BlackBerry's Encryption Hacked; Backups Now a Risk

← Back to Stories (view on slashdot.org)

BlackBerry's Encryption Hacked; Backups Now a Risk

Posted by Soulskill on Friday October 1, 2010 @04:51AM from the good-news-for-india dept.

GMGruman writes "InfoWorld blogger Martin Heller reveals that a Russian passcode-breaker developer has broken the encryption used in BlackBerry backups. That can help recover data when passwords are lost, but also gives data thieves access to a treasure trove of corporate secrets. And the developer boasts that it was easier to crack the BlackBerry encryption than it was to crack Apple's iOS."

120 comments

Painful by Anonymous Coward · 2010-10-01 04:51 · Score: 0

"Told ya' so" moment occurring within RIM right now.
But... the playlists! by Kenja · 2010-10-01 04:54 · Score: 4, Funny

Notice how the blackberry adds have shifted from being about business apps and security to how cool it is that you can edit a MP3 playlist.

Whole thing smacks of desperation.

--

"Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
1. Re:But... the playlists! by MyLongNickName · 2010-10-01 05:03 · Score: 3, Funny
  
  Notice how the blackberry adds
  Adding is easier than factoring primes. This might have something to do with the security problem.
  
  --
  See my journal for slashdot ID's by year. Mine created in 2005. http://slashdot.org/journal/289875/slashdot-ids-by-year
2. Re:But... the playlists! by MyLongNickName · 2010-10-01 05:05 · Score: 3, Funny
  
  Damn. I hit submit. I cannot believe I said "factoring primes". I considered playing it off like it was pat of the joke, but that would just be dishonest.
  Please revoke my nerd card and send me to business school.
  (here is hoping my x minutes since last post allows me to correct myself before I get ripped by 350 nerds)
  
  --
  See my journal for slashdot ID's by year. Mine created in 2005. http://slashdot.org/journal/289875/slashdot-ids-by-year
3. Re:But... the playlists! by jimicus · 2010-10-01 05:07 · Score: 5, Insightful
  
  Probably because it was only a few years ago that there was no other serious business phone that did a half-decent job of email and had management features built right in (such as encforcing endpoint encryption and remote wiping).
  Now more-or-less every smartphone offers such features, and non-smart phones are rapidly starting to look like an endangered species. Blackberry no longer offer anything particularly special.
4. Re:But... the playlists! by BobNET · 2010-10-01 05:15 · Score: 4, Funny
  
  I cannot believe I said "factoring primes".
  Hi, Bill!
  "The obvious mathematical breakthrough would be development of an easy way to factor large prime numbers."
  -- Bill Gates, 'The Road Ahead'
5. Re:But... the playlists! by gstoddart · 2010-10-01 05:18 · Score: 2, Interesting
  
  Notice how the blackberry adds have shifted from being about business apps and security to how cool it is that you can edit a MP3 playlist.
  Whole thing smacks of desperation.
  Well, initially the Black Berry was a corporate device. Then a lot of consumers decided they want one so they could do messaging and email.
  However, Apple and other manufacturers have been making smart phones which have way more consumer features than business and have been correspondingly taking a lot of market share away from RIM. In fact, I heard analysts saying the other week that while sales of BlackBerries are growing, they're not growing as fast as Apple and Android phones are. So, their corresponding market share is decreasing even while their sales are increasing -- they're just not increasing as fast as the rest of the market.
  I'd say that they're getting very desperate. Like 'em or hate 'em, the iPhone and its ilk have become hugely popular for non business users -- arguably, a much larger market.
  Of course, if you want to schedule a meeting or use powerpoint, get a Black Berry (or a PC ;-).
  
  --
  Lost at C:>. Found at C.
6. Re:But... the playlists! by grub · 2010-10-01 05:25 · Score: 1
  
  I'd say that they're getting very desperate. Like 'em or hate 'em, the iPhone and its ilk have become hugely popular for non business users -- arguably, a much larger market.
  
  Even for business users.
  
  I've heard of many places opening up their email/calendar/directory (or Exchange) servers to iPhones and the like. Many users don't want to carry around two devices which perform the same functions.
  
  At our place we have a How To for iPhone users but don't support beyond that. Company-supplied Blackberries are still fully supported.
  
  --
  Trolling is a art,
7. Re:But... the playlists! by treeves · 2010-10-01 05:26 · Score: 4, Funny
  
  Well, it's true: adding IS easier than factoring primes. It's also easier than dividing by zero, trisecting an angle with a compass and straightedge, and calculating the last digit of pi.
  
  --
  ...the future crusty old bastards are already drinking the Kool-Aid.
8. Re:But... the playlists! by Anonymous Coward · 2010-10-01 05:38 · Score: 1, Informative
  
  Ahhhhh I wouldn't say that necessarily. Flash? Remote Desktop to a Linux tower or server? Enterprise server?
  Yes, that may not entice the "average" user, whatever that happens to be, may not see the need for such things, but that is why there are options.
  I love my Blackberry. I put my professors' powerpoints and my notes on it to study wherever I'm at. I have it set up to run my tower at home. I use it as a USB mass storage device as well, so I don't have to worry about forgetting my USB drive at home. This may be accomplished using another phone, but setting up my personal, free enterprise server at home can not be. With the exception of Android, where else can you create your own hybrid operating systems for your phone? Or update it with any operating system created by any phone manufacturer, not just my own? Plus the business uses, might as well get used to using this phone now, instead of when I get a job where their required? (Although rare, could happen. Happened to my boyfriend, but he already had one as well and did not have to buy one)
  I am admitting I am a blackberry fangirl, but hey, I found the perfect phone for me. I also admit I'm not a fan of "pretty" but a fan of functionality. Also, operating systems are my favorite aspect of CS, so naturally I'm drawn to this. (I've tried android a few times by mounting it on my netbook, and so far, not so impressed to be honest). Perhaps blackberry is more for the poweruser, Android in between, and iPhone for the "average". Whatever floats your boat.
9. Re:But... the playlists! by nullifi · 2010-10-01 05:41 · Score: 1
  
  My Android phone displays PowerPoint just fine thanks to Documents to Go. I'm fairly positive that they iPhone version as well..
10. Re:But... the playlists! by Anonymous Coward · 2010-10-01 05:44 · Score: 1, Interesting
  
  How the hell is this "insightful?"
  Wake me up when Apple provides end-to-end encryption for e-mails. Oh that's right: they don't. That's why you don't see India or any other 3rd world country threatening to "shut off" iPhones. BBM isn't simply a stupid e-mail application accessing a POP3 server someplace.
  The iPhone is great for people who are distracted by shiny things. But don't fool yourself into thinking what RIM is doing is "nothing special."
  In addition, the summary is bogus. RIM's encryption has NOT been hacked, just some backup application. Were it that easy I don't think the Saudis would be kicking up the stink they are.
11. Re:But... the playlists! by afidel · 2010-10-01 05:47 · Score: 1
  
  RIM's sales are growing faster than Apple's (+4.5M vs +3.4M year over year growth for the second quarter). They're just growing slower in percentage terms since RIM had such a large number of units shipped all along. Android is growing mostly at the cost of Symbian.
  
  --
  There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
12. Re:But... the playlists! by cjb658 · 2010-10-01 05:49 · Score: 1
  
  One of the companies I work for recently switched all employees over to iPhones because it was cheaper (and easier) to buy new phones than to buy a BES server.
13. Re:But... the playlists! by Anonymous Coward · 2010-10-01 05:51 · Score: 0
  
  Um, factoring primes is trival. Factoring prime X yields factors of 1 and X. That is much easier than adding.
14. Re:But... the playlists! by Anonymous Coward · 2010-10-01 05:57 · Score: 0
  
  personal, free enterprise server ?
  I didn't think that existed. Doesn't BES only run on Windows? I'd very much like to hear about what you have put together.
15. Re:But... the playlists! by noidentity · 2010-10-01 06:03 · Score: 2, Funny
  
  Notice how the blackberry adds have shifted from being about business apps and security to how cool it is that you can edit a MP3 playlist.
  
  pYou know you're a geek when you read the above sentence and first think it's describing the encryption algorithm that was hacked (add, shift).
16. Re:But... the playlists! by Anonymous Coward · 2010-10-01 06:26 · Score: 0
  
  The last digit of pi is 4. I'm 10% sure of this.
17. Re:But... the playlists! by gstoddart · 2010-10-01 06:28 · Score: 1
  
  My Android phone displays PowerPoint just fine thanks to Documents to Go. I'm fairly positive that they iPhone version as well..
  I didn't mean to imply you couldn't do that, hence the smiley face ... I was more sniping a little at the whole "PC vs Mac" joke and how people use the devices.
  Many of the people buying smartphones specifically didn't want to do "business" activities. It is Facebook and Twitter and YouTube, not spreadsheets and concalls. The things like editing playlists was more important to them.
  So, now everybody is finally realizing that most people use a computer differently than the traditional "word processing/spreadsheet/powerpoint" corporate model of computers over the last bunch of years. This is how Apple has tried to differentiate themselves by giving a software experience that was geared to media and people.
  Portable devices and touch screens almost bring in a new paradigm of doing different things on "computery devices" -- a modern smartphone does things that were literally science fiction 20 years ago, possibly not even imagined.
  If RIM didn't shift from being about business apps to media and consumer apps, they would fast become irrelevant.
  
  --
  Lost at C:>. Found at C.
18. Re:But... the playlists! by Rogerborg · 2010-10-01 06:29 · Score: 0, Troll
  
  The last digit of pi is "7". You can take my word for it, or prove me wrong.
  
  --
  If you were blocking sigs, you wouldn't have to read this.
19. Re:But... the playlists! by Anonymous Coward · 2010-10-01 06:31 · Score: 0
  
  Factoring primes is easy: 1 and itself
20. Re:But... the playlists! by Ornlu · 2010-10-01 06:55 · Score: 0
  
  Nope. It's 42. Consider yourself proven wrong.
21. Re:But... the playlists! by Gunnut1124 · 2010-10-01 07:01 · Score: 1
  
  I believe in symmetry, so the last digit MUST be 3.
  
  And THAT's how you do theoretical physics folks... (at least the easy first bit)
  
  --
  America is all about speed. Hot, nasty, badass speed. -Eleanor Roosevelt, 1936
22. Re:But... the playlists! by Anonymous Coward · 2010-10-01 07:05 · Score: 0, Informative
  
  To be honest, Bill was right. That would be a breakthrough.
23. Re:But... the playlists! by Anonymous Coward · 2010-10-01 07:09 · Score: 0
  
  Considering primes factor to themselves and 1..... That's even easier than a lookup table!
24. Re:But... the playlists! by Anonymous Coward · 2010-10-01 07:33 · Score: 0
  
  I find factoring prime numbers easier than adding. I have an O(1) algorithm that will list all the factors of a prime number X. It goes:
  PRINT(1);
  PRINT(X);
  where k is the number of digits constituting X.
25. Re:But... the playlists! by AliasMarlowe · 2010-10-01 07:34 · Score: 5, Funny
  
  The last digit of pi is "7". You can take my word for it, or prove me wrong.
  Nope, you're wrong. The last digit of pi is zero.
  This is because pi is exactly 10 (base pi).
  
  --
  Those who can make you believe absurdities can make you commit atrocities. - Voltaire
26. Re:But... the playlists! by Anonymous Coward · 2010-10-01 07:54 · Score: 0
  
  >I considered playing it off like it was pat of the joke
  You also mistyped "part" in your response. Today is not your day.
27. Re:But... the playlists! by Anonymous Coward · 2010-10-01 08:49 · Score: 0
  
  There are pi types of people in this world...
28. Re:But... the playlists! by Knackered · 2010-10-01 09:14 · Score: 1
  
  Hey, you expect us to read the follow-up before replying with a flame?
  This is slashdot, we don't even RTFA!
  
  --
  a.
29. Re:But... the playlists! by Anonymous Coward · 2010-10-01 09:28 · Score: 1, Informative
  
  You fail.
  10 in base 10 is 10.
  2 in base 2 is 10.
  Get the pattern?
30. Re:But... the playlists! by Anonymous Coward · 2010-10-01 09:41 · Score: 2, Informative
  
  10 in base 10 -> 10
  2 in base 2 -> 10
  16 in base 16 -> 10
  pi in base pi .... -> 10 ....
31. Re:But... the playlists! by h4rr4r · 2010-10-01 10:01 · Score: 1
  
  I am pretty sure you could get that with imap over ssl on an iphone.
32. Re:But... the playlists! by Anonymous Coward · 2010-10-01 10:59 · Score: 0
  
  can you please explain this..
  thanks
33. Re:But... the playlists! by Bert64 · 2010-10-01 11:10 · Score: 1
  
  The iphone has remote desktop, vnc and ssh clients, as do android phones, they also have voip clients which blackberry handsets seem to be severely lacking and which are great for business use, if your physically in the office and within wireless range calls are routed over that, otherwise they are routed over your cell service.
  BES runs on windows (which is not free) and requires a corporate groupware setup such as exchange, notes or groupwise, none of which are free.
  Other phones now offer many of the same features, but by integrating directly with the mail server and not requiring a third party server or service.
  I don't like the idea of having to use RIMs service or run their server, i want something open and which i can use with any mobile service and any backend server. Activesync may not be that open, but there are specs available and third party implementations which is more than can be said for RIMs protocols.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
34. Re:But... the playlists! by Bert64 · 2010-10-01 11:13 · Score: 1
  
  I don't understand how you can claim blackberry is for power users, you have a closed proprietary platform tied to a closed proprietary service and requires you to run another closed proprietary server... You get far more flexibility from android, and even from iOS once you jailbreak it.
  Blackberry is aimed at business users who have very limited requirements, quite the opposite of a power user.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
35. Re:But... the playlists! by Bert64 · 2010-10-01 11:17 · Score: 1
  
  The iphone supports SSL for IMAP, POP3 and SMTP... It also supports SSL for Activesync.
  There is also support for establishing a VPN connection.
  Sure, Apple don't mandate the use of a proprietary service and give you the option to use plain unencrypted imap/pop3 if you want to.
  What RIM are doing is locking users in to their proprietary service and proprietary server, android and ios based phones will talk to any number of standards compliant servers from a multitude of different sources with or without encryption.
  Apple/Google give the customers choices, RIM don't.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
36. Re:But... the playlists! by Steve+Max · 2010-10-01 11:39 · Score: 1
  
  I can factor any prime number very easily, if I know it's prime before starting. And it's fast. It takes only the time needed to write "1" and the number itself.
37. Re:But... the playlists! by Anonymous Coward · 2010-10-01 14:16 · Score: 0
  
  You can not divide by zero....idiot.
38. Re:But... the playlists! by k_187 · 2010-10-01 15:58 · Score: 1
  
  This won't last long. RIM bought Documents to go not too long ago. http://www.pcworld.com/businesscenter/article/205025/rim_buys_documents_to_go_but_microsoft_missed_out.html
  
  --
  11 was a racehorse
  12 was 12
  1111 Race
  12112
39. Re:But... the playlists! by Anonymous Coward · 2010-10-02 04:29 · Score: 0
  
  you failed to make the right guess. She just loves her RIM-job.
40. Re:But... the playlists! by johnbreganze · 2010-10-03 23:00 · Score: 1
  
  This is a very informative write, wow. Great job man. Cell Phone Spy
41. Re:But... the playlists! by Nesman64 · 2010-10-04 09:48 · Score: 1
  
  0 in base x is 0
  x-1 in base x is 1
  x in base x is 10
  
  --
  coffee | nose > keyboard
42. Re:But... the playlists! by Anonymous Coward · 2010-10-04 19:56 · Score: 0
  
  is it really?, I thought prime numbers only had two factors, 1 and the number itself - what am I missing?
43. Re:But... the playlists! by NoseyNick · 2010-10-09 12:04 · Score: 1
  
  x-1 in base x is 1
  Only for x=2 :-p
  10-1 in base 10 is 9, for example.
  
  --
  Nick Waterman, Sr Tech Director, #include <stddisclaimer>
Simple solution by Prune · 2010-10-01 04:54 · Score: 4, Interesting

Back up to a non-encrypted IPD file and put it into a TrueCrypt volume--or better yet, don't back up to an insecure machine! This story would have been much more newsworthy if they had broken the actual phone's encryption, AES and elliptic curve D-H.

--
"Politicians and diapers must be changed often, and for the same reason."
1. Re:Simple solution by Anonymous Coward · 2010-10-01 05:05 · Score: 0
  
  Or better yet don't get a blackberry!
2. Re:Simple solution by mbourgon · 2010-10-01 05:15 · Score: 4, Informative
  
  Um, no. My last two jobs mandated them. They work exceptionally well in a business environment, and while I love the iPhone it's not yet as good for the enterprise. So for personal use, "don't get one hurr" may work, for the majority of bberry users it's not an option. That being said, most users don't back it up - if you're tied to exchange, all the important stuff is synched to it and all you need to do with a new bberry is to associate it to the same acct.
  
  --
  "Sometimes a woman is a kind of religion, she can save your soul & set you free from all your sins" - Bad Examples
3. Re:Simple solution by mlts · 2010-10-01 05:16 · Score: 4, Interesting
  
  It is still a hole though, and one that is completely preventable. Most serious crypto products around uses key strengthening, be it KeePass with its variable number of rounds that are user selectable, TrueCrypt with its 1000 rounds, or iOS 4's 10,000 rounds. Heck, even the venerable crypt(3) mechanism had a number of rounds to slow down people running Crack over 20 years ago back before passwords were stored in /etc/shadow.
  How can this be fixed? Use a reasonable amount of rounds (enough so it slows down brute forcing, but not too many that it kills day to day normal operation.) Also, use a salt, so rainbow table pre-computation of keys is impossible.
  In the meantime, the parent poster probably has the best solution. For maximum security, add a cryptographic token and store a TC keyfile on that. This way, if someone tries to brute force the token's passphrase, they have 3-20 tries before the token permanently fries itself.
4. Re:Simple solution by blueg3 · 2010-10-01 05:26 · Score: 2, Informative
  
  PBKDF2, which the BlackBerry backups use, always uses a salt. One round is a joke, though. The 4096 rounds of WPA aren't really sufficient, and the 1000 rounds of FileVault are really a mistake.
5. Re:Simple solution by mlts · 2010-10-01 05:48 · Score: 1
  
  What would be ideal is functionality that KeePass has. It has the option to scale the amount of rounds to one second of your hardware's CPU time with the ability to edit the rounds up and down to preference. For BB users who don't want this detail, this can be a semi-hidden option and the device can compute how many rounds it does to suck up a second or two of CPU times automatically.
  It is understandable why TrueCrypt doesn't do this (because it has to guess a number of times with various combinations of hashes, algorithm combinations, and header variations before it can mount a volume), but for something that it doesn't matter if it is obviously encrypted (where it can have an obvious header), this should be an option available.
6. Re:Simple solution by t0rkm3 · 2010-10-01 05:55 · Score: 1
  
  Remote administration by the Enterprise owner.
7. Re:Simple solution by Anonymous Coward · 2010-10-01 06:29 · Score: 0
  
  I'm not a BB user, but I was forced to install a BB enterprise server at my small company. It was a PITA since I'd never done it before. However, once installed, the thing is solid. Their mail just always arrives, usually before Outlook has had a chance to get it. There just don't seem to be the problems we'd get with previous smartphones. Maybe others are better now, I don't know, but I do know that if you care about email above all else, it seems to be the way to go. "Exchange can be supported" isn't the same thing at all - if you're using the BB server, email just works, end of story.
8. Re:Simple solution by phyrexianshaw.ca · 2010-10-01 08:11 · Score: 1
  
  Before outlook has a chance to get it
  Outlook doesn't get e-mail, outlook displays e-mail. The Mail Transport server "get"s e-mail, and stores it in a database. all outlook does is present users an interface for that database.
  
  I think what you were trying to say was that the phones provide notification of e-mail before outlook does.
9. Re:Simple solution by acoustix · 2010-10-01 09:30 · Score: 1
  
  Outlook doesn't get e-mail, outlook displays e-mail. The Mail Transport server "get"s e-mail, and stores it in a database. all outlook does is present users an interface for that database.
  I think what you were trying to say was that the phones provide notification of e-mail before outlook does.
  Since Outlook version 2003 the default setting is to locally cache the content. So Outlook does indeed get email. It stores the information in a .ost file so Outlook can be used in an offline status.
  
  --
  "A plan fiendishly clever in its intricacies"- Homer Simpson
10. Re:Simple solution by drcheap · 2010-10-01 10:11 · Score: 1
  
  Outlook doesn't get e-mail, outlook displays e-mail.
  Configured to access a mailbox via POP3, it gets email.
  Well, okay, it RETRs email, but that's just an implementation detail.
11. Re:Simple solution by Mista2 · 2010-10-01 13:22 · Score: 1
  
  Where iPhone wins for me is one device for work and play. I can set up Activesync with the exchange gateway for work, and with GMail for personal use. I aslo have my own iMAP server for archiving to when GMail gets large.
  Blackberry, Android and WinMobile to date can still only synch with one source at a time as far as I know.
  If the company is paying, then I guess it would be a blackberry, because it is their phone, not mine. They can block extra apps, and enforce device encryption, adn it is setup automatically, the user doesnt really have to do anthing other than enter their password.
  iPhone synch with Exchange is not seamless, especially if you wnt to deploy the settings to hundreds of phones. The iPhone can be easily cracked if stolen, so even the onboard encryption is useless, but for me and the nature of the emails I have (nothing that would risk the companys finance or confidential client info which I dont put in mail anyway, the iphone is a better choice, for me personally.
12. Re:Simple solution by Anonymous Coward · 2010-10-02 03:40 · Score: 0
  
  Android [...] to date can still only synch with one source at a time as far as I know
  Dude, what? If that's what you know then you haven't even looked.
13. Re:Simple solution by faclonX · 2010-10-02 07:05 · Score: 1
  
  BIS Can integrate up to 7 Email accounts and Keep them in sync with your device. A BES can do one either Exchange/Novell Groupwise/Domino. Combine a BIS and BES (Its called Enterprise-Prosumer Plus), and you get both features.
  
  --
  It had to be done... It had to be said...
Really? by Anonymous Coward · 2010-10-01 04:56 · Score: 0

What was the code? 1, 2, 3, 4, 5?
1. Re:Really? by bigrockpeltr · 2010-10-01 05:41 · Score: 2, Funny
  
  Up, Up, Down, Down, Left, Right, Left, Right, B, A, send
  
  --
  $ unzip, strip, touch, finger, grep, mount, fsck, more, yes,fsck,fsck,fsck,umount, sleep
2. Re:Really? by Anonymous Coward · 2010-10-01 08:48 · Score: 0
  
  Great! Now I need to change the combination on my luggage.
why was it easier? by Mike+Davi+Kristopeit · 2010-10-01 04:59 · Score: 2, Insightful

was the encryption scheme weaker, or were disgruntled RIM employees more willing to hand over the keys than disgruntled apple employees?
1. Re:why was it easier? by Anonymous Coward · 2010-10-01 05:09 · Score: 0
  
  Good question. If only there was some sort of thing in the summary you could click on that would give more information.
2. Re:why was it easier? by Anonymous Coward · 2010-10-01 05:12 · Score: 0
  
  RIM used no key strengthening which makes cracking the password used for backups very efficient. Usually, you're supposed to do tons of stuff to a password before it becomes a cryptographic key (e.g. hash it thousands of times), such that generating the key for one password takes a split second, but testing passwords en masse becomes impractical. They used the right algorithm, but set the number of iterations at 1, i.e., no strengthening.
  They're apparently using a well-known algorithm (PBKDF2), which is specified to require a large number of iterations, and yet they're doing only one. I'm not a fan of conspiracy theories, but I would consider the possibility that this is a deliberate weakness/backdoor. Either that or someone at RIM is seriously incompetent.
3. Re:why was it easier? by Anonymous Coward · 2010-10-01 05:38 · Score: 0
  
  RIM employees are required to leap from tall buildings after leaking info.
4. Re:why was it easier? by AHuxley · 2010-10-01 12:58 · Score: 1
  
  NSA, GCHQ like to read too? Old cryto in the worlds marketplace was 'open' why would this generation be any different?
  What makes this generation so 'smart' and 'unique' when faced with a few simple solution when getting into telco work.
  Open to a select few gov's or you are not a telco...
  Or good crypto is expensive and made the device seem laggy during testing ..
  
  --
  Domestic spying is now "Benign Information Gathering"
Solution by mark72005 · 2010-10-01 05:02 · Score: 1

Solution - no more backups!
1. Re:Solution by Anonymous Coward · 2010-10-01 05:20 · Score: 0
  
  Solution - no more backups!
  Everything on the blackberry gets backed up to the blackberry enterprise server anyway.
  You really don't need a local backup for very much...
2. Re:Solution by simpz · 2010-10-01 05:40 · Score: 1
  
  Mod this up. This is a huge non story. Everything you should really care about should be backed up by the BES into your mail account. I have never backed up my corporate BB and on changing device it preserves pretty much everything I care about, even Browser bookmarks.
"backups a risk" by Anonymous Coward · 2010-10-01 05:08 · Score: 0

Did you mean to say "backups at risk"?
Does this make them legal in the Middle East now? by Suki+I · 2010-10-01 05:11 · Score: 2, Funny

Does this solve that encryption complaint the UAE, Saudis and others had about Blackberry?

--
Home of The Suki Series
If only the article supplied more information by apparently · 2010-10-01 05:15 · Score: 3, Funny

Backup encryption uses AES with a 256-bit key. So far, so good. An AES key is derived from the user-supplied password, and this is where the problem arises. In short, standard key-derivation function, PBKDF2, is used in a very strange way, to say the least. Where Apple has used 2,000 iterations in iOS 3.x, and 10,000 iterations in iOS 4.x, BlackBerry uses only one.
If only the article had the above information on page 2, you'd have the answer to your question. If only.
Re:Does this make them legal in the Middle East no by JonySuede · 2010-10-01 05:19 · Score: 1

no since, only the backups encryption is broken, and it still takes 3 days to crack a 7 mixed case password

--
Jehovah be praised, Oracle was not selected
Not "encryption hacked" by blueg3 · 2010-10-01 05:19 · Score: 5, Informative

The encryption itself is just fine (at least, for now). While it's interesting that the data is transmitted in the clear and then encrypted by the backup software, they don't propose exploiting this (which would be an inconvenient attack).
This is simply a brute-force password cracker that's specific to BlackBerry backups. It's not particularly specific, either, as the backups are encrypted with AES and the key is derived from a password using the standard PBKDF2. There are tons of PBKDF2-crackers out there (like coWPAtty). The surprising thing is that they only use single-iteration PBKDF2, which is a joke.
This, incidentally, is what is meant by the statement in TFS that cracking BlackBerry backup passwords is easier than cracking iOS passwords. Difficulty in password cracking (amount of computational time per password) for PBKDF2 is roughly proportional to the number of iterations. IIRC, WPA uses 4096, Apple's FileVault uses 1000, and BlackBerry backups apparently use 1.
1. Re:Not "encryption hacked" by Nevo · 2010-10-01 05:26 · Score: 0, Redundant
  
  Came here to say this. Actually read TFA.
Okay... so it's not AES that got cracked... by awinnenb · 2010-10-01 05:19 · Score: 1

So, if I read the article correctly, it hasn't been hacked so much as improperly implemented on blackberry's part. Honestly, the title made me think AES had been cracked which... yeah, that would be bad.
Look out for flying hockey pucks at by BoRegardless · 2010-10-01 05:20 · Score: 2, Funny

RIM headquarters.
You're doing it the hard way. by McGregorMortis · 2010-10-01 05:22 · Score: 4, Interesting

This "weakness" seems a little silly.
You typically make your backups on your office desktop PC, and leave them there. But all the sensitive data in the backup file was already there on that same PC, in your corporate mailbox, completely unencrypted.
Cracking a Blackberry backup file would be the hardest way to get access to that data.
1. Re:You're doing it the hard way. by TubeSteak · 2010-10-01 07:45 · Score: 2, Insightful
  
  You typically make your backups on your office desktop PC, and leave them there. But all the sensitive data in the backup file was already there on that same PC, in your corporate mailbox, completely unencrypted.
  Cracking a Blackberry backup file would be the hardest way to get access to that data.
  It would create the least amount of loggable activity.
  And it's much faster to copy 1 file than to dig around for XYZ # of files.
  
  --
  [Fuck Beta]
  o0t!
2. Re:You're doing it the hard way. by Anonymous Coward · 2010-10-01 13:13 · Score: 0
  
  I don't know about you, but compared to the other things you could find on my work computers the data from my blackberry isn't all that interesting. You get some email, a whole 30 days worth. Probably 99% of which is the same stuff you'd see in any software job. The only reason it isn't public is that there's no reason to make it so. Or you could take a quick peek, find my repository, and download the source code for every product my company creates. Or the list of company contacts, which probably wouldn't even fit on the BB. Is 30 days of email really the most interesting thing on the computers you run?
YAH BABY! SHORT SELL FREE MONEY! by Anonymous Coward · 2010-10-01 05:22 · Score: 0

I just finished entering my March 2011 Short on this stock. I'm not sure if I should buy a Ferrari or a Masserati with the profits.
Maybe you guys can help me decide?
In other news by RegTooLate · 2010-10-01 05:37 · Score: 4, Funny

The NSA announced today that they are offering secured online backup for all Blackberry users. RIMM responded saying they were surprised how quickly the DNS poison spread but wish the NSA well in their user friendly backup service. Many Middle East governments are also now offering the easy secure backup service as well.
UAE and Saudi by flyingfsck · 2010-10-01 05:38 · Score: 1

Soooo, the spat between UAE, Saudi, India and Blackberry is now moot...

--
Excuse me, but please get off my Pennisetum Clandestinum, eh!
1. Re:UAE and Saudi by Anonymous Coward · 2010-10-01 05:43 · Score: 0
  
  Only if every user hands over the manual desktop backup that he took...
Don't hack my blackberry... by MoldySpore · 2010-10-01 05:39 · Score: 1

...it's just full of 200 fart apps anyway.

--
"I hope you know how very lucky you are to know me, because I am so incredibly incredible."
Down with blackberry by Anonymous Coward · 2010-10-01 05:41 · Score: 0, Interesting

I can't believe anyone uses crackberries. We used them for a year and everyone has hated them. We bought Droid Incredibles for our office and love them so far. The only thing keeping blackberries around I would guess is the ability to lock them down with the BES server I believe its called. But they still suck....
Down with Blackberry, Windows Mobile, etc hale to iOS and Android!!
Gives new meaning by Anonymous Coward · 2010-10-01 05:45 · Score: 0

Gives new meaning to the term "Crackberry"
why do they implement proprietary encryption? by bl8n8r · 2010-10-01 05:46 · Score: 1

Why not just use the encryption based on gpg or some other existing open source encryption method? Anytime you give a bunch of programmers a chance to reinvent the wheel, you need to go through the exact same evolutionary process that the existing wheels went through. So why is it that companies keep doing so and ending up shooting themselves in the foot?

--
boycott slashdot February 10th - 17th check out: altSlashdot.org
1. Re:why do they implement proprietary encryption? by blueg3 · 2010-10-01 06:10 · Score: 1
  
  They don't. They use industry-standard algorithms, and the encryption itself wasn't compromised.
2. Re:why do they implement proprietary encryption? by Bert64 · 2010-10-01 11:25 · Score: 1
  
  They implemented perfectly good encryption in a flawed way, you don't just need industry standard algorithms, you need to be able to verify that they are implemented correctly.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
3. Re:why do they implement proprietary encryption? by blueg3 · 2010-10-01 11:40 · Score: 1
  
  They're implemented fine. They chose a particularly poor value for one of the parameters. Your implementation of PBKDF2 is the same regardless of the number of rounds; number of rounds is simply a parameter.
4. Re:why do they implement proprietary encryption? by Bert64 · 2010-10-02 06:00 · Score: 1
  
  Choosing defaults values for parameters are done at the implementation stage, especially if those parameters are not modifiable by the user later.
  
  --
  http://spamdecoy.net - free throwaway anonymous email - avoid spam!
since it is blackberry by acedotcom · 2010-10-01 06:02 · Score: 1

instead of calling them backups shouldnt they be called BLACKUPS?

--
they say it is often more relevant then the comment above, all we know is its called the Sig!
Of course! by hesaigo999ca · 2010-10-01 06:06 · Score: 1

How long after the code was given to the Indian government that now it is in the wild with all sorts of hacks,
atleast we know who we can point the finger at, and hopefully learn from this, that in future when they ask for code,
just say "NO, dat is not vedy vedy nise!"
I must break you... by jkiller · 2010-10-01 06:08 · Score: 1

In Soviet Russia, passcodes break YOU.
Not just secure for today by mpfife · 2010-10-01 06:16 · Score: 2, Insightful

This is one of the biggest things people forget about with data security and one my professors at school were constantly mindful of. Sure, 2048 bit keys and most modern cryptography is secure right now; but if you have really sensitive data - data about banking accounts, transaction records that your business depends on keeping secret for competitive reasons, voting records, etc - you need that to remain secure for the life-time of the person - or even longer. This is MUCH harder - especially if the advent of quantum computer decryption around the corner. What if all your bank transactions and records for this point up till now became as easily readable as a zip file? What if you live in a country that when the regime changes, those associated with the old regime get 'purged'? Your records are your life in such situations.

Remember, people can be storing up all those encrypted transactions you're sending around - and when the machines are fast enough - unencrypt them years or even decades later to reveal everything you said, did, bought/sold/voted on/etc during those times. This is a perfect example of why you need to take into the account the *lifetime* sensitivity of the data your encrypting, or you could easily face serious consequences.
Why Blackberry still works by markdowling · 2010-10-01 06:20 · Score: 4, Informative

Remote Application Deployment from BES
Application Policies
Applications can be installed from PCs or BES, not just The Apps Steve Likes
They sell an integrated keyboard, or a narrow-factor phone, not just The Touchscreen Steve Likes
1. Re:Why Blackberry still works by Anonymous Coward · 2010-10-02 13:34 · Score: 0
  
  Jeez, do a little research before you make such claims. According to Apple's own easy-to-find business integration web page, the first three items are all covered by iOS 4: www.apple.com/iphone/business/integration/
  And FWIW, you can use more than just the keyboard on "The Touchscreen Steve Likes", because iOS 4 supports any bluetooth keyboard. You could build a keyboard into an iPhone case, thus giving you even more flexibility than the integrated one that your stuck with on your blackberry.
  I believe Android supports some or all of these features as well, but I don't have first-hand knowledge of it. You definitely can't say that Blackberrys offer more than than any smartphone today.
2. Re:Why Blackberry still works by IICV · 2010-10-02 18:34 · Score: 1
  
  You can get an iPhone keyboard if you really want one. ThinkGeek will be selling a special case that adds a flip out keyboard later this year, in fact.
  Unfortunately it just flips out, it doesn't kill people.
Need access to the backup machine too by markdowling · 2010-10-01 06:28 · Score: 1

But then access to a Wintel box is trivial these days, especially with Adobe helping out.
I administer 130 blackberrys and there isn't an IPD file in the entire outfit - that's what BES and its backups are for.
Re:YAH BABY! SHORT SELL FREE MONEY! by Anonymous Coward · 2010-10-01 06:35 · Score: 0

I'm not sure if I should buy a Ferrari or a Masserati with the profits.
Sounds like penis enlargement pills would be a good choice for you.
Conspiracy Theory by microbee · 2010-10-01 06:46 · Score: 1

RIM has been under pressure to open up backdoors for its user data to governments. This is against its official policy and promise. If it does not comply, it risks losing business in foreign markets. Now it can do so more easily because it's already leak^^^^hacked.
Decryption Snake Oil, or Panic? by ratboy666 · 2010-10-01 06:55 · Score: 3, Informative

So, it takes 3 days to crack the 7 character password. Adding 8 characters to the set (say, !@#$%^&*) would then increase that 3 days to...
2^21 more effort. Or, roughly 3 to 4 million days. Seems from the discussion that elcomsoft was able to brute force quickly (millions of passwords per second).
Add a few more characters and the effort to brute-force the thing goes up... exponentially. Unless, of course, elcomsoft has actually "cracked" the encryption, and not simply reduced the time to try a key.
What I would warn about is my "usual" advice for password generation (optional random character) word (optional random character) word (optional random character), because, as far as I can tell, that can be now be broken by elcomsoft in 2 to 3 days (assuming they know that this is the pattern used, which we have to).
Very curious to see a review of this (before panic sets in).
ratboy666

--
Just another "Cubible(sic) Joe" 2 17 3061
1. Re:Decryption Snake Oil, or Panic? by MtHuurne · 2010-10-01 13:18 · Score: 1
  
  If you would add 7 random characters from the set !@#$%^&* to the existing 7-letter password, it would take 8^7 = 2^21 times the effort to crack it. However, if you switch from a 52-character set (mixed case letters) to a 60-character set, it only takes (60/52)^7 times as long, which is about 2.7 times.
2. Re:Decryption Snake Oil, or Panic? by ratboy666 · 2010-10-03 15:25 · Score: 1
  
  Why? Isn't the entropy increase the same? Should that not be (60-52)^7?
  
  --
  Just another "Cubible(sic) Joe" 2 17 3061
3. Re:Decryption Snake Oil, or Panic? by MtHuurne · 2010-10-06 02:17 · Score: 1
  
  If that were the case, increasing the alphabet by 1 would have no effect since (53-52)^7 = 1.
  The number of different 7-character passwords using a 52-character alphabet is 52^7, while using a 60-character alphabet it is 60^7: an increase by a factor of 60^7/52^7 = (60/52)^7.
Apple Encryption vs BB Encryption by jgtg32a · 2010-10-01 08:00 · Score: 1

>Apple devices act differently; the data is encrypted on the device and never leaves it in an unencrypted form. The Apple desktop software (iTunes) acts only as a storage and never encrypts/decrypts backup data.

The article says that but I was under the impression that the iPhone encryption was worthless because it never lets you access data in an encrypted format. What I mean is there was a race condition where you could have an iPhone plugged into a computer and turned off and when you turn the phone on it would allow you to mount the device before it activated the security and the phone would unencrypt the data as it was accessed. Also if you use a jailbreak attack you can dump the phone in its unencrypted format.

Was this patched, or is the article wrong?
"Business" users identify with luxury goods by swb · 2010-10-01 08:19 · Score: 1

Business users identify with luxury goods. There's a crossover point between cool, high tech, trendy and luxury goods that attracts business people. The iPhone is seen as high end, and this naturally draws in business people.
Give us a break by thethibs · 2010-10-01 08:27 · Score: 2, Insightful
Both the headline and the article are overheated.
The "crack" requires that
1. You have information that needs to be secured on your BB;
2. In spite of that you've used a toy password; and
3. The enemy has access to your backup files.
More than a bit of a stretch.
--
I'm a Programmer. That's one level above Software Engineer and one level below Engineer.
Jesus, people. by Anonymous Coward · 2010-10-01 08:28 · Score: 0

The last digit of pi is "i".
1. Re:Jesus, people. by minister+of+funk · 2010-10-01 12:02 · Score: 1
  
  But pi isn't imaginary.
2. Re:Jesus, people. by davester666 · 2010-10-01 18:18 · Score: 1
  
  Then where does it exist, except in people's brains?
  
  --
  Sleep your way to a whiter smile...date a dentist!