In the current COVID-19 pandemic, manual contact tracing has been proven very helpful to reach close contacts of infected users and slow down virus spreading. To improve its scalability, a number of automated contact tracing (ACT) solutions have proposed and some of them have been deployed. Despite the dedicated efforts, security and privacy issues of these solutions are still open and under intensive debate. In this paper, we examine the ACT concept from a broader perspective, by focusing on not only security and privacy issues but also functional issues such as interface, usability and coverage. We first elaborate on these issues and particularly point out the inevitable privacy leakages in existing BLE-based ACT solutions. Then, we propose a venue-based ACT concept, which only monitors users' contacting history in virus-spreading-prone venues and is able to incorporate different location tracking technologies such as BLE and WIFI. Finally, we instantiate the venue-based ACT concept and show that our instantiation can mitigate most of the issues we have identified in our analysis.
翻译:在目前的COVID-19大流行中,人工接触追踪已证明非常有助于与受感染的使用者密切接触,并减缓病毒的传播。为了提高它的可扩展性,提出了若干自动联系追踪(ACT)解决办法,并采用了其中一些解决办法。尽管作出了专门的努力,但这些解决办法的安全和隐私问题仍然开放并正在激烈辩论之中。在本文件中,我们从更广泛的角度审查ACT概念,不仅注重安全和隐私问题,而且注重诸如接口、可用性和覆盖面等功能问题。我们首先阐述这些问题,并特别指出现有基于BOB的ACT解决办法中不可避免的隐私渗漏。然后,我们提出了一个基于地点的ACT概念,它只监测用户在病毒传播易发地点接触历史的情况,并且能够纳入不同地点追踪技术,例如BWIFI和WIFI。最后,我们从基于地点的ACT概念中即时,并表明我们的即时能减轻我们在分析中发现的大多数问题。
相关内容
微信扫码咨询专知VIP会员