Slashdot Mirror
Germany Finds Kismet, Custom Code In Google Car
theodp writes "While waiting for a hard disk of Wi-Fi data that Google says its Street View cars gathered by mistake, the Hamburg Information Commissioner's office performed tests on a Google Street View car in a controlled environment with simulated wireless networks and issued the following statement: 'For the Wi-Fi coverage in the Street View cars, both the free software Kismet, and a Google-specific program were used. The Google-specific program components are available only in machine-readable binary code, which makes it impossible to analyze the internal processing.' Interestingly, a 2008 academic paper — Drive-by Localization of Roadside WiFi Networks (PDF) — describes a similar setup, and its authors discuss how they 'modified Kismet, a popular wireless packet sniffer, to optionally capture all packets received on the raw virtual interface.' Computerworld reports that lawyers in a class-action suit have amended their complaint to link a Google patent app to Street View data sniffing."
The Google-specific program components are available only in machine-readable binary code, which makes it impossible to analyze the internal processing.
No. It makes it very difficult and tedious and impractical to analyze. It is not, however, impossible.
Seven puppies were harmed during the making of this post.
You can be sued for listening to signals bombarding you without your consent?
Heres an idea ... don't want people to hear your private conversations? STOP SHOUTING IT SO EVERYONE WITHIN 300m or more can hear you!
Whats next? They'll charge people with treason and throw them into the oven because someone over heard them standing in the middle of Berlin screaming state secrets?
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
If I did what google did I could be charged with unauthorized access to a system. Why is there no criminal trial here?
This is a posting by theodp. He found a simple RESTful web API to be too complicated. You actually thought he would be able to understand binary?
They're not being evil now, are they?
I know a little bit about IP geolocation, but when I got an iPod touch and fired it up for the first time on my home network I was *stunned* to see that it pinpointed my location to within one or two houses when using the Google Maps app despite having no GPS and no other identifiable information entered into the device. Maybe they are using this data to drive geolocation based on SSID instead of IP? Can anyone explain how else IP geolocation can be so accurate?
Something I've had a hard time understanding through all this is WHY they thought it was a good idea to record SSIDs and other information while doing a street mapping.
I don't understand what they were hoping to gain from this information?
According to our research, 72.438% of people don't secure their wireless.
According to our research, (I'm assuming they got mac addresses too, right?) 83.4% of all wireless consumer routers in Germany are Linksys routers.
WTF does that have ANYTHING AT ALL to do with mapping streets?
Oh, and for the people getting all up in arms because "people are shouting this information freely and anyone can hear it"...that's patently FALSE. There's maybe 1% of the population that has the know-how or the desire to do that. It is NOT AT ALL event remotely the same as standing in the middle of the street yelling at someone where anyone can hear you. You have no choice but to over hear if you happen to be in the area. You do, however, have a choice in downloading packet-sniffing software and using it on someone's wireless network, unsecured or not.
Sent from your iPad.
Try intercepting someone's cell phone signals - with your dumb argument, you should be able to listen to them too and not get sued. Ditto with so many governmental wireless traffic. Hell, you cant even photograph someone on the street, esp. cops - see yesterdays posts, without their permission, and you are ok with one entity picking up every signal in every neighbourhood ???
Common man - use some brains before you just type some crap !
There isn't anything inherently illegal about what they did, unfortunately. Encrypt your networks folks. However, being a professional user of the Kismet application I would contend that using Kismet shows that all the data collection was far from "accidental".
Where genius and insanity become confused true wisdom is found
Yeah seriously. Why does the German government have to be such a bunch of Naz... oh, I see.
Give me Classic Slashdot or give me death!
He found a simple RESTful web API to be too complicated. You actually thought he would be able to understand binary?
And it was a Google RESTful API, as this is a Google binary... so obviously Google would have created it to be so complicated, only Google staffers could understand it!
And the mention of the paper on wireless sniffing? What the fuck does that have to do with Google? Did they sponsor it? No. Did their employees write it? No. Did their employees participate in it? No. But he mentions it just because it re-inforces the conclusion he wants you to draw.
Glenn Beck would be so proud!
So.. when do we call out this idiot as an MS shill?
To the best of my knowledge, Apple's wi-fi based geolocation is based on Skyhook's offering in the area.
It is quite plausible to assume that Google, since they were already going to the expense of running the cars, figured that they could grab their own geolocation dataset for virtually no additional cost. However, their massive corporate wardrive episode is hardly the first of its kind, as Skyhook's products demonstrate.
For what it's worth Google claims that patent is totally unrelated and they're also trying to find someone they can pin this on so their multinational company doesn't take any of the heat. Remember, it's just one engineer behind this and once we find Scapegoaty McSeverancePackage this can all be put behind us and you can rest assured that Google is back to Do No Evil status. Ha.
My work here is dung.
A company named Skyhook Wireless is doing this. They are continuously driving trough whole continents with cars, mapping out wifi routers/stations/etc.
They are what gives the iPhones/iPods their navigation (they have to real GPS). They are behind Maps Booster which plugs right into the Symbian (Nokia & others) geolocation APIs. (I bought it for 3€, and while it is less exact than GPS here, it also works inside buildings. Plus it makes first-time GPS satellite locking much faster.)
I wonder how this is different from what Google does, though.
But I don’t have a problem with SSID logging anyway. I mean, people who rely on SSIDs for security, really are idiots anyway. It’s not worse than knowing an IP. I can’t see where privacy could be a concern here. And I’m extremely strict about my privacy rules.
I think it’s a good service. Hell, how could I not think that paying 3€ for someone to drive across every street on the continent is a good deal?
P.S.: No, I’m not affiliated. And I repeat: It’s not very exact here. I am lucky if I get 50m accuracy. While my A-GPS can get down to 3m. (Oh, and if anyone of you know a service that requires no further hardware, and can get down below 50 cm [ideally below 10cm], please contact me! :)
Any sufficiently advanced intelligence is indistinguishable from stupidity.
It depends - the government should disassemble the code and see if the evil bit is set.
I guess it was just destiny for this to happen.
I judt got a nre Kinesis keybiartf so please excusr ant egregiou typos.
I'm not sure how google does it but the iPod uses skyhook wireless location services. If you read the blurb from their website they tell you about how they use clustering to self heal their location network in between readings, which don't need to happen very often.
I've moved house a few times and taken my routers with me and i've watched the iPod maps app switch between the old location and the new one for a few days depending on how many other networks it can see. After a few days, though, the system has "healed" itself and consistently finds the correct location.
How many computers are too many?
Correct me if I am mistaken, but not a single journalist seems to have picked up on why Google has been collecting the data. I thought that it was obvious, yet many of the above posters don't seem to get it either.
The wonderful thing about the law is your data is protected on any network, at any level of encryption and using any base station you like.
You are totally naive if you think your data is protected because some data protection czar makes a name for himself going after an American company. Going after Google isn't going to protect your data one bit. The only reason Google is playing along with this charade is because they really are a legitimate business and the data really is of no value to them. The people you really have to worry about are people who use that data to defraud and blackmail you, and compared to the other crimes they are committing, whether they capture your packets or not is totally irrelevant.
Furthermore, you are effectively required by law in Germany to encrypt your WLAN anyway; if you don't, you're almost certainly breaking both data privacy and copyright law.
In fact, given that the data protection agency is now getting this data, I see no legal reason why they shouldn't search through it for violations of German privacy law, copyright law, and German content restrictions. They could charge thousands of people with crimes based on the data. Maybe that would drive the point home to the morons who think that what's been happening in Germany protects anything.