• The Challenge of Proximity Apps For COVID-19 Contact Tracing

    By Andrew Crocker, Kurt Opsahl, and Bennett Cyphers

    Around the world, a diverse and growing chorus is calling for the use of smartphone proximity technology to fight COVID-19. In particular, public health experts and others argue that smartphones could provide a solution to an urgent need for rapid, widespread contact tracing—that is, tracking who infected people come in contact with as they move through the world. Proponents of this approach point out that many people already own smartphones, which are frequently used to track users’ movements and interactions in the physical world. But it is not a given that smartphone tracking will solve this problem, and the risks it poses to individual privacy and civil liberties are considerable.

  • Bluetooth Signals from Your Smartphone Could Automate COVID-19 Contact Tracing While Preserving Privacy

    By Kylie Foy

    Imagine you’ve been diagnosed as Covid-19 positive. Health officials begin contact tracing to contain infections, asking you to identify people with whom you’ve been in close contact. The obvious people come to mind — your family, your coworkers. But what about the woman ahead of you in line last week at the pharmacy, or the man bagging your groceries? Or any of the other strangers you may have come close to in the past 14 days? Researchers are developing a system that augments “manual” contact tracing by public health officials, while preserving the privacy of all individuals. The system enables smartphones to transmit “chirps” to nearby devices could notify people if they have been near an infected person.

  • Safe Paths: A Privacy-First Approach to Contact Tracing

    Fast containment is key to halting the progression of pandemics, and rapid determination of a diagnosed patient’s locations and contact history is a vital step for communities and cities. This process is labor-intensive, susceptible to human memory errors, and fraught with privacy concerns. Smartphones can aid in this process, though any type of mass surveillance network and analytics can lead to — or be misused by — a surveillance state.

  • How to Protect Privacy When Aggregating Location Data to Fight COVID-19

    By Jacob Hoffman-Andrews and Andrew Crocker

    As governments, the private sector, NGOs, and others mobilize to fight the COVID-19 pandemic, we’ve seen calls to use location information—typically drawn from GPS and cell tower data—to inform public health efforts. Compared to using individualized location data for contact tracing—as many governments around the world are already doing—deriving public health insights from aggregated location data poses far fewer privacy and other civil liberties risks such as restrictions on freedom of expression and association. However, even “aggregated” location data comes with potential pitfalls.

  • Not All Privacy Apps Are Created Equal

    By Adam Conner-Simons

    New privacy laws like Europe’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) have spawned a new industry of companies and platforms advertising that they can anonymize your data and be compliant with the law. But MIT researcher Aloni Cohen says that he has his doubts about these claims, and his team’s latest work shows that there’s reason to be skeptical.

  • Some Mobile Phone Apps Contain Hidden Secrets Compromising Users’ Private Data

    Researchers have discovered that a large number of cell phone applications contain hardcoded secrets allowing others to access private data or block content provided by users. The study’s findings: that the apps on mobile phones might have hidden or harmful behaviors about which end users know little to nothing.

  • How to Think about the Right to Privacy and Using Location Data to Fight COVID-19

    If asked to give up their privacy in the interests of stemming the coronavirus, many Americans may be inclined to say yes. Jay Stanley writes, however, that the answer requires more nuance, both because there are serious tradeoffs to be made, and because sacrificing privacy may actually backfire.

  • Mind Reading: New Software Agents Will Infer What Users Are Thinking

    Personal assistants today can figure out what you are saying, but what if they could infer what you were thinking based on your actions? A team of academic and industrial researchers is working to build artificially intelligent agents with this social skill.

  • Lawmaker Presses Clearview AI on Foreign Sales of Facial Recognition

    Senator Edward J. Markey (D-Massachusetts earlier this week raised new concerns about Clearview AI’s facial recognition app. Markey initially wrote to Clearview in January 2020 with concerns about how the company’s app might violate Americans’ civil liberties and privacy. Clearview is marketing its product to users in foreign countries with authoritarian regimes such as Saudi Arabia. The company might also be collecting and processing images of children from social media sites.

  • Protecting Sensitive Metadata So It Cannot Be Used for Surveillance

    By Rob Matheson

    MIT researchers have designed a scalable system that secures the metadata of millions of users in communications networks, to help protect the information against possible state-level surveillance. The system ensures hackers eavesdropping on large networks cannot find out who is communicating and when they’re doing so.

  • Enhancing Privacy in Today's Internet of Things

    People navigating the digital landscape of today’s internet are bombarded with notices about how their data is being collected. But in the physical world — where internet of things (IoT) technologies increasingly track our activities — few, if any, notices are provided. A team of researchers has created an app and an entire infrastructure to change that.

  • U.S. Plans to Collect DNA from Nearly a Million Immigrants Despite Charges It Violates Privacy

    By Alex Ellerbeck

    The Trump administration is pushing ahead with a project that could lead to the government collecting DNA from hundreds of thousands of detained immigrants, some as young as 14 years old, alarming civil rights advocates. Once fully underway, the DNA program could become the largest U.S. law enforcement effort to systemically collect genetic material from people not accused of a crime.

  • Israeli Court to Hear Case against Spy-Software Company NSO Behind Closed Doors

    On Thursday, a judge at Tel Aviv’s District Court begin hearing arguments as to why Israel’s Ministry of Defense (MoD) should revoke the export license of NSO Group. The firm’s Pegasus software has been used to target journalists and activists in several countries – including in Morocco, Saudi Arabia, Mexico, and the United Arab Emirates.

  • Unlawful Metadata Access Is Easy When We’re Flogging a Dead Law

    By Genna Churches and Monika Zalnieriute

    After watching this year’s media raids and the prosecution of lawyers and whistleblowers, it’s not hard to see why Australians wonder about excessive police power and dwindling journalistic freedom. But these problems are compounded by another, less known issue: police, and other bodies not even involved in law enforcement, have broad powers to access metadata. Each year, police alone access metadata in excess of 300,000 times.

  • Mobile Devices Blur Work and Personal Privacy Increasing Cyber Risks

    Organizations aren’t moving quickly enough to identify cyber security threats linked to the drive toward using personal mobile devices in the workplace, cybersecurity researchers warn. “The breakneck speed of digital transformation brought with it opportunities as well as threats,” one researcher said. “Organizations don’t appear to be keeping up with the pace of change, deliberately putting the brakes on digital transformation because it comes with security challenges.”