National Edu News: Secretary Higher Education urges students to emerge as job creators  |  National Edu News: PM addresses the 18th Convocation of Tezpur University, Assam  |  Leadership Instincts: Experts highlight the need for strengthening centre-state cooperation  |  Policy Indications: India’s global position rises both in innovations & publications  |  Education Information: Written Result of Indian Economic Service/Indian Statistical Service Examination  |  National Edu News: AstroSat’s Ultraviolet Imaging Telescope spots rare ultraviolet-bright stars  |  Parent Interventions: Randomized trials could help to return children safely to schools   |  Parent Interventions: How fellow students improve your own grades   |  Parent Interventions: School-made lunch 'better' for children  |  Teacher Insights: Second Anniversary of India Science, Nation’s OTT Channel  |  Leadership Instincts: Participation of MGIEP in the Implementation of NEP 2020  |  Teacher Insights: World of Puzzling Patterns  |  Education Information: HKUST Collaborates with Hang Lung to Foster Young Mathematics Talent  |  Leadership Instincts: Global Environment Outlook 6 Chinese version launched  |  Leadership Instincts: Peking University academics visits Beijing Representative Office of World Bank  |  
April 11, 2020 Saturday 05:40:46 PM IST

Corona Virus Contact Tracing Apps Create Privacy Issues for Policy Makers

Image by Engin Akyurt

Nations are trying to use the advanced IT, artificial intelligence and data science to keep track of the spread of the coronavirus. Various apps have been devised to upload and process information. However, it has also given rise to privacy concerns.
In the South Indian State of Kerala which has now won world-wide acclaim for its public health intervention policies that helped keep corona virus in check, a new allegation about collection of health information about people in quarantine. Opposition Congress Leader Ramesh Chennithala alleged that health data of people placed in quarantine and other health information related to Covid-19 patients were uploaded to the website of a US company without storing in state government servers. The data will be processed using artificial intelligence. This compromises privacy and security of important patient data, according to Ramesh Chennithala. 
Hassan Asghar and Dali Kaafar of Macquarie University's Cybersecurity Hub has pointed out that even if Covid Contract tracing apps are life savers in these pandemic times, it can also cause privacy issues. 
The scientists have analysed 'TraceTogether' a mobile app which has been put on open source by Singapore. Users may have concerns about the use of their data for mass surveillance. How the app works.
TraceTogether uses Bluetooth to exchange information between users. Signal strength approximates distance between users. The app shares time, and (temporary) user IDs, logging this, encrypted, on the device. When someone installs the app, a centralised authority, like the Department of Health, stores their mobile number, plus a newly-generated user ID, on its server.
The server uses its private key to generate temporary IDs, transmitting them to the corresponding user. These temporary IDs are exchanged between users near each other. A user diagnosed with COVID-19 is asked for consent to upload the app’s encrypted data logs to the server. With these, the registry can contact other users who were in contact with them.

Potential Threats
Privacy from other users is built in. The app generates temporary user IDs, refreshing them frequently. These IDs are generated by the server based on people’s phone numbers and their permanent ID so the central authority can determine the identities of users if needed. The temporary nature of the IDs means other users can’t track someone for long. But the server can.
Users’ data is safe from snoopers: data logs on the user’s phone are encrypted, so hackers can’t read the data. The server has the decryption key for the data logs, which are only sent to the server for determining close contacts between people. The app keeps data secure from other users and snoopers, but not from the central registry. The server can retrieve users’ data logs, decrypt and read them. It can also link the temporary IDs to real identities.
There are some privacy features. The server only asks for data logs from infected users or people who have been near one. Data logs only contain relative distance, not precise location.
Data on phones is deleted after 21 days. The server can know a user’s private data, but this is a feature of most apps.  If a user tests positive, they can consent to the server retrieving their data, to identify users who have been in contact with them. At this point, potentially uninfected users lose control over their privacy.
The app could be (mis)used for surveillance. The central registry could obtain and decrypt data logs from a large number of users, for mass surveillance. Although data logs on the device are deleted after 21 days, there is no guarantee data logs decrypted at the central server would be.
The app could be tweaked for more privacy, reconfiguring it so the app generates temporary user IDs. This way, only the user knows their identity. They would have to allow their device to share the list of their temporary IDs. The server would find temporary IDs that have been in contact with the infected user and broadcast them. Users getting a message containing their temporary ID can respond by identifying themselves. 
Future versions should be decentralised. The server could push temporary IDs of diagnosed users to the apps, allowing other users to determine if they have been in contact with them. 
Locally and randomly generated IDs can’t be linked to true identities. The server would not know the identities of the users within infection range of someone who tested positive.  This fundamental change in the design might not be possible to do quickly.


Courtesy: https://tinyurl.com/u8cd3za



Comments
 

RECOMMENDED NEWS

23-01-2021
India’s global position rises both i...
Policy Indications
India’s excellence in science has now been combined with the recognition of its brilliance as an innovative economy. While the country has already attained the third position in terms of publications, it now features among the top 50 innovative economies globally as per the Global Innovation Index (GII), placing it ahead of many developed and developing countries. The combination of scientific excellence and innovation has been possible through encouraging i...
20-01-2021
Universities Can Set Benchmarks Above ...
Policy Indications
In a landmark judgement, the Supreme Court has recently ruled that the All India Council of Technical Education cannot restrict Universities and State Governments for adopting higher norms for quality assurance in the technical education sector. The Supreme Court was disposing of a petition filed by APJ Abdul Kalam Technological University ( KTU ) which challenged an order of the High Court of Kerala. The Court held that affiliating universities and State governments co...
20-01-2021
A Dialogue on National Education Polic...
Policy Indications
A dialogue on the “New Education Policy 2020 – NEP Outreach”, was organized by the Nehru Centre, London with National Book Trust, India (under Ministry of Education) on 18 January 2021. Speaking on the occasion, Union of Education Ramesh Pokhriyal ‘Nishank’, Minister said that under the leadership of Prime Minister Narendra Modi, the NEP-2020 has been implemented with a futuristic mindset, thereby turning the challenges into opportunities. It will equip India ...
20-01-2021
‘75% marks in class 12’ eligibilit...
Policy Indications
Considering the decision was taken for IIT JEE (Advanced) and in line with the decision taken for the last academic year, the Ministry of Education had decided to waive off the 75% marks (in class 12 exam) eligibility criteria under Joint Entrance Examination (Main) for the next academic year 2021-2022 in respect of NITs, IIITs, SPAs, and other CFTIs, whose admissions are based on JEE (Main). The admissions to various Under Graduate (UG) programmes of the Nation...
20-01-2021
Syllabus of JEE and NEET to remain unc...
Policy Indications
The syllabus of JEE and NEET will remain unchanged for the year 2021. However, unlike previous years, this year the candidates will have options to answer the questions in JEE and NEET Examinations. The syllabus for JEE (Main 2021) to remain the same as the previous year. But students will be given choice to answer 75 questions (25 questions each in Physics, Chemistry & Mathematics) out of 90 questions (30 questions each in Physics, Chemistry & Mathemati...
19-01-2021
NEP 2020: Implementation Plan for Scho...
Policy Indications
The National Education Policy, 2020 is the third in the series of National Education Policies (1968 and 1986 modified in 1992) in India and is the first education policy of the 21st century. NEP 2020 covers wider spectrum of school education from pre-primary to senior secondary. The recommendations given have varied timelines as the policy is made for next 20 years. Therefore, the implementation of NEP is being carried out in a phased manner. ShikshakParv was orga...