IoT Standards in 2019: Semantics, Security and Social Issues

The sprawling IoT market has had more than 10 years to establish standards and best practices to move it forward.

But that doesn’t mean the job is done. We asked seven experts to weigh in on the state of IoT standards in 2019 and their answers reflected both the growing maturity of the market and the continuing struggles.

There’s no question that IoT adoption is growing. Today more than 25 percent of companies are involved with the Internet of Things, according to the 2018 survey from the IoT World Today Implementation Practices Survey And nearly 30 percent of those happiest with their IoT projects said they have 100 or more IoT initiatives underway. IoT’s popularity is well matched with the wide array of standards that exist today – Postscapes identifies nearly 90 different IoT standards across eight categories that have been developed by more than 26 organizations and alliances.

It’s a complicated landscape, in part, because “you don’t know which standards you need until you know what you need,” said Industrial Internet Consortium’s Executive Director Richard Soley. “And most of the standards are developed in a vacuum.” The standards also have to cover a large number of technologies, said ARM’s Vice President for Developers Zach Shelby. “IoT is not mobile,” Shelby said. “There is not a single adjustable set of devices with a small number of operating systems and app ecosystems. We don’t have that and we never will have that because there are so many different markets with heterogeneous applications that need different types of devices and different types of connectivity. It takes an ecosystem to solve that problem.”

Start With the Basics

Luckily, the IoT ecosystem has been working for years on standards. “There are plenty of existing standards, a veritable alphabet soup of acronyms,” said Paul Bevan, research director: IT infrastructure with Bloor Research, in an email. “(The existing standards) cover the four component parts of an IoT implementation … the devices that collect data and respond to commands, the hubs that concentrate and co-ordinate local groups of devices, gateways that act as the interface to the internet and the centralized data systems. All these are covered by well-defined standards.”

But for Bevan, Shelby and other experts, the time has come to look both more broadly — at the development of sweeping reference architectures — and in a more detailed way. Bevan pointed to the IIC Reference Architecture — one developed with feedback from 26 test beds around the globe — as a commendable cross-industry standards-driven project.

Meanwhile, IEEE is working on a specific standard aimed at vertical IoT implementations. Given IoT’s scope, standards organizations have to start broadly and then drill down, explained Sri Chandrasekaran, director of standards and technology with IEEE. “Typically, once we develop an architecture for the top level, we do a deep dive into the verticals to demystify specific activities in industries like transportation, health care and retail,” Chandrasekaran said. The fundamental protocols have long been established, he said, so the time is right to expand them. In fact, IEEE’s P2413, which is currently undergoing a vote, is a standard for an IoT architectural framework that will spell out the relationships among implementations in vertical markets and expand on the existing reference architecture.

The Devil’s in the Details

More specific standards sound like a great idea, but IIC’s Soley is quick to point out the difficulties. “We’ve solved the easiest problem so far — how to get the data from here to there,” he said. “It’s much harder to solve the problem of what do those bits mean. Capturing semantics is a lot harder than moving things from here to there.” Soley sees 2019 as the year when the hard work is  begin when it comes to semantic standards, though he said the issue has been talked about for a while. Germany’s Industrie 4.0 organization is working on this problem, he said, as is the National Institute of Standards in the U.S. “But what’s really going to matter here is what manufacturers are actually going to use,” he said. “It’s always true for standards – we call it a standard but it’s only really a standard if it’s what people use.”

And what people use really is the point, Shelby stressed. “Extensions to standards are needed, but there is too much focus on standards and on protocols,” he said. “Everyone wants to create their own standards and lots of people are working on it, but it’s a little distracting when new things pop up.” Too much focus on a particular protocol takes away from the bigger picture. “Specific protocols or specific device management matters less than what we can provide at scale and make sure it works well and that the security is perfect. That matters more than protocol A or B.”