this post was submitted on 13 Dec 2023
272 points (94.7% liked)

Technology

69211 readers
4007 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
272
Apple Makes It Harder for Police to Access Your Push Notifications (gizmodo.com)
submitted 1 year ago by [email protected] to c/[email protected]
62 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago (2 children)

The developer of the app sends the push notification through Apple's service. Developers have always been able to encrypt it, at which point it can be decrypted only by their app, but not all developers do this. There's also still limited metadata about the fact that a notification was sent, even if the contents are encrypted.

[–] [email protected] 1 points 1 year ago (1 children)

Would it not make more sense to remove metadata and not even collect it? Maybe have an encrypted protocol for push notifications all developers use regardless of the app?

[–] [email protected] 5 points 1 year ago

Your phone has to be informed somehow, from the internet, that it has data to present as a notification. The fact that you got a notification at 3:32 and then again at 3:35 is trackable data, pretty much no matter what anyone does with it, encrypted or not. Doubly so if someone has MITM attacked your data stream. They may not know what the notification contains or even what app it was sent to, but the act of transmitting and then receiving this data packet over cell network or internet is a trackable event. And I don't really know what Apple could even do about that beyond attempting to build Internet 2 solely for the purposes of keeping the cops out of it, which is unlikely at best.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (2 children)

deleted

[–] [email protected] 2 points 1 year ago* (last edited 1 year ago)

Why not chuck the data when it’s no longer being used, though?

They do. Apple is sending literally trillions of push notifications per year and certainly doesn't want to save them longer than necessary (a useless expense), but the government can also ask that information for a targeted user be retained, going forward from the request, even though it would normally be purged.

[–] [email protected] 1 points 1 year ago

Because protecting user privacy is not a priority.