Open kugelfish42 opened 4 years ago
Phlogi
commented
4 years ago Depends on what you weigh higher: The possibility of being traced and informed accordingly while for e.g. loosing and restoring your phone or backing up anonymous data that is hopefully difficult enough to exploit?
kugelfish42
commented
4 years ago This backup data would also include the private generation key (s_k) of the user and it would be linked to their real-name android identity. I think one of the major points of a privacy maximizing distributed solution is that there is not centralized repository of most users that if compromised would allow to reconstruct the contact graph of these users and link them to their real-world identities.
https://github.com/DP-3T/dp3t-app-android/blob/fd83185d87eca2b6de04213f9a4370b994f59fae/app/src/main/AndroidManifest.xml#L18
Given the sensitive nature of the data collected and stored in a local database, this app should probably not be opted into android cloud auto-backup.