Security

OwnTracks and its associated utilities have been designed foremost with data privacy in mind. We think your location or that of your loved ones is something only you respectively they should know. While we cannot help you (or ourselves for that matter) protect against NSA snooping, we do our best to protect your data from other people's eyes.

  • If your broker supports it, and if you configure OwnTracks to do so, OwnTracks uses MQTT over TLS when connecting to your broker.
  • The apps support authenticating to the MQTT broker with username and password which can be as strong (or as convoluted) as your broker supports.
  • In HTTP mode, the apps provide support for HTTP basic authentication with TLS.
  • Credentials you configure (i.e. username and password) are thus protected from snooping, at least until they get to your broker. The same applies to location data our app transmits.
  • The apps support using TLS client certificates for authentication to the MQTT broker.
  • The apps support payload encryption for privacy.
  • The apps do not send location data to any server until that server has been configured by the user (i.e., there is no preconfigured demo server).