search

corona-warn-app / cwa-wishlist

Central repository to collect community feature requests and improvements. The CWA development ends on May 31, 2023. You still can warn other users until April 30, 2023. More information:
https://coronawarn.app/en/faq/#ramp_down
Apache License 2.0
105 stars 14 forks source link

Enable backup of cwa-android for places, people, certificates and so on #852

Open jensb opened 2 years ago

jensb commented 2 years ago

Avoid duplicates

Current Implementation

The Android app explicitly disables app backups in the manifest, supposedly due to privacy concerns. This makes it impossible to migrate CWA settings to a new smartphone. Note that I'm not talking about hashes exchanged to detect infections, I'm talking about vaccination certificates, tests, the location diary and people I've met, manual entries like these.

Of course this data is "private", but is it more private than my Google Fit health data, my Google Mail emails, my cloud based Fitness tracker, my Google Maps favourite places, all my domnestic smart devices, my diary (which gets backed up too), and the 101 other apps that store personal information and can backup too? I don't think so.

Suggested Enhancement

Enable backup in the app manifest. Exclude the anonymous infection hashes from the backup if necessary, but backup the rest.

Expected Benefits

Migration to a new smartphone is possible without data loss. You still need to keep the old phone around for 14 days to see alerts, but your manually entered, non-volatile data is migrated.

Internal Tracking ID: EXPOSUREAPP-10053 Android Internal Tracking ID: EXPOSUREAPP-9646 iOS Internal Tracking ID: EXPOSUREAPP-11168 obsolete

deesnook commented 2 years ago

Why not add hashes too? If it is my choice to back them up or not, there should be no privacy concern. Keeping the old phone is only possible if you actually change phones. If you just do a clean reinstall of your phone (which might be necessary for whatever reason), the hash data of the last 14 days are gone

jensb commented 2 years ago

I had the impression that these hashes were somehow connected to, encrypted with, or hidden in the actual smartphone hardware, "secure enclave" or whatever, only accessible by Google & Apple, and cwa-android would only be notified by the OS if there was a match, but not perform the matching.

If this is not the case, by all means backup everything!

larswmh commented 2 years ago

Thanks for your suggestion @jensb and @deesnook. We have created an internal ticket for it and will raise this topic internally. Internal Tracking ID: EXPOSUREAPP-11168

Corona-Warn-App Open Source Team

Ein-Tim commented 2 years ago

This seems to be very closely related to https://github.com/corona-warn-app/cwa-wishlist/issues/8 & https://github.com/corona-warn-app/cwa-wishlist/issues/500

mtwalli commented 2 years ago

@jensb This feature is in our backlog , and is planned to be done in the near future. Thanks for contribution!

dsarkar commented 2 years ago

new ticket: Internal Tracking ID: EXPOSUREAPP-10053

Ein-Tim commented 2 years ago

@dsarkar

You might like to "spread the good news" @mtwalli shared in the above mentioned related issues (-:

Ein-Tim commented 2 years ago

I suggest to merge this issue with #500.