Why Teaching Privacy to Your Kids is Important

· Andrew Orr · Link

Kids lining up against the wall with smartphones

Siobhan O’Flynn writes about all the ways that companies like Google collect data from kids in violation of the Children’s Online Privacy Protection Act. It starts when schools increasingly turn to Google services in education.

Alphabet Inc. dominates child-directed and child-featured content online through YouTube Kids and has now colonized online educational spaces through Google Docs, G-Suite, Chromebooks and the associated Gmail accounts for children that are required for use. This means that Google’s access to children’s data spans entertainment (YouTube and YouTube Kids), search and purchase histories (via associated parental accounts), and educational sectors.

What Google Stadia Means for the Future

· Andrew Orr · Link

Alex Cranz reviewed Google Stadia, a game service where games are streamed to you instead of you loading them onto your device.

With Stadia, you can slip into a game typically found on a PC or console using almost any device. It makes you wonder why we’ve tethered ourselves to hardware for so long when the internet can give us all of that power at a considerably lower cost (and smaller energy bill). The problem is that Stadia rarely works perfectly. Instead, it offers us a glimmer of the future before crashing back down into the muddy present.

”It makes you wonder why.” Here’s why we’re still tethering ourselves: Because arguably you own physical copies of media like games, books, and movies. The “future” that Mr. Cranz’s headline alludes to is the Ideal Corporate World in which no one owns anything because it’s all a subscription.

If Your YouTube Account Isn’t ‘Commercially Viable’ Google Will Delete It

· Andrew Orr · Link

According to YouTube’s new terms of service, your YouTube account can be terminated if it isn’t commercially viable enough. The phrasing is broad enough that some people think this means Google will take action against people using adblockers.

YouTube may terminate your access, or your Google account’s access to all or part of the Service if YouTube believes, in its sole discretion, that provision of the Service to you is no longer commercially viable.

I’m personally not sure if that’s the case. You don’t need a Google account to watch YouTube, nor does Google need you to have an account for it to track you.

Google's OpenTitan aims to Create an Open Source Secure Enclave

· Andrew Orr · Link

Google wants Android phones to have a Secure Enclave chip like iPhones. Its OpenTitan project aims to help design an open source one.

OpenTitan is loosely based on a proprietary root-of-trust chip that Google uses in its Pixel 3 and 4 phones. But OpenTitan is its own chip architecture and extensive set of schematics developed by engineers at lowRISC, along with partners at ETH Zurich, G+D Mobile Security, Nuvoton Technology, Western Digital, and, of course, Google.

The consortium will use community feedback and contributions to develop and improve the industry-grade chip design, while lowRISC will manage the project and keep suggestions and proposed changes from going live haphazardly.

You can view the OpenTitan Github repo here, but it’s not fully fleshed out yet.

New Messaging Standard RCS Won't Have Encryption

· Andrew Orr · Link

Everyone is talking about a new messaging standard the Big Four carriers have agreed upon. It’s called RCS and it’s meant to replace SMS. But your RCS conversations won’t be end-to-end encrypted.

The CCMI neatly fixes both the first and the second problem. Garland says the carriers believe there are some implementation issues with the Universal Profile that the CCMI can address more elegantly, but it will follow the standard to ensure interoperability.

As for encryption, Garland wouldn’t commit. He emphasizes that the CCMI intends to make sure that the chats are “private” and that the app it’s making is “an experience [customers] can trust.”

Having Apple join the project would certainly legitimize RCS, but if it doesn’t have encryption I don’t think Apple will partake.

Google to Fix HEIC Photo Backup 'Bug'

· Andrew Orr · Link

Google logo

Redditor u/stephenvsawyer found that HEIC photos were given unlimited backups to Google Photos because they are smaller than JPGs. If Google tried to compress them the files would actually get bigger, which would be a waste of storage space. But Google calls it a bug and says it will fix it.

However, what that means remains unclear. Would Google start charging for HEIC images stored in Photos, even if they’re small and don’t take up much space? Would it forcibly re-convert those pics to compressed JPEG, or compress them further under the HEIC format? And will the fix apply to all HEIC images or just iPhones?

I’m not sure how Google will fix it unless they just check if the file extension is .HEIC and arbitrarily limit these files (arbitrary since converting them would increase their size).

Custom Fonts Can Track You in iOS 13

· Andrew Orr · News

Custom fonts may be able to track you in iOS 13. Google’s Crashlytics admitted as such on Twitter, including a unique identifier.