The Electronic Transformation Company has fixed a safety challenge with its COVIDSafe contact tracing app that exposed Android system names over Bluetooth.
The update – its third due to the fact the source code for the app was produced just about a few months in the past – was pushed out on Tuesday to “further enhance the security and anonymity of users”.
It introduces “new steps to the Bluetooth contact tracing protocol” to get rid of the visibility of Android devices names, as nicely as “an extra layer of encryption for the digital handshake”.
The challenge was elevated by software developer Jim Mussared and cryptographic researcher Eleanor McMurty in their in depth summary of the app’s privacy troubles.
Prior to the update, the compensated claimed Android telephone design names and user-assigned system names were transmitted over Bluetooth, allowing for system re-identification and monitoring.
As we proceed to iteratively enhance