How to change Eddystone-UID Namespace ID - eddystone

How can I change Eddystone Namespace ID, or is there a way to change the namespace ID of an Eddystone URI? I have 2 forecum 201 beacons

You will have to download their app, keep the beacons close to your phone and turn on your bluetooth and location.
Then you will be able to change the instance ID and Eddystone URL from within the app. Also, click apply after to change the setting.

Related

mobile PIN based authentication for mobile app

I need to build a mobile app where i need to first register a user by phone number followed by setting up a 4 digit PIN. Next time when user logs in user can directly input the set 4 digit PIN and logs in on the app.
How can i implement it with spring security?
My thought is, when user registers with his/her phone no + PIN then do i need to keep this combination in Spring token store or an IDP like keycloack so that when user opens the app again then i can do a check in db if the device is registered in the db (with IMEA no) with mpin set up then show the PIN screen to input? In this case, will PIN be a part of IDP then which field in IDP should hold PIN? like password or something..?
can you pls give me some direction around this.
Flutter package : local_auth: ^1.1.11
The authenticate() method uses biometric authentication, but also allows users to use pin, pattern, or passcode.

Ionic | how to give ID for each device

I need to find a way to give any id or something for each phone so i can use the database information under this id.
For example:
Device #45875 made a change.
\
Find in db id 45875 and change firstname to Bob.
To get id for a phone you can use UUID from the device plugin which
will give you a Universally Unique Identifier, you can check the
plugin details here. The details of how a UUID is generated are
determined by the device manufacturer and are specific to the
device's platform or model.
Also you can use the Unique Device ID plugin this one will
remain the same even if the user uninstall the app, This plugin
requires sim permissions. The id is generated by a combination of
the following:
Secure.ANDROID_ID: according to the android docs, this is stable over the whole livetime of a device
TelephonyManager.getDeviceId(): should be stable
TelephonyManager.getSimSerialNumber): depends on the SIM currently plugged to the device --> unstable
You can also use the sim plugin to get the deviceId for
example, the IMEI for GSM and the MEID or ESN for CDMA phones, you
will also need to have sim permissions to use it. It won't work on
devices without a sim card.
Just generate a GUID on first install and save it locally (e.g. using Ionic Storage). You can then send this identifier to your backend and create a "device" with this ID. You then use it in all communication between your app and the backend.
If you users log in to any account, like Facebook, Twitter, etc, connect this to the "device id". This way you can also have multiple devices connected to the same accounts etc.

Eddystone beacon security if not using an app (just based on beacon URL)

I am doing research on an Eddystone project where the user would receive personal (and therefore to some extent confidential) information based on an Eddystone URL on their phones. There is no app involved, so the user would be directed to a webpage (based on the eddystone URL) which will display the info.
I am wondering regarding the security implications of this: Without an app, I guess the EID cannot be used - is this right (or is the EID accessible in the notification and can be passed to the destination website as a parameter)? Therefore, I suppose anyone with the name of the url could then access this information which would become a problem as you could scrap the data for every user using the service with a simple script that reads this website every now and then.
There may be a way around it if the url in the beacon can be changed on the fly to something like www.abc.com/some-random-number. That would work but it would mean that the beacon url must be updated frequently.
Does anyone know of any beacons that come with an API that would allow me to do this from a Windows machine (I know manufacturers have apps that can change beacon data but that is not an option because this should run without user intervention)? E.g. I was thinking of a USB beacon that can be accessed from a little piece of software on windows which changes the url.
Or does anyone have a better idea on how to deal with this?
Thanks,
Chris
If you are going to show the website visitors some personal and confidential information, I do think the only way to go about is to have some sort of login on the website. The ability to change randomly the URL address that the beacon broadcasts would not be helpful, as you need a way to connect the random website address to the individual accessing it. The EID is a way to distinguish which apps can receive specific beacon information - it does not check which individual is using the application. (And you can only utilize it with applications, at least for now).

How to obtain the iPhone telephone number

I would like to use the iPhone mobile phone numbers as part of the security in my app. How would I go about doing this or if not possible, how could I obtain the UID number.
It believe it is possible to do this with Android or Winmobile phones.
There is UIDevice which has the uniqueIdentifier property
Heres Apples recomendation for using the UID
A device’s unique identifier
(sometimes abbreviated as UDID for
Unique Device Identifier) is a hash
value composed from various hardware
identifiers such as the device serial
number. It is guaranteed to be unique
for each device. The UDID is
independent of the device name. For
devices that use a SIM (subscriber
identity module) card, the UDID is
independent of the SIM card.
For user security and privacy, you
must not publicly associate a device’s
unique identifier with a user account.
You may use the UDID, in conjunction
with an application-specific user ID,
for identifying application-specific
data on your server. For example, you
use could a device-user combination ID
to control access to registered
products or when storing high scores
for a game in a central server.
However, if you are developing a game,
you may want to instead use Game
Center’s player identifier key as
explained in Game Kit Programming
Guide.
Important: Never store user
information based solely on the UDID.
Always use a combination of UDID and
application-specific user ID. A
combined ID ensures that if a user
passes a device on to another user,
the new user will not have access to
the original user’s dat
So it looks like if you are using this for storing data on a server you can use the UDID and a ID that you generate. Also it looks like Apple has gotten rid of many of the older ways that you would use to access the phone number.

How to determine if phone number has changed?

Currently I am developing an authentication module for my application. The user provides his phone number and a SMS with some pin code is send to him.
The user enters the code and if it is valid his phone number is authenticated. Maybe you know WhatsApp, it does quite the same when you run the app first time.
However if the user puts a new sim card in his phone he should authenticate it again.
I want to know how to determine if phone number has changed. I read in some other question that it is not possible to determine the phone number itself. But e.g. WhatsApp recognizes that there is another phone number.
Any ideas?
Update 2
One (not the best) way it's detecting carrier changing. Here you can see how to get carrier's name. Save it at first launch and do compare on next launches.
Update 3
I'd recommend to you look at Core Telephony Network reference and especially at CTTelephonyNetworkInfo reference
subscriberCellularProviderDidUpdateNotifier allow you respond on events such like:
... when the user’s cellular provider information changes. This occurs, for example, if a user
swaps the device’s SIM card with one
from another provider, while your
application is running