E
EddieM
Well any really.
NHS Contact Tracing App
- Thread starter SirGalahad
- Start date
- Status
Well any really.
Sponsored Links
No, my guess is it'll be a HTTP post. SMS is too unreliable. Probably HTTPS just because you should do that routinely these days.
Last edited:
E
EddieM
Hmm, not quite the decentralised system being talked about if the article is to be believed, plus as thought in it's next gen, a bunch of tweaks to the OS.
https://www.wired.com/story/apple-google-bluetooth-contact-tracing-covid-19/
https://www.wired.com/story/apple-google-bluetooth-contact-tracing-covid-19/
- Joined
- 1 Apr 2016
- Messages
- 13,609
- Reaction score
- 552
- Country
The NHSX app works by creating a persistent install ID which will persist even if you install / reinstall the app. This static install ID then used to derive the temporary contact keys. The central service has the ability to calculate the installation ID from any of the temporary IDs, effectively de-anonymising it.
The source code has been released, for the apps, but not as yet for the server but even then it's a bad solution for maintaining privacy.
https://www.ncsc.gov.uk/blog-post/security-behind-nhs-contact-tracing-app
"When you download and run the app, your phone is assigned a big random number (a 128 bit GUID) to act as your fixed but anonymous identity (we’ll call it the installation ID from now on).
In all of this, you’re anonymous as it's done through the Installation IDs, but the system is building connections between these anonymous identifiers."
Thats spin. You are not anonymous.
Sponsored Links
- Joined
- 1 Apr 2016
- Messages
- 13,609
- Reaction score
- 552
- Country
E
EddieM
Well I know it's a BH, but I draw the line at trawling through source code.
- Joined
- 1 Apr 2016
- Messages
- 13,609
- Reaction score
- 552
- Country
What better thing could you think of doing on such a wonderful day like today?
Clone the repo and regex search to the high heavens!!
E
EddieM
I could stick my hand in a blender?
- Joined
- 1 Apr 2016
- Messages
- 13,609
- Reaction score
- 552
- Country
https://www.hsj.co.uk/workforce/nhsi-chair-to-lead-covid-19-test-and-trace-programme/7027600.article
Dido Harding? what the actual. Now it makes sense her only qualification is being at Uni with Cameron.
Dido Harding? what the actual. Now it makes sense her only qualification is being at Uni with Cameron.
What some want google and apple to do is to tie mobile phones etc into the web so that screens all over the place, shop windows etc can show people things that they may be interested in or fit in with their profile when they are by them. General ideas like that.
In terms of tracking read this and notice how it can be done
https://en.wikipedia.org/wiki/Mobile_phone_tracking
Mostly it can only be accessed by the state and is open to abuse. When people are using their own router position is known and sometimes used for the same reasons.
The other thing of course is that the apps several countries are developing do not give positional information and we also don't know what is used to identify a person/phone. . Many phones are anyway tied to a person so that information is also available. Pay As You go remains anonymous but it could depend on how it's topped up. Some methods would be capable of tying an account to a name.
So they already have loads of things that could be abused and they haven't. Google analyticals and others follow what all do on the web what ever is used. I do see that as abuse. Many must hence add blockers etc but block everything in this area and suddenly pages wont work as they should.
The other thing of course is that the app doesn't include testing. I had wondered just how they could handle that in a sensible fashion.
Anyway it's under test now so we shall see. There are some paranoid privacy looneys on the island though when in real terms it only provides info that is of any use to indirectly track people who may have caught cv19. Completely useless for anything else.
Apple are providing gov with walking and driving route requests. Google were providing movement info earlier. If I were you I'd me more inclined to worry about that side of things as info is money. Doesn't seem to matter what it is in relationship to people.
In terms of tracking read this and notice how it can be done
https://en.wikipedia.org/wiki/Mobile_phone_tracking
Mostly it can only be accessed by the state and is open to abuse. When people are using their own router position is known and sometimes used for the same reasons.
The other thing of course is that the apps several countries are developing do not give positional information and we also don't know what is used to identify a person/phone. . Many phones are anyway tied to a person so that information is also available. Pay As You go remains anonymous but it could depend on how it's topped up. Some methods would be capable of tying an account to a name.
So they already have loads of things that could be abused and they haven't. Google analyticals and others follow what all do on the web what ever is used. I do see that as abuse. Many must hence add blockers etc but block everything in this area and suddenly pages wont work as they should.
The other thing of course is that the app doesn't include testing. I had wondered just how they could handle that in a sensible fashion.
Anyway it's under test now so we shall see. There are some paranoid privacy looneys on the island though when in real terms it only provides info that is of any use to indirectly track people who may have caught cv19. Completely useless for anything else.
Apple are providing gov with walking and driving route requests. Google were providing movement info earlier. If I were you I'd me more inclined to worry about that side of things as info is money. Doesn't seem to matter what it is in relationship to people.
LOL I can't wait to see expected reactions to some of this
https://en.wikipedia.org/wiki/Dido_Harding
Oops!
"Plan B: Programmers build new contact tracing software after first one didn't work with older mobiles, had problems on iPhones and drained batteries too quickly in Isle of Wight trial...
The NHS is building a fresh contact-tracing app after the pilot on the Isle of Wight exposed teething problems and privacy concerns.
Developers from Google and Apple have been brought into the fold to provide technology that will overcome incompatibility issues with some mobiles."
Ideological incompetence!
"Plan B: Programmers build new contact tracing software after first one didn't work with older mobiles, had problems on iPhones and drained batteries too quickly in Isle of Wight trial...
The NHS is building a fresh contact-tracing app after the pilot on the Isle of Wight exposed teething problems and privacy concerns.
Developers from Google and Apple have been brought into the fold to provide technology that will overcome incompatibility issues with some mobiles."
Ideological incompetence!
Testing was linked to it again in yesterdays brief. 
So had it, didn't include it, seems it's back again.
The privacy worries are infantile but people do read and listen to the various rags. People may as well say being tested for CV19 is an infringement as gov then knows if people have it or not at an individual level so should just do it all via random anonymous testing.
One interesting thing is that the 2 successful countries do use actual position tracking and keep data.
Android is the most interesting one. Quote
Android is an open source operating system for mobile devices and a corresponding open source project led by Google. This site and the Android Open Source Project (AOSP) repository offer the information and source code needed to create custom variants of the Android OS, port devices and accessories to the Android platform, and ensure devices meet the compatibility requirements that keep the Android ecosystem a healthy and stable environment for millions of users.
Trouble with that is google do dictate what goes in.
Apple, Google and people need to realise that things really are serious as Singapore has eventually found out. The less directly it's dealt with the longer it will go on. The longer it goes on the worse the damage. Korea had it's moments as well.
So had it, didn't include it, seems it's back again.The privacy worries are infantile but people do read and listen to the various rags. People may as well say being tested for CV19 is an infringement as gov then knows if people have it or not at an individual level so should just do it all via random anonymous testing.
One interesting thing is that the 2 successful countries do use actual position tracking and keep data.
Android is the most interesting one. Quote
Android is an open source operating system for mobile devices and a corresponding open source project led by Google. This site and the Android Open Source Project (AOSP) repository offer the information and source code needed to create custom variants of the Android OS, port devices and accessories to the Android platform, and ensure devices meet the compatibility requirements that keep the Android ecosystem a healthy and stable environment for millions of users.
Trouble with that is google do dictate what goes in.
Apple, Google and people need to realise that things really are serious as Singapore has eventually found out. The less directly it's dealt with the longer it will go on. The longer it goes on the worse the damage. Korea had it's moments as well.
I do wonder how effective any app which relies on Joe Public to input infection data is going to be. The sort of idiots who find it amusing to start grass fires deliberately, or commit other acts of vandalism, would probably also find it amusing to sabotage the scheme by submitting false data.
- Status
Sponsored Links