I will download the Australian Government COVIDSafe app

When it’s released soon on the smart phone app stores, I will be downloading and using the Australian Government COVIDSafe contact tracing app, and encouraging my friends and family to do likewise. Here’s why …

[Acknowledgement: Some of my thinking, and some of the points below, have been informed by Troy Hunt, an Australian IT Security professional. You can watch and listen to what Troy has to say about coronavirus tracking apps at the 09:45 mark of his weekly update video from last week.]

  1. In normal times it would be unthinkable to voluntarily download an app that allows the Federal Government to collect and use our private data. These are not normal times. I don’t think I need to convince anyone of this.
  2. The typical initial gut reaction to the idea of the Government collecting any sort of data from our personal devices is going to be “no thank you”. But by very definition, an initial reaction is going to be an uninformed, unresearched, and unconsidered reaction. Let’s not decide our behaviour impulsively on our gut reaction, but carefully based on facts.
  3. When thinking about data privacy concerns, it is easy (but unhelpful) to think in very absolute or black and white terms. Its simple to think that if we install the COVIDSafe app we’ve lost our privacy, and if don’t install the app we’ve kept our privacy. Reality is much more nuanced than that. The app will collect only a very limited set of details that will be shared with the government in very limited circumstances. (More on that later in this article.) The point here is that the personal data being shared is very limited in scope.
  4. Rather than thinking about this issue purely in terms of loss of privacy versus retention of privacy, it’s better to think about it in terms of risk versus reward.
  5. The risk is slight that this app might surreptitiously leak data to the government, but the rewards are substantial.
    1. Firstly, lives will be saved. How many or whose lives will be saved we can never know, but widespread use of this app will enable health authorities to efficiently contact people who may have been exposed to the coronavirus, and thus help stop the spread.
    2. Secondly, if potential outbreaks of coronavirus are stopped early, then then we can avoid having prolonged and widespread restrictions on movement and gatherings. Life will return to normal sooner.
  6. When it comes to data privacy concerns, we engage in risk vs rewards decisions all the time, and mostly we do it unthinkingly and very badly. In 2019 millions of people on social media uploaded an image of their face (personal biometric data) to a web service in a foreign state in order to view a rendering of how they might look like in 30 years. This is a non-trivial risk in exchange for a very tenuous and limited reward. In contrast, the COVIDSafe app presents a minimal risk with great rewards.
  7. A very important consideration is that the app is “opt-in”, no-one is forcing you to use it.
  8. Because the app is “opt-in”, that also means the app is “opt-out“. If at any time you are uncomfortable about using the app, or some flaw is revealed, you can uninstall at any time. What’s more, opt-out is trivially easy – it takes just three touches on the screen to uninstall an app. (1-Touch and hold, 2-Delete app, 3-Confirm delete.)
  9. Unlike other countries with autocratic governments, we have a two party system with fair elections. If this current government stuffs up the implementation of this app, at the next election we can opt out of having this government.
  10. Some ill-informed scaremongering implies that this app will report your location and movements to the government. It does not. It is not a location tracking app, it is a contact tracking app. The app will only ask for your age range, name, postcode and phone number. If you are close contact with another person who has the app, this information will be exchanged between phones, encrypted and stored locally on the phone. Your information will only be passed to the government if the other person who has the app tests positive for coronavirus.
  11. For an app to collect location data, you have to give it permission on your smartphone to access the GPS location. That’s in your control, not the app. If you look in the Location Privacy settings of your phone, you will find most of the apps on your phone already have access to GPS location, and you granted them permission to do so. It’s hypocritical that people are losing their minds over a government app that doesn’t collect location data, while having dozens of apps installed from major companies or developers from other countries that do access your location data already.
  12. The app facilitates what you want to happen. If you had been in contact with someone who had coronavirus, would you want to know? I would. I have elderly relatives. Knowing that I had been exposed to coronavirus would be an essential piece of information in keeping them safe.
  13. The app facilitates actions that health professionals would do manually anyway. When a person tests positive, a standard procedure is that health professionals will interview the person and try to identify all the people they had close contact with, so that those people can be contacted and asked to isolate themselves, to prevent further spread. The app merely makes this process quicker and more complete.
  14. Because your information will only be passed to the government if a person you’ve been in contact with tests positive for coronavirus, Paradoxically this means that the more people who download and use the app, the less likely it is that the government will ever receive your data.
  15. Remember that the only information the app might share with the government is your age, name, postcode, and phone number. I’m willing to bet that the government already has that information, and what’s more you gave it to them willingly, multiple times. Just think about the number of government forms you have filled in over the years with that information.
  16. Yes there is a risk that the Government might use this app to obtain more private information than they openly admit to, but I think this risk is very small.
    1. The source code of the app has been independently assessed.
    2. There will be a lot of ongoing scrutiny of the operation of this app from professional security researchers.
    3. If the government got caught out doing something surreptitious with this app, it would mean political annihilation for them at the next election.
    4. In our hyper social media world, there will be lots of reports about this app doing ‘bad things’. But remember, accusations or insinuations of bad behaviour is not the same as evidence of bad behaviour.
  17. There are some who are skeptical of the Governments ability to successfully implement this app given past instances of failure, most notably the 2016 census debacle.
    1. But remember, governments successfully implement IT projects all the time, but it’s only the spectacular failures that make the front page news. Making a mistake in the past does not mean you are incapable of success in the future. (Thank God for that!)
    2. Implementing a small app that does a very specific and limited task is a very different project to the census, which had to provide infrastructure to cope with millions of simultaneous census submissions.

This post turned out to be much longer than I imagined when I started, so to sum up …

Yes I will download the COVIDSafe app. These are not normal times, and for a very small risk, the rewards of widespread use of this app are substantial in terms of lives saved and a speedier and sustained return to normal life.

Update 26 Apr 2020: The app, called COVIDSafe, has now been released and I’ve downloaded it.

Change the date

Malcolm Turnbull recently released a short video with his thoughts on Australia Day. In it he says …

“Australia Day is a day to come together and celebrate what unites us.”

A thought I wholeheartedly endorse. But he also says …

“I’m disappointed by those who want to change the date of Australia Day, seeking to take a day that unites Australia and Australians and turn it into one that would divide us”

… which is just nonsensical.

26 January marks a day when Europeans arrived on these shores to inhabit this land, and in doing so radically affected the indigenous peoples already occupying the continent. The newcomers of 1788 came with a mix of good, evil, and indifferent attitudes towards the native peoples. They also undeniably brought disease, death, dispossession, and decline to the indigenous peoples. And for this reason, 26 January can never be a date that unites all Australians.

Malcolm Turnbull is 100% wrong when he says that those who want to change the date are being divisive – it is those who want to maintain 26 January as Australia Day who are perpetuating division.

Let’s change the date, so that all Australians can celebrate Australia Day together.

Liddell Power Station

Not Liddell power station – ABC News gets it wrong. (Actually Bayswater.)

Liddell power station (near Muswellbrook NSW) has been in the news this week, with a bit of a public stoush between its owners AGL who intend to close the station in 2022, and Malcolm Turnbull who wants to keep it open for five years beyond that date.

One of the frustrating aspects of this has been how frequently the media shows a picture of a power station other than Liddell when reporting on Liddell.

I’m familiar with Liddell power station as I worked there as an electrical engineer from December 1986 to January 1988 in my first job  after graduating from university.  Since the media is incapable of showing pictures of Liddell, I thought I’d scan and post some of the photos I took while I worked there. It was an interesting time, as there was a lot of repair and remediation work going on, and I got to look inside a lot of equipment that would normally be unseen.

Liddell power station 1987.
Turbine blades
Turbine blades
Turbine casing
Turbine blades
Turbo-generator under repair.
Turbo-generator
Turbine casing.
Turbine casing.
Honing of the generator slip rings.
Honing of the generator slip rings.
Liddell High Voltage Certificate.

Fakebook

I’m not on Facebook. There are many reason’s why, but in an excellent article discussing the role of the media in the recent U.S. election Joshua Benton of NiemanLab expresses one of my misgivings very succinctly …

Facebook has become a sewer of misinformation … Facebook has built a platform for the active dispersal of these lies — in part because these lies travel really, really well.

Our world has rolled from “post-modern” to “post-factual”, and Facebook is one of the biggest wheels in the grubby machine that profits from lies and misinformation.

UPDATE

So it’s not just me imagining a void of veracity… less than 24 hours after posting this blog article, Oxford Dictionaries announce that their Word of the Year for 2016 is “post-truth”.

e-Voting

With the result of the last federal election taking a couple of weeks to determine, there is a renewed discussion on the possibility of online electronic voting. While an undoubted advantage of e-voting is that the result of an election, no matter how close, would be known on election night, I am against the idea of e-voting for a number of reasons.

The first question that arises in the matter of e-voting is, would it be secure? But that question is simplistic to the point of meaninglessness. For there are many aspects to the security of e-voting:

  • Identification: Who are you?
  • Authentication: How can you prove who you are?
  • Authorisation: Are you eligible to vote?
  • Privacy: Can others see how I vote?
  • Anonymity: At a later time is it possible to see how an individual voted?
  • Auditability: If there is any suspicion that a result has been rigged or interfered with, is it possible at a later time to verify or prove the result?

And of course with each of these questions of security the answer is not just a simple “yes” or “no, but can be a complex and nuanced answer. And although it is probable that a system of e-voting could be implemented that was “secure enough”, it is absolutely certain that the security mechanisms of any such system would be so complicated and esoteric that they would be unintelligible to the vast majority of electors. Seriously, how many people are going to get their head around blockchain technology?

With this inevitable opaqueness of understanding of security, e-voting fails to meet two basic criteria of democratic election – transparency and confidence. That is, do people understand how the the vote and count is conducted, and do they have confidence that the vote and count is conducted fairly.

Although it has limitations, our current paper based system of voting meets all the criteria I have mentioned above. Having electoral officials sort ballot papers into different piles while scrutineers appointed by candidates watch on, is both intelligible and provides a high level of confidence in the validity of the result.

Apart from these two issues of transparency and confidence, there are other reasons why I think e-voting is a bad idea. For example, there is a risk that the incidence of fraudulent voting would increase with e-voting. With the current system (apart from postal voting) to cast a vote on behalf of someone else, requires you to tell a bald lie, face to face with an electoral official, when they ask you if you’ve voted already. With e-voting, if you have enough information to impersonate another voter (and with family members that will often be the case), then a fraudulent vote on their behalf will simply require an impersonal tick in a checkbox on a computer screen in the privacy of your own home. And we are already well conditioned to tell lies of this nature on the internet, because of the never ending requirement to tick checkboxes to say that we’ve read terms and conditions that we have no intention of reading.

Finally, I am skeptical of e-voting because it risks further disengaging an already jaded voter base. With the current system (postal votes aside) you have to physically get your body out of the house, and to a polling place, past the candidate volunteers, queue up with other citizens and cast your vote. Although not too onerous, there is effort involved, and this effort I think makes people more deliberate in their voting decision. On the other hand, e-voting could easily become a quick and mindless filling in a web form just to avoid a fine, given as little deliberation as the meaningless daily web polls that online media sites love to serve up to us.

An argument over nothing

It’s election day today. Two federal elections ago I wished for high speed national broadband network (NBN); In the last federal election I lampooned the coalition’s fibre to the node (FTTN) solution in favour of Labor’s fibre to the premises (FTTP) solution, but I’ve come to realise that it’s an argument over nothing. Literally nothing. For six years on, this is the status of the NBN in my area:

NBNA FTTN broadband solution that doesn’t exist is patently of equal value to a FTTP broadband solution that doesn’t exist.

Still despite the incredible dullness of the campaign, and the ordinary options before us, there are few things to be thankful for in this election:

  1. With the recent changes to Senate voting procedures I only had to number 6 squares above the line in order to vote for my preferences, instead of 154 squares below the line.
  2. Apart from a vestigial Queen in a ceremonial role, Australia mostly sorted out the whole leaving Europe thing 115 years ago.
  3. No matter who wins today, Donald Trump won’t be the leader of Australia.