...
I have the feeling we need an authorization framework here. (kind of UMA/OAuth thing?)
I think, we need an identification and authentication framework too. (Frank)
Additional this kind of use cases need a product/thing relation ship management to support legal and fiscal issues.