iTWire's previous report suggested that somehow, the WiFi credentials magically transferred themselves from the Google cloud to the tablet. Fortunately that was resolved when the user concerned (referenced in the previous article) finally recalled that he'd in fact connected to his home WiFi network and logged in with his Google account.
However, that does nothing to dispel a certain disquiet about the whole thing. Allowing for the slight error made by the original protagonist (let's call him 'Fred' for the purposes of simplicity), we can restate the incident as follows:
Fred buys a new Android device, turns it on, connects to his home WiFi network and logs in to his Google account. Very quickly the device is informed, via a background download, of every WiFi network Fred has connected to on any of his other Android devices. We know this because it is given the details for networks that are tens of kilometres away; and clearly the device hasn't visited them (yet!).
So, all this requires is a Google account (a Gmail account is enough), nothing more. When iTWire raised the issue with Google, their representative asserted that the ability to copy WiFi credentials to the cloud was a user-configurable option and sent screen shots of how to alter the setting; unfortunately, on this writer's phone (an HTC Aria running Android v2.2), despite extensive searching, no such privacy menu was available (clearly I have no privacy!).
Let us test the claim of user configurability (notwithstanding my own lack of a 'privacy' menu).
Note, both my telco and Google have been invited to respond to this discovery.
So, on the quite reasonable assumption that a new android device (phone, tablet etc) is configured to use this feature automatically, and a good number of owners will not have the knowledge or foresight to disable it, Google could reasonably be assumed to have SSID and WPA encryption keys for a very significant, perhaps most WiFi access points around the world.
Certainly there will be a certain degree of flux as users discover the feature and, weighing up the privacy vs. ease-of-use will choose to remove the storage (note, disabling the feature will also cause any stored credentials to be deleted - of course they'll be deleted, Google promises).
Consider the furore that arose with the 'accidental' capture of unencrypted WiFi data by the StreetView cars, and the strident, yet totally erroneous claims by Communications Minister Conroy that banking data may have been collected (oh, how mighty are the stupid?) - data that was assessed as being possibly only a few seconds of transmission for each location.
Now consider what the effect might be of Google (should they ever choose to) being able access any and every WiFi hotspot in the world.
By the way, it was never possible for the StreetView cars to access banking details; EVERY banking session is fully encrypted independently of the encryption (or lack thereof) used in the WiFi session.
So, given all this, what might we expect?
"Oh dear, sorry, the WiFi you're interested in is one of the 0.53% to which we don't have current access credentials; sorry."
And if the Feds have access, so does every criminal, marital and civil litigant in every court of the land.
Not only that, but we have already seen how porous the Google security is with the various 'Chinese' intrusions; and thus who knows how easy it is for anyone else to make their presence felt.
Sometimes we find that some simple shortcut we take to make life easy ends up not just biting us on the arse, but taking said bodily part clean off.
Oh, and Mr Google, why is it I can't turn this feature off?