Apple Taking Privacy Concerns To Heart

Written by Evan Schuman
August 26th, 2010

While retailers debate mobile geolocation efforts and the resulting privacy implications, Apple’s Patent people are preparing for the battle after the arguments have died. On Thursday (Aug. 19), the U.S. Patent Office made public an Apple patent application that, among other things, uses a consumer’s heart rhythms to not only confirm that person’s identity but analyze vibrations to determine the kind of transportation that person is likely using.

The premise of patent application 20100207721 is to identify unauthorized iPhone users. But the analytics described here could easily be used for so many other purposes.

As for the heartbeat, the application reports that the “heartbeat sensor detects the heartbeat of the current user and compares the detected heartbeat with heart signatures of each authorized user. Each person [has] a unique heartbeat. By analyzing the ratio between the high and low peaks measured in an electrocardiogram of a user’s heart, a unique heartbeat signature that is distinctive to each user can be identified.”

Even better is this beauty, which is a delicious accompaniment to a boring old GPS location: “An accelerometer can be utilized to determine the mode of transportation of the electronic device. For example, the mode of transportation can be determined by utilizing a signal processing system to identify the ‘vibration profile’ of any movement experienced by the electronic device,” the application says. “The vibration profile can be analyzed to determine whether it matches the vibration profile for movement types such as, for example, walking, running, riding on a train, riding in a car, flying in a plane or riding on a bike.”

The application also discusses other biometric techniques, such as using the phone’s microphone to grab and compare voiceprints or using the camera to compare a face to the one on file.

Better yet, it discusses using that camera to, on its own, shoot a large number of images to try and plot topography. “The camera is operable to take a plurality of photographs of the surroundings of the electronic device and the processor is further operable to analyze each of the plurality of photographs to identify distinguishing landmarks in the photographs and determine the location of each photograph based on the identified distinguishing landmarks,” the application says.

More on those pictures: “The photographs can be analyzed to detect distinguishing landmarks such as mountain ranges, constellations, street signs, stores or any other suitable landmark. This technique can be beneficial in the event that, for example, alternate systems for determining the electronic device’s location (e.g., a GPS system) are not available or cease functioning correctly.”

And here’s a passage that’s sure to capture the attention of privacy advocates everywhere: “The photograph can be taken without a flash, any noise or any indication that a picture is being taken to prevent the current user from knowing he is being photographed. As another example, a recording can be taken to capture the current user’s voice through, for example, the microphone. The recording can be taken when the current user makes a phone call with the electronic device. In some embodiments, the electronic device can record any voices or sounds that are detected, regardless of whether or not a phone call is being made.”

So, if the iPhone can do all of those things, why can’t I get it to simply select all E-mail messages in my Inbox at once?


One Comment | Read Apple Taking Privacy Concerns To Heart

  1. AA Says:

    I wonder if this is also going on with the droid phones that are powered by Google, since they already report everything to Big Brother…just wondering!!!


StorefrontBacktalk delivers the latest retail technology news & analysis. Join more than 60,000 retail IT leaders who subscribe to our free weekly email. Sign up today!

Most Recent Comments

Why Did Gonzales Hackers Like European Cards So Much Better?

I am still unclear about the core point here-- why higher value of European cards. Supply and demand, yes, makes sense. But the fact that the cards were chip and pin (EMV) should make them less valuable because that demonstrably reduces the ability to use them fraudulently. Did the author mean that the chip and pin cards could be used in a country where EMV is not implemented--the US--and this mis-match make it easier to us them since the issuing banks may not have as robust anti-fraud controls as non-EMV banks because they assumed EMV would do the fraud prevention for them Read more...
Two possible reasons that I can think of and have seen in the past - 1) Cards issued by European banks when used online cross border don't usually support AVS checks. So, when a European card is used with a billing address that's in the US, an ecom merchant wouldn't necessarily know that the shipping zip code doesn't match the billing code. 2) Also, in offline chip countries the card determines whether or not a transaction is approved, not the issuer. In my experience, European issuers haven't developed the same checks on authorization requests as US issuers. So, these cards might be more valuable because they are more likely to get approved. Read more...
A smart card slot in terminals doesn't mean there is a reader or that the reader is activated. Then, activated reader or not, the U.S. processors don't have apps certified or ready to load into those terminals to accept and process smart card transactions just yet. Don't get your card(t) before the terminal (horse). Read more...
The marketplace does speak. More fraud capacity translates to higher value for the stolen data. Because nearly 100% of all US transactions are authorized online in real time, we have less fraud regardless of whether the card is Magstripe only or chip and PIn. Hence, $10 prices for US cards vs $25 for the European counterparts. Read more...
@David True. The European cards have both an EMV chip AND a mag stripe. Europeans may generally use the chip for their transactions, but the insecure stripe remains vulnerable to skimming, whether it be from a false front on an ATM or a dishonest waiter with a handheld skimmer. If their stripe is skimmed, the track data can still be cloned and used fraudulently in the United States. If European banks only detect fraud from 9-5 GMT, that might explain why American criminals prefer them over American bank issued cards, who have fraud detection in place 24x7. Read more...

Our apologies. Due to legal and security copyright issues, we can't facilitate the printing of Premium Content. If you absolutely need a hard copy, please contact customer service.