Privacy Preserving Video Monitoring

Data protection and traceability in the automobile and sensitive industrial sectors

© Fraunhofer AISEC

The use of footage from dashboard camera video is governed by Singapore's Evidence Act. In the event that other sources evidence proves to be inconclusive, dashcam evidence may provide help to the police in identifying any wrongdoer. At least as long as there is no tampering of the device, dashcam footage can be used as evidence.

What many motorists are not aware of: the occasionless and above all the permanent filming through the windshield might violate the Personal Data Protection Act (PDPA) and the personal rights of road users. while some personal data, such as faces, or voices, might be captured images in pclosed areas. Then the PDPA or company regulations - particularly on obtaining consent - apply. In addition in situations where uploading video footage could get an individual in trouble - for instance, if the footage contains private and confidential information.

Fraunhofer is currently developing a data protection-compliant dash cam with the Privacy BlackBox, which works like a normal dash cam, but guarantees the protection of personal data through the two-tier solution concept.

Privacy BlackBox

With the Pricavy BlackBox, Fraunhofer has developed a data recording device that enables decentralized storage of the collected data and guarantees strict control over the access and transfer of the data through various security mechanisms.

Application scenarios

The Privacy BlackBox can be used in different scenarios.

Automotive sensors and dash cams for driver and vehicle safety

The use of sensors and cameras in modern cars has already become standard today. From the classic parking aid to the self-driving car - all this is only possible through the installation of extensive sensors. In addition to the functional control of the vehicle and the analysis of the driving style, dash cams can also collect important information that can provide information about the course of the accident. Especially when recording environments and people, dash cams often collect data that may violate personal rights or bring trade secrets to light. For this reason, special protection of sensitive data is also required here in order to meet the requirements of the GDPR.

 

Technical testing in industry

Regular checks and checks of the condition of plants and machines are of significant importance for a smooth production process. The correct procedure of the examiners can also be controlled and logged by video recordings. However, not only company-secret information is collected, but also personal data that must be protected and requires strict access control.

Two-tier solution concept

Trusted data recording device Digital trustee infrastructure
  • Decentralized data storage on the device or a defined medium
  • Operator-safe encryption of the data immediately after recording
  • Fully functional even in offline operation
  • Secure protection against attacks
  • No direct access to data by trustees (even in encrypted form)
  • Definition of data access policies and policies for certain data recording devices or Application scenarios
  • Generation of access keys when predefined conditions occur
  • Traceability and secure logging of events

Prototype Implementation

The data recording device, which was developed by the researchers of Fraunhofer, can be used both as a dash cam and as an industrial data recorder:

  • Based on an embedded platform
  • Connection to different sensors possible
  • Advanced security mechanisms
    • Hardware-supported cryptography and protection of key material
    • Secure booting and protection of software integrity
    • Protection against physical attacks (e.g. violent opening of the housing)