Privacy and Connectivity Notes (450MT)
Last updated: 2026-03-17
This note summarizes current project understanding for privacy-sensitive users. It is derived from repository decompilation findings and captured cloud traffic.
1. Connectivity Model
For 450MT, there are two separate channels:
Phone <-> Bikeover BLE: local command/auth transport.Bike (T-Box) <-> Cloudover cellular: telematics/cloud features path.
BLE is not the same as T-Box cloud connectivity. The app can use both paths.
See:
docs/protocol.mddocs/auth-protocol.mddocs/cloud-auth.md
2. BLE Auth Dependency on Cloud Keys
The BLE authentication flow requires cloud-provided encryptInfo:
encryptValuekey
These fields are obtained from vehicle cloud APIs and then used in BLE auth
(0x5A -> 0x5B -> 0x5C -> 0x5D flow).
Observed in this project:
- In virtual-vehicle mode (
vehicleId=-1),encryptInfowas empty in captures.
Implication:
- Unbound/unactivated vehicle/account paths may not provide the auth material needed for T-Box-authenticated BLE control.
3. Local-Only vs Cloud-Backed Tradeoff
A privacy-first local mode is possible, but with reduced capability where cloud bootstrap keys are required.
Potential operating modes:
- Local-only mode:
- No cloud login.
- BLE-only UI and local storage where possible.
- T-Box commands that require server-issued auth material may fail.
- Minimal-cloud bootstrap:
- Login only to fetch BLE auth material.
- Disable ride sync, alerts, geofence, OTA, and other cloud features.
- Full cloud mode:
- OEM-like cloud feature set.
4. Open Questions
- Whether cached keys can reliably be reused for long offline periods.
- Exact key rotation behavior across sessions/vehicle state changes.
- Market-specific T-Box activation policy behavior by model/firmware.
Track validation tasks in:
docs/hardware-validation.mddocs/roadmap-450mt.md