Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.

ForumsICT Policies and RegulationNZTA & Bluetooth (Beca/Blip Systems)


996 posts

Ultimate Geek
Topic # 113699 24-Jan-2013 22:11 Send private message

I saw this article and was interested in what others might think about it.

The article specifically states:

"The Bluetooth Address collected is not related to a specific device or an individual."

Which piqued my interest as I thought any sort of analysis between two points would require information relating to a particular device be collected, would it not?

Blip Systems' YouTube video shows that analysis of a particular Bluetooth device is measured between two points and the data is stored on a server and that data presented to the people collecting it.

Surely this is not a good idea, given that Google were recently stopped from doing pretty much the same thing globally with Wi-Fi network data.

The obvious response is, of course, "turn off your Bluetooth" but I think this is a case of implementing something wrong then telling people they can opt out.




Workstation: Intel DH67CL ~ i5-2500 ~ 4GB Corsair RAM (x2) ~ Intel X25-M 80GB SSD

Laptop: Dell Inspiron 1564 ~ i5-520M ~ 4.00GB RAM ~ 500GB SATA HDD ~ Win7 Home Premium x64

Common misconceptions.

Create new topic
BDFL
43798 posts

Uber Geek

Administrator
Trusted
Geekzone
Subscriber
  Reply # 750462 24-Jan-2013 22:16 Send private message

Google's collection of WiFi data was different in that it was collecting a lot more than AP MAC addresses, location and strength. It was collecting payloads as well.

The only information required in this case is a device identifier. The device id is encrypted and stored. You only need the encrypted device id for comparison in two points, nothing else. There's nothing saying "this device id belongs to such individual".






Mauricio Freitas (Geekzone Admin, Devil's Advocate, my blogtechnology disclosure, my tweets, Web Performance Optimization

Geekzone Price comparison | Amazon Kindle order page | How to get the best out of Geekzone | New Zealand IT Jobs | Geekzone News | Jinglebugs 

1211 posts

Uber Geek
  Reply # 750464 24-Jan-2013 22:17 Send private message

I gyess it can identify unique devices but cannot tell who the device belongs to. 

I wonder if your have your bluetooth device hidden, which I do, if the system can see those devices?




HTC One
Nokia N9
Nokia E7
HP Touchpad
Dell Inspiron 14z i5

2 posts

Wannabe Geek

Trusted
BLIP Systems
  Reply # 750477 24-Jan-2013 23:10 Send private message

Hi!

I´m the Marketing Coordinator at BLIP Systems and will be more than happy to answer any questions concerning Bluetooth tracking.

For Bluetooth privacy concerns we have made this document:

http://issuu.com/blipsystems/docs/bluetooth_tracking_privacy_concerns

Please let me know what you think!

Regards,
Christian



996 posts

Ultimate Geek
  Reply # 750875 25-Jan-2013 16:53 Send private message

BlipTrack: Hi!

I´m the Marketing Coordinator at BLIP Systems and will be more than happy to answer any questions concerning Bluetooth tracking.

For Bluetooth privacy concerns we have made this document:

http://issuu.com/blipsystems/docs/bluetooth_tracking_privacy_concerns

Please let me know what you think!

Regards,
Christian


Thanks for the reply, your link was most informative. The article posted at GeekZone, strictly speaking, is incorrect regarding the collection of device specific data (which is why I decided to investigate further) but of course this in no way translates into personally identifying data.

Do Beca/Blip Systems possess the necessary capability to decrypt the MAC address hashes at a later date for the purpose of, for example, law enforcement?

Re-hashing the original hash daily is a nice touch, I will admit. Good on ya ;-)




Workstation: Intel DH67CL ~ i5-2500 ~ 4GB Corsair RAM (x2) ~ Intel X25-M 80GB SSD

Laptop: Dell Inspiron 1564 ~ i5-520M ~ 4.00GB RAM ~ 500GB SATA HDD ~ Win7 Home Premium x64

Common misconceptions.

1071 posts

Uber Geek
  Reply # 750882 25-Jan-2013 16:58 Send private message

Ah...the paranoid brigade starts again. Quick everyone, put your tin foil hats on! Lol





Artificial intelligence is no match, for natural stupidity!

2 posts

Wannabe Geek

Trusted
BLIP Systems
  Reply # 750945 25-Jan-2013 20:21 Send private message

Dear 1080P

No, it is not possible to revert hash codes back to Bluetooth, when using a SHA-256 algorithm*.
* SHA-256 algorithm generates an almost-unique, fixed size 256-bit (32-byte) hash. This makes it suitable for password validation, challenge hash authentication, anti-tamper, digital signatures.

Regards,
Christian

102 posts

Master Geek
  Reply # 751043 25-Jan-2013 23:46 Send private message

Okay so I'm going to act paranoid here. :P

You don't need to decrypt the hashes, you just need too find which mac address generates which hash.

There's only 2^48 unique mac addresses out there. Less if you know which brand of Bluetooth chipset your target uses.

You can do 65 million sha256 hashes per second on a $200 GPU

2^48 / 65000000 = 4.3 x 10^6 seconds = 50 days

If you to buy a bunch of GPUs, then you can calculate the hash for each possible mac address with the daily salt every day. Right?

Create new topic



Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when new jobs are posted to our jobs board:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »
Geeksphere TV: Episode 19.1
Posted 25-May-2013 18:19

Amazon brings Kindle Fire to 170 countries, expand app store to more than 200 countries
Posted 24-May-2013 14:41

Gen-i and SAP partner in mobile business
Posted 23-May-2013 09:23

Ericsson to close down telecom cable manufacturing
Posted 23-May-2013 08:46

FaceToFace Communications and StarLeaf bring unique cloud-based videoconferencing to Australia and New Zealand
Posted 22-May-2013 09:12

IBM Watson finds a new job: customer services
Posted 22-May-2013 08:37


Trending now »
Hot discussions in our forums right now:

Fecked up religious people strike again :-(
Created by Mark, last reply by freitasm on 25-May-2013 08:44 (85 replies)
Pages... 4 5 6

Cannabis is illegal yet we have really strong 'legal highs' ?
Created by qwerty7, last reply by freitasm on 23-May-2013 23:20 (74 replies)
Pages... 3 4 5

A new project coming to Geekzone
Created by freitasm, last reply by l43a2 on 24-May-2013 23:02 (342 replies)
Pages... 21 22 23

Xbox One
Created by DjShadow, last reply by nathan on 25-May-2013 22:40 (75 replies)
Pages... 3 4 5

HTC One (2013) owners' discussion
Created by Dingbatt, last reply by mrgsm021 on 25-May-2013 14:30 (1567 replies)
Pages... 103 104 105

Monolithic Cement Sheet cladding mid 80s house - "leaky home" or not?
Created by joker97, last reply by mattwnz on 24-May-2013 23:46 (15 replies)

Orcon, Is this for real or a scam??
Created by old3eyes, last reply by DarthKermit on 22-May-2013 19:12 (29 replies)
Pages... 2

Entire house HTPC concept
Created by InfiniteLoop, last reply by darthmeow on 24-May-2013 12:19 (26 replies)
Pages... 2


Geekzone Jobs »
Most recent NZ jobs in technology:

Developer of interactive experiences
Posted 25-May-2013 21:28

Ambitious Project Coordinator
Posted 25-May-2013 19:28

Ambitious Project Coordinator
Posted 25-May-2013 19:28

Exceptional Senior Project Manager
Posted 25-May-2013 19:28

Multitalented Business Analyst
Posted 25-May-2013 18:28

Communicative Test Manager
Posted 25-May-2013 17:28

Flexible Test Manager
Posted 25-May-2013 17:28


Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »
Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.