University Tracks Students' Movements Using WiFi, But Says It's OK Because It's Not Tracking Students
from the slippery-slope dept
One of the many revelations from the Snowden files was that Canada's spy agency has been tracking people as they connect to WiFi in different public locations. And if Canada is doing it, you can be pretty sure the NSA and GCHQ are doing the same, since neither is known for being backward in using whatever means it can to snoop on huge numbers of people. Of course, you'd expect spy agencies to be up to these kinds of tricks, and you might also be unsurprised to learn that shops are also tracking you using your WiFi connection. But we might have hoped that universities would have been a little more sensitive to privacy issues than the following news on the Australian ABC News site suggests is the case:
The University of Melbourne has moved to allay privacy concerns amid revelations it is tracking students through their wi-fi usage.
According to the article, the university is using the data for the following reason:
The university said the practice, which looked at where people were moving around campus, helped institutions improve retention rates and the experience of students.The university is trying to work out where people move across the campus to help with planning the new Metro Rail project, which will run through the middle of the campus.
That's certainly a reasonable goal, but the university seems blissfully unaware of the privacy dangers of its data gathering. In particular, the fact that it is interested in which campus room students are in at any given time means that it could probably work out the identities of those using a particular WiFi system by correlating the rooms visited with the different courses taken by each student. The university would then have a record of where all its students went during the day, who they met, and for how long. Apparently meaningless location information is actually incredibly revealing.
There's no suggestion that the university is doing anything like this, or even thinking about doing it. But once advances in technology mean that something is theoretically possible, the pressure to put it into practice can become irresistible, as other students have discovered.
Follow me @glynmoody on Twitter or identi.ca, and +glynmoody on Google+
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: australia, privacy, students, tracking, wifi
Companies: university of melbourne
Reader Comments
Subscribe: RSS
View by: Time | Thread
[ link to this | view in chronology ]
Have you tried asking them? OK, there might be concerns about accuracy there, but you wouldn't be facing any "revelations" if you'd asked them up front.
"There's no suggestion that the university is doing anything like this, or even thinking about doing it. But once advances in technology mean that something is theoretically possible, the pressure to put it into practice can become irresistible, as other students have discovered."
The other issue, of course, is that it's not even relevant what the current university administration actually do. If the data is accessible by anybody else, they can use it for whatever they wish, whether that was the original intent or not. Plus, whenever current management is replaced, will the new administration be so honest?
That's why this is always a concern - "trust us, we won't do that" doesn't help if the data is compromised or if the next guy in charge has a different idea on how to run things. You might genuinely state that you won't abuse any new powers, but there's always someone else who will.
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
who needs magic when you have wifi
[ link to this | view in chronology ]
http://www.smh.com.au/national/university-students-you-are-being-watched-20160811-gqqet7.html
[ link to this | view in chronology ]
How are these things even related?
Again, I see no relation, except insofar as the location data might suggest where not to run the line in the interest of not putting people at risk.
[ link to this | view in chronology ]
Other universities too
The idea was both for lecture attendance (more for course evaluation than student assessment) and to identify high traffic/utilization areas on campus.
[ link to this | view in chronology ]
http://www.smh.com.au/national/university-students-you-are-being-watched-20160811-gqqet7.html
Elsewhere the article adds: Big Chancellor indeed!
If those two universities are doing such things chances are others as well. Or soon will.
The article goes on to note that at Australia's RMIT university "a team monitors...how often students are logging into the learning management system, submitting assignments and attending classes" and "reaches out to those who appear disengaged" while at the University of Wollongong "the number of times you borrow a book might help determine whether you are an at-risk student"
Big Chancellor is coming!
[ link to this | view in chronology ]
There's no ethical problem with doing this...
[ link to this | view in chronology ]
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re:
This way my wifi is effectively off when I'm out and about, but I don't have to remember to turn it on or off myself.
[ link to this | view in chronology ]
Re: Re: Re: Re:
This is the problem. WiFi security revolves around at least some minor level of trust. When it's the network itself that's tracking you, no amount of software security can help you.
[ link to this | view in chronology ]
Re: Re: Re: Re: Re:
I was speaking of the more general case. After all, some retail stores have started using the exact same sort of tracking of anyone that comes into their stores.
[ link to this | view in chronology ]
Re: Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re: Re: Re:
Your reference to "transmission by reflection" is vague and I can think of a couple of things that you might be referring to, but none of them seem very relevant to this particular issue.
What am I missing?
[ link to this | view in chronology ]
Re: Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re: Re: Re:
He's talking about wifi, so no cell tower involved.
[ link to this | view in chronology ]
Re: Re: Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re: Re:
How does it check for wifi without turning wifi on?
[ link to this | view in chronology ]
Re: Re: Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re: Re: Re: Re:
[ link to this | view in chronology ]
Re: Re: Re:
These things tend to be more understandable when you don't assume everyone else has the same needs and resources as you do.
[ link to this | view in chronology ]
Re: Re:
[ link to this | view in chronology ]
Re: Re: Re:
Right, which means that it's possible to identify and track the movements of your cell phone, even if you don't connect to anything.
[ link to this | view in chronology ]
Re: Re: Re:
[ link to this | view in chronology ]
Re:
[ link to this | view in chronology ]
Stalker's Wet Dream
What about a stalker? What about a hacker? What about both?
Can you imagine a stalker who also happens to be a decent hacker getting their hands on this data? Live tracking of their potential victim at their fingertips. Holy hell what a bad idea.
As with so many privacy issues today, the question is not "can you trust the authorities with this information?" The question is "can you trust every single person on earth with this information?" Everything CAN be hacked, no exceptions, no exemptions, ever, period. The only way to truly secure data is for the data to not exist in the first place.
[ link to this | view in chronology ]
Re: Stalker's Wet Dream
By the way, this can't even be considered "hacking". All of the information being obtained is being done through known and accepted protocols being used in the intended way.
The issue, really, is that data, legitimately obtained for one purpose, is being used for an entirely different purpose without people's knowledge -- let alone consent.
So, as with many of these things, the real question is "who owns the data"? Is it "your" data, because it is about you, that you've "licensed" for a particular purpose? Or is it the AP owner's data, because they collected what was freely given, and they can use for any purpose they wish?
[ link to this | view in chronology ]
Re: Re: Stalker's Wet Dream
[ link to this | view in chronology ]
The wifi system by it's very nature knows where your device is physically located and by that it knows where you (or the person holding your device is located). Thus the administrator(s) of that system know where you/your device is at all times within a reasonable degree of accuracy. "Oh but I don't use wifi, I turn it off" - well your carrier's data system knows where you are too so good luck with that.
There's no such thing as location privacy if you have a cellphone in your posession that's turned on (wifi or not). So stop living your lives in fear. Big brother is always watching. He always has been in some form or another but you've managed to survive despite that fact. Calm down folks. That said, when you hear of cases of someone or some organization taking the ability of this and other types of technology too far - then you can scream to the hilltops. For now, nothing to see here - move on.
[ link to this | view in chronology ]
Re:
Do you really want university staff to be able to figure who is sexually active, and with which taste in partners?
[ link to this | view in chronology ]
Re:
I couldn't disagree more. If we just ignore these issues now, they will be decided by default in a way that is very unfavorable for individuals and will become extremely difficult to change.
Now is exactly the time to raise a big fuss about all of this.
[ link to this | view in chronology ]
This software was extremely useful for finding and meeting up with friends (I even wrapped it in a csh script to alert me if one of my friends was logged in in a nearby lab).
Eventually the university found out and banned the software. Reportedly, some enterprising students had started using it as stalking software.
Sounds like the more things change, the more they stay the same.
[ link to this | view in chronology ]
It nevertheless violates the privacy of students. The university does not have the right to do this without the consent of students. Studying cannot be effective in such conditions. You can go to this site to find a good study program. But if a student pays money, then he will be responsible for his visits, and college can not force him to attend classes.
[ link to this | view in chronology ]