SignalTrace “links devices that regularly travel together, correlating them to license plate.” It is a surveillance product that will sweep up and add all sorts of Bluetooth and other data to license plate readers, linking specific devices—and people—to cars.
  • Catoblepas@lemmy.blahaj.zone
    101·
    6 hours ago

    A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identifiers of mobile phones, wearables, and other Bluetooth-enabled devices in those cars, potentially letting law enforcement identify specific drivers or passengers.

    This sucks and shouldn’t be happening, but is also relatively simple to counteract if you turn your Bluetooth off. Of course most people won’t, which is why it sucks and shouldn’t be happening.

    • fonix232@fedia.io
      7·
      6 hours ago

      Also, most Bluetooth devices today - the ones they seem to be tracking, anyway - are using Resolvable Private Addresses, meaning the devices exchange not the MAC address directly, but a crypto key that can be used, in correlation with the current time, to determine a pseudo-randomly generated address and establish connection…

      I’ve implemented Bluetooth tracking in my home (using ESPHome and in-house triangulation - I have appropriate nodes all over my home for this), and needed to extract the IRK for my iPhone and Apple Watch (but same goes for Android devices).

      They may be able to track older Bluetooth devices (headphones and such), and older built-in Bluetooth systems in cars (not sure if they can be disabled tbf), but modern phones? Not unless they illegally tap into the phone somehow and extract the key for predicting the addresses.