Session Date/Time: 27 Jul 2023 16:30

dult

Summary

This Birds of a Feather (BoF) session explored the problem of detecting unwanted location trackers and discussed the potential for forming an IETF working group to standardize related protocols. The session included problem statements, presentations on existing systems and threat models, and extensive discussion on the scope of a potential charter. While there was strong interest in addressing the problem space, significant concerns were raised about the initially proposed charter, leading to a consensus that it needed significant revision.

Key Discussion Points

Problem Statement: The misuse of Bluetooth trackers for stalking and abuse presents a serious safety concern. Current solutions are fragmented and lack interoperability.
System Architecture: Presentations covered the architecture of existing location tracking systems and unwanted tracking detection mechanisms, highlighting key interfaces for standardization.
Threat Model: Discussion addressed specific scenarios where victims may be unaware of or unable to detect tracking, and proposed mitigations. 3rd party scanners were also mentioned.
Charter Scope: Extensive debate occurred regarding the appropriate scope of a potential working group, with strong opinions expressed about the inclusion of aspects such as the proprietary blob, third-party tracking networks, attestation, and definitions of what constitutes "malicious" tracking.
Privacy Considerations: The importance of privacy for both targets and owners of trackers was emphasized, with concerns raised about the potential for misuse of pairing registries and serial number broadcasts.
Licensing: Apple's RAN commitment related to patents essential to the proposed standard was discussed, with some participants advocating for royalty-free licensing terms.
Real world considerations: The balance between stopping malicious tracking and enabling benign usage of trackers (lost luggage, tracking dementia patients) was discussed.

Decisions and Action Items

Decision: The initial charter proposal was deemed insufficient and requires substantial revision.
Action Item: Iterate on the charter proposal to address concerns regarding scope, privacy, and threat model, and to better define the goals and deliverables of a potential working group.

Next Steps

Participants were encouraged to join the mailing list to continue the discussion.
Another BoF session is likely to be held to discuss the revised charter proposal.