One explanation is that Apple has sat on this for 2 years, knowing this is a serious security bug. Another explanation is that they just don't think it's that serious. The article states-
> The discovered problems are rooted in Apple's use of hash functions for “obfuscating” the exchanged phone numbers and email addresses during the discovery process. However, researchers from TU Darmstadt already showed that hashing fails to provide privacy-preserving contact discovery as so-called hash values can be quickly reversed using simple techniques such as brute-force attacks.
The post that they then linked to is about how, by hashing random phone numbers, you can effectively de-anonymise users of popular messaging apps.
So you'd need to be in physical proximity to the person, and what you're getting is details like your phone number which aren't especially private anyway (they literally need to be given to people to be of any use). It's far from the dragnet-level issue facing Signal & Whatsapp and others.
I don't know, but that doesn't seem like an especially serious issue to me. It seems just like a research group trying to make some hype for themselves.
Not sure how much is required to brute force these, but AirDrop has been used in notably sensitive situations like the Hong Kong protests[1], where I’m sure anonymity was assumed.
Proximity doesn’t mean I would like to share my phone number. Seems like an unlikely attack day-to-day, but one with definite privacy and personal safety concerns.
If the state where you live wants to know if you've been at a protest, they have more efficient ways of figuring that out than sending someone out to walk around, trying to collect AirDrop IDs. That should be the least of your worries.
I mean sure, I'm not saying there's no issue here. But it certainly isn't 'huge' either.
It sounds like a metadata situation where collecting AirDrop IDs is another piece of the puzzle that helps build a complete data profile of individuals. It may not be a huge issue, but it’s certainly not a small one.
If I turn off my phones LTE radio, and wear face coverings, how exactly would a state track me? Its said that Apple tries to randomize MACs of all the radios as much practically possible. What's the spin here?
If I were seriously trying to avoid tracking, you can bet my phone would have its very own tin foil hat. I don't trust "airplane mode" to not still have some radio active, but I trust physics.
Citation needed. The state is far less organized and competent than you think if the US is any indication. Planes were flown into skyscrapers and government facilities and we had zero defenses in place. A global pandemic occurred and we had no plan, PPE or ventilator supply and could not mobilize our infrastructure to respond. Thousands descended on the Capitol building and took selfies during a violent overthrow attempt and the FBI has no idea who the majority of them were, depending on internet tips to identify them.
> Planes were flown into skyscrapers and government facilities and we had zero defenses in place.
The FBI had certain groups under watch but didn't act on it. For a variety of reasons. This continues today - the FedEx shooter was well known to law enforcement but wasn't acted on. Instead of talking about how we can solve that problem, the media and people probably like you screech about restricting rights of everyone else (gun control?) instead :p
> A global pandemic occurred and we had no plan, PPE or ventilator supply and could not mobilize our infrastructure to respond.
We built massive temporary hospitals in NYC, sent a floating hospital up to NYC and instead of using those for the elderly, the NY governor sent the infected elderly back to nursing homes where the most vulnerable are. They also sent non-elderly to nursing homes too. There at least was some reporting about a violent 30 something homeless guy sent to a nursing home that assaulted elderly residents but it was pretty minimal and blew over quickly. There were mobilized responses - they were incompetent mobilizations. But why talk about that - maybe because most of disproportionate nursing home death rates happened predominantly in blue states? God forbid someone draw attention to that! Quick - more handwaving about "lack of mobilization" is needed!
Ventilators - we produced thousands of emergency ventilators that sat in warehouses waiting for a crises that never materialized. Then as we got more experience we learned ventilators actually make things worse and it's better to just change people's resting position. However those facts are not nearly as sexy or politically expedient as being able to blame the other side for lacking to produce something, so we still have people fixating on the non-existent ventilator crises to again deflect from other incompetence and also justify further "fixes".
> Thousands descended on the Capitol building and took selfies during a violent overthrow attempt and the FBI has no idea who the majority of them were, depending on internet tips to identify them.
lol - and the most preposterous propaganda of the year award. Entire city blocks repeatedly burning down over the summer during "mostly peaceful protests" and one incident started WHILE TRUMP WAS STILL SPEAKING is the end of western democracy as we know it. Yup. Trump lead. So violent that there were no fires. No statues toppled. No walls or paintings spray painted. All things that routinely happed in many American cities over and over for over a year but was hand waved off.
Indeed, the vast majority of people "insurrecting" were walking between the velvet ropes taking pictures, smiling, chatting with the capital police. Several videos show the same capital police holding the doors open for them - but it was a violent insurrection.
You see I watched most of it live from various streamers as it happened. I didn't just watch the carefully crafted media narrative. Yes there were some bad actors, but the cognitive dissonance and utterly disproportional response between what happened in those four hours vs. the entire year before is off the charts. If that was a violent insurrection and what happened over the summer were just mostly peaceful protests then we have gotten to levels of absurd gaslighting that even Orwell couldn't have imagined.
>The state is far less organized and competent than you think if the US is any indication.
Thank you for providing the biggest reason socialized medicine is an utterly ridiculous and downright scary proposition. Given your other positions this is a refreshingly frank take.
I know HN isn't supposed to be about politics, but I want to thank you for presenting a well reasoned response. It's given be a lot to think about and realise how media is manipulated and biased.
In the old days they used to print giant books of these "phone numbers" and drop them on your neighbours porches. Odd how things that were common are now security risks.
In Australia you have to pay extra for this feature, like $3/month, and extra for caller ID blocking, but cell numbers get unlisted status for free. I haven't had a landline for a decade. Is this still the case in the US?(https://www.motherjones.com/kevin-drum/2010/08/unlisted-phon...)
Makes me wonder how sparse phone numbers would have to be to make spam impractical. Would people use long virtual numbers? Imagine if your friends had your 64 digit phone number, and you would know it was a non spam inbound caller.
Or even better, TOFU, like a Signal call. Or just a Signal data channel over LTE.
Depends how easy this is to do on the fly. Lots of people thinking about it like it's a spy thriller. But could a creep with a laptop use it to harvest phone numbers from random school girls that they like the look of in starbucks? Not sure I would like my kids to experience this.
That's what I thought too since the AirDrop protocol, as mentioned in the article, doesn't even share any of that hashed info unless a user opens the share sheet to initiate an AirDrop transfer.
To me, that means that if I was going to attack someone using this exploit, I would need to sit there all day until someone used AirDrop to send something and then I'd need to make sure to have my attack planned out in advance so that I could then use that information to do something useful.
The chances of that actually happening to some detriment are so small, in my eyes.
> So you'd need to be in physical proximity to the person, and what you're getting is details like your phone number which aren't especially private anyway
Once you know the phone number, you would then be able to track an iOS device's location if it's in "contacts only" discoverability mode for AirDrop, right?
> The discovered problems are rooted in Apple's use of hash functions for “obfuscating” the exchanged phone numbers and email addresses during the discovery process. However, researchers from TU Darmstadt already showed that hashing fails to provide privacy-preserving contact discovery as so-called hash values can be quickly reversed using simple techniques such as brute-force attacks.
The post that they then linked to is about how, by hashing random phone numbers, you can effectively de-anonymise users of popular messaging apps.
So you'd need to be in physical proximity to the person, and what you're getting is details like your phone number which aren't especially private anyway (they literally need to be given to people to be of any use). It's far from the dragnet-level issue facing Signal & Whatsapp and others.
I don't know, but that doesn't seem like an especially serious issue to me. It seems just like a research group trying to make some hype for themselves.