Privacy Group Calls Google Latitude a Real 'Danger'

CWmike writes "Privacy International is calling Google's new mapping application an 'unnecessary danger' to users' security and privacy. The criticism follows the unveiling this week of Google Latitude, an upgrade to Google Maps that allows people to track the exact location of friends or family through their mobile devices. Google Latitude not only shows the location of friends, but it can also be used to contact them via SMS, Google Talk or Gmail. 'Many people will see Latitude as a cool product, but the reality is that Google has yet again failed to deliver strong privacy and security,' said Simon Davies, director of London-based Privacy International, in a statement. The group's chief concern is that Google Latitude lacks sufficient safeguards to keep someone from surreptitiously opting into the tracking feature on someone else's device."

Everyone focuses on the negative

[QuantumG]

It's a rule. Whenever a change in the status quo is suggested people immediately jump to the most negative conclusions.

I remember, many years ago, my all knowing government banned "reverse lookup" electronic phone books, unless they had some restrictions in the code. Later, the products fells off the market as they were no longer useful. Before then, one could lookup the telephone number of their neighbor and give them a call if the "music" spewing out of their place at 3am was a bit loud. Now you just call the police or, gulp, go over there.

Re:Everyone focuses on the negative

[geekoid]

Ha, I just use their wireless network to open up word pad and type "TURN DOWN THE DAMN MUSIC" in 50 pt font.

Re:Everyone focuses on the negative

[interkin3tic]

Not to mention that any group called "Privacy International" might have a somewhat unrealistic view of how much of a threat this is.

Which is not to say they're wrong, just that often times interest groups like this overzealously reject things out of hand that they percieve to be a threat.

Re:Everyone focuses on the negative

[Malevolyn]

They're blowing it so far out of proportion that I'm going to go ahead and say they're wrong. People have the option of simply not using Latitude, not updating their location, etc. Crisis averted.

Re:Everyone focuses on the negative

[ShieldW0lf]

If the government agencies and large corporations already knew everything that Google Latitude reveals, and they do, then I didn't lose any privacy. Neither did any of you. You can't lose what you didn't have.

What actually happened was, we just got brought into the loop. That's it, that's all.

If you think this is a bad thing, then it's probably time to grow some integrity and tell your spouse about your affair...

Re:Everyone focuses on the negative

[interkin3tic]

i just served jury duty where the defendant was accused of using tracking devices and various technologies to be sure his daughter wouldn't talk about how she was being used as his sex slave.

Obviously the tracking devices themselves were not the real problem there. Almost anything can be misused.

Re:Everyone focuses on the negative

[QuantumG]

So your solution to avoiding a slippery slope into a totalitarian state is to restrict individual liberty.

Ya, that makes sense.

Individuals should be free to choose if they want to broadcast their location to anyone, or only to their friends.. sometimes or all the time.. the location they choose or a GPS location or an approximation of their location from WiFi towers.. etc. It's the individual choice that matters, not the technology. If you want to stop the slippery slope, stop people who are against individual liberty, not technology.

Re:Everyone focuses on the negative

[Lumpy]

I use my fiberglass handle 3" cable cutters, snip the conduit clean through right above the electric meter and the music will come down to acceptable levels. Warning, you will see really big sparks just before the fuses on the pole blow.

P.S.: If you use the wrong type cutter, you will simply die a very horrible death.

P.P.S: run fast afterwards and flip your main breaker to fake that you got hit as well. en flip it on saying it must have tripped your main when it happened.

Re:Everyone focuses on the negative

[digitalchinky]

The current breed of signals and communications intelligence is built upon systems that log and database a wide range of their inputs. Certainly one would assume emerging or custom protocols can take a while to hit the sights of middle management before they too are included whenever possible. However, where you are wrong is with the assumption that the government actually knows who you are based on either your voice, or any in or out of band signalling present. Mostly they can't know who you are, and have no real interest in knowing either.

Signalling systems are complex at best for man (or woman) in the middle work, just reading through any of the spec sheets will make this pretty clear. Your bog standard GSM handset might send it's IMEI once upon a time when you first turned the phone on, but the network thereafter will assign it with a new identity on a regular basis. Unless you catch some of those initial bursts, it becomes a game of association between who you call, and what might be buried somewhere in the database. The mathematics of such things means that even with tons of terrabyte drives, resources are still finite and the depth of associations cannot extend too far before the system starts logging worthless crap.

I guess my point is this: All wiretaps over the last 10 years (at the very least) are not necessarily 'real time' or targeted against any specific individual. The net is routinely cast far and wide. This is why 'retroactive permission / immunity' exists.

When you understand the technology behind the scenes, it's only a very small leap to a broader appreciation for what the government may, or may not be doing behind your back. :-)

Re:Everyone focuses on the negative

[dotancohen]

If its like the brand new Toshiba laptop I just purchased w/ Vista on it, just plug in a mouse.

Bam, instant BSOD.

When it happened to me, I was quite impressed as you can imagine.

But that would require actually going to the neighbor's house in the first place. At that point you might as well just _ask_ them to turn down the music.

My solution is Pantera. No matter what the neighbors are playing, Pantera is louder. "Fucking Hostile" is over in under three minutes, and by that time 12 other neighbors have already called the cops or taken up arms themselves.

Re:Everyone focuses on the negative

[mollymoo]

Also by default it does not use the gps so it's always about 2500 feet off from where you really are.

Hope you don't have WiFi. I tried Latitude, it was a few hundred metres out when I used it on my phone and just a few metres out when I used my GPS - exactly what you'd expect.

What freaked me out was when I noticed it said it could work on my laptop. So I tried it. Equivalent accuracy to the GPS, with no GPS and no phone plugged in. WTF? Do they know where my IP address is? Hop in the car and start driving around - still within 20m everywhere I went in this city. Turn the WiFi off and it loses track. The only way that could work is if Google have mapped the physical location of every WiFi network and are using them to do the locating. I knew that was theoretically possible, but I didn't know Google had actually done it. For some reason, I found that slightly creepy.

Re:Everyone focuses on the negative

[poptix_work]

| The only way that could work is if Google have mapped the physical location of every WiFi network and are using them to do the locating. I knew that was theoretically possible, but I didn't know Google had actually done it. For some reason, I found that slightly creepy.

Actually, Google didn't do it. This company did: http://www.loki.com/

It's pretty interesting and useful. Personally I don't have an issue with a public company doing anything a government can do without you noticing, it brings those things into the light where people can say 'hey, if $company can track my cell phone/laptop via wifi access points, so can the government'. I personally think Google worked *very* hard to ensure that privacy concerns would be avoided with Latitude. When you start Google Maps it mentions latitude, your icon changes significantly, exiting Google Maps asks if you wish to continue sharing your location. You must enable sharing on a per-friend basis when adding them, and the default is NO (even on the selection box). It's also possible to share at different levels of accuracy, AND to set a location to be reported in case you don't want anyone to know you're "hiding".

Re:Tell me again

[geekoid]

Security is about risk assement.
obscurity can be security, just not your only security.

For example, my car door is unlocked right now, can you break in to it? no, becasue it's whereabouts is current obscured from you.

Plenty of tin foil to spare

Hold on, I'm working on tin foil case for my cell phone!

Surreptitious?

[egcagrac0]

If you're concerned about people doing things on your X, don't let them use your X.

Where X is:

• Computer
• Mobile Phone
• Landline
• Network
• Private Key
• Car
• Bedsheets
• Underwear
• Camera
• Sofa
• Hot Tub

Pretty basic trust issues here, folks. If you don't trust someone, don't let them use your stuff.

Danger! Danger!

[pushing-robot]

If I understand TFA correctly, if someone else gains access to your phone and your google login, they can activate Latitude and use it to track you.

Their interpretation of that is: Latitude is dangerous. I'd interpret it as giving others access to your hardware and your account is dangerous.

But that's why I'm just a computer geek and they're a multi-national organization.

Re:Frightening

[JorDan+Clock]

This is exactly how it works: You install software on your phone. If you have physical access to someone's phone long enough to install the software, I think there are other far more malicious things you could do, like copy contacts and such.

Re:Tell me again

[QuantumRiff]

I played with it on my blackberry, its pretty cool. When I quit the Map App, it asks if I want to keep tracking on, or disable it. Also, you have to give people permission to see your location. I can't help but think of some handy uses for it, such as your meeting friends at the game, and don't know where in the crowded parking lot they are, or what bar their sitting in downtown, and your trying to join them. It would be a hell of alot faster than trying to talk someone all the way to my location.

Re:Tell me again

[jshackney]

If I had to guess, somewhere in Portland?

Putting two Google stories together...

[John+Hasler]

Mash

"Recently announced Google Earth version 5.0 adds interesting new features like images of ocean floors and some detailed images of Mars."

up with

"...an upgrade to Google Maps that allows people to track the exact location of friends or family through their mobile devices."

plus a little hacking and amaze your friends and family as you wander along the bottom of the Mariana Trench.

What I don't get...

[SvnLyrBrto]

So far as I can tell, Latitude is no different from Buddy Beacon, Loopt, Whrrl, or any of a dozen other GPS-enabled "social networking" apps that'll happily send out your location to whomever you allow. But Latitude, specifically, and apparently only Latitude, is evil and dangerous.

I know hating on Google is the trendy thing these days, but come on.

cya,
john