Open
Description
Component(s)
disk-buffering
Is your feature request related to a problem? Please describe.
Some users may be concerned that telemetry stored to disk in the disk-buffering component could be sensitive. Specifically, IP address and geo/location information have been called out. A compromised device could then theoretically disclose to an attacker the IP/geo information of the phone user.
Describe the solution you'd like
As telemetry is buffered to disk, it could be encrypted. I'm not sure exactly how we could/should be able to read it back in order to send it somewhere, but maybe we can figure that out.
Describe alternatives you've considered
Scrubbing sensitive data from the telemetry. This is a loss of data, however.
Additional context
No response