Teacher Insights: Know about how to choose the best MPPSC coaching institute  |  National Edu News: Swinburne University of Technology & IIT H launch the joint doctoral program  |  Policy Indications: India & Japan collaborations for innovations on Hydrogen based technologies  |  National Edu News: Education Minister addresses at the Annual Convocation of IIM Rohtak  |  Education Information: UPSC postpones tests and Interviews of some examinations  |  National Edu News: Piyush Goyal launches the Startup India Seed Fund Scheme  |  Teacher Insights: Are you Proficient in English?  |  National Edu News: National climate vulnerability assessment sees 8 states as highly vulnerable  |  National Edu News: Education minister e-launches long-lasting hygiene product DuroKea Series  |  National Edu News: Punjab’s new nutrient rich crop varieties can satisfy India's nutritional needs   |  Guest Column: Delicious Dhabas  |  International Edu News: 2D Perovskites for Solar Cells and LEDS  |  International Edu News: AI Model for Predicting Tsunami  |  International Edu News: Wearable Sweat Sensors on a Bandage  |  International Edu News: Smallest High Resolution Microscope  |  
April 11, 2020 Saturday 05:40:46 PM IST

Corona Virus Contact Tracing Apps Create Privacy Issues for Policy Makers

Image by Engin Akyurt

Nations are trying to use the advanced IT, artificial intelligence and data science to keep track of the spread of the coronavirus. Various apps have been devised to upload and process information. However, it has also given rise to privacy concerns.
In the South Indian State of Kerala which has now won world-wide acclaim for its public health intervention policies that helped keep corona virus in check, a new allegation about collection of health information about people in quarantine. Opposition Congress Leader Ramesh Chennithala alleged that health data of people placed in quarantine and other health information related to Covid-19 patients were uploaded to the website of a US company without storing in state government servers. The data will be processed using artificial intelligence. This compromises privacy and security of important patient data, according to Ramesh Chennithala. 
Hassan Asghar and Dali Kaafar of Macquarie University's Cybersecurity Hub has pointed out that even if Covid Contract tracing apps are life savers in these pandemic times, it can also cause privacy issues. 
The scientists have analysed 'TraceTogether' a mobile app which has been put on open source by Singapore. Users may have concerns about the use of their data for mass surveillance. How the app works.
TraceTogether uses Bluetooth to exchange information between users. Signal strength approximates distance between users. The app shares time, and (temporary) user IDs, logging this, encrypted, on the device. When someone installs the app, a centralised authority, like the Department of Health, stores their mobile number, plus a newly-generated user ID, on its server.
The server uses its private key to generate temporary IDs, transmitting them to the corresponding user. These temporary IDs are exchanged between users near each other. A user diagnosed with COVID-19 is asked for consent to upload the app’s encrypted data logs to the server. With these, the registry can contact other users who were in contact with them.

Potential Threats
Privacy from other users is built in. The app generates temporary user IDs, refreshing them frequently. These IDs are generated by the server based on people’s phone numbers and their permanent ID so the central authority can determine the identities of users if needed. The temporary nature of the IDs means other users can’t track someone for long. But the server can.
Users’ data is safe from snoopers: data logs on the user’s phone are encrypted, so hackers can’t read the data. The server has the decryption key for the data logs, which are only sent to the server for determining close contacts between people. The app keeps data secure from other users and snoopers, but not from the central registry. The server can retrieve users’ data logs, decrypt and read them. It can also link the temporary IDs to real identities.
There are some privacy features. The server only asks for data logs from infected users or people who have been near one. Data logs only contain relative distance, not precise location.
Data on phones is deleted after 21 days. The server can know a user’s private data, but this is a feature of most apps.  If a user tests positive, they can consent to the server retrieving their data, to identify users who have been in contact with them. At this point, potentially uninfected users lose control over their privacy.
The app could be (mis)used for surveillance. The central registry could obtain and decrypt data logs from a large number of users, for mass surveillance. Although data logs on the device are deleted after 21 days, there is no guarantee data logs decrypted at the central server would be.
The app could be tweaked for more privacy, reconfiguring it so the app generates temporary user IDs. This way, only the user knows their identity. They would have to allow their device to share the list of their temporary IDs. The server would find temporary IDs that have been in contact with the infected user and broadcast them. Users getting a message containing their temporary ID can respond by identifying themselves. 
Future versions should be decentralised. The server could push temporary IDs of diagnosed users to the apps, allowing other users to determine if they have been in contact with them. 
Locally and randomly generated IDs can’t be linked to true identities. The server would not know the identities of the users within infection range of someone who tested positive.  This fundamental change in the design might not be possible to do quickly.


Courtesy: https://tinyurl.com/u8cd3za



Comments
 

RECOMMENDED NEWS

20-04-2021
India & Japan collaborations for innov...
Policy Indications
Experts from India and Japan discussed possibilities of collaboration for promotion of hydrogen-based technologies as well as related innovations, trends, concerns, and solutions at a webinar on De-carbonisation: Exploring the Hydrogen Prospects and Innovative Technologies. “Challenges for India-Japan hydrogen research is cost reduction and improved performance for fuel cells, hydrogen storage, challenges for viable green hydrogen process routes, significa...
15-04-2021
AIM, NITI Aayog announces partnership ...
Policy Indications
Atal Innovation Mission (AIM), NITI Aayog has signed an agreement with Dassault Systemes Fondation to jointly work towards providing a digitally rich ecosystem of Innovation in India and promoting STEM based innovation and entrepreneurship among aspiring young minds across the country. One of the flagship programs of AIM, the Atal Tinkering Labs (ATLs) has played a pivotal role in fostering creativity and imagination amongst school children. Dassault System...
15-04-2021
Dr Harsh Vardhan announces launch of `...
Policy Indications
Union Minister for Science and Technology, Earth Sciences and Health and Family Welfare, Dr Harsh Vardhanhas launched “AahaarKranti”, a mission dedicated to spreading awareness about nutrition and accessible to all locally available nutritious food, fruits, and vegetables in India. Vijnana Bharati (Vibha), ‘Global Indian Scientists and Technocrats’ Forum (GIST), Vigyan Prasar, and Pravasi Bharatiya Academic and Scientific Sampark (PRABHASS) have come together to lau...
13-04-2021
Atal Innovation Mission collaborates w...
Policy Indications
Atal Innovation Mission (AIM), NITI Aayog has collaborated with Bayer- a global enterprise with core competencies in the fields of healthcare and nutrition, to work towards the mission’s innovation and entrepreneurship initiatives across the country. A Statement of Intent (SoI) of a strategic partnership between AIM and Bayer was signed and exchanged to formalize the collaboration. The SoI will span the promotion of science education, advancing digital solut...
13-04-2021
India-Denmark join hands through Atal ...
Policy Indications
As part of Indo-Danish bilateral Green strategic partnership, India is all set to take a giant leap towards building a world-class innovation ecosystem as Atal Innovation Mission (AIM) of India’s premier policy think tank NITI Aayog and Embassy of Denmark to India today officially announced their collaboration. Under this ambitious partnership,Innovation Center Denmark in India will collaborate with AIM to support various current and future initiatives of AIM, NITI Aayog an...
12-04-2021
CSIR adopts 295 Atal Tinkering Labs
Policy Indications
Atal Innovation Mission (AIM), NITI Aayog’s flagship 295 Atal Tinkering Labs (ATLs) were officially adopted by the Council of Scientific and Industrial Research (CSIR) across the country is an ambitious step towards inculcating scientific research and innovation culture among students. CSIR with its 36 labs has adopted 295 ATLs and their students across the country. This is going to be a path-breaking opportunity for young innovators across India to learn from the b...