device fingerprinting may also refer to the factory (or other) calibration of the device #404
Labels
privacy-tracker
Group bringing to attention of Privacy, or tracked by the Privacy Group but not needing response.
Comments
npdoty
added
the
privacy-tracker
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This may be a minor point on the source of privacy risks, but the Generic Sensor API currently refers to device fingerprinting from "minor manufacturing imperfections and differences that will be unique for this model" but we are also seeing research that the factory calibration settings of these sensors can also be detected through readings over time (which we are now trying to mitigate in different sensor specs).
If we want to note that with the Generic Sensor API, we might also directly cite this paper (in addition to other papers already noted on sensor fingerprinting):
Zhang, Jiexin, Alastair R. Beresford, and Ian Sheret. “SensorID: Sensor Calibration Fingerprinting for Smartphones.” In 2019 IEEE Symposium on Security and Privacy (SP), 638–55. San Francisco, CA, USA: IEEE, 2019. https://doi.org/10.1109/SP.2019.00072.
The text was updated successfully, but these errors were encountered: