Nostr Web Client

Android: uniqueID on android is the ANDROID_ID and is derived from a combination of app-signing key, user, and device, and will therefore be the same even if the app is reinstalled. The value may only change if a factory reset is performed on the device or if an APK signing key changes.

Example: dd96dec43fb81c97

iOS: This is the identifierForVendor (IDFV) or a random string if IDFV is unavailable. It is an alphanumeric string that uniquely identifies a device to the app’s vendor. Once UID is generated it is stored in iOS Keychain and NSUserDefaults. So it would stay the same even if you delete the app or reset IDFV.

Δ 11mo ago

i never thought about this. to be honest, this seems quite scary to me. maybe it’s because of my lack of understanding but to me it follows that basically every app developer could deploy this function to identify every user and / or device. don’t get me wrong. you’re obviously using it for legitimate reasons, but, nonetheless… made me feel uncomfortable. anyway, thanks for clarifying.

Reply to this note

Please Login to reply.

Discussion

peachbitcoin 11mo ago

Note that we store the hash of the uniqueID to ensure one user = one account.

Yeah at some point if you want absolute privacy then you throw away your smartphone.