[Freedombox-discuss] UUID tracked
Ben Mendis
dragonwisard at gmail.com
Thu Jun 28 15:02:08 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
What's at issue, in these cases, is not that Apple devices have unique
device identifiers, but that the browser is intentionally sending that
information over the wire to remote websites and advertisers. The UDID
by itself is fairly harmless. It doesn't send itself. It's the browser
(which is software) which is transmitting it. Fix the browser, and it
won't matter if the UDID exists on the system or not.
Best regards,
Ben the Pyrate
On Thu, 28 Jun 2012, freebirds at hushmail.com wrote:
> Opera stated: “Imagine if advertisers or websites had the serial
> number of your computer after every time you visited, and you
> couldn’t turn that off,” said Scott Swanson, head of the Opera team
> that developed App-Tribute, in a phone interview with TPM. “The
> fact that this [UDID] has been available to advertisers and
> developers in the first place has never sat well with me.”
>
> Swanson said that potentially, because the UDID stays constant,
> “companies could collect and share information about a user, and
> that could be an invasion of privacy.”
> http://idealab.talkingpointsmemo.com/2012/04/as-apple-stops-apps-
> from-using-phone-ids-opera-offers-solution.php
>
> "Sparrowvsrevolution writes "In the wake of news that the iPhone
> app Path uploads users' entire contact lists without permission,
> Forbes dug up a study from a group of researchers at the University
> of California at Santa Barbara and the International Security
> Systems Lab that aimed to analyze how and where iPhone apps
> transmit users' private data. Not only did the researchers find
> that one in five of the free apps in Apple's app store upload
> private data back to the apps' creators that could potentially
> identify users and allow profiles to be built of their activities;
> they also discovered that programs in Cydia, the most popular
> platform for unauthorized apps that run only on 'jailbroken'
> iPhones, tend to leak private data far less frequently than Apple's
> approved apps. The researchers ran their analysis on 1,407 free
> apps (PDF) on the two platforms. Of those tested apps, 21 percent
> of official App Store apps uploaded the user's Unique Device
> Identifier, for instance, compared with only four percent of
> unauthorized apps."
> http://apple.slashdot.org/story/12/02/15/0036242/unauthorized-ios-
> apps-leak-private-data-less-than-approved-ones
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iQEcBAEBAgAGBQJP7HHwAAoJEMco5sYyM+0wio0IAJeF+8we9vpdNfgsPTQas/yt
UT6FX7X2hWzwtESuj7BaXgwQxO/CbYqlqAIF+umiqEocs+sCTDuCA96Hajoada+X
hHeX7qpsvoTFHNb61LrB4kcisuW7gbOLWIidn0rzsEcXQalwBkN4U4eg+pdQczlJ
42Vvz41vRGdg+Oi/5VgKe/6do3yQ6i3fRdaolf6T8oPPpH8Ml1AqKvRs0QOU5+fb
Nw0NaiyLyz2UiWie965B8Uwuc03iRcg52vMhS0ulV3fE/vUsoB6UlOaSuSueXVWJ
5rsE7tRCqb7C+cPV0lddCGe3bLStB7KQ6KrJwZN+fCJeuzw2IPOOa8zuOWSU7i4=
=yu5A
-----END PGP SIGNATURE-----
More information about the Freedombox-discuss
mailing list