Privacy

32177 readers

531 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

145

Investigators seek push notification metadata in 130 cases (go.theregister.com)

submitted 9 months ago by [email protected] to c/[email protected]

30 comments fedilink hide all child comments

"App developers can encrypt these messages when they're stored (in transit they're protected by TLS) but the associated metadata – the app receiving the notification, the time stamp, and network details – is not encrypted."

you are viewing a single comment's thread
view the rest of the comments

[–] gravitywell 2 points 9 months ago* (last edited 9 months ago) (8 children)

How is getting a push notification any better at tracking someone than the actual gps and tower data that their phone is CONSTANTLY sending out to their cell providers?

Seems really overblown, like most people hearing this assume it's including contents of the notifications but it doesn't, and if law enforcement wants to put a suspect at a crime scene, they can just get the data from T-Mobile, if it gets to the point they're asking Google or Apple for info, id be much more concerned about all the data and emails stored on the cloud, which they already have no problems giving out.

Am I missing something? What can law enforcement gain from push notification data that they can't get with data from the cell provider already or the wealth of other data collected by Gmail, maps, Uber, etc, which is way more useful than anything a push notification would contain.

Not defending the practice of course, I don't get push notifications because I don't have Google apps installed on my grapheneOS phone, but I'm pretty sure T-Mobile knows my location just as well.

[–] [email protected] 14 points 9 months ago (1 children)

I think the whole thing is that it's a class of data that has very few privacy protections on it and is therefore more easily accessible by assholes

[–] gravitywell 4 points 9 months ago

If we're talking about these agencies subpoenaing in order to get the data, that kinda sounds like privacy protections are in place for it. I think whats really happening here is that push data is now one of a hundred or so other things (like emails, google/app maps data, web search history), that's now being included when agencies make requests for a users data... they arent specifically going after push notifications any more then they're going after how many steps your fitbit is counting, they just want all the information they can get, and by voluntarily giving it to these companies we put ourselves at risk, its a very distopian trade off.

load more comments (6 replies)