ASIAPACIFIC TELECOMMUNITY The 28 th APT Standardization Program

ASIA-PACIFIC TELECOMMUNITY The 28 th APT Standardization Program Forum (ASTAP-28) 6 - 10 March 2017, Bangkok, Thailand Web of Things: W 3 C Vision & Roadmap on Io. T Standardizations Chunming Hu W 3 C/Beihang University China Tel: 86 -10 -82339679 Fax: 86 -10 -82339679 Email: hucm@w 3. org

Lead the Web to Its Full Potential Anyone Anytime Anywhere Any Device

Global Presence of W 3 C Global Hosts W 3 C Global Offices

A NEW WAVE Of TRANSFORMATIONS 4

Member Invited Expert Web Standards Public W 3 C Team

We Build Royalty-Free Standards! W 3 C Patent Policy Free Web Standards for All！

Process for W 3 C Recommendations

Many Potential Io. T Application Areas Each Evolving Rich Capabilities! Smart Homes Power & Environment Wearables Smart Cities Page 8 of 50 Healthcare Manufacturing [10/27/2021]

Io. T Landscape Page 9 of 50 [10/27/2021]

The Internet of Things • Still very immature, but with massive potential • Lack of interoperability at the application level – Data silos are holding back the potential • Open or closed system? – Closed systems incentive: control – Open systems prompt: reduced costs and increased market size – Re-priseof “the Web” Page 10 of 50 [10/27/2021]

Bridging the Silos Isolated Io. T products create data silos – Vendors use fixed cloud address for devices to upload data to – Incompatible protocols, formats and data models Silos hinder creation of services that combine different data – How to enable easy integration of data sources? The Web is the framework that offers a unifying approach: – For simplifying application development across many platforms – For metadata as a basis for discovery, interoperability, and open markets of services Page 11 of 50 [10/27/2021]

Analogy with Early Days of Networking • Before the Internet there were many incompatible networking technologies • IP made it simple to connect different network technologies development • Standard sockets API independent of the underlying networks – Simplifying application development • Network services took off with the introduction of IP – Bigger markets and Lower costs – The network effect • The Web and exponential growth Page 12 of 50 [10/27/2021]

The Io. T Standardization Challenge Page 13 of 50 [10/27/2021]

The Web of Things Diversity Applications Internet of Things: Connectivity IEEE 802. 15. 4 Ethernet Wi-Fi Page 14 of 50 Bluetooth Lo. Ra [10/27/2021]

Then, the Web! • Web is a network of resources – Resource is an abstract concept – Resource need to be represented, with multiple approaches – Resource can be operated with open protocols – URI is the unique identifier of a resource • https: //www. w 3. org/TR/webarch/ Page 15 of 50 [10/27/2021]

Then, the Web! The Web is fueling a transition from costly monolithic software to open markets of apps, with introducing Thing as another Resource Provide Resource Abstractions on the Web Bridges & Interoperability Reducing Complexity & Cost Extensive Semantics to support automation Page 16 of 50 [10/27/2021]

Why is Semantics Important? What is the relevance to digital automation? W 3 C Semantic Web Standards Stack – Shared vocabularies for entities and their relationships – Describing the software objects that stand for physical or abstract “things” – Intelligent Discovery: When searching for services with a given semantics – Workflow & Automation: To facilitate the design of service compositions – Optimal planning for flexible production of given products Page 17 of 50 [10/27/2021]

Wo. T: Where the Web meets Io. T Diversity Applications Web of Things … Internet of Things: Connectivity IEEE 802. 15. 4 Ethernet Wi-Fi Page 18 of 50 Bluetooth Lo. Ra [10/27/2021]

Communications Stack with A Clean Separation of Concerns Application Developer (Wo. T focus) Platform Developer Application Scripts that define thing behaviour in terms of their properties, actions and events, using APIs for control of sensor and actuator hardware Things Software objects that hold their state Abstract thing to thing messages Semantics and Metadata, Data models and Data Transfer Bindings of abstract messages to mechanisms provided by each protocol, including choice of communication pattern, e. g. pull, push, pub-sub, peer to peer, etc. Transport REST based protocols, e. g. HTTP, Co. AP Pub-Sub protocols, e. g. MQTT, XMPP Others, including non IP transports, e. g. Bluetooth Network Underlying communication technology with support for exchange of simple messages (packets) Many technologies designed for different requirements (Io. T focus) Page 19 of 50 [10/27/2021]

The Web of Things: Basic Ideas at W 3 C • Making life easier for application developers by 0. Leveraging the existing comm protocols 1. Providing a simple scripting model – Things standing for physical and abstract entities – Things as software objects with properties, actions and events – Applications scripts decoupled from underlying protocols which can be selected according to need – Based upon rich metadata 2. Server creates a software object (The Thing) based upon the thing's description – What properties, actions and events does it have? Page 20 of 50 [10/27/2021]

The Things: An Abstraction Applications act on software objects that stand for things – Local “things” – Remote “things Rich descriptions for every “thing” – Data models, semantics, metadata – Ontologies that describe “things” Things don’t need to be connected – Abstract entities and unconnected physical objects Page 21 of 50 [10/27/2021]

Metadata as key to Platform of Platforms • Different platforms using different technology standards, different protocols and different data formats • Web of Things as abstraction layer over these platforms • Application logic decoupled from the underlying platforms • Servers rely on rich metadata to communicate Page 22 of 50 [10/27/2021]

One Level Deeper on Horizontal Metadata Core metadata applicable across application domains Thing descriptions • Links to thing semantics • Data models and relationships between things • Dependencies and version management • Discovery and provisioning • Bindings to APIs and protocols Communication related metadata • Protocols and ports • Data formats and encodings • Multiplexing and buffering of data • Efficient use of protocols Security related metadata • Security practices • Mutual authentication • Access control • Terms and conditions -relationship to “Liability” • Payments • Trust and Identity Verification • Page. Privacy 23 of 50 and Provenance [10/27/2021] • Safety, Compliance and Resilience

Dependencies across Things • One thing may depend upon another – Agent example which depends on door and light • The dependent things may be on different servers • When you're setting up a thing, the things it depends upon may not be available right now even it is on the same server – This requires a means to wait for them to become ready • Cyclic dependencies – A depends upon B which depends upon C which depends upon A • Server hold messages for things until they have started – Avoids the need for messages that signal when things are ready Page 24 of 50 [10/27/2021]

Thing Descriptions Server uses URI for a thing to download its description and create a local proxy object for use by scripts Page 25 of 50 [10/27/2021]

Thing as Agent Page 26 of 50 [10/27/2021]

Thingsonomies • The purpose of a “thing” can be defined formally in respect to an ontology • The purpose can be defined informally using free text, e. g. as one or more tags chosen by the maintainer • Co-occurrence of tags across many “things” performs an informal expression of semantics – In same way as folksonomies for images or blog posts • Statistical treatment of natural language and cognitive models make this increasingly attractive, e. g. – Apple Siri – Google Now – IBM Watson Page 27 of 50 [10/27/2021]

Communication Patterns • The properties for a given thing can be updated by the application script on the server hosting the thing, and by applications scripts on servers hosting proxies for that thing • The proxies form a tree rooted in a thing • Updates can be pushed from the thing to its proxies • Updates can be pushed from a proxy to the thing, and from there to the other proxies • Push can be related to pub-sub and message routing • Another approach is to pull updates via polling Page 28 of 50 [10/27/2021]

Metadata as Basis for Decoupling Services from Protocols Page 29 of 50 [10/27/2021]

For example: Communications It is all in the metadata! • Smart meters vs Security Cameras vs. . . – Small amounts of data that isn't time critical – Large amounts of data that is needed in real-time – Privacy sensitive data e. g. health sensors • Multiplexing data from sensor networks • Pushing Interpretation to the Network Edge – Upload scripts to Web of Things server (hubs) – Reduces amount of data to be sent over network • Pushing control to the Network Edge – Clock synchronisation across group of controllers • Coordinated control of actuators, e. g. traffic lights, factory floor • The need to collect representative use cases Page 30 of 50 [10/27/2021]

Related Issues: Security & Resilience • Safety and compliance – Ensuring that cyber-physical systems are safe and comply with all applicable legislation and guidelines • Secure by design – – Strong authentication Encrypted communications Tamper proof storage of keys and credentials Best practices for provisioning and security updates • Resilience is about coping with faults, demand spikes and cyber-attacks – How to predictably and gracefully adapt to threats – System level response – Need for monitoring to detect problems • Trip-wires/Abnormal behaviours Page 31 of 50 – Defence in depth with security zones [10/27/2021]

Credentials • Attestations by trusted 3 rd party about the attributes of an identity – Needed to tie web identity to real-world identity – Applicable to people, Io. T devices, services, . . . • Increasingly important for an online world • Ephemeral vs Long Lived credentials – Reduced risks through short lived credentials issued against a session ID • Potential role for secure elements • W 3 C is collecting use cases and requirements with a view to a Credentials Working Group Page 32 of 50 [10/27/2021]

Authentication • W 3 C is seeking to move the Web away from user name and password – Increasing emphasis on public key cryptography – Learning lessons from experience with PKI • New Web Authentication WG planned with support from the FIDO Alliance and other groups – Multi-factor authentication as appropriate to context – Focus on assuring that this is the same device+user as when the user account with the website was originally set up – Does not address binding of Web Identity to Real-World Identity • W 3 C hardware based Web Security WG – Leveraging secure elements of various kinds including SIMs • Secure tamper-proof storage and computation – Provisioning opportunities and management of updates Page 33 of 50 [10/27/2021]

Horizontal and Vertical Metadata Vocabularies Industry specific groups are in best position to define vocabularies for each vertical W 3 C core metadata vocabularies used across application domains Page 34 of 50 [10/27/2021]

Enabled by Semantics, Metadata and Data Models Discovery of services – The benefits of a lingua franca, and its limitations Composition of services – From different vendors for an open market of services Monetization of services – Support for a wide variety of models Security, privacy, safety, compliance, trust, resilience Scaling on multiple dimensions – From microcontrollers to massive cloud-based server farms Page 35 of 50 [10/27/2021]

Wo. T Activities in W 3 C Wo. T IG: Targeting at: - Discovery - Scripting APIs - Security & Privacy - Thing Description June 2014 Jan 2015 1 st Wo. T Workshop W 3 C Launch the Wo. T Interest Group W 3 C Wo. T Community Group provides an informal, pre-standards discussion forum to research, prototype, and create working systems for the Web of Things. W 3 C Wo. T Interest Group provides a forum for technical discussions to identify use cases and requirements for open markets of applications and services based upon the role of Web technologies for a combination of the Internet of Things (Io. T) with the Web of data. Page 36 of 50 [10/27/2021]

Wo. T Activities in W 3 C June 2014 2015 April 2016 1 st Wo. T Workshop W 3 C Launch the Wo. T Interest Group Wo. T IG F 2 F Montreal, Canada July 2016 Sept 2016 Wo. T IG F 2 F IIo. T World Beijing, China Berlin Open Io. T Summit Page 37 of 50 [10/27/2021]

Wo. T Activities in W 3 C June 2014 2015 April 2016 1 st Wo. T Workshop W 3 C Launch the Wo. T Interest Group Wo. T IG F 2 F Montreal, Canada July 2016 Sept 2016 Wo. T IG F 2 F IIo. T World Beijing, China Berlin Open Io. T Summit Dec 2016 W 3 C Launch the Wo. T Working Group 2016 -2018 W 3 C Wo. T Working Group chartered to develop cross platforms standards for thing descriptions and APIs, as well as collaborating with external groups on support for particular Io. T platforms. Homepage: https: //www. w 3. org/2016/12/wot-wg-2016. html Page 38 of 50 [10/27/2021]

Roadmap: Deliverables of W 3 C Wo. T WG • Normative Specifications – Wo. T Architecture ( in 12 months ) – Wo. T Thing Description ( in 22 months ) – Wo. T Scripting APIs (in 22 months ) • Informative Specifications – Wo. T Binding Templates • Other Deliverables – Wo. T Test Cases Page 39 of 50 [10/27/2021]

Referenced Architecture for Wo. T Thing Images in the Cloud Hub Wo. T Servient � 用脚本 运行� 境 Wo. T Servient � 源模型 � 用脚本 ��� 定 运行� 境 Thing Description Web Access � 源模型 Scripting APIs For app developers ��� 定 Semantic Model Web Browser Wo. T Servient � 用脚本 运行� 境 � 源模型 ��� 定 运行� 境 Compatible to existing Io. T Devices Thing Description Page 40 of 50 � 源模型 ��� 定 Thing to Thing Communication [10/27/2021]

Wo. T Interfaces, Servients & Protocol Bindings • Wo. T Interface is an network accessible interface of servient • Servient hosts multiple Things with URI as resource identifier Wo. T Servient Resource Model Wo. T Servient http: //wot. example. com/res Resource Model Protocol Binding Wo. T Interface Specific Protocols HTTP, Co. AP, … Page 41 of 50 [10/27/2021]

How to use Wo. T Servient? Automatically? What is the data type and meaning of the sensing data? Wo. T Servient Resource Model Which type of protocols are supported? How can I access the Thing data & functions? How can I handle the Thing? Functions? Protocol Binding Wo. T Interface Who are you ? (Identity) Is there security constrains? (Authorizations, policies) W 3 C Thing Descriptions Page 42 of 50 [10/27/2021]

How to implement a Wo. T Servient? Wo. T Servient Resource Model Protocol Binding Wo. T Interface Abstract Wo. T Servient Model Page 43 of 50 [10/27/2021]

Interoperability Demo & Test: Plugfest • Coordinated by Wo. T IG Page 44 of 50 [10/27/2021]

Global Participation Page 45 of 50 [10/27/2021]

W 3 C Activities in Wo. T Peer Organizations • • • IETF Authentication and Authorization for Constrained Environments (ace) Working Group IETF Core Working Group One. M 2 M OPC Foundation. Open Connectivity Foundation IPSO Alliance GSMA Industrial Internet Consortium Io. T Security Foundation Plattform Industrie 4. 0 W 3 C Groups • • Page 46 of 50 Web of Things Interest Group Accessible Platform Architectures Working Group Device and Sensors Working Group Efficient XML Interchange Working Group Spatial Data on the Web Working Group Web and Automotive Business & Working Groups TV Control Working Group [10/27/2021]

Building Momentum through the Maker Community Page 47 of 50 [10/27/2021]

Summary: The Web is essential for realizing the full potential of the Io. T The Web provides a unifying framework for semantic interoperability The Web acts as a global marketplace for suppliers and consumers of services Page 48 of 50 [10/27/2021]

Enables An Open Market of Things Apps for connecting suppliers and consumers • Analogous to marketplaces of apps for smart phones • SME’s can script apps to suit their specific needs Marketplace features • Discovery, reviews, recommendations, ranking/reputation • Dynamic composition to match given requirements • Automated negotiation of contracts to save time and money Lifecycle support • Developing, testing, publishing, vetting, updates, obsolescence Page 49 of 50 [10/27/2021]

Thank You! Join W 3 C to Build a Great Web of Things! • Acknowledgements: – The contents of the slides is reproduced from Jeff Jaffe, Dave Ragget , Philip Hoschka, Yingying Chen, Angel Li, and other materials from W 3 C global team and Wo. T IG/WG homepage – Thanks goes to Angel Li for generating the initial draft of this slides. Page 50 of 50 [10/27/2021] – More Information, please refer to www. w 3. org , and www. chinaw 3 c. org.