|
Sander Rossel wrote: Again, I'm NOT going to use any COVID-19 app ever. You are not alone.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Didn't see that coming.
Said no-one ever.
|
|
|
|
|
I didn't see this reply coming
|
|
|
|
|
My guess is the govt will do it seamlessly if you choose to not install the app. Truth is that the Big Data players already have all the tracking data that anyone could ever want, Covid-19 tracking app or not.
|
|
|
|
|
This.
I've been called paranoid before. I'm not. Nobody has a single database that contains everything about everyone.
But start cross-referencing however and the picture being painted can present a whole different story.
|
|
|
|
|
So before we all jump on the "it's never going to work it's impossible not on my watch over my dead body" bandwagon, can we step back and be software developers?
- There's a serious issue and we, as developers, can help.
- There are serious privacy considerations. We, as developers, can help.
So let's start with the lowest common denominator here ("We, as developers, can help") and workshop some ideas
I think Google / Apple have discussed this one but I haven't had a chance to read up on it. It seems to be along the following lines:
- You install an app and give it access to your bluetooth. The app generates a GUID as an ID and stores that on the device. And only on the device.
- It constantly scans it's surroundings for other IDs via bluetooth that are being transmitted by the apps on other people's phones. It records all IDs that you're next to for more than 15 mins
- When someone is diagnosed with COVID the health care worker requests their app ID. They don't ask for your name, your email, or anything. Just the ID you were broadcasting.
- A central server sends out a push notification with that ID. If someone else's app has that ID in their "person I've been near for 15 mins" list they get the big red scary screen of self isolation.
That's it. Start to end. You can delete the app. You can wipe any trace of the ID from your phone. The ID was never associated with you in any way. There is NO GPS logging.
Anyone see any holes in this?
cheers
Chris Maunder
|
|
|
|
|
I often have my bluetooth off. So do many people I know. So GPS tracking seems more reliable. Still, "the app" can do the tracking on your device alone.
#SupportHeForShe
Government can give you nothing but what it takes from somebody else. A government big enough to give you everything you want is big enough to take everything you've got, including your freedom.-Ezra Taft Benson
You must accept 1 of 2 basic premises: Either we are alone in the universe or we are not alone. Either way, the implications are staggering!-Wernher von Braun
|
|
|
|
|
I really don't like babies, so your subject is poorly chosen on me
Seriously though, the idea sounds alright when done right.
And it's that last part I worry about.
We've seen it time and time again.
And here it is again, an app that's not supposed to track users leaked personal data before it even went into production.
So there's the hole, the incompetence of people.
xkcd explains it quite well[^]
I've laid out my (mostly) non-technical arguments about such apps in this Lounge post[^].
|
|
|
|
|
a) That XKCD is so awesome.
b) Yep. They can and do track us already.
The only problem is, even though we've allowed them to do it because it's convenient to us, we're not going to let the data be used to open up our lives because we don't want to admit it openly.
Deep down we all just want our cake and we want to eat it too.
cheers
Chris Maunder
|
|
|
|
|
A long time ago,
in a business far, far away...
I worked for a company that made ballot-counting equipment and software during the MS-DOS and "hanging chad" era. The idea of applying blockchain to that domain is... ing hilarious. Go ahead, kids. Daddy's going to sit back and watch the world burn.
Software Zen: delete this;
|
|
|
|
|
Chris Maunder wrote: The only problem is, even though we've allowed them to do it because it's convenient to us, we're not going to let the data be used to open up our lives because we don't want to admit it openly. I think that's because the tracking products we use now (Apple, Microsoft, Google and Facebook mostly I guess) started out pretty innocent.
The tracking aspect was added later or we only later found out it was tracking us.
By that time, the technology became a part of our lives and routines and at that point it's hard to switch.
There isn't even a decent alternative for some services, like Windows which I really need for my job (and which I'll always prefer over Apple, Linux is too technical for most users).
Or a smartphone which I now can't do without and I only have two options, being tracked by Google or being tracked by Apple (and I choose Google every time).
Now this new corona app is created for the sole purpose of tracking us and we aren't using it yet.
I think that's just a step too far for most people.
|
|
|
|
|
Sander Rossel wrote: Now this new corona app is created for the sole purpose of tracking us and we aren't using it yet.
I think that's just a step too far for most people. Exactly, and that's why in Germany they are thinking on making it mandatory
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
|
Johnny YYZ wrote: Do they also plan on handing smartphones out to everyone who doesn't have one? No
That's exactly the idiotic aspect of it. A magazine even reported about including it as "system update" so it can be forced. But as we already said... it brings nothing, if not 100% used (and even then, it is pretty useless).
But I suppose, people will complain A LOT about it. And hope the "common sense" starts getting present in some debates, because right now... some arguments they are using in several topics are a bit bizarre.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
How are they ever going to enforce it?
And what if you don't own a phone or one that doesn't run Android or iOS?
|
|
|
|
|
Sander Rossel wrote: How are they ever going to enforce it? there were comments about integrating it in the system.
If that is true, I suppose Google / Apple would have no objections at all for having an official excuse to integrate such a tracking tool that can be derivated to other purposes easily enough.
Sander Rossel wrote:
And what if you don't own a phone or one that doesn't run Android or iOS? That's something people is trying to make them see... it brings nothing if such an app is not 100% extended and used... and even then is not that useful, as many other already pointed out in this thread.
For the ones that can read german: Kontakt-Tracing vs. Corona: Aderlass beim Pilotprojekt PEPP-PT geht weiter | heise online[^]
It is supposed to be talked about "security" and "privacy" but seeing some of the political comments...
- Die Grünen setzten sich weiter für die Anonymisierung und den Verbleib der Daten bei den Usern sowie eine gesetzliche Regel ein, die Nachteile für Nicht-Nutzer "und einen Zugriff auf die Daten durch Dritte ausschließt".
- The green force remark their position about anonymizing the data, that the data stay by the users-devices and that there must be a law to exclude disadvantages for the Non-Users and the access to that data by third parties
- "Disadvantages for the non users" >>> WTF? Really? what kind of disadvantages?
- "Keeping the data in users devices" >>> In principle not a bad idea, but the data amount needed for this to work... you can forget it. It is going to bloat the capacity of the majority of the devices
- "A law to avoid access to the data by third parties" >>> I thought there were already laws about it, and FB is breaking all of them with very little consequences...
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Chris Maunder wrote: b) Yep. They can and do track us already.
I'm one of the easiest to track. I still use my Windows Phone. It's like Al Bundy's 1 million miles Dodge... They don't need any ID for me!
|
|
|
|
|
1) GPS is not precise enough, especially indoors. You must use something else. All you've got to "measure" with is the signal strength. Phones vary a lot in their transmitted energy, and you don't know which model the other person is using, so you can't tune it from the phone model. Antennas vary greatly as well, an they do not distribute the energy evenly over a sphere. Turn the transmitting, or the receiving, or both phones 90 degrees around each of the three axes - received signal strength may vary considerably. At chip level, many (most?) BT chips allow the transmission power to be adjusted. I don't know if this is available through Android, but if it is, it adds yet another factor in signal strength: Even if you knew the exact model held by the other person, you wouldn't know the raw transmission power.
2) Draw two lines, 6ft apart, and have two people walk towards each other immediately outside the lines. Put their mobile phone in the pocket towards the lines. Let us optimistically assume that both phones report a distance of 6 ft. Then repeat the same test, but now with the phones in the pocket facing away from the lines. Persons meet at exactly the same distance between them. Not only are the phones about 4 ft further apart (2 ft on each side), but also, the signals must go through 4 ft of human flesh, 2 ft on each side. Which distance will the apps report this time?
Bottom line: Distance estimates based on BT signal strength is a joke.
3) You may have been infected up to two weeks ago, in the worst case. For those two weeks, you have been walking around spreading the virus. Even in the best case, within reasonable limits, will it take a couple of days from that other person infected you until he notices any symptoms, either get really sick, or he lines up for a test, which takes some time to analyze, and to get the message back to that other guy, so that he can warn others that he might have affected them. If you were infected, you would be spreading the virus for at least a couple of days.
4) The other guy, who infected you. must himself take the initiative to report to a central cite that he has become sick. Chances are that if if the illness comes very rapidly, chances are small that the first thing he will think of is fiddle around with his smartphone to report to a central site; he might forget it entirely. Furthermore, you must regularly interrogate the central site about all the people you have met, whether any of them have turned sick. So there is another delay, and reliance on explicit actions.
5) You and the other guy must report to the same central site using the same protocols.
6) Very few of my enocounters with other people last for 15 minutes. The great majority are shorter than two minutes: In the streets, at the gas station, in the grocery store. For my family, I don't need an app to tell me that we are close.
7) Everything relies on you always carrying the phone in your pocket, that BT is turned on, that the phone has not run out of battery power. It relies on the other fellow not having left his mobile at home or in the car, that he as BT turned on and has not run out of battery. I am among those who very often to not bring my mobile with me - sometimes deliberately, sometimes just because I forget it.
You describe a solution where you do not poll the central site, but the central site "broadcasts" (it isn't, technically speaking) sends out a push warning to each and every one. In the USA, with at least 200 mill smartphones (probably a lot more) and almost 0.8 million cases, if this system had been active all the time, everybody using it, something in the order of 160 trillion messages would have to be sent out. You must have some way of filtering this, but the central cite knows nothing about who the now sick guy met, they know nothing about location. So how shall they filter it?
The only significant effect of such an app is to keep focus on social distancing. Don't forget it, or you might be caught redhanded by the app. I manage to stay at a reasonably safe distance even without an app!
|
|
|
|
|
Sounds like you're saying that if the solution doesn't work 100% (or even 80%) it's not worth it.
I respectfully disagree. If there is an agreed goal to isolate infections as fast as possible then even incremental solutions are better than throwing up your hands.
We're a clever bunch, with most cleverer than I. I reckon there's plenty of scope here to come up with something that works well enough and protects privacy.
cheers
Chris Maunder
|
|
|
|
|
I am saying that if it works for (significantly) less than 10% of the cases, it is a waste. At a significant cost. I don't think the very minor benefit is anywhere close to worthwhile for the cost.
I am not talking about economic cost. We are accepting an ever-increasing level of monitoring and tracking. Don't forget that you "secret" ID is continuously broadcast as long as the app is running. Any surveillance camera picking up your face, along with the ID you broadcast, will know that whenever that ID is detected, it is you.
In Norway, a couple years ago, one of the government parties tried to force through a law permitting the police to infect any Internet PC with spyware, such as a keylogger, saving every keystroke you make. It didn't go through the parliament, and today that party is out of the government. But it might come back, stronger, and may force their old proposal through. If police is allowed to infect your PC with a keylogger, that isn't far from being allowed to infect your phone with a location logger.
Tracking by the GSM signals - the phone regularly announcing its presence to all base stations in the area - has been available for low-resolution tracking since GSM's arrival. In a kidnapping case ten years ago, police proudly stood up in media and explained how they "by a simple keypress" can trace every single mobile phone in the country: They could trace the movements of the victim's phone and follow the kidnappers. Unfortunately, they were to late to save the victim (see Murder of Faiza Ashraf - Wikipedia[^]), but after that, there has been full acceptance for police tracking by GSM signals: See - police can use it to track criminals! That's great isn't it?
If police infects our mobiles with a location tracker, after a single case where they have (say) identified drug distributors by tracking who the street dealers are in contact with, there will be no opposition to the exact tracking of anyone, so police can identify every single person you are near for more than a few seconds, whenever they think knowing your personal contacts can tell them something that they want to know.
The Norwegian app use not only Bluetooth to estimate the distance between persons, but also GPS, to identify the environment where the encounter took place: On the street? In a grocery store? At a sports event? - I can easily understand that this provides the researchers with a lot of valuable information about how virus spreads. The implication is that the authorities know everything about where I move, at all times, as long as I have the phone in my pocket.
I am not paranoid by the corona app in itself. The government has made regulations saying explicitly that the police shall not have access to the data base. (The regulations also state explicitly that the government can change the regulations at any time.) But this app serves as a prototype for perfecting this technology, under a cover of "this is to everybody's best". There is nothing to keep the police from drawing on the experience gained, when they will improve the precision of GSM tracing to that of GPS, augmented by Bluetooth for identifying social contacts. Once the corona app is accepted, that kind of police operations will be fully accepted (like GSM after that Faiza case).
In Norway, we had some general restrictions on traveling, and some people were in quarantine. Lots of people broke those restrictions; maybe they should all be put in jail, based on police tracking. GPS tracking allows police to identify every car that moves above the speed limit; maybe all those drivers should be fined (or more). Police knows of the activities of people illegally distilling alcohol; maybe, when rumors tell that he has readied a new batch, everybody who visits his house for five minutes the next couple of evenings should be called in by the police for interrogation. If a pedestrian is found in the ditch along the highway late at night, hit by a car, and the GSM logs show that you were the only one driving on that road around the time of the accident, you might have to hire a lawyer.
Pick your choice: If police can trace every individual, they can trace every criminal and catch them. They can also track lots of tiny law breaks by you, such as speeding, or going outside of city limits when it is strictly not legal. You might be accused of criminal actions, on the simple ground that you were the area at the wrong time.
Or, you might say that your privacy, your right to move around without being continuously traced (even "potentially" although it doesn't happen all the time) is so valuable that you are willing to let criminals be caught by traditional measures, even if one or two of them might get away. Fighting criminals is not the only value we fight for!
|
|
|
|
|
I am not saying "over my dead body". I had an iPhone for many years and currently use a not rooted Android smart phone.
I partially agree with you in your first paragraph.
But in the second...
Chris Maunder wrote: I think Google / Apple have discussed this one ...
...
...
That's it. Start to end. You can delete the app. You can wipe any trace of the ID from your phone. The ID was never associated with you in any way. There is NO GPS logging.
Anyone see any holes in this?
Apart from "Google / Apple" and "The ID was never associated with you in any way." in such a little text? Seriously?
Several years and many articles / reports confirm that is a bit of an oximoron.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Let me clarify:
Google/Apple (I think) have discussed the "use bluetooth to detect proximity". I wasn't suggesting we use a Google/Apple app.
I actually also said such an app is actually not even needed - they already track us really, really well. (sure, not indoors, and not to within 6 ft, but track us enough to know that I was standing inline outside the grocery store that had 2 positive cases in that same line)
I think of this purely as a technical issue. The political, social, epidemiological issues merely complicate the process. Much like users. <shudder>
cheers
Chris Maunder
|
|
|
|
|
Chris Maunder wrote: Google/Apple (I think) have discussed the "use bluetooth to detect proximity". I wasn't suggesting we use a Google/Apple app. Sorry if I miss-read something.
Chris Maunder wrote: actually also said such an app is actually not even needed - they already track us really, really well. (sure, not indoors, and not to within 6 ft, but track us enough to know that I was standing inline outside the grocery store that had 2 positive cases in that same line) exactly. Although I am not really that positive that even that would help that much. As Member79xxx said, it only might work (no certainty at all) if everyone is carrying a working smart phone.
If not... I think it can do more harm than help.
People starting to have symptoms that check the app and see "no potential contact registered" are going to think... "oh, ok, I haven't been exposed, so it is not CV" and this thinking is going to make them even more dangerous.
I think it is like with autonomous driving, it will only work, once ALL the cars are autonomous. As long as there is a mix on the road, forget it, the number of accidents will ramp up like hell.
For me the best protection we can use is just to switch our brains on, be careful without panicing and pay attention to what we do.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Nelek wrote: the best protection we can use is just to switch our brains on,
Whoa, whoa, WHOA.
Now you're just talkin' crazy.
cheers
Chris Maunder
|
|
|
|
|
Looking at the news and how people was behaving...
It was not that obvious
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|