On Sat, 2020-04-25, skybuck2000@hotmail.com wrote:

Corona Update 4 (25 april(4) 2020):

...

8. The corona app idea to inform people of infections around them is
no success so far, to much security/privacy concerns. I already
thought about such apps long time ago and discussed it with my
mother. She found it a bad idea, and me too actually because once
you go this route you can start creating all kinds of
"snitching"-apps and then our privacy goes out of the window.

The Pirate party showed[0] a solution which would respect privacy.
You have a phone app which roughly:

1. Sends out a series of random numbers over a short-range
communication medium. (I don't own a smartphone so I don't know if
this already exists.)

2. Receives and stores others' random numbers.

3. Receives messages like "the guy who sent <these> random numbers has
been diagnosed with a transmittable disease" and notifies the user
if the app has seen a lot of them.

No central database, and nothing meaningful to sniff for in public
places (not until you get ill anyway).

/Jorgen

[0] I saw it somewhere on Facebook.

--
// Jorgen Grahn <grahn@ Oo o. . .
\X/ snipabacken.se> O o .

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Saturday, April 25, 2020 at 6:41:36 PM UTC+2, Jorgen Grahn wrote:

On Sat, 2020-04-25, skybuck2000@hotmail.com wrote:

Corona Update 4 (25 april(4) 2020):

...

8. The corona app idea to inform people of infections around them is
no success so far, to much security/privacy concerns. I already
thought about such apps long time ago and discussed it with my
mother. She found it a bad idea, and me too actually because once
you go this route you can start creating all kinds of
"snitching"-apps and then our privacy goes out of the window.

The Pirate party showed[0] a solution which would respect privacy.
You have a phone app which roughly:

1. Sends out a series of random numbers over a short-range
communication medium. (I don't own a smartphone so I don't know if
this already exists.)

2. Receives and stores others' random numbers.

3. Receives messages like "the guy who sent <these> random numbers has
been diagnosed with a transmittable disease" and notifies the user
if the app has seen a lot of them.

No central database, and nothing meaningful to sniff for in public
places (not until you get ill anyway).

Seems the idea here is to avoid "identification numbers".

Seems like a single person has multiple random identification numbers.

There random indentification numbers would need to be very big others there is too much potential for conflicting and confusing random numbers.

Also the messages in which these are "broadcast" I presume would have to be "anonymous". So no source ip and such.

There is one problem with it though.

Let's suppose random numbers X,Y,Z are from an infected person.

How does infected person re-broadcast these numbers to inform that this person is infected.

There needs to be some information stored about source/dest/contacts to be able to do that.

One other solution could be to re-broadcast these numbers after infection but this would need the infected person to be close again to the original receiver.

Which seems weird or might not happen ever again.

One other solution is to start spreading these random infected numbers via a network/routing.

If this is does anoymous and via broadcasting and no IP then that might work...

However if there is no source ip can it truely be routed effeciently ?

Maybe set all destinations on routers and such... it's a bit weird idea.

Broadcasting would be a useless technology to inform others.

Even multicast might be of some use.

Some people might try to indentify these numbers though.

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sun, 2020-04-26, skybuck2000@hotmail.com wrote:

On Saturday, April 25, 2020 at 6:41:36 PM UTC+2, Jorgen Grahn wrote:

On Sat, 2020-04-25, skybuck2000@hotmail.com wrote:

Corona Update 4 (25 april(4) 2020):

...

8. The corona app idea to inform people of infections around them is
no success so far, to much security/privacy concerns. I already
thought about such apps long time ago and discussed it with my
mother. She found it a bad idea, and me too actually because once
you go this route you can start creating all kinds of
"snitching"-apps and then our privacy goes out of the window.

The Pirate party showed[0] a solution which would respect privacy.
You have a phone app which roughly:

1. Sends out a series of random numbers over a short-range
communication medium. (I don't own a smartphone so I don't know if
this already exists.)

2. Receives and stores others' random numbers.

3. Receives messages like "the guy who sent <these> random numbers has
been diagnosed with a transmittable disease" and notifies the user
if the app has seen a lot of them.

No central database, and nothing meaningful to sniff for in public
places (not until you get ill anyway).

Seems the idea here is to avoid "identification numbers".

Seems like a single person has multiple random identification numbers.

There random indentification numbers would need to be very big
others there is too much potential for conflicting and confusing
random numbers.

Also the messages in which these are "broadcast" I presume would
have to be "anonymous". So no source ip and such.

Yes. The numbers themselves carry no information, but they would have
to be anonymous. Once again, I don't know if this mechanism exists.

There is one problem with it though.

Let's suppose random numbers X,Y,Z are from an infected person.

How does infected person re-broadcast these numbers to inform that
this person is infected.

There needs to be some information stored about source/dest/contacts
to be able to do that.

I think my (3) above would be "download today's list of infected
numbers from the national health authority". If none or few of them
match numbers received in (2) you can discard the information.

But I didn't read and understand all the details. The main point was
that it's possible to implement a virus alert mechanism that doesn't
violate privacy. Provided (1) exists in phones, or in some other
equipment people are willing to carry.

/Jorgen

--
// Jorgen Grahn <grahn@ Oo o. . .
\X/ snipabacken.se> O o .

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Sunday, April 26, 2020 at 6:53:03 PM UTC+2, skybu...@hotmail.com wrote:

On Saturday, April 25, 2020 at 6:41:36 PM UTC+2, Jorgen Grahn wrote:

On Sat, 2020-04-25, skybuck2000@hotmail.com wrote:

Corona Update 4 (25 april(4) 2020):

...

8. The corona app idea to inform people of infections around them is
no success so far, to much security/privacy concerns. I already
thought about such apps long time ago and discussed it with my
mother. She found it a bad idea, and me too actually because once
you go this route you can start creating all kinds of
"snitching"-apps and then our privacy goes out of the window.

The Pirate party showed[0] a solution which would respect privacy.
You have a phone app which roughly:

1. Sends out a series of random numbers over a short-range
communication medium. (I don't own a smartphone so I don't know if
this already exists.)

2. Receives and stores others' random numbers.

3. Receives messages like "the guy who sent <these> random numbers has
been diagnosed with a transmittable disease" and notifies the user
if the app has seen a lot of them.

No central database, and nothing meaningful to sniff for in public
places (not until you get ill anyway).

Seems the idea here is to avoid "identification numbers".

Seems like a single person has multiple random identification numbers.

There random indentification numbers would need to be very big others there is too much potential for conflicting and confusing random numbers.

Also the messages in which these are "broadcast" I presume would have to be "anonymous". So no source ip and such.

There is one problem with it though.

Let's suppose random numbers X,Y,Z are from an infected person.

How does infected person re-broadcast these numbers to inform that this person is infected.

There needs to be some information stored about source/dest/contacts to be able to do that.

One other solution could be to re-broadcast these numbers after infection but this would need the infected person to be close again to the original receiver.

Which seems weird or might not happen ever again.

One other solution is to start spreading these random infected numbers via a network/routing.

If this is does anoymous and via broadcasting and no IP then that might work...

However if there is no source ip can it truely be routed effeciently ?

Maybe set all destinations on routers and such... it's a bit weird idea.

Broadcasting would be a useless technology to inform others.

I think I made a typo here and might to write "usefull" not sure ;) :)

But I think so.

Even multicast might be of some use.

Some people might try to indentify these numbers though.

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Monday, April 27, 2020 at 12:19:24 PM UTC+2, Jorgen Grahn wrote:

On Sun, 2020-04-26, skybuck2000@hotmail.com wrote:

On Saturday, April 25, 2020 at 6:41:36 PM UTC+2, Jorgen Grahn wrote:

On Sat, 2020-04-25, skybuck2000@hotmail.com wrote:

Corona Update 4 (25 april(4) 2020):

...

8. The corona app idea to inform people of infections around them is
no success so far, to much security/privacy concerns. I already
thought about such apps long time ago and discussed it with my
mother. She found it a bad idea, and me too actually because once
you go this route you can start creating all kinds of
"snitching"-apps and then our privacy goes out of the window.

The Pirate party showed[0] a solution which would respect privacy.
You have a phone app which roughly:

1. Sends out a series of random numbers over a short-range
communication medium. (I don't own a smartphone so I don't know if
this already exists.)

2. Receives and stores others' random numbers.

3. Receives messages like "the guy who sent <these> random numbers has
been diagnosed with a transmittable disease" and notifies the user
if the app has seen a lot of them.

No central database, and nothing meaningful to sniff for in public
places (not until you get ill anyway).

Seems the idea here is to avoid "identification numbers".

Seems like a single person has multiple random identification numbers.

There random indentification numbers would need to be very big
others there is too much potential for conflicting and confusing
random numbers.

Also the messages in which these are "broadcast" I presume would
have to be "anonymous". So no source ip and such.

Yes. The numbers themselves carry no information, but they would have
to be anonymous. Once again, I don't know if this mechanism exists.

There is one problem with it though.

Let's suppose random numbers X,Y,Z are from an infected person.

How does infected person re-broadcast these numbers to inform that
this person is infected.

There needs to be some information stored about source/dest/contacts
to be able to do that.

I think my (3) above would be "download today's list of infected
numbers from the national health authority". If none or few of them
match numbers received in (2) you can discard the information.

Maybe my broadcast idea is better through air or so, might be more efficient.

If millions of people start downloading big lists of numbers might overwhelm server.

My first reaction would be how health authority gets these numbers but I guess they could "plug" in into cell towers, and also at least in theory they could be listening in everywhere and collect "infected numbers" or so and then re-spread these... with
download list idea or broadcast.

But I didn't read and understand all the details. The main point was
that it's possible to implement a virus alert mechanism that doesn't
violate privacy. Provided (1) exists in phones, or in some other
equipment people are willing to carry.

Well to believe it and evaluate it logically the details would be nice to know.

IF you can find a link to it I may give it a read just for the fun of it.

I am kinda a fan/fund of the pirate bay lol <G>.

Bye,
Skybuck ;) =D

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Fri, 2020-05-08, skybuck2000@hotmail.com wrote:

On Monday, April 27, 2020 at 12:19:24 PM UTC+2, Jorgen Grahn wrote:

...

But I didn't read and understand all the details. The main point was
that it's possible to implement a virus alert mechanism that doesn't
violate privacy. Provided (1) exists in phones, or in some other
equipment people are willing to carry.

Well to believe it and evaluate it logically the details would be nice to know.

IF you can find a link to it I may give it a read just for the fun of it.

Found it. It was a Facebook post by the European Pirate Party on April 18: https://www.facebook.com/europeanpirateparty/posts/3362067363806580

/Jorgen

--
// Jorgen Grahn <grahn@ Oo o. . .
\X/ snipabacken.se> O o .

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Checking the replies from others for problems:

1. Bluetooth through walls for neighbours could be a problem. Though I don't see this as much of a problem for now, could increase storage a little bit, but shouldn't be too bad.

2. Rogue messages: Capturing random numbers from others and then pretending they are infected by sending their random numbers to the hospital.

3. Not requesting searches could indicate already infected, kinda funny. Phones would have to constantly request searches to not be suspicious, a bit far fetched, but I see a point in this ;)

4. Mobile phone could be hacked and cause mischief.

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

One more thing, somebody writes about a proposal from google, I think this could be what the dutch goverment might be considering/investigating:

https://github.com/DP-3T/documents

"Decentralized Privacy-Preserving Proximity Tracing"

Perhaps I will give this a read :)

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Found it. It was a Facebook post by the European Pirate Party on April 18: https://www.facebook.com/europeanpirateparty/posts/3362067363806580

Ok thanks for the link/picture !

Indeed, the idea seems to work as follows:

1. Every phone sends a random number to it's neighbours every 3 minutes or so.

2. Every phone stores these random numbers for 14 days.

4. If a phone's user is infected the random numbers are send to the hospital server.

5. If a phone's user wants to know if it was near an infected phone's user then it sends the stored numbers to the hospital, the hospital searches it's stored infected random numbers and returns if there is a match.

It's not a bad idea, there might be some slight problems with it:

1. The hospital server needs to perform the searches.

2. The hospital server needs to store the data, though if it's only 14 days than that's not so bad.

3. Requesting searches from the hospital server can identify the requester's IP and mobile phone. So it's not fully anonymous, at least in theory.

4. Though when using TOR to request then there could be some privacy.

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

On Wednesday, May 13, 2020 at 7:32:06 PM UTC+2, skybu...@hotmail.com wrote:

One more thing, somebody writes about a proposal from google, I think this could be what the dutch goverment might be considering/investigating:

https://github.com/DP-3T/documents

"Decentralized Privacy-Preserving Proximity Tracing"

Perhaps I will give this a read :)

I scanned it quickly, and yes, this is basically the same idea as the pirate bay's idea ! LOL.

And the analyze the threats/concerns a bit more deeply ! ;)

Bye for now,
Skybuck.

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)