search

lucaapp / security-concept

Archived Security Overview for Luca
https://gitlab.com/lucaapp/security-overview
43 stars 8 forks source link

Consent of Venue Owner vs. Guest Consent #8

Open ralfr opened 3 years ago

ralfr commented 3 years ago

In the security objectives you are stating

Traced Guest’s Contact Data is disclosed to the Health Department only after Venue Owners’ consent

Theoretically, on initiation of a Contact Tracing Process and immediately after a Venue Owner's technical consent, Luca app could automatically notify all concerned app users without having to know their individual contact data. Luca app could als prompt this user segment for additional consent to share their contact data.

This would eliminate the often slow and cumbersome manual processes in the respective Health Departments and immediately and automatically notify potentially infected guests.

It would also make sure that at no time (in the future) any authority could abuse the tracking data without the consent of the respective owner.

Requiring the Venue Owner's consent sounds good in theory, but realistically, a governmental authority will likely be able to force Venue Owner's to decrypt the collected data, hence not protecting individual guests privacy.

Has this been part of Luca's thought process and what is Luca's position on this?

reneme commented 3 years ago

Luca app could automatically notify all concerned app users without having to know their individual contact data

That is correct, and we're planning to introduce this. In fact a similar concern was already raised by this discussion. If you don't mind, I'd like to keep the discussion in one place.

ralfr commented 3 years ago

Luca app could automatically notify all concerned app users without having to know their individual contact data

That is correct, and we're planning to introduce this. In fact a similar concern was already raised by this discussion. If you don't mind, I'd like to keep the discussion in one place.

Didn't see that. Thanks for pointing it out.

reneme commented 3 years ago

On another note, regarding:

Luca app could als prompt this user segment for additional consent to share their contact data.

Technically that would be possible, you're right. However, luca aims to replace the paper-based contact information collection. For that, venue owners are required by law to provide their guest's contact information on request. If we'd require additional consent from the user, venue owners wouldn't be able to fulfill that requirement at their own discretion anymore.