pił o meno ma mettere le cose insieme da un'idea precisa ... ovviamente in Europa non permesso da GDPR p.es. e altre norme privacy

g



Study: ISPs Can Use IOT Devices to Spy on You -

A new study out of Princeton (hat tip, New Scientist) discusses how it's relatively easy for an ISP to use the internet of things (IOT) devices in many households to spy on and collect profitable data on consumers. Such "smart" devices are all the rage, from internet-connected televisions and refrigerators, to numerous flavors of internet-connected smart speakers like Amazon Echo. But in many instances, security and privacy are an afterthought, resulting in the devices being hijacked and used in botnets, or worse. Noah Apthorpe at Princeton University set up a fake home, complete with seven real internet-connected devices, in the hopes of finding out what they might reveal about their users. Apthorpe and other researchers found that it was notably trivial for an ISP to identify and track usage of numerous devices around the home, which could (if it's not already) be used to make the carrier even more money off of your everyday behavior. The study found that ISPs could track a user s sleep patterns by detecting when sleep trackers accessed to the internet, or observe when a home camera detected movement or when someone is watching a live video feed. That should be of concern given that ISPs recently successfully lobbied the GOP and Donald Trump to kill consumer broadband privacy protections that require ISPs to transparently detail what data they collect, and who they sell it to. That said, the study also found that tech-savvy users could take several steps to protect themselves from the prying eyes of their internet service provider. While tunneling smart home traffic through a VPN can help make ISP tracking and monetization of IOT data more difficult, the study found that "certain common device combinations and user activity patterns minimize the ability of a VPN to obfuscate smart home traffic metadata." More effective, according to the study, was home network traffic shaping by independent link padding (ILP), which can prevent any metadata attacks while preserving device functionality -- all with a minimal impact on home-network performance. "For smart homes without devices that stream audio or video, we found that only a maximum of 7.5 KB/s of cover traffic is needed to completely mask user activities," notes the report. "This is < 0.4% of the 2016 average broadband upload and download speeds in the United States. This rate of cover traffic would result in approximately 19GB of extra data used per month, much less than the 1TB monthly broadband data caps enforced by the largest United States and Canadian ISPs. "For smart homes with devices that stream audio or video, we found that no more than 40KB/s of cover traffic per household was needed for effective ILP shaping," the report adds. "While more costly than shaping for non-A/V devices, it is still < 2% of the average upload speeds of United States broadband internet." Those interested can find the full study here (pdf). read comment(s)

http://www.dslreports.com/shownews/Study-ISPs-Can-Use-IOT-Devices-to-Spy-on-You-140218


https://arxiv.org/abs/1708.05044

https://www.newscientist.com/article/2145450-your-broadband-provider-can-use-your-smart-devices-to-spy-on-you/