[sensors] device fingerprinting may also refer to the factory (or other) calibration of the device (#404) from Nick Doty via GitHub on 2020-02-13 (public-device-apis-log@w3.org from February 2020)

From: Nick Doty via GitHub <sysbot+gh@w3.org>
Date: Thu, 13 Feb 2020 23:34:47 +0000
To: public-device-apis-log@w3.org
Message-ID: <issues.opened-565012870-1581636886-sysbot+gh@w3.org>

npdoty has just created a new issue for https://github.com/w3c/sensors:

== device fingerprinting may also refer to the factory (or other) calibration of the device ==
This may be a minor point on the source of privacy risks, but the Generic Sensor API currently refers to device fingerprinting from "minor manufacturing imperfections and differences that will be unique for this model" but we are also seeing research that the factory calibration settings of these sensors can also be detected through readings over time (which we are now trying to mitigate in different sensor specs).

If we want to note that with the Generic Sensor API, we might also directly cite this paper (in addition to other papers already noted on sensor fingerprinting):
Zhang, Jiexin, Alastair R. Beresford, and Ian Sheret. “[SensorID: Sensor Calibration Fingerprinting for Smartphones](https://www.ieee-security.org/TC/SP2019/papers/405.pdf
).” In 2019 IEEE Symposium on Security and Privacy (SP), 638–55. San Francisco, CA, USA: IEEE, 2019. https://doi.org/10.1109/SP.2019.00072.

Please view or discuss this issue at https://github.com/w3c/sensors/issues/404 using your GitHub account

Received on Thursday, 13 February 2020 23:34:49 UTC