Am 28.01.14 08:30 schrieb(en) Christoph Biedl:
Additionally, I cannot follow your privacy argument. The major privacy breach is any tile server administrator can see which tiles are fetched from a certain IP address, but that's inevitable. Making the application used visible is rather minor in comparison.
Yes. Keep the Cent coin in the bank vault, but throw the 100€ banknote out of the window... Fully agree with you. However, as we know now [1], geo services *are* actually of interest for the secret services: <quote> A more sophisticated effort, though, relied on intercepting Google Maps queries made on smartphones, and using them to collect large volumes of location information. So successful was this effort that one 2008 document noted that "[i]t effectively means that anyone using Google Maps on a smartphone is working in support of a GCHQ system." </quote> Not sure if this is also an issue with OSM, but it obviously *could* be. The first line of defense would be an end-to-end encrypted connection (HTTPS with strong ciphers, etc. [2]). Do you know how we could ask the OSM people to offer an encrypted service in addition to the standard (HTTP) one? The eavesdropper could then still see the originating IP, but /not/ the contents of the request or the reply, which makes the IP alone more or less useless.
And as long as QLGT connects to www.qlandkarte.org during each application start, tile usage privacy isn't any of my major concerns.
Good point! Best, Albrecht. [1] <http://www.theguardian.com/world/2014/jan/27/nsa-gchq-smartphone-app-angry-birds-personal-data> [2] <https://www.bsi.bund.de/DE/Presse/Pressemitteilungen/Presse2013/BSI_veroeffentlicht_Mindeststandard_fuer_verschluesselte_Internetverbindungen_08102013.html>
pgpfYxf4zXGav.pgp
Description: PGP signature
------------------------------------------------------------------------------ WatchGuard Dimension instantly turns raw network data into actionable security intelligence. It gives you real-time visual feedback on key security issues and trends. Skip the complicated setup - simply import a virtual appliance and go from zero to informed in seconds. http://pubads.g.doubleclick.net/gampad/clk?id=123612991&iu=/4140/ostg.clktrk
_______________________________________________ Qlandkartegt-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/qlandkartegt-users
