Researchers come up with better idea to prevent AirTag stalking::Solution relies in part on cryptography practice of secret sharing to maximize privacy.

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    10
    ·
    1 year ago

    This is the best summary I could come up with:


    Apple hasn’t said exactly how long this time interval is, but to create the much-needed alert system, Apple made some crucial changes to the location privacy design the company originally developed a few years ago for its “Find My” device tracking feature.

    The idea is that this way other devices can detect potential stalking, but won’t be throwing up alerts all the time if you spend a weekend with a friend who has their iPhone and the AirTag on their keys in their pockets.

    In practice, though, the researchers say that these changes have created a situation where AirTags are broadcasting their location to anyone who’s checking within a 30- to 50-foot radius over the course of an entire day—enough time to track a person as they go about their life and get a sense of their movements.

    “We had students walk through cities, walk through Times Square and Washington, DC, and lots and lots of people are broadcasting their locations,” says Johns Hopkins cryptographer Matt Green, who worked on the research with a group of colleagues, including Nadia Heninger and Abhishek Jain.

    Apple has been working with companies like Google, Samsung, and Tile on a cross-industry effort to address the threat of tracking from products similar to AirTags.

    And for now, at least, the researchers say that the consortium seems to have adopted Apple’s approach of rotating the device public identifiers once every 24 hours.


    The original article contains 464 words, the summary contains 236 words. Saved 49%. I’m a bot and I’m open source!

    • reconbot
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      Missed the “better idea” which is using part of the rotating ID for something called “secret sharing” that lets you determine which IDs belong together after gathering a few random IDs. Eg, you have 3 IDs and they look unrelated and you get a 4th and boom the math works out and now you know you have a rando airtag in your pocket.