• potatopotato@sh.itjust.works
      link
      fedilink
      arrow-up
      20
      ·
      5 months ago

      The lower layers all already at least moderately well encrypted, what they’re doing here is trying to pull the unencrypted device ID necessary to establish a connection. It’s not really what you’re sending (though traffic frequency analysis may be included) and more about just figuring out where a particular phone is so they can physically track the user.