Siri Protocol Cracked

First time accepted submitter jisom writes with something that will probably not be working come morning. Quoting the source: "Today, we managed to crack open Siri's protocol. As a result, we are able to use Siri's recognition engine from any device. Yes, that means anyone could now write an Android app that uses the real Siri! Or use Siri on an iPad! And we're going to share this know-how with you." Basically, Siri sends the data to the processing server using non-standard HTTP extensions. Of note is that the audio is encoded using Ogg Speex.

You still need iPhone 4S

[CmdrPony]

While you could write an Android app or anything else, the protocol sends an unique ID with the request. That ID is unique to every iPhone 4S. End result being, you can probably use your own for your personal use, but if you try to sell an App for Android and include your ID with it, Apple will just blacklist it. So you will still need your own iPhone 4S.

Re:You still need iPhone 4S

[jollyreaper]

How long until they crack the unique ID generator and create viable clones of existing phones?

Re:You still need iPhone 4S

[ackthpt]

How long until they crack the unique ID generator and create viable clones of existing phones?

You can probably already buy them on the streets in Shanghai.

Re:You still need iPhone 4S

[CmdrPony]

Never, unless they manage to hack into Apple's servers. The ID check is server side.

Re:You still need iPhone 4S

[iluvcapra]

How long until they figure out how to clone a phone? They already can do this :)

Besides, why would an Android user want to goto the trouble? I'm informed (rabidly and often) that Android phones already have superior features and that Siri is merely a clone with fancy marketing.

Re:You still need iPhone 4S

[Odin_Zifer]

If some one where to gather a couple dozen unique ID's they could use those to setup a Siri relay service.

Re:You still need iPhone 4S

[hydrofix]

If it is correctly implemented, that's easier said than done. It is not necessarily a key-value pair that are cryptographically verified (i.e. there exists a purely arithmetic function f(x,y) that returns true iff (x, y) is a valid pair, and client is allowed access if it supplies correct (x,y) ) This kind of system would be crackable; just find another arithmetic function f' that returns y for some x (one usually exists).

However, if Apple knew what they were doing (and they usually do), it's a GUID database stored on Apple's server. Say, they generate a 128-bit random access code for each manufactured iPhone, and the only way you can use Siri is to supply a valid GUID. Such system is virtually uncrackable, because even for a 128-bit GUID and 200 million iPhone 4S manufactured, it would take a staggering 17 million trillion trillion guesses (i.e. HTTP requests to Apple servers) to guess right ONE correct GUID. If one request took a mere 100 bytes with its TCP/IP headers, you would have to transfer 170 million yottabytes (170 million trillion terabytes) of data to find one valid access key.

Good luck explaining this to your ISP! :)

Re:You still need iPhone 4S

[inflex]

Genuine question... couldn't you just get the GUIDs of existing valid iPhones?

Re:You still need iPhone 4S

[hydrofix]

Sure. But then you'd have to buy an iPhone.

Re:You still need iPhone 4S

[inflex]

I guess the subsequent point will be - what does Apple do when they find themselves blacklisting legitimate phone owners that simply have had the GUID lifted by a 3rd party ?

Re:You still need iPhone 4S

[demonlapin]

(rabidly and often)

No doubt. Those users are the worst thing about having an Android phone.

I like my Android phone. It does what I need, it does it fairly smoothly. It's not as slick as my iOS devices, but I'm used to the downsides of Android and for the moment I'd rather deal with them than deal with the downsides of iOS. But the fanbois are just awful.

Re:You still need iPhone 4S

[sangreal66]

Not trying to suggest that this would be a viable approach, but you only seem to have considered the worst case. You would not have to transfer 170 million yottabytes if your first guess was correct.

Re:You still need iPhone 4S

Or use an open WiFi access point. I'd point out the iThingies send their UUID in a lot of requests to Apple servers over ordinary HTTP. I know this because I block it in Privoxy.

Re:You still need iPhone 4S

[Jeremi]

Sure. But then you'd have to buy an iPhone.

... or eavesdrop on somebody else's iPhone.

Re:You still need iPhone 4S

Perhaps Android could run IOS in A VM

Re:You still need iPhone 4S

[jamesh]

Sure. But then you'd have to buy an iPhone.

Or write an app that 'leaks' that information to a server you control. I'm sure Apple would have no hesitation in blacklisting a few thousand ID's that were leaked, but what if it was a few million?

Re:You still need iPhone 4S

[jibjibjib]

If you can eavesdrop on SSL connections, you have better things to do than cloning Siri.

Re:You still need iPhone 4S

[ljaguar]

... or eavesdrop on somebody else's iPhone.

the reason why you can't do this is because Siri communicates in HTTPS, so it is not vulnerable to man-in-the-middle attacks. hence, you cannot eavesdrop on somebody else's iphone

the reason why they could listen to the traffic in the article is because they had access to the root certificate on the iphone itself. you can do this if you have physical access to the phone, but obviously you can't just do this over the air to other people's phones

Re:You still need iPhone 4S

[rednip]

How long until they crack the unique ID generator and create viable clones of existing phones?

You can probably already buy them on the streets in Shanghai.

Sounds like a lot of work for a little utility, but hey if you need an excuse to prowl around the seedy areas of China, it's as good as any I suppose.

Re:You still need iPhone 4S

[justforgetme]

Well, given a large enough statistical sample and enough processing power they could come up with an algorithm that generates valid keys.
So they could just hack the servers angry birds calls home to and dump their keylist, that would be a start.

Re:You still need iPhone 4S

[wierd_w]

This presumes that the guid assignments are done from the 128bit guid space using some garanteed form of true random.

Given the number of phones in existence, and that new phones will have to be whitelisted as time passes, (and that random guesses will run the risk of collision) it is more likely that the guid assignment is performed in some sophisticated pseudo random fashion, and as such, identifiable patterns could be detected given a sufficiently large number of known whitelisted guids.

Once you have that information, and perhaps some other information that apple might use in the guid assignment algorithm (serial number, manufacturing site, date of manufacture, etc...) it should be possible to determine which guids should be valid.

This sounds like an opportunity for a naughty idevice app developer, who should already be able to get such a list by having their app phone home, and request the device uuid as part of a purchase validation mecchanism. (A popular app could quickly get several hundred active unique ids to work with, perhaps more.)

Re:You still need iPhone 4S

[corbettw]

If you're so lucky that you can get a 128 random number duplicated on the first try you really ought to cash out your 401k and buy some lottery tickets.

Re:You still need iPhone 4S

[ShakaUVM]

>>If you're so lucky that you can get a 128 random number duplicated on the first try you really ought to cash out your 401k and buy some lottery tickets.

The optimal strategy for playing slots is to hit the jackpot on the first pull. I once explained this to a friend of mine, tossed in a nickle, and hit a $15 jackpot.

He was blown away.

Re:You still need iPhone 4S

[flux]

While that may be true, would having the keys of all existing iPhone devices be a sample large enough? Or maybe you could link to research that can successfully predict the keys OpenSSL generates. No, Debian OpenSSL doesn't count..

Re:You still need iPhone 4S

[bemymonkey]

There is nothing available on Android that's anywhere near as functional as Siri (seems to be in the ads). Voice recognition is OK (but largely dependent on the quality of your device - if the manufacturer [HTC, cough] used cheap mics, no chance), but unless you want to call someone or search Google, you're going to need to do it the old fashioned way.

And yes, I'm one of the rabid Android fanboys you seem to be encountering so often ;)

Re:You still need iPhone 4S

[CharlyFoxtrot]

How long until they crack the unique ID generator and create viable clones of existing phones?

Then Apple can perform an additional check with location services, find the ID's that are accessed from widely differing locations within a relatively short timeframe and block them.

Re:You still need iPhone 4S

[Opportunist]

Don't you tell me what I get to do when I can eavesdrop on SSL connections, puny human!

Re:You still need iPhone 4S

[theNAM666]

Done. NeXt?

Re:You still need iPhone 4S

[Waccoon]

Fire with fire.

Re:You still need iPhone 4S

[Paradise+Pete]

Fire with fire.

Which rarely makes sense, especially when dealing with actual fire.

Re:You still need iPhone 4S

[Trogre]

Not that it's relevant to the argument at hand, but you might like to research the practice of back-firing, in relation to creating a firebreak, particularly with bushfires.

Re:You still need iPhone 4S

If it's just HTTP, you just need a laptop with packet sniffing software. Just find a cafe with wifi frequented by iDrones and pluck the UUIDs out of the air! It wouldn't surprise me if there are already databases of UUIDs being compiled and available on black markets

Re:You still need iPhone 4S

[norpy]

apart from crunching the ip addresses, seeing a lot of requests from geographically diverse locations on the same ID would throw up a pretty big red flag.

Re:You still need iPhone 4S

[norpy]

I think he meant access to the root certificate STORE on the phone. You just install your own trusted root key and MITM yourself for fun and profit!

Re:You still need iPhone 4S

[Calydor]

You mean they're sold in stores instead of on the street?

Re:You still need iPhone 4S

[jellomizer]

While cracking the code is fine for hackers to see how it works. It isn't going to viable to clones or competing products.
We went threw this route and this behavior of hacking Apples products to make a clone tends to kill the brand.
It must be too long ago to remember the days of WebOS when it was owned by Palm.
What killed WebOS, (or at least put it in the category were there is a small vocal group of geeks saying it isn't really that dead, perhaps if they join forces with the BeOS and Amiga people they can become a small minority) the fact that they made their OS to mimic an iPod to allow it to connect to iTunes. So what did that do. It made apple to upgrade their iTunes to block out the WebOS device. Then Palm needed to make a new hack to get it to work again... In the mean time WebOS customers have a device that isn't fully working.
So now if you start hacking into Siri to release an Android device that uses it. Apple will patch it, go the next step push out an upgrade then the Android device will loose that feature for a few weeks then by the time it gets release it will work for a week then get broken again. Pissing off customers, and not really helping anyone.

Re:You still need iPhone 4S

[jellomizer]

Does anyone with and iPhone 4S really use Siri that much to make it a killer feature?

I am just asking... I have and iPhone 4(normal... With the Phillips head screws) and I don't see Siri as that big of a deal. It seems like something that will be mildly useful 4 times a year, I will have a little fun with it when I first get it. Then it will just kinda be one of those features on the phone I really don't use much. Like the Compass app.

Re:You still need iPhone 4S

[Slashdot+Parent]

I'm informed (rabidly and often) that Android phones already have superior features and that Siri is merely a clone with fancy marketing.

I don't think Android users hold any type of monopoly on obnoxious product advocacy.

Anyway, there is currently nothing available on Android that is comparable to Siri. We have voice recognition that is pretty good, but you have to give your commands to the phone using a predetermined format. With Siri, you just speak to it naturally, and it can usually figure out what you meant.

It's really pretty neat. Not neat enough to get me to switch to iPhone, but I'm very impressed with it.

Re:You still need iPhone 4S

[Max+Rool]

Fire with fire.

Which rarely makes sense, especially when dealing with actual fire.

I think we should bring this into the 21st century and change it to "fight pew pew with pew pew"

Re:You still need iPhone 4S

[swb]

You laugh, but I've heard more than once that VMware is actively pursuing virtualization for smartphones.

Some VMware employee told me that the basic concept was to create an idealized virtual hardware platform that a phone vendor could target its mobile OS towards. New hardware, CPUs or other physical improvements wouldn't matter then to the OS developers as only the hypervisor hardware interfaces/drivers would have to be changed. You could probably even change the guts on the phone and not change the model as the vm layer would deal with the changes.

It's an interesting concept, but I'm not sure the wicked efficiencies needed on low-power, low(er) CPU/RAM devices would work with a hypervisor.

It would be more fun if it allowed you to run iOS and Android simultaneously and switch between them.

Apple upending their Bucket o' Lawyers on this

[ackthpt]

3.. 2.. 1...

Re:Apple upending their Bucket o' Lawyers on this

[CmdrPony]

They are already sending everything with HTTPS. That's why the researchers had to use gateway machine and certificate tricks to do man-in-the-middle attack.

Re:Apple upending their Bucket o' Lawyers on this

[Fnord666]

Here is an easier solution, how about just send everything via HTTPS.

Apple is. From TFA:

Surprisingly, when we did, we wouldnâ(TM)t gather any traffic when using Siri. So we ressorted to using tcpdump on a network gateway, and we realised Siriâ(TM)s traffic was TCP, on port 443, to a server at 17.174.4.4.

The app even validated that the cert used was signed by a trusted CA. Fortunately the iphone4S allows you to add your own trusted CA to the trust chain.

Re:Apple upending their Bucket o' Lawyers on this

[mustPushCart]

Whats the difference between a bucket of lawyers and a bucket of shit? ...

Er... that wasn't a riddle it was a rhetorical statement.

Re:your ass cherry cracked

[masternerdguy]

The quality of the anonymous coward troll posts is declining. I expected more.

Slightly less impressed

[RightwingNutjob]

I thought it ran on the phone itself.

Re:Slightly less impressed

Ummmm.... no.... that would be why Siri fails so often due to network issues.

Re:Slightly less impressed

[Darinbob]

That's what they wanted people to think. 99% of all phone apps have very little to do with the actual phone and instead they're just quick reference URLs to some external site that does most of the work. Of course they tie all the apps to the phone so that you can't bypass the store.

Re:Slightly less impressed

[Psyborgue]

Why would they waste the processing horsepower? It would eat the battery if it was even at all possible. They can do higher quality recognition on their servers anyway. The customer does not need to know where the processing is done as long as "it just works". To the consumer, and even some more technically inclined, it's magic -- and that is the real genius in the way Apple presents it's products. They make people feel like they're somehow in the future, that they're talking to an intelligent phone, that Saint Steve has somehow created artificial life and they get to own a piece of this future for the price of a modest chunk of change and a two year contract.

Re:Slightly less impressed

Apple has stated publicly that Siri uses Apple servers for processing. And observing the behavior of the device under lost network connection makes this quite obvious.

Re:Slightly less impressed

[aXis100]

Doing the processing on the server seems very slow to me - I can find a contact much faster by pressing the first few letters than waiting for the round-trip latency to siri.

Heaps of people have tried to demo siri to me and most of the time it was a gimick that failed badly - either was slower than manual methods or just innacurate.

Re:Slightly less impressed

[Nogami_Saeko]

I foresee some time in the (near?) future where Apple may "split" Siri - have some limited processing available on the client device for easy requests, or for when the network is unavailable, leaving network-only use for the really hard requests.

Because Siri is sending all of the requests to Apple's servers, I have no doubt that they're building a huge speech database and using it to refine their systems to make it far more accurate as people enter commands, use the correction tools and try rephrasing things in different ways.

This may be another reason why Apple is considering leaving Siri only for new devices. It's "possible" that if they provide client-side processing at some point, (some) older devices may really not have the memory or processing power available to handle that new version...

Re:Slightly less impressed

[safetyinnumbers]

I thought it ran on the phone itself.

The outage was a bit of a giveaway.

Re:Slightly less impressed

[_xeno_]

Doing the processing on the server seems very slow to me - I can find a contact much faster by pressing the first few letters than waiting for the round-trip latency to siri.

Yep. It's extremely annoying, actually, because Siri replaces the existing voice commands. So doing something like "call brother" - which used to take maybe a half second - takes a good three seconds or so of lag time. More annoyingly is things like "play playlist driving songs" - first you have to wait for the three seconds round-trip processing, then you have to wait for the iPhone to decide which playlist that matches ("Looking for playlist driving songs," Siri says), then you have to wait for her to narrate "playing playlist driving songs" before the music actually starts.

Compare to the previous, non-Siri version:

"Play playlist driving songs."
(half-second pause) "Playing playlist driving songs." (music starts)

Yay progress. About the only thing I use Siri for is asking dumb questions and seeing what responses I get. For actual voice controls, it's - well, not useless, exactly, just obnoxiously slow.

Re:Slightly less impressed

[Swanktastic]

Haha! They fooled you too. The dirty little secret is that Siri is actually a nice old lady in Delhi.

Re:Slightly less impressed

[afabbro]

99% of all phone apps have very little to do with the actual phone and instead they're just quick reference URLs to some external site that does most of the work.

No.

You're claiming that out of 500,000-odd iPhone apps, only 5,000 are anything more than just "quick reference URLs to some external site that does most of the work"?

There are more than 5,000 games in the iOS app store.

There are probably 10,000 calculators, flashlight apps, and fart sound effect apps.

Sure, some apps are as you describe, and many apps talk to the net, but 99% are not just "quick reference URLs".

Re:Slightly less impressed

[R3d+M3rcury]

Of course, now you can say things like, "Boy, I'd love to hear some driving songs" or "Driving songs would sound good right about now." See? There's less of the "command" protocol and more like you're speaking to an actual person!

Of course, the person you're talking to is a little slow. But that's better than having to use some specific syntax, right?

(The above is sarcasm.)

Re:Slightly less impressed

[CharlyFoxtrot]

So turn it off : "If you wish to use Voice Control while you are not connected to the Internet, turn Siri off from Settings > General > Siri. Make sure to turn Siri back on when you have Internet connectivity and you wish to use it again."

Re:Slightly less impressed

[Fallingcow]

Apple's actually pretty quick to reject apps for not offering enough functionality over a website. Simply embedding a site in a webview and calling it an app (what was implied to be happening upthread) is pretty much a 100% guaranteed way to get your app rejected.

Re:Slightly less impressed

[cgenman]

It's terribly obnoxiously slow. It's also a lot broader than previous voice-command efforts. I set a baking timer by saying "Siri, set an alarm for twenty minutes from now." I had no idea that "twenty minutes from now" would be something that Siri understood. It just seemed like it would make sense. And it just worked. "Text my wife that I'll be about 10 minutes late" works too.

Well, it works when the network is responding. And it works terribly slow. But it is really a step towards natural language understanding of voice. Or rather, unlike a lot of other efforts I feel like the phone is trying to understand me rather than the other way around.

Re:Slightly less impressed

[SeaFox]

Nope, that's why the carriers love it, too. Every time you use Siri you're drawing KBs on your (mostly likely) not-unlimited data plan.

Re:Slightly less impressed

[shutdown+-p+now]

Given that Apple are touted as masters of seamless and intuitive user interface design, how come this process isn't automated? It would seem to me that it'd be pretty trivial to, at the very least, detect lack of network connectivity, and turn it off accordingly.

Re:Slightly less impressed

[adolf]

I call it a grossly overbearing and network-centric alternative to a simple textual notepad that also didn't come with my phone. :)

So it's remote?

[Stormwatch]

So the iPhone can't really do the speech recognition and synthesis by itself? That's quite underwhelming.

Re:So it's remote?

[Psyborgue]

I, too am shocked at how many people didn't realize this was all done server side -- especially here.

Re:So it's remote?

[muon-catalyzed]

The most alarming fact, for me, is that they are sending all my speech data over the Internet to some enormous Cloud database. Oh, and while they have it all, I must trust Apple now that they are not gonna mine this data and send it backdoor to advertisers and other interests.

Re:So it's remote?

[mo]

Speech recognition isn't too CPU intensive, but it's *massively* memory intensive. It's not unreasonable for speech recognition engines to eat up a gig of ram, and the 4S only has 512mb. However, push it to a server with lots of ram and it can handle lots and lots of simultaneous speech recognition queries. It's tailor made to be a server-side task. At least until phones have gigs of free memory that aren't needed.

Re:So it's remote?

[amiga3D]

Actually there was an article at /. the other day that talked about this fact already. For most people though it seems like it's the phone doing it and really that's all that matters for 90 percent of the users.

Re:So it's remote?

[amiga3D]

What? I think that may be the primary purpose of Siri in the end. Only a small minority give a crap about security anyway.

Re:So it's remote?

[mosb1000]

Well, they send your Siri requests. And, of course, almost everything you do on you cellphone is sent somewhere it can be tracked and recorded.

Re:So it's remote?

[mug+funky]

it's a phone, genius. a device for sending your voice to other locations.

Re:So it's remote?

[wesgray]

I, too am shocked at how many people didn't realize this was all done server side -- especially here.

Well lately, especially here you shouldn't be.

Re:So it's remote?

[wvmarle]

Yet when I call a friend, only my friend received my voice, and he receives it as audio. The phone company doesn't store this (unless they've been requested to wiretap your line - not very common outside of the US luckily - and even then it's normally stored as audio only), they're not even allowed to listen in to it when it happens, they just have to transmit the audio signal from my phone to my friend's phone.

In this case the audio goes to the vendor of your phone, which then attempts to actively listen in to it and make out what you're trying to say, and as such can store this in a machine processable format. That's the big difference.

Win for Xiph (and open source)

[nzac]

Appears that Xiph came out on top for speech codecs.

This also shortly after apple realized that ALAC was going to fail (at least as a closed source product, they may push it better as an open source project now it can be played by everyone).

They still have the very entrenched AAC though.

Re:Win for Xiph (and open source)

[iluvcapra]

They don't have AAC. AAC is an MPEG-4 standard invented and licensed to MPEG-LA by the only company that could ever out-Apple Apple on IP, Dolby Laboratories.

Re:Win for Xiph (and open source)

[pipedwho]

Isn't AAC just the MPEG4 version of what we know as mp3 (which is really just MPEG1/Audio layer 3)? There are already many open source implementations of AAC, so I don't see it as the same thing.

The real problem with AAC is the MPEG patent swamp. Even if Apple were to release an open source codec, it would still be under the same shadow that hangs over anyone that isn't lining the pockets of the MPEG licensing body.

Re:Win for Xiph (and open source)

[Guy+Harris]

Appears that Xiph came out on top for speech codecs.

...in the opinion of a spin-off from SRI; it might've been easier for them to go with an open source codec than to license a non-open-source codec. Remember, Apple bought the company that developed Siri; they didn't develop it themselves from Day One.

I'm not saying that the availability of the codec as open source was one of the reasons for the choice and that, if the open-source availability weren't an advantage, it would have lost to some closed-source codec; I'm just saying that one shouldn't assume this was an Apple decision (meaning the open-sourceness of it might have been irrelevant or perhaps a disadvantage) and draw conclusions from that assumption.

Re:Win for Xiph (and open source)

[mug+funky]

it's a consortium. Dolby developed AC-3, and some tools they've developed are no doubt in the AAC spec, but AAC is essentially mp3 without the filterbank (which of course changed it a ton), and some nice features like long-term prediction, noise substitution etc etc.

Re:Win for Xiph (and open source)

[bhcompy]

Yet the music player still doesn't support Ogg Vorbis.

Re:Win for Xiph (and open source)

[nzac]

Thus since iTunes and iPods have the vast majority of the market share makes it so entrenched that it won't be changing any-time soon.

The scam of Siri

[jmorris42]

> I thought it ran on the phone itself.

Nope, and that is the scam. Basically you are calling a service. Thus they could make Siri available on every iProduct with zero effort. That they decided to hold it as an exclusive feature for the 4S to try and create the 'gotta upgrade' stampede is truly lame. Keeping it to iProducts is ok, they ain't giving away a hefty compute farm after all, who do ya think they are after all, Google? But locking access to the service to one submodel of one product line is a terrible idea.

Re:The scam of Siri

[Torodung]

It's still a bit scammy, but I would guess they're using early adopters as a massive beta test before rolling it out to iLife in general, so rather than depriving anyone, they're being cautious and scaling up usage slowly. Think "Apple Newton," and it's reasonable to suspect the company may still be a little gun shy with this kind of tech. Even if it is running "in the cloud" instead of on the device, there's a whole lot that could go wrong with Siri. (Page is for entertainment purposes only. Not to be construed as actual examples. I am a non-attorney spokesperson.)

More than that, availability matters here, and they want the initial adopters to have a premium experience before they roll it out to the hoi polloi, and everything goes pear shape when they run into the usual scaling issues. You know, like the ones AT&T ran into with the first iPhones.

Re:The scam of Siri

[bucky0]

It's my understanding from reading the articles from a guy who managed to hack it onto the 3GS that the 4S actually has some pretty good voice canceling hardware onboard. Whether or not that's true, I can't say, but from the article I read, apparently things needed to be VERY quiet or the text-to-speech would fail hard.

Re:The scam of Siri

[Shadowruni]

Crickey! Loo' at that. We're very lucky! You almost never see a four digit this far from its native habitat of lurking. Ah she's a beaut!

Re:The scam of Siri

[Shadowruni]

Crickey! Will you loo' at that. We're so very lucky! You almost never see a four digit this far from its native habitat of lurking an' she's being stalked by this five digit that's almost as rare. It's times like this I'm gla' I don't work with lizards that might eat me! //Window seat please...

Re:The scam of Siri

[InterruptDescriptorT]

Crickey! Loo' at that. We're very lucky! You almost never see a four digit this far from its native habitat of lurking. Ah she's a beaut!

Can this become a new Slashdot meme, please?

Re:The scam of Siri

[wvmarle]

It also means that to have Siri work you have to pay for a data account (preferably an unlimited account - this will eat a lot of data if used frequently), as otherwise it will simply not work.

This may be a non-issue for markets like the US where you can only get a phone in conjunction with a heavily overpriced contract that by default includes data, it is an issue for other markets where plans and phones are separated.

I don't have a mobile data plan with my smart phone, don't see the need for it really, WiFi does the job just fine. I don't feel the need for e-mail on the go. I don't feel the need for watching streaming video on such a small screen. I'm not Facebook addicted either. And Angry Birds plays better offline: no ads. And that one moment a month or less that I think "now I really need some data" is not enough to pay for a subscription, and open WiFi networks are usually easy enough to find.

Re:The scam of Siri

[jmorris42]

> Apple obviously decided that a minimum 4S hardware platform was required

Yes, that is what the ad campaign would lead you to believe. The reality is that all of the work is server side and ANY client would work equally well. You could use a basic no frills cell phone, a landline or whatever to talk to Siri and get voice reponses. Any phone capable of hosting an app could interface with it and receive URLs or other trigger events back with a fairly simple client side application. And there are no technical limitations preventing the client from the iPhone 4S running unmodified on any of the iPhones with the same iOS revision installed. Simply, there is nothing unique to the iPhone 4S that enables Siri. But had they rolled it out as a regular iOS update or an app in the Store there wouldn't have been a 'killer feature' to hype for the new phone to drive the lemmings into the store for an upgrade. That is the scam I refer to.

Re:The scam of Siri

[Scott+Ransom]

Yet another /. meme? And not even a very funny one at that....

* back to lurking *

Nothing new

[CanEHdian]

I knew this long ago... I just asked "Siri, what protocols are you using to communicate with your server?"

Re:Nothing new

[sjames]

I asked my Android that and it sent me here.

Command:

[PowerCyclist]

"Siri, Don't sue. Confirm.", Siri, "I'm afraid I can't do that Dave."

Re:Command:

[corychristison]

"Siri, Don't sue. Confirm.", Siri, "I'm afraid I can't do that Dave."

That's fine and all, but my name is not Dave..

Would Apple mind?

[fluffy99]

If Apple is learning anything from Google, it's that customer info is valuable. Siri could easily become an advertising platform that rivals Google. Targeted advertising, where companies pay Apple for premium listings ( eg Asking Siri about a Pizza place returns Pizza Hut who paid the most for that key word).

If that's their angle, they might welcome more traffic to Siri.

Re:Would Apple mind?

[quacking+duck]

Where do you get that Apple relies on ads? Never mind "relying on ads a LOT"?

Results from Wolfram Alpha are ad-free. In-Siri search results are ad-free. Creating events, reminders, call/texting, are all ad-free. The only time the user might see an ad is when you click on the Web Search for something Siri couldn't get an answer for right away, but that sends you to the browser where ads are fair game. Apple's own website is devoid of ads (can't say the same for Microsoft--bottom of their homepage was a banner ad for MS Office 2010. Yes, served from an ad farm).

In fact, Apple's philosophy on this seems to be "pay slightly more up front, we then make enough money that we won't subject you to 3rd party ads in our products or services." You'll therefore not find 3rd-party shovelware pre-installed on a Mac or iPhone, or ads in iCloud or the Siri service.

Re:Would Apple mind?

[R3d+M3rcury]

Apple's own website is devoid of ads (can't say the same for Microsoft--bottom of their homepage was a banner ad for MS Office 2010. Yes, served from an ad farm).

Really? I just looked at Apple's web site and it had two ads trying to sell me an iPod touch, an iPod 2, and the biggest ad was for the iPhone 4S.

Which site are you looking at?

Re:Would Apple mind?

[Ixokai]

Umm, fact check: Apple doesn't even slightly rely on ads. At all. Apple is not an advertising company, at all.

They have the iAd product, which is little more then a hobby; Apple's profit is very, very clearly from direct hardware sales to customers -- by a /vast/ margin. Not from ads, ITMS, Apps, any of it. Its hardware sales to customers.

Its nothing like Google's business model.

Now, its possible Siri may be a future ad-related or information-related revenue stream, but only if it can be leveraged without harming the hardware sales-- because THAT is what Apple makes its dough on. It'll probably never be a huge deal, though it may be interesting.

Why is Siri cloud-powered? Perhaps because it has to be. Siri is a lot more then simply a speech recognition system-- even though the best speech recognition apps I've seen on IOS have also involved the cloud.

Just that alone seems to imply that it may take more processing power (and battery hogging) then mobile devices have to do well. But Siri does a lot more processing beyond that, juggling the possible recognition results based on context, thus changing its interpretation of the phrase and then re-evaluating again.

All three companies have VERY different business models.

Google relies on profits from its ad business.
Apple relies on profits from its hardware sales.
Microsoft relies on profits from published software.

Each has bits and pieces that go into others, but the /vast/ majority of their profits comes from their core business.

I admit to only being passingly familiar with Google and Microsoft's financials. But Apple's are very, very, very clearly oriented towards consumer hardware sales. Not ads, not music, not apps, not services. All of those things do nothing but maintain the ecosystem and thus make the devices more attractive. Apple's actual profit on them doesn't even compare to their actual driving businesses.

Re:Would Apple mind?

[cowboy76Spain]

If Apple is learning anything from Google, it's that customer info is valuable. Siri could easily become an advertising platform that rivals Google. Targeted advertising, where companies pay Apple for premium listings ( eg Asking Siri about a Pizza place returns Pizza Hut who paid the most for that key word).

If that's their angle, they might welcome more traffic to Siri.

<sarcasm>Yes, they are so thrilled by it. They wanted that everyone could connect to their servers, but they did not know how to make their protocols public. Being hacked has solved that problem!...</sarcasm>

What this crack means (unless has additional security measures) is that Siri will need a lot more of processing power and, what is worse, there is no way to predict how much power it will need now. Without getting to dip into related profits (selling of hardware / associated programs / etc). I bet they are doing a party right now just to celebrate!

Seriously, WTF? The crack does not give anything interesting/new away, just puts a third party in a position where it can be abused. If the people behind Siri wanted everyone to connect, they could have stated that themselves. Those are two very simple thoughts that everyone in /. could understand, yet they instead just follow the most retorted logic to justify it.

At least we are not discussing crimes here. If talking about murders, I bet some of you would posts things like "Thanks to the serial killer that murdered his wife and children, now he can chose a new wife and have more kids!"

So how many times ..

[n5vb]

.. can you ask Siri "where to hide a body" before a backend notification gets emailed to a detective at your local PD?

Re:So how many times ..

[Bill+Dimm]

I asked Siri that question, and it responded: "You've already asked one time too many." It then displayed a map showing me how to get to Mexico.

Re:So how many times ..

[Sloppy]

I didn't know they let you have a phone, Hans.

Obligatory that's what she said joke.

[mosb1000]

That's what she said.

A lesson in client/server security

[AndrewStephens]

TFA is actually pretty interesting:

As you know, the “S” in HTTPS stands for “secure” : all traffic between a client and an https server is ciphered. So we couldn’t read it using a sniffer. In that case, the simplest solution is to fake an HTTPS server, use a fake DNS server, and see what the incoming requests are. Unfortunately, the people behind Siri did things right : they check that guzzoni’s certificate is valid, so you cannot fake it. Well they did check that it was valid, but thing is, you can add your own “root certificate”, which lets you mark any certificate you want as valid.

Some Apple software (parts of iTunes) goes further and checks that the certificate presented by the server is actually signed by Apple. If the Siri software did this then the server would be impossible to fake man-in-middle-wise without hacking the client itself. Just checking that the certificate is valid is pretty useless protection - any certificate could be valid, what you care about is whether the server is who it says it is.

Re:A lesson in client/server security

[jibjibjib]

It's not a "pretty useless protection". It's not just checking that the certificate is valid, it's also checking that the certificate authority has a corresponding root certificate installed on the iPhone. It stops anyone who doesn't have access to the phone from eavesdropping or manipulating the data.

Re:A lesson in client/server security

[AndrewStephens]

I think you have missed my point. If the certificate is signed by some random authority it is "valid" but that only says that the authority (whoever that is) trusts the server. If the client did as it should (and what other Apple apps do), then it should check that the certificate is signed by a authority that it can check directly using the authority's public key built into the client.

That way it would be impossible to spoof the server and perform man-in-the-middle attack without either a) knowing the private key of Apple's signing authority (in which case Apple has bigger problems than people cracking Siri) or b) modifying the binary of the client application itself (always possible not matter what you do).

I just find it interesting that some applications do this properly, and others just seem to say "The cert looks legit to me, let's talk some secret stuff".

Re:Really?

[mug+funky]

planes have wifi these days.

in other news, you're no longer allowed to smoke.

Re:The Legal Battle Line is Drawn ...

[AndrewStephens]

I have just done this. That exact text (as far as I can tell) is included in the text about 7/8ths of the way through.

So it looks like Apple is in the clear on this point.

wow, they send all the data?

[pavera]

I knew they were doing some heavy lifting on the server side, cause obviously it doesn't work without a network connection.

However, I figured they would at least do an initial processing pass on the phone and pass up the data points to the server instead of the raw audio. That at least would make sense, and you'd be able to pass much smaller amounts of data. It would also explain the need to have better hardware on the phone. Sending the raw audio seems insane.

Apple bought Siri

[dutchwhizzman]

There's an awfully big chance the codec was determined and implemented way before Apple even touched the product.

Re:Apple bought Siri

[nzac]

I would think a general purpose speech codec would not be so hard coded into a product it could not be swapped out in a couple of days. I dont think there is speech recognition optimisation built in.

Unless they are going to change it (which since its still in beta they could do), its a win no matter how it got there.

wow

[buddyglass]

It seems fairly ill-advised for a company whose business is developing iOS apps to post their reverse engineering exploits on the corporate blog.

Counterproductive

[StripedCow]

I don't understand these hackers, they only promote the lock-in policies of Apple. Because having Siri for a while may lure more users to Apple. After a while, Apple will just close the hole by using the UID's of the phone, like others mentioned, or some kind of unbreakable private-key cryptosystem.

Further, all those jailbreaking tools which are available just give Apple users a reason to say "hey, I'm not locked in, I can always jailbreak my device".

While you can root your device now, it does not mean you can root it forever. Apple devs are smart enough to make the system close to unbreakable, because cryptography is not that hard, and by the way, they are baking their own ICs now.

So I think Apple is just happy with this (relatively small) jailbreaking scene, just like Microsoft was happy with their software being illegally copied for a long while.

Also, can't share IDs because Siri is stateful

[200_success]

Another thing to consider is that Siri remembers things about you. For example, you can tell it "Justine is my mom", then later say "Call mom". Also, there are sessions — your command can be a interpreted in the context of recent commands. I would guess that the state is saved on the server side and tied to your unique ID. If so, then sharing an ID among multiple users would result in a nasty user experience, and would certainly defeat the point of Siri's more intelligent features.