• potatopotato@sh.itjust.works
    link
    fedilink
    arrow-up
    20
    ·
    5 months ago

    The lower layers all already at least moderately well encrypted, what they’re doing here is trying to pull the unencrypted device ID necessary to establish a connection. It’s not really what you’re sending (though traffic frequency analysis may be included) and more about just figuring out where a particular phone is so they can physically track the user.