New Delhi, Oct 30 (NationPress) Mobile applications that request access to your location could be revealing critical private data, including your activities, surroundings, and even the configuration of the room or floor you occupy, as highlighted in a concerning study conducted by researchers at the Indian Institute of Technology (IIT) Delhi on Thursday.

The research, published in the journal ACM Transactions on Sensor Networks, focused on AndroCon -- the inaugural system that illustrates how the “fine-grained” GPS data already available to Android apps with precise location permissions can function as a covert sensor.

AndroCon, without utilizing the camera, microphone, or motion sensors, was capable of interpreting nine low-level GPS parameters -- like the Doppler shift, signal power, and multipath interference -- to deduce if someone is sitting, standing, lying down, within a metro, on a flight, in a park, or in a bustling outdoor environment. Researchers led by Soham Nag, an M. Tech. student at the Centre of Excellence in Cyber Systems and Information Assurance, IIT Delhi, noted that they could also determine if a room is crowded or empty.

The team effectively transformed the noisy raw data into valuable insights by merging traditional signal processing with advanced machine learning techniques.

“Throughout a year-long study covering 40,000 sq. km and numerous devices, AndroCon achieved up to 99 percent accuracy in recognizing surroundings and over 87 percent accuracy in identifying human activities -- even nuanced actions like hand-waving near the device,” explained Prof. Smruti R. Sarangi from the Computer Science and Engineering Department at IIT Delhi.

The same framework is capable of generating indoor floor maps, identifying rooms, staircases, and elevators, with an error margin of less than 4 meters, relying solely on GPS patterns and user movements.

While AndroCon presents exciting prospects for context-aware, privacy-conscious smart services, it simultaneously uncovers a major security vulnerability. Any Android application with precise location permissions could potentially deduce sensitive contextual information without explicit consent from the user, the team cautioned.

“This study reveals an overlooked aspect of GPS: a robust but silent channel that can perceive the environment around us. AndroCon transforms everyday smartphones into surprisingly accurate scientific instruments, serving as a reminder that even the most familiar technologies harbor hidden secrets that can be exploited by malicious actors,” Sarangi concluded.