News, tips, advice, support for Windows, Office, PCs & more
Home icon Home icon Home icon Email icon RSS icon

We're community supported and proud of it!

  • The Clever Cryptography Behind Apple's 'FIND MY' Feature

    Posted on Comment on the AskWoody Lounge

    Home Forums AskWoody support Non-Windows operating systems iOS The Clever Cryptography Behind Apple's 'FIND MY' Feature

    Viewing 3 reply threads
    • Author
      Posts
      • June 6, 2019 at 5:06 am #1796882
        Alex5723
        AskWoody Plus

        https://www.wired.com/story/apple-find-my-cryptography-bluetooth/

        In upcoming versions of iOS and macOS, the new Find My feature will broadcast Bluetooth signals from Apple devices even when they’re offline, allowing nearby Apple devices to relay their location to the cloud. That should help you locate your stolen laptop even when it’s sleeping in a thief’s bag…

        “Now what’s amazing is that this whole interaction is end-to-end encrypted and anonymous,” Federighi said at the WWDC keynote. “It uses just tiny bits of data that piggyback on existing network traffic so there’s no need to worry about your battery life, your data usage, or your privacy.”..

        2 users thanked author for this post.
        Nathan Parker, Myst
        Reply | Quote
      • June 6, 2019 at 6:31 am #1797231
        mn–
        AskWoody Lounger

        So. Anyone can determine whether a given storage locker, backpack, handbag, parked car, etc contains an Apple device, or whether there’s any such device nearby.

        Reply | Quote
        • June 6, 2019 at 11:07 am #1799187
          Myst
          AskWoody Plus
          mn– wrote:

          So. Anyone can determine whether a given storage locker, backpack, handbag, parked car, etc contains an Apple device, or whether there’s any such device nearby.

          Sounds to me like it should avoid picking up just any iDevice –
          More on privacy/location and the ability to remain anonymous …

          https://www.wired.com/story/apple-find-my-cryptography-bluetooth/
          “And it turns out that Apple’s elaborate encryption scheme is also designed not only to prevent interlopers from identifying or tracking an iDevice from its Bluetooth signal, but also to keep Apple itself from learning device locations, even as it allows you to pinpoint yours.”

          Win7 Home x64 MacOS Chromebook

          1 user thanked author for this post.
          Elly
          Reply | Quote
        • June 6, 2019 at 11:23 am #1799389
          Alex5723
          AskWoody Plus
          mn– wrote:

          So. Anyone can determine whether a given storage locker, backpack, handbag, parked car, etc contains an Apple device, or whether there’s any such device nearby.

          What gave you that idea ?
          The owner (as well as Apple) searching for his lost/stolen iDevice doesn’t know/get any information regarding the iDevice that’s sending the location data of his lost iDevice to iCloud. The data sent and the data received are both encrypted.

          This and the new privacy log-in with AppleID are tremendous features that no one else has.

          • This reply was modified 2 years, 1 month ago by Alex5723.
          • This reply was modified 2 years, 1 month ago by PKCano.
          2 users thanked author for this post.
          Elly, Myst
          Reply | Quote
          • June 6, 2019 at 3:11 pm #1801789
            mn–
            AskWoody Lounger
            Alex5723 wrote:

            What gave you that idea ?

            This:

            Alex5723 wrote:

            the new Find My feature will broadcast Bluetooth signals from Apple devices even when they’re offline,

            So. They’re broadcasting. Even if the device isn’t individually identifiable, being a source of signals that have Apple encryption is sufficient to determine that there is a device present.

            Hiding in ambient RF noise only helps as long as the receiver is a point target. Array antennas are getting common and those aren’t a single point so…

            This is really the kind of thing that Apple should pay everyone else to use too, just to make it *not* automatically mean there’s an Apple device present if such a signal is detected.

            Reply | Quote
      • June 6, 2019 at 5:54 pm #1803354
        Alex5723
        AskWoody Plus
        mn– wrote:

        They’re broadcasting. Even if the device isn’t individually identifiable, being a source of signals that have Apple encryption is sufficient to determine that there is a device present.

        When I walk the streets I can detect smartphones’ BT, CarPlay/Android Auto BT, Smartwatchs’ BT, Beacons, Dogs BT Fobs, BT key Fobs, BT headphones…Apple’s devices are no different in this regard and the devices does not manifest themselves as being Apple devices.

        Reply | Quote
        • June 7, 2019 at 12:20 am #1805675
          mn–
          AskWoody Lounger
          Alex5723 wrote:
          mn– wrote:

          They’re broadcasting. Even if the device isn’t individually identifiable, being a source of signals that have Apple encryption is sufficient to determine that there is a device present.

          When I walk the streets I can detect smartphones’ BT, CarPlay/Android Auto BT, Smartwatchs’ BT, Beacons, Dogs BT Fobs, BT key Fobs, BT headphones…Apple’s devices are no different in this regard and the devices does not manifest themselves as being Apple devices.

          Exactly – current devices don’t, as they don’t have this feature yet. Besides it likely uses a non-default signaling mode that isn’t by default exposed by a random listener.

          But given the thing from the Wired article:

          your laptop will emit its rotating public key via Bluetooth. A nearby stranger’s iPhone, with no interaction from its owner, will pick up the signal, check its own location, and encrypt that location data using the public key it picked up from the laptop.

          That means that there *has* to be a signal that can be identified as belonging to a device with this feature.

          Do note that this also depends on the stranger’s device keeping the location encrypted. It essentially goes, “Apple device with secret hash xxxxxxxxxxx detected near my current location” … you’d need to trust the stranger’s device to keep the location sufficiently secure.

          So yeah. Without that trust, privacy is dependent on there ALWAYS being a sufficient mass of such devices that the mere presence of one doesn’t stand out… and that in turn is very much of a challenge against any kind of a selective antenna, even a simple directional portable one…

          Also sort of bad that they keep emitting while “offline”.

          Reply | Quote
      • June 7, 2019 at 5:24 am #1807322
        Paul T
        AskWoody MVP
        mn– wrote:

        Also sort of bad that they keep emitting while “offline”.

        What will the airlines make of an always on device during take off / landing?

        cheers, Paul

        Reply | Quote
    • Author
      Posts
    Viewing 3 reply threads

    Please follow the -Lounge Rules- no personal attacks, no swearing, no politics or religion.

    Reply To: The Clever Cryptography Behind Apple's 'FIND MY' Feature

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.

Don't miss out!
Subscribe to the AskWoody Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • All Forums

    • Recent Topics

    My Profile

    July 2021
    S M T W T F S
     123
    45678910
    11121314151617
    18192021222324
    25262728293031

    Want to Advertise in the free newsletter? Send an email to sb@askwoody.com to ask how.

    Home About FAQ Posts & Privacy Free Newsletter Plus Membership

    Copyright ©2004-2021 by AskWoody Tech LLC. All Rights Reserved.