reillyeon
commented
4 years ago Related: w3c/accelerometer#54 w3c/deviceorientation#85
Open npdoty opened 4 years ago
reillyeon
commented
4 years ago Related: w3c/accelerometer#54 w3c/deviceorientation#85
This may be a minor point on the source of privacy risks, but the Generic Sensor API currently refers to device fingerprinting from "minor manufacturing imperfections and differences that will be unique for this model" but we are also seeing research that the factory calibration settings of these sensors can also be detected through readings over time (which we are now trying to mitigate in different sensor specs).
If we want to note that with the Generic Sensor API, we might also directly cite this paper (in addition to other papers already noted on sensor fingerprinting): Zhang, Jiexin, Alastair R. Beresford, and Ian Sheret. “SensorID: Sensor Calibration Fingerprinting for Smartphones.” In 2019 IEEE Symposium on Security and Privacy (SP), 638–55. San Francisco, CA, USA: IEEE, 2019. https://doi.org/10.1109/SP.2019.00072.