On 10/09/13 00:25, R. Jason Cronk wrote:
> Is the data aged?

Not AFAIAA.

> What happens if I move? 

The raw database notes that you are now being detected in a new
location. What happens then is up for debate. I'd argue that if your
position was fixed for N months before, and it seems fixed again now, we
should assume you have moved house and keep the point in the DB. APs
which seem to move a lot, or move regularly, should be excluded.

> Does this give Mozilla the
> ability to historically track me if I move my device? 

Yes; this is why publishing the full raw stumbled data sets is sadly
going to be not possible.

>> Our published database would include two tables. The first table would
>> map a random row id to metadata about an anonymous access point:
>>
>>     Random1 ==> AP1.latitude, AP1.longitude, ...
>>     Random2 ==> AP2.latitude, AP2.longitude, ...
> 
> I would be hesitant to use the word anonymous here. Latlong is easily
> combine with other publicly available databases that could identify
> individual address and thus individuals. Again, it comes down to
> granularity of the data.

I'm not sure what threat you are seeing. Can you elaborate? This is just
a list of latlongs which have a wireless access point. How can this
information assist in identifying individuals or their locations?

Gerv

_______________________________________________
dev-security mailing list
dev-security@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security

Reply via email to