How The Apple And Google’s Exposure And Notification API Works

This week Apple released iOS 13.5 officially to the public. The update includes changes such as mask enhancements to Face ID, new features for Apple Music and more. Most importantly, though, the update brings with it the first version of Apple and Google ‘s Exposure Notification API developed. Here’s how that feature works while maintaining your privacy as well.

Here Is What You Need To Know About It

The system can periodically send out a signal through Bluetooth that contains a random Bluetooth marker when a user activates the function and has an app enabled from a public health authority. If two individuals are next to each other, their phones will share certain Bluetooth identifiers and capture them.

If anyone tests positive for COVID-19, they will be required to willingly disclose the positive result to their region’s Exposure Notice program. Such images display representatives with public health agencies guiding people through the confirmation process when they have tested positive for coronavirus, providing a special check identifier:

The Exposure Warning API can also import and test against that registry a registry of keys for the beacons checked as belonging to individuals registered positive for COVID-19. If a match happens, the customer can be informed and told regarding the next measures. Which defines an exposition? That’s up to the public health departments to determine, but the API itself requires a minimum of five minutes of contact to render it a match. Think about it like this: Spend more than 5 minutes together in a restaurant with person A and person B. Their devices can during this period share the anonymous Bluetooth key.

They go their separate ways, but a couple of days later Person A tests positive for COVID-19 and chooses to report that positive test via the Exposure Notification app. Individual B would then obtain a message indicating that anyone with whom they associated recently has tested COVID-19 positive.

Public health agencies are expected to decide what are the next moves. If enough research is possible, Individual B may be checked even though they are asymptomatic, the software may say. If testing is limited, the software may indicate that individual B is watching for signs and will only be checked if they are symptomatic, while still isolating themselves.

Privacy is a tentpole in the Exposure Notification API. Probably the best privacy security of Apple’s Exposure Notification API and Google’s Exposure Notification API is that position data does not take a role of how it operates. The two companies say these applications should collect as little data as possible and this Bluetooth-based approach requires no location data.

Apple and Google have repeatedly stressed that much of the control is in the very hands of the public health authorities. The Exposure Notification API is provided by Apple and Google, and developers can adjust the details as needed while preserving the privacy and API requirements.

In fact, the API is used only by public health authorities, and can be used only for COVID-19 purposes. Not just every developer is able to access and integrate this API through their program. The companies state they are currently investigating the idea of encouraging health officials to submit dose alerts without needing an device in the long term.

With this week’s update of iOS 13.5 Apple and Google have stated they’ve made more privacy changes to the Disclosure Notification API:

  • Temporary Exposure Keys are now generated randomly instead of being derived from a tracing key
  • All metadata associated with Bluetooth is now encrypted to make it more difficult to identify a person
0 0 vote
Article Rating
Notify of
Inline Feedbacks
View all comments