Readers like you keep news free for everyone.

More than 5,000 readers have already pitched in to keep free access to The Journal.

For the price of one cup of coffee each week you can help keep paywalls away.

Support us today
Not now
Advertisement

Can your phone's battery really be used to spy on you?

In the short-term, it can.

Image: Martin Abegglen/Flickr

WHEN YOU THINK about your smartphone battery, your biggest concern is usually ‘how long will it last’, but you may have another problem to take into consideration.

A team of security researchers have found that phone batteries can be used to identify its owners and track them across the internet, regardless of the privacy measures taken.

The issue comes from a piece of software on HTML5, the technology used to structure and present sites on the web, which tells websites how much battery is left in a user’s phone. The original intention is to allow websites to know if a phone’s battery is running low, and help preserve it.

However, websites (or the scripts running them) don’t need to ask a user permission to check how much charge is left. Instead, phones automatically tell them how much charge is left and how long it’d take to return to a full charge.

The same information can be used to identify users and track them as they visit different sites. By noting these details and seeing if a phone with similar details appears on other pages, it could work out what pages that user visited, even if they’re using private browsing or a VPN (virtual private network).

This would apply more to short-term visits as the researchers note the risk of long-term tracking with this information “may be negligible”. If a user visits a site normally, but returns a moment later using a browser’s private mode, then the likelihood of someone identifying the two visits as the same is higher.

Making a difference

A mix of advertising and supporting contributions helps keep paywalls away from valuable information like this article.

Over 5,000 readers like you have already stepped up and support us with a monthly payment or a once-off donation.

For the price of one cup of coffee each week you can make sure we can keep reliable, meaningful news open to everyone regardless of their ability to pay.

The paper, called ‘The leaking battery: A privacy analysis of the HTML5 battery status API‘, recommends that sites should ask permission to access the battery information instead of doing it automatically.

The researchers also suggest that users should be provided with more information about how their battery information is actually used, and to reduce the precision of battery level readouts, rounding off the numbers instead of giving exact figures.

Read: This tiny robot can jump from water without making a splash >

Read: Not content with just smartphones, Apple wants to launch its own mobile network >

About the author:

Quinton O'Reilly

Read next:

COMMENTS (22)