... | @@ -2,7 +2,7 @@ Welcome to the place of questions asked a million times! Get your answer here. A |
... | @@ -2,7 +2,7 @@ Welcome to the place of questions asked a million times! Get your answer here. A |
|
|
|
|
|
**Q: Is this a fully functional project or a prototype?**
|
|
**Q: Is this a fully functional project or a prototype?**
|
|
|
|
|
|
A: This is a work in progress (WIP) and that is exactly the reason why we are fully open source. It is a difficult task to reach our desired goals. If it was fully functional already, we would probably not have invited you to develop with us. But that does not mean you cannot already test what has been created - grab the [latest WIP-Release](https://github.com/SecUpwN/Android-IMSI-Catcher-Detector/releases) or compile it yourself.
|
|
A: This is a work in progress (WIP) and that is exactly the reason why we are fully open source. It is a difficult task to reach our desired goals. If it was fully functional already, we would probably not have invited you to develop with us. But that does not mean you cannot already test it - grab the [latest WIP-Release](https://github.com/SecUpwN/Android-IMSI-Catcher-Detector/releases) or compile it yourself.
|
|
|
|
|
|
**Q: What role do you want me to play ?**
|
|
**Q: What role do you want me to play ?**
|
|
|
|
|
... | @@ -16,8 +16,12 @@ A: Well, great question. First of all, we are a fully open-source project and as |
... | @@ -16,8 +16,12 @@ A: Well, great question. First of all, we are a fully open-source project and as |
|
|
|
|
|
A: If we did contact you, it very likely did not happen through a clear name, mail or address. Even a phone call or personal meeting will be highly unlikely. Why? Simply because the whole purpose of this project is to defend peoples right to privacy. And we all know what happens to people who hand out their clear data and stand up to fight for something the state or law enforcement agencies don't want. That does not mean you have to be scared to contribute now. But feel free to take any security measures.
|
|
A: If we did contact you, it very likely did not happen through a clear name, mail or address. Even a phone call or personal meeting will be highly unlikely. Why? Simply because the whole purpose of this project is to defend peoples right to privacy. And we all know what happens to people who hand out their clear data and stand up to fight for something the state or law enforcement agencies don't want. That does not mean you have to be scared to contribute now. But feel free to take any security measures.
|
|
|
|
|
|
|
|
**Q: I noticed that your App uses GPS. Isn't that dangerous?**
|
|
|
|
|
|
|
|
A: Let me clarify some of the use of GPS on mobile phones: Ever since the first (feature) mobile phones with GPS technology was introduced, the GPS part/chip of the phone was separated from the processor. With the introduction of more modern (smart) phones, which have their baseband (RF DSP/modem) sepearted from application processor, the GPS part was still separate and communicating with either AP or BP via a serial interface. However, since about 2012, and in particular on Qulacomm Snapdragon based smart phones, they have integrated all three. For example, in the MSM8960 family, the GPS is part of, and directly communicating with/via the modem (BP), and then eventually forwarded to AP. Only that AP/BP are now **both** located on a [PoP](http://en.wikipedia.org/wiki/Package_on_package) chip. And as shown [here](http://forum.xda-developers.com/showpost.php?p=44757676&postcount=6), Qualcomm insists to install all relevant HW for GPS, even if no such functionality is enabled or present in rest of AP FW. Thus Qualcomm modems can never be trusted to not send GPS data to mobile network. It is simply not possible to turn off the GPS on those devices. It's all embedded. In fact in that same post, E:V:A made an experiment, where he found that GPS hartbeat data was still being fed to the debug interface, even if his device (a wifi router) did not have any such features. Welcome to Qualcomm hell! So to summarize, concerns about GPS are not unfounded, but the idea of turning it off is. You simply can't on those chipsets. You can however, rip open your device and physically add/remove the GPS frequency filters.
|
|
|
|
|
|
**Q: Is what you are doing illegal?**
|
|
**Q: Is what you are doing illegal?**
|
|
|
|
|
|
YES, TOTALLY! Honestly? NO. We are not doing anything illegal since we are not destroying anything and are not even manipulating IMSI-Catchers remotely. We are merely constructing an App that reads certain values of your phone and its network, which helps people detect an attack on their privacy. Everyone has the right to know if they're being attacked or not. Have a look at the most trivial thing, the Ciphering Indicator, which displays if your connection is encrypted or not. What, you never saw it on your Android phone? Well, what a surprise: Google never implemented it, although it is required and has been [requested since 2009](https://code.google.com/p/android/issues/detail?id=5353). And this is one of the reasons we are here.
|
|
YES, TOTALLY! Honestly? NO. We are not doing anything illegal since we are not destroying anything and are not even manipulating IMSI-Catchers remotely. We are merely constructing an App that reads certain values of your phone and its network, which helps people detect an attack on their privacy. Everyone has the right to know if they're being attacked or not. Have a look at the most trivial thing, the Ciphering Indicator, which displays if your connection is encrypted or not. What, you never saw it on your Android phone? Well, what a surprise: Google never implemented it, although it is required and has been [requested since 2009](https://code.google.com/p/android/issues/detail?id=5353). And this is one of the reasons we are here.
|
|
|
|
|
|
That being said, make up your mind if you'd like to join us to make this world a better place. |
|
Feel free to join us to making this world a better place. |
|
\ No newline at end of file |
|
\ No newline at end of file |