Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
×
IOS Software Apple Technology

France Says Apple Bluetooth Policy Is Blocking Virus Tracker (bloomberg.com) 111

France is asking Apple to remove a technical obstacle that it says is delaying a government contact-tracing application designed to contain the coronavirus spread. Bloomberg reports: Apple's operating system prevents contact-tracing apps using its Bluetooth technology from running constantly in the background if that data is going to be moved off of the device, a limit designed to protect users' privacy. That limitation is standing in the way of the type of app that France wants to build, Digital Minister Cedric O said. The government aims to deploy its app by May 11, which is when France wants to begin to lift restrictions on movement that were imposed in mid-March. Contact-tracing apps are a tool health services can use to more accurately determine who infected people have come into contact with and governments can deploy to help make decisions about how quickly to reopen schools and businesses. An Apple spokesman referred to the company's previous joint statement about its partnership with Google, which said the technology would enable Bluetooth-based contact-tracing apps and declined to comment further.
This discussion has been archived. No new comments can be posted.

France Says Apple Bluetooth Policy Is Blocking Virus Tracker

Comments Filter:
  • No more privacy (Score:5, Insightful)

    by helsinki92 ( 1617881 ) on Tuesday April 21, 2020 @05:44PM (#59973892)
    First was, give up your privacy for national security, now its , give up your privacy for the good of everyone's health. I'm not against it, the only problem is the law of unintended consequences.
    • by raymorris ( 2726007 ) on Tuesday April 21, 2020 @05:53PM (#59973912) Journal

      In this instance, the clever design of the Apple/Google protocol protects privacy pretty darn well.

      The data that is sent to those you interact with is a hash (indistinguishable from random bits) which changes every ten minutes, of a random number your app generates daily.

      If you test positive, you can let the people around you know that they should get tested by clicking the button to submit your random numbers to the health department. That's all anybody gets - randomly generated numbers.
        More info:

      https://slashdot.org/comments.... [slashdot.org]

      https://slashdot.org/comments.... [slashdot.org]

      • by divide overflow ( 599608 ) on Tuesday April 21, 2020 @06:05PM (#59973940)

        The data that is sent to those you interact with is a hash (indistinguishable from random bits)

        Will they post the source for inspection? Otherwise how will we know those are hashes of random numbers?

        • Source code - yes. We need the source open to scrutiny by mathematicians and cryptographers before it can even be _considered_ worth trusting.

          How are the random numbers generated? Are they really "random" or do they just appear to be random to the layperson?

          Can the seed value be derived from subsequent "random" values? For example, does it use a linear congruential generator [stackoverflow.com]? If so and the seed is your device ID, it's not anonymous.

          Are the "random" values really just hashes? Can the hash be easily brut

          • by dfghjk ( 711126 )

            LOL

            How many years of scrutiny do you think is also require before "in can even be _considered_ worth trusting"? How many more buzzwords can you include to make the threat seem maximally dire?

            Just what do you imagine the threat is here? That a person identified through contact tracing might have his identity exposed? Oh the horror! That a person NOT identified may? Really?

            You should think more and posture less.

            • You don't need to wait years, but if other trusted parties like the Mozilla Foundation, the Linux OS teams, etc. spun versions from their repositories, I'd probably do it. But not from entities that already have a track record of a screen door on a submarine :-)
            • You clearly know nothing about the pervasiveness of ad tracking, app spying, or the massive data stores for sale.

              You're also thinking in a single dimension - oh no, someone's identity is leaked. By the time you _do_ become worried, it will be too late. Because all the groundwork had been laid incrementally before you finally decided it was a threat to your freedom.

              There is absolutely no reason we can't have the contact-tracing code scrutinized. And no, it doesn't have to take years.

          • by cb88 ( 1410145 )
            The information isn't stored in the hash... the hash is the information itself. Once you uploaded they know who you have been near that has also uploaded hashes.
        • Will they post the source for inspection? Otherwise how will we know those are hashes of random numbers?

          Most of us know because we know that this software is created by human developers, most of which have pride in what they are doing, and if a nefarious CEO told them to create traceable "random" numbers it would leak it.

          You, on the other hand, will never know. And just wondering, are you the Queen under a pseudonym, or why the "we"?

          • "Most of us know because we know that this software is created by human developers, most of which have pride in what they are doing, and if a nefarious CEO told them to create traceable "random" numbers it would leak it."

            Some of us know that true randomness and untraceability are hard, and don't have confidence in their ability to get it right.

            • Some of us know that true randomness and untraceability are hard, and don't have confidence in their ability to get it right

              Some of us know that Apple and Google can afford to hire the best. So you can piss off with your "confidence".

              • Even the best are not infallible, and Apple and Google fuck up all the time. Especially Apple, which currently has a number of unfixed crash bugs in OSX around everyday operations.

                • by phayes ( 202222 )

                  Those drumming on the "IT HAS TO BE PROVEN INFALLIBLE" meme remind me of Anti-VAXers. They cannot be convinced that enormous amounts of work have gone into making Vaccines as safe as they can be and that the general good is clearly to get everyone vaccinated without waiting for the PERFECT vaccine to become available. Nah, their least niggling doubt HAS to be satisfied before they can accept common sense.

                  Apple & Google's best is certainly better than just about everyone else's and if weaknesses are foun

                  • "Apple & Google's best is certainly better than just about everyone else's and if weaknesses are found, well then they can be fixed "

                    Yes, very good, that's why we want it to be open source. So we can find the weaknesses. Are you new?

          • by Shotgun ( 30919 )

            Most of us know because we know that this software is created by human developers, most of which have pride in what they are doing, and if a nefarious CEO told them to create traceable "random" numbers it would leak it.

            I think that most of us know that there are enough developers who will develop whatever they are paid to develop to make your assertion "cute". But, you seriously need to reign in your worship of the cowboy programmer image. I've found it is as much a myth as the Hollywood cowboy it derives from.

        • by dfghjk ( 711126 )

          How will you know anyway?

          Are you going to pretend you are qualified to perform this inspection AND verify that the code that is executed is based on it?

          • I'm not the person you replied to, but yes. Yes I audit security related source code for a living. These days it's nice to have 20 years of experience in the dual fields of information security and programming. :)

            I've done analysis of Android apps. The app is the Dalvik code, so it's not hard to see what the app is doing. If what the app does is "download and execute some encrypted code", as malware often does, it's easy to see that it's doing that.

            If it's acting like malware by executing encrypted code,

        • by AmiMoJo ( 196126 )

          Presumably the Android version will be open source, part of AOSP. The Apple iOS version will probably be closed.

          The OS level stuff handles generating and exchanging IDs. You then need an app to submit those IDs to a health authority and check for IDs you have come into contact with. Hopefully there will be open source apps as well.

      • by cb88 ( 1410145 )
        A random number is no longer random once it has been selected and sent to others via bluetooth or other short range wireless network....it's a selected number. Once you upload them to the database... well they know exactly who uploaded them.
        • > . Once you upload them to the database... well they know exactly who uploaded them.

          How? Your app sends the randomly generated numbers to the health department and then what can anyone do to know how sent it? If you figure that out, there may be a Fields medal waiting for you.

          • by guruevi ( 827432 )

            What is the point of sending randomly generated numbers to a health department without individual information? It's very easy to trace people, you just need 1 point on a busy location or another app on the same system or a nearby system that can correlate these random number streams with your actual personal information (eg. a Facebook or other app interaction) and you can start tracking people with a great degree of confidence (people are predictable). It becomes even worse once the stream of numbers start

            • > What is the point of sending randomly generated numbers to a health department without individual information?

              There is no need to have personal information. You only need to know that you were close to an infected person - you don't care who. If you were hanging out with someone who has an active infection, you should get tested.

              My post linked above explains how it works. Do you have a question about how it works, after reading the explanation?

              > It's very easy to trace people, you just need ...

              • by guruevi ( 827432 )

                That's a false dichotomy. Apps that can assess your location based on radio data already exist. BLE is radio data and advertisers have been using it to track people going between venues.

                Here's a simple example: You visit a bar, your WiFi and BT send out your MAC address frames or even join a WiFi network at the same time you have sent out 10-20 of these COVID-19 tracking frames, I can pick them up. You go to another place, I can do the same thing, but now I've identified you because your device fingerprint

                • > The health department thus sends me a stream of bits of all the ID's you've ever used, I've already identified some of them so it's easy to match up

                  That's not how hashes work.

                • by AmiMoJo ( 196126 )

                  For a few years now Android and iOS have been randomly changing Bluetooth MAC address every 15 minutes or so, making this kind of tracking much less effective.

                  Same with wifi. Not sure about iOS but Android now randomizes the MAC address when you connect to networks even.

                  So these databases only catch people with older phones and are mostly full of random numbers. They are still a little bit useful as they can track a device as it moves around a shop in blocks of 15 minutes, assuming the user left Bluetooth e

            • by Anonymous Coward
              You still have no idea how this works do you.
          • by cb88 ( 1410145 )
            YOU UPLOADED THE DATA... X.x That's like walking out in the street in full public view and shouting the hashes... It's extremely likely the app will also upload your contact info and IMEI code.
            • > It's extremely likely the app will also upload your contact info and IMEI code.

              You know we can see what it's sending, right?
              If that's a new concept to you, check out what happens when you right-click a web page, choose "inspect", then click the network tab - then click a link on the page.

              • by cb88 ( 1410145 )
                Is the server knowing what device sent the information to it and cross website tracking lost on you too... sheesh at this point those are old hat.
                • Just FYI, this isn't a web site.
                  If you'd like to have an idea of how it works, I described the operation of the whole system in my post above.

                  • You are the one that first said website bit its irrelevant... the tracking still happens.
                    • Again, you can keep coming up with random shit out of your ass and thinking it must be true because you thought it, or you can read where I explained how it works. Up to you.

                    • by cb88 ( 1410145 )
                      Open a socket connection upload a hash.. YOU WERE TRACKED. You think tracking only occurs at the HTTP level???

                      We are talking about a government agency here boss.... if they want the information, and they can open up a way to get it... they will get it.
          • by goranb ( 209371 )

            Well, you'll have the server logs and IPs of the device doing the uploading, those IPs can be matched to end users by network operators. Which in most parts of the world (as I know it) would require a court order or something similar.

            But of course, one will have this "issue" with any kind of access to some server backend, so it's a moot point in the broader discussion. (and I'm all for Apples/Googles proposed implementation; are there potential issues? sure, in theory, but far less than with what France is

      • "If you test positive, you can let the people around you know that they should get tested by clicking the button to submit your random numbers to the health department. That's all anybody gets - randomly generated numbers."

        If you interact with people and THEN you get sick and THEN they are able to contact you via some means, THEN the interactions are trackable. Some process somewhere is capable of connecting the dots. I'm not saying its inherently bad, but you can't track people (which is what this is doing

        • > you interact with people ... and THEN they are able to contact you via some means

          They don't need to contact you. They can just publish a list of randomly generated numbers sent in as "I made this number and I'm sick":
          957307593695739
          729579265936395
          037395729573026

          If your app received any of those numbers, you were hanging around someone who is infected. I don't need to know WHO I was hanging around that got sick, just that someone was. Then I get tested. The health department doesn't need to know who I

          • So a targeted attack could be to send you thousands of suspected acquaintances and see if you show up for testing. Then they can verify you were in close proximity to that/those individual(s).

            • You're saying the health department could send false acquaintance tokens to you, in order to find out whether you've been within a few feet of any of those people?

              They could do that if they had the acquaintances under constant surveillance in order to capture the tokens every 10 minutes and could reverse a SHA-256 hash. Of course of they the acquaintances under surveillance, they don't need any tokens to see whether or not you are there also. And by just using their eyes, they wouldn't have to also reverse

    • Against it here and believe you should be too. Unintended consequences are indeed a law like the law of gravity. Going to happen, going to be bad. It's not the only problem - it's the problem and it's significant enough that it warrants noting giving this stuff a meh, shoulder shrug, figure it out later kind of attitude. Be against it.

      • by dfghjk ( 711126 )

        You mean like the unintended consequences of your ignorance leading to the deaths of many people?

        I'm against bullshit hypotheticals about technologies you don't know or understand when a real social threat exists that has real consequences, not just imagined ones.

        • by cb88 ( 1410145 )
          Except... there is no evidence of that. On the contrary of people just avoided the elderly and used normal flu cleanliness and higene standards we'd be fine.

          When you see people that have it bad, it is people that have been clearly impacted with a high viral dose (medical professionals) or people that have weakend immune systems. The tracking data grab is literally a power grab... as Killary Clinton staid never let a good crisis go to waste...
        • Not wanting to let government apps track who they interact with == ignorance?

          Your lack of empathy and understanding of people’s reticence to do such a thing, and you’re hostility toward them will probably lead to more deaths.

          It’s always the other guy who is killing people, but rarely do we examine our own behavior. If you think this thing will save lives, calling people names will almost certain fail to persuade them, and will probably turn many more off who were on the fence.

          Being unable

          • by AmiMoJo ( 196126 )

            It is not possible to track people with this and not possible to determine who they interacted with if you count an interaction as more than "were withing 3m of at some point during the day".

            Look, I will be the first one to resist anything that puts people living with oppressive governments at risk, but this is very well designed to prevent that kind of abuse. Maybe with enough resources it will be possible to misuse it somehow, but on the other hand in those countries you are also quite likely to have a ve

            • by guruevi ( 827432 )

              It won't be abused, it's the government, it will be mishandled, it will be bad and wrong at many levels. 6 months from now, someone will find the S3 bucket that had no password, or the laptop that a contractor lost working with live data for testing etc etc. They're rushing this out in 1 month time, how do you think this will be developed?

              There are already apps (eg. Facebook) that can also listen to WiFi and GPS and BT at the same time as this app. It's not unlikely you'll see targeted malware at getting an

        • âoeThose who would give up essential liberty, to purchase a little temporary safety, deserve neither liberty nor safety.â Benjamin Franklin
    • If it allows shortening the lockdown by 1 month or even 1 week, I'll gladly share my bluetooth information.
      At this point we must choose the option which less going to restrict our freedom and give the most results.

    • i agree, every app on an android or iphone is calling home with every little detail about the user for the corporate dataminers, if i can uninstall or disable it i will, my phone is supposed to belong to me, not the corporate overlords that run the world, i am about ready to take a hammer to my smartphone and go buy the cheapest flipphone i can find, and if i need a map i can buy one made of paper at the magazine rack at my local grocery store
    • I predict many epic fails in those non-chinese contact tracing app

    • First was, give up your privacy for national security, now its , give up your privacy for the good of everyone's health.

      I'm not against it, the only problem is the law of unintended consequences.

      Sounds great for America, but since this is France we're talking about, a country which actively takes companies to court over privacy violations. It may come as a surprise to you, but privacy is somewhat repspected in most European countries which is why we're generally more okay with temporarily sharing information with governments.

  • by OneOfMany07 ( 4921667 ) on Tuesday April 21, 2020 @05:45PM (#59973894)

    Uh...seriously? I guess we have to discuss stuff like this if we need to change it.

    • by guruevi ( 827432 )

      Not just spying, anyone can use these contact tracing apps together with some other metadata to track anyone. That and the battery consumption of continuous BT pings is horrendous.

      • Comment removed based on user account deletion
        • Tile trackers probably *do* work that way, but the Tile app itself is so bloated and power-hungry it ends up being a distinction without a difference.
          • by guruevi ( 827432 )

            The tiles themselves only last 6-12 months on a relatively large coin cell. BLE uses between 10 (idle) and 500mW (broadcasting) which is significant, any busy location and you're consuming basically half as much as a regular phone call.

      • Cellphone instructions used to tell you to disable Bluetooth to improve on-battery life. Don't know about current models.

        Actually, this would be a great test case for free marketers. Offer models at the same price point that do or do not support tracking. Let the buyers vote with their wallets and see what happens.

        Or we'll see just how far the freemarket cellphone vendors are interested in pursuing this. The reality is that whichever one they think is preferable will be priced one dollar/euro/pound cheaper,

      • by dfghjk ( 711126 )

        Spoken like you know that the solution will be indefinite, wide open access bypassing important security precautions and proper power management, all of which is certainly false.

    • Uh...seriously? I guess we have to discuss stuff like this if we need to change it.

      Yes, we need to change this perception that "spying" is elusively linked to some profit motive or evil government agenda, especially since we're not talking about the USA, but rather a country which has a specific department setup to hand and preserve privacy infringement cases of citizens. Get a grip.

    • by Altus ( 1034 )

      It was my understanding (though I haven't had need to dig into it too much as an iOS developer) that once you gave it permission it could leave the bluetooth on in the background. I'm not aware of these additional restrictions does anyone know where the documentation on this is?

  • ... blame the hardware!
  • by gnasher719 ( 869701 ) on Tuesday April 21, 2020 @05:52PM (#59973908)
    Everyone should have been able to read the Google / Apple API proposal which seems totally capable of warning people about exposure to COVID-19 while no private data is leaked whatsoever.

    I think that Apple and Google are much more capable of designing something that _works_ and keeps people's privacy intact than the French government does. I also think that Apple and Google have a much stronger motivation to protect people's privacy. Apple because that's what they do, Google because _this_ is not something they want to be seen profiting from.

    And the data that the French government wants to be unprotected is much more useful for a government than for an advertisement business.
  • France dive into tracking software is quite odd, because the country faces a shortage of tests to know who is infected. How the software will know who needs to be alerted if it does not know who is infected?
    • by dfghjk ( 711126 )

      May 11. You think a country can't do more than one thing at the same time?

      It's important to understand that the people on /. aren't the ones responsible for solving these problems, and it's a good thing.

    • by AHuxley ( 892839 )
      Re "How the software will know who needs to be alerted if it does not know who is infected?"
      When a person who is sick gets reported as sick, the software recalls who they had contact with.
      Some people are so sick when finally seeking help, they cant talk about the few weeks of contact they had.
      Health experts who do the contract tracking look over the data sets.
      The app recalls contact with another smartphone.
      Most nominal nations just use the telco data. No app needed. Every use of a telco account in th
  • Apple's operating system prevents contact-tracing apps using its Bluetooth technology from running constantly in the background if that data is going to be moved off of the device, a limit designed to protect users' privacy.

    Good.

    Q: What are they going to do with this data AFTER this virus is contained and beaten with a vaccine?
    A:Whatever they think is in their best interests.

    2025: "...The government aims to deploy its app by May 11, which is when France wants to begin to lift restrictions on movement

    • by guruevi ( 827432 )

      Your timeline is stretched. In less than 10y after its establishment, the EC managed to destroy the sovereignty of its member nations and establish its own legal primacy.

  • For the same reason we don't want government backdoors into encryption. If it's open for you it's potentially open for everybody.

  • by oldgraybeard ( 2939809 ) on Tuesday April 21, 2020 @06:14PM (#59973962)
    So some things do actually work as designed!.

    Just my 2 cents ;)
  • If I were Tim Cook I'd offer a free licence for this technology to Sundar Pichai. Then let's see what happens when France asks Google to remove it. This would show whether corporate America is at least as powerful as some nation-states.
    • If I were Tim Cook I'd offer a free licence for this technology to Sundar Pichai.

      Apple and Google are developing this API together. No license needed. As described, the system shouldn't use to many resources either.

  • Headline should be France's new app violates Apple's privacy policy.

    We have to fight against privacy invasions, and this is the perfect example of what to object to.

    Redesign the app so it doesn't have to do this. Keep the data on the phone until the person is declared sick, then let the USER release the information.

    • by AmiMoJo ( 196126 )

      It's not clear that it does violate any privacy policy. They might have done a good job with the privacy side.

      The issue is that iOS aggressively kills off background apps to save battery life. It affects a lot of stuff. This app needs to run all the time to send out the Bluetooth pings.

      Apple is building that functionality into the OS itself. Once available the app won't need to run all the time, it will just be a front end for managing the data that the OS collected.

      • by flink ( 18449 )

        It's not clear that it does violate any privacy policy. They might have done a good job with the privacy side.

        The issue is that iOS aggressively kills off background apps to save battery life. It affects a lot of stuff. This app needs to run all the time to send out the Bluetooth pings.

        How do apps like Tile work then? Don't they have to be constantly sending out bluetooth pings to look for Tile devices? Do some companies have special dispensation from Apple to let their apps stay resident in the background?

  • by seoras ( 147590 ) on Tuesday April 21, 2020 @07:06PM (#59974114)

    In New Zealand one solution considered by the Government was to issue a contact tracing ‘CovidCard' [stuff.co.nz], a credit card that uses bluetooth. Privacy being taken into consideration here in NZ.
    France can easily afford to do something similar using the $1.2B cash they recently shook down Apple for, Oui ou non?

    • by guruevi ( 827432 )

      This is the same thing, except on your phone. Not sure why you think the government tracking your location and contacts is not destroying your privacy. More people died defending these freedoms in the early 20th century than will ever die from COVID-19. Nice sacrifice you chose to make.

      • The first difference is that you can throw away the card when the crisis is over, rather than having it built into a device you will continue to use. Second difference is that the card is an obvious token that relies on continuous compliance by the person(s) being surveilled, where the phone option is invisible and relies on a corporate compliance. Not seeing the difference between the two is being deliberately obtuse.
  • Those for whom the government tends to look after well, tend to trust the government and ridicule those who don't. The more affluent one is, the more likely they are to be in this trusting group.

    Those who the government doesn't that as well, is distrustful of such overtures.

    While the former group likes to think of themselves as the better educated group, and formally this may be true, their lack of understanding of basic human psychology (which they ostensibly all took in college), and their hostility towa

  • Let's say France gets it's way, and ten years from now, we all learn that they totally did abuse the ability, and it's seen as a huge mistake.

    How many of those who are ridiculing the opponents will come back to the discussions they had and sincerely apologize for the name-calling?

    The answer is 0.

    This lack of skin in the game is a reason that Internet debates are rarely productive. The cost to carry a position, right or wrong, is negligible, and accountability is non-existent.

    Rant and rail against all of th

    • Let's say France gets it's way, and ten years from now, we all learn that they totally did abuse the ability, and it's seen as a huge mistake.

      Right now Apple has about a billion reasons to tell the French government "go **** yourself". What the French want will _not_ go on the App Store. Not when Apple and Google together are offering an API that keeps privacy safe, that will have been tested and found working in all countries other than France, that automatically works with any app using the API.

      For example, if eventually you travel from France to the UK, and you sit with your French phone with a French app using the Apple / Google API on a p

  • Nobody would give a shit. Except the poor.

    That the virus has the potential to effect the wealthy at an arguably greater rate (due to greater mobility), is why this is such a "crisis".

    When the ruling-class feels scared, the rights of everyone else start disappearing, and quickly.

    Find a cure, make it super-expensive so only the affluent can afford it, then we all go back to normal while the have-nots go back to dying quietly.

  • Thanks, Apple.

    France can go fuck itself.

  • I've always found running bluetooth continuously is a good way to halve the battery life of your phone.

  • by fintux ( 798480 ) on Wednesday April 22, 2020 @01:46AM (#59975128)

    It's almost cute how so many people are suddenly worried about their privacy with the contact tracing apps. I understand the concerns, of course, but this is something Apple and Google has the capacity to do, whether or not there is a pandemic and/or government approvals. It's not like this requires some new hardware, it's implementable completely in software. So if the tech giants choose so, this can be pushed to the devices through any update. It could even be there already - we cannot really know. Even if these were blocked, nothing prevents to add them later...

    • It's almost cute how so many people are suddenly worried about their privacy with the contact tracing apps

      Thanks. Nobody seems to have noticed this. If Apple or Google wanted to know where you are all the time, they would know, and you wouldn't know about it. They write the OS. There's nothing you could do and no way to find out. Except for whistleblowers who would give it all away obviously, which is why it isn't done.

    • If this is deployed on a large scale, some researchers would figure it out eventually. There are extra Bluetooth emissions or a GPS being on at wrong times. Possibly also spurious data going to their servers. "You can fool all the people some of the time, and some of the people all the time, but you cannot fool all the people all the time."
  • This is by design. Admittedly, I've run into problems related to this too...and in fact, Android does this too. To conserve battery, both OS's try to run "pause" things in the background, particularly when the phone isn't active.

    I agree that there should be a provided way around this, following Digital Signatures, explicit/non-trivial permissions from the user on a per-app basis (VPN clients like OpenVPN for instance,) etc. What should not happen is a blanket nullification of the restriction.

Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.!

Working...