Other
PZH
JSON-RPC
W3C Widgets
PKI
TLS
XACML
RESTful
MQTT
CoAP
78. how it works
Webinos Private
Cloud
Connections between
People
Users devices
Personal Cloud
Agent (PZH)
Widget
Policy
APIs
Widget
Policy
APIs
Widget
Policy
APIs
Connections between
devices
Server based agent
- issues identities (PKI)
- acts as messaging hub
for devices
- synchronisation agent
for data
Data and services can be
shared securely with other
people using
permissioning
infrastructure
Private cloud is a
secure virtual
network connecting
all devices over
open standards
Webinos browsers (PZP) running
on devices act as browsers and
local servers, allowing them to
communicate with each other
locally and remotely
Other
PZH
79. Connects Vehicle
Provides an open web applications
platform for rapid development of
– Navigation functions
– In car media
– In car messaging/communications
– Engine monitoring
– Driver assist
Allows mobile to directly and securely
access realtime and historical car data
and services
In car “private cloud” gives seamless
secure interaction with phones at
tablets
Remote “private cloud” means
telematics, engine data and driving
behaviour can be shared with 3rd
parties (new business models)
80. Connects TV
Provides an open web applications
platform for rapid development of
– Streaming TV
– Media: Videos, Pictures Music
– Appstore and Games
Local wifi “private cloud” gives seamless
secure interaction with phones at tablets
– Use as remote control
– User to watch or sync media
– Use dual screen app - e.g. dual screen advertising
Remote “private cloud” means media and
experience can be shared with friends
long distance
All protocols and code are open, meaning
no technology lock-in – maximum
interoperability
Party Player app: examples of fun
community based cross device
applications
81. Connects Sensors
Provides software stack implementing
multiple protocols for Internet of Things
attachment
Implemented on Arduino boards and
embedded Linux
Hub allows user to manage access to
data to all devices from a centralised
place
Access currently provide to
– Multiple sensors (temperature, humidity, light)
– Multiple actuators (switches , valves)
– Heating control systems
– GPS monitors
– Health monitors (Heart Rate etc)
82. webinos payment and
retail
Your phone as your “personal” “intelligent”
scanner.
A webinos browser comes with in-built NFC
support and Payment API support
Retailers and brand owners can create websites
that “add-value” to the physical shopping
experience
– Curated content: links to catalogue and stock data
– Media: links to magazines and articles that mention
or are about this product
– Social: links to social media streams and commentary
Deutsche Telekom integrated wallet exposed
through payment API – means payment can be
simple, fast and secure
All this can be delivered using standard HTML
and JavaScript – using a universal browser
Also demoing cross device payment – pay for
movies on your TV from your secure mobile
phone
83. InRush
Katwarn is a service that informs citizens about
nearby emergencies in order to provide
possibilities for immediate reactions.
InRush will deliver a system for subscription on
emergency notifications and management of
counter-measures by extending the existing
Katwarn service.
Improved location awareness (dynamic notification
based on locations of the users devices) levaraging
on the webinos personal zone concept to address
people rather than devices.
InRush app does not need to be installed on each
device as webinos takes care on finding the
appropriate devices for notifying the citizen about
emergency cases.
Depending on the emergency level different actions
can be triggered on available devices.
Through the integration of IoT features, such as
sensors and actuators for home automation,
additional actions beside of notifications can be
taken: closing windows and doors automatically
based on certain alert level.
84. Connects PC and Mobile
Runtimes also provided for PC and
Mobile
PC and mobiles can share services
and APIs with each other
Full appstore integration and
commercialisation route fro web
applications
Rich API suite for enhance browser
experience
Entire software stack available as
open source
All protocols Open Standard
ensuring maximum cross device
interoperability