We present a detailed privacy analysis of Samsung's Offline Finding (OF) protocol, which is part of Samsung's Find My Mobile (FMM) location tracking system for locating Samsung mobile devices, such as Samsung smartphones and Bluetooth trackers (Galaxy SmartTags). The OF protocol uses Bluetooth Low Energy (BLE) to broadcast a unique beacon for a lost device. This beacon is then picked up by nearby Samsung phones or tablets (the {\em finder} devices), which then forward the unique beacon, along with the location it was detected at, to a Samsung managed server. The owner of a lost device can then query the server to locate their device. We examine several security and privacy related properties of the OF protocol and its implementation, from the perspectives of the owner, the finder and the vendor. These include examining: the possibility of identifying the owner of a device through the Bluetooth data obtained from the device, the possibility for a malicious actor to perform unwanted tracking against a person by exploiting the OF network, the possibility for the vendor to de-anonymise location reports to determine the locations of the owners or the finders of lost devices, and the possibility for an attacker to compromise the integrity of the location reports. Our findings suggest that there are privacy risks on all accounts, arising from issues in the design and the implementation of the OF protocol.
翻译:我们详细分析了三星的离线查找协议的隐私分析,这是三星的发现我(FMM)定位三星移动(FMM)定位三星移动设备(如三星智能手机和蓝牙跟踪器(Galaxy SmartTags))的定位系统的一部分。协议使用蓝牙低能(Blueooth Lowet Energy)为丢失的装置广播一个独特的信标。该信标随后由附近的三星电话或平板(them finder}装置)接收,然后将唯一的信标及其探测到的地点转发给三星管理的服务器。一个丢失装置的所有人可以询问服务器定位其设备。我们从所有者、发现者和供应商的角度,检查协议及其执行中的若干安全和隐私特性。这些检查包括:通过从装置获得的蓝牙数据确定一个装置的所有人的可能性,恶意行为者有可能通过利用网络的发现的地点,对一个人进行恶意跟踪,而发现该信标被检测到它被检测到的所在地。一个丢失的装置的供应商可以要求服务器找到其找到其定位位置。我们的安全性报告,确定执行地点的保密性报告,以及我们攻击地点的保密性风险。
相关内容
Source: 三星电子
微信扫码咨询专知VIP会员