Eh. It's Cisco. Shouldn't be too hard to write an app that will lie to this network about where you are. And then, of course, I'm not yet convinced it's impossible to lie (through layers 6 and 7) to such a network, even built of impervious software. And of course, the moment some other company builds a different and overlapping network, all bets are off. -TD

From: Eugen Leitl <eugen@leitl.org> To: cypherpunks@jfet.org Subject: [mnl@well.com: [Geowanking] cisco wi-fi geosurveillance tech] Date: Sat, 12 Nov 2005 11:32:44 +0100

----- Forwarded message from Mike Liebhold <mnl@well.com> -----

From: Mike Liebhold <mnl@well.com> Date: Fri, 11 Nov 2005 13:35:33 -0800 To: geowanking@lists.burri.to Subject: [Geowanking] cisco wi-fi geosurveillance tech User-Agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7.5) Gecko/20041217 Reply-To: geowanking@lists.burri.to

After reading the press release about Cisco's new low-cost wifi mesh systems, built from tecchnologies developed by Airespace.com ( cisco is a prinsipal investor)

http://www.crn.com/sections/breakingnews/breakingnews.jhtml?articleId=173600... 41

I was clicking around for technical specs, I came across this: Besides mesh networks, Airespace offers central location surveillance capabilty to do [imprecise] tracking of users' and devices in realitme in an Airespace (cisco?) Wi-fi network.

http://www.airespace.com/technology/benefits_of_location_tracking.php

"Airespace uses advanced RF fingerprinting technology to identify and track users to within 10 meters of their exact location - anywhere they roam throughout an enterprise environment. This enables IT staff to establish access control policies that are based on geographic location, immediately identify the source of unauthorized WLAN activity such as rogue Access Points,"

_______________________________________________ Geowanking mailing list Geowanking@lists.burri.to http://lists.burri.to/mailman/listinfo/geowanking

----- End forwarded message ----- -- Eugen* Leitl <a href="http://leitl.org">leitl</a> ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.leitl.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE

[demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]

On 11/12/05, Tyler Durden <camera_lumina@hotmail.com> wrote:

Eh. It's Cisco. Shouldn't be too hard to write an app that will lie to this network about where you are.

high power works great to confuse these location tracking heuristics; a 1W* shows up as 'right next to AP' on all radios in the vicinity. a number of access point makers include this kind of location tracking capability, for example Newbury Networks 'locale points': http://www.newburynetworks.com/products/coretech.php?localepoints so this applies to more than just the cisco/Airespace products. there are tricks to work around high powered clients / rogue AP signals but i haven't seen vendors implement them yet and exactly what these workarounds are is left as an exercise for the reader. :) best regards, * this probably exceeds FCC EIRP limits but no one cares about the FCC anymore right?