this post was submitted on 18 Jul 2024
50 points (100.0% liked)
Free and Open Source Software
17937 readers
136 users here now
If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.
This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Aren’t “privacy-friendly” and “location service” mutually exclusive?
No.
It is hard to have both; but not impossible. You can still be privacy friendly without sacrificing necessary functionality.
It will require that the "provider" of such a dataset constantly scrub, sanitize and remove data that would cause privacy hazards as quickly as reasonably possible however. That in and of itself is a technical challenge; though not impossible.
I disagree that location is necessary functionality.
beaconDB doesn't log location requests, and it anonymizes location submissions, making it much more privacy-friendly than Google's or Apple's location services
Is “not as bad as Google” really a good goal for a project?
Using a location service obviously means that this service is going to know your location. beaconDB already minimizes the data that is collected about users. There's not much else that can be done to make these kinds of services more private. The other options (Google and Apple) are much worse. The only alternative is not using a network location service at all, and simply relying on GNSS + PSDS and SUPL, like GrapheneOS does by default. I'd say beaconDB is the next best option, much better than proprietary alternatives and on par with the now defunct Mozilla Location Service.
I don’t really see the need for a location service in the first place. My phone can share my GPS coordinates with first responders in an emergency. For everything else, there’s simply typing in the location I want to know about.
That's not always possible. Imagine you're visiting a city that you've never been to, or you go hiking in the mountains, or you go to another country that uses a different alphabet, so you can't type in a street name or something like that. There are many more use cases like sharing your location with someone else (for example over Signal), tracking your workout (for example when cycling or going on a run) using an app like OpenTracks, or if you like saving geolocation to your photos.
And your phone’s GPS wouldn’t work for all of those cases because…?
GNSS does work, but it can take a pretty long time to acquire an initial location without PSDS and SUPL. It also uses much more battery. This can especially become an issue if you want to share your live location with somebody, or record your workout over a longer period of time. There are technologies like A-GNSS (Assisted GNSS) that use SUPL (Secure User Plane Location) and PSDS (Predicted Satelite Data Service), but these also require you to send your location to a third party (the default SUPL service on Android is supl.google.com, which is definitely much worse for your privacy than any NLP). GrapheneOS hosts a proxy at supl.grapheneos.org, which is much more private (see GrapheneOS's privacy policy for all their network services: https://grapheneos.org/faq#privacy-policy). PSDS isn't much better, as it's usually provided by the manufacturer of your phone's SoC (e.g. Qualcomm, Broadcom or Samsung). PSDS also sends a lot of data to the service, including SoC serial number and information on the phone including manufacturer, brand and model. GrapheneOS improves the privacy of PSDS (you can read more about all of this at https://grapheneos.org/faq#default-connections), but I still don't see how this would be better than a privacy-friendly network location provider. beaconDB is still in a pretty early phase of development, but it's likely going to be used by GrapheneOS when it becomes more stable. It's also likely, that the GrapheneOS project will either host their own proxy for the public beaconDB service, or their own server using beaconDB data. That way, it would be even more private, and it would be covered under Graphene's privacy-policy, which is essentially just the EFF's privacy-friendly Do Not Track (DNT) policy.
Thanks for the explanation. I really do appreciate it. We seem to have a fundamental disagreement about whether this can be truly private and, indeed, whether it's necessary at all. It still seems to me a non-private solution in search of a problem.
It really is as private as it can be, and the developer is really dedicated to improve user privacy. Other solutions (SUPL, PSDS) aren't much better in terms of privacy. And it's definitely not a solution in search of a problem, as pure GNSS is really slow and consumes a lot of battery. You can try this out yourself if you use GrapheneOS, by going into the location settings and disabling both SUPL and PSDS. I tried it, and I can tell you that it's bad (in my opinion unusable).
Note that they didn't say "private" or "privacy-respecting".
Touché. My bad 😕
No worries. It's not your fault that "privacy-friendly" has become such a weasel word.