Saved in:
Bibliographic Details
Main Authors: Sabbineni, Aditya, Nagare, Pravin, Dahiphale, Devendra, Dedu, Preetam, Lopes, Willison
Format: Preprint
Published: 2026
Subjects:
Online Access:https://arxiv.org/abs/2604.07839
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866914461184425984
author Sabbineni, Aditya
Nagare, Pravin
Dahiphale, Devendra
Dedu, Preetam
Lopes, Willison
author_facet Sabbineni, Aditya
Nagare, Pravin
Dahiphale, Devendra
Dedu, Preetam
Lopes, Willison
contents The rapid expansion of the Internet of Things (IoT) and smart home ecosystems has led to a fragmented landscape of user data management across consumer electronics (CE) such as Smart TVs, gaming consoles, and set-top boxes. Current onboarding processes on these devices are characterized by high friction due to manual data entry and opaque data-sharing practices. This paper introduces the User Data Sharing System (UDSS), a platform-agnostic framework designed to facilitate secure, privacy-first PII (Personally Identifiable Information) exchange between device platforms and third-party applications. Our system implements a Contextual Scope Enforcement (CSE) mechanism that programmatically restricts data exposure based on user intent - specifically distinguishing between Sign-In and Sign-Up workflows. Unlike cloud-anchored identity standards such as FIDO2/WebAuthn, UDSS is designed for shared, device-centric CE environments where persistent user-to-device binding cannot be assumed. We further propose a tiered access model that balances developer needs with regulatory compliance (GDPR/CCPA). A proof-of-concept implementation on a reference ARMv8 Linux-based middleware demonstrates that UDSS reduces user onboarding latency by 65% and measurably reduces PII over-exposure risk through protocol-enforced data minimization. This framework provides a standardized approach to identity management in the heterogeneous CE market.
format Preprint
id arxiv_https___arxiv_org_abs_2604_07839
institution arXiv
publishDate 2026
record_format arxiv
spellingShingle A Hardware-Anchored Privacy Middleware for PII Sharing Across Heterogeneous Embedded Consumer Devices
Sabbineni, Aditya
Nagare, Pravin
Dahiphale, Devendra
Dedu, Preetam
Lopes, Willison
Cryptography and Security
Human-Computer Interaction
Operating Systems
The rapid expansion of the Internet of Things (IoT) and smart home ecosystems has led to a fragmented landscape of user data management across consumer electronics (CE) such as Smart TVs, gaming consoles, and set-top boxes. Current onboarding processes on these devices are characterized by high friction due to manual data entry and opaque data-sharing practices. This paper introduces the User Data Sharing System (UDSS), a platform-agnostic framework designed to facilitate secure, privacy-first PII (Personally Identifiable Information) exchange between device platforms and third-party applications. Our system implements a Contextual Scope Enforcement (CSE) mechanism that programmatically restricts data exposure based on user intent - specifically distinguishing between Sign-In and Sign-Up workflows. Unlike cloud-anchored identity standards such as FIDO2/WebAuthn, UDSS is designed for shared, device-centric CE environments where persistent user-to-device binding cannot be assumed. We further propose a tiered access model that balances developer needs with regulatory compliance (GDPR/CCPA). A proof-of-concept implementation on a reference ARMv8 Linux-based middleware demonstrates that UDSS reduces user onboarding latency by 65% and measurably reduces PII over-exposure risk through protocol-enforced data minimization. This framework provides a standardized approach to identity management in the heterogeneous CE market.
title A Hardware-Anchored Privacy Middleware for PII Sharing Across Heterogeneous Embedded Consumer Devices
topic Cryptography and Security
Human-Computer Interaction
Operating Systems
url https://arxiv.org/abs/2604.07839