Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Drops Recovery Key From Two-Factor Authentication In New OS Versions

Posted by samzenpus on from the talking-to-people dept.

eggboard writes: If you've ever turned on what's now called "two-step verification" for an Apple ID, you had to create a Recovery Key. Lose this 14-digit code and have your password reset (because of hacking attempts against you), and you might lose access forever to purchases and data, as Owen Williams almost did. Apple confirmed today that starting with its public betas of OS X 10.11 and iOS 9, two-factor authentication won't have a Recovery Key. Instead, if you have to reset a password or lose access to devices, you'll have to go through an account verification process with human beings.

14 of 64 comments (clear)

  1. Authentication is Not Encryption by PvtVoid · · Score: 5, Insightful

    If I encrypt something and lose my key, I should lose my data. But this policy is about authentication (i.e. proving your identity) and not encryption. They're different things, except for some reason they are almost always conflated.

    1. Re:Authentication is Not Encryption by Anonymous Coward · · Score: 2, Interesting

      Nobody mentioned encryption except you.

    2. Re:Authentication is Not Encryption by Anonymous Coward · · Score: 4, Interesting

      There's a reason why it's called "two factor authentication" rather than "two factor encryption".

  2. Re:Good by deong · · Score: 2

    I don't understand what you're saying (or alternately, it just doesn't make sense). If anything, this accomplishes the opposite. If the recovery key was a strict technical requirement to access the account information, and Apple doesn't possess that key, then Apple would have the ability to tell the government, "Sorry, there's nothing we can do". If they replace the requirement of a key with a human being employed by Apple, then certainly they lose that ability.

    In general, 2-factor authentication doesn't really have anything to do with whether or not the company has access to your data. It's only affects how difficult it is for an unauthorized user to get access. Apple could happily make themselves an authorized user though by just making sure they have the encryption keys to everything and only using 2-factor on the client to gate access to the keys for a user.

    But if this affects governments' ability to request data at all, they're *adding* a "back-door" method of access here, not removing one.

  3. Wonderful... by phayes · · Score: 5, Insightful

    Some random guy in the internet has a hack attempt on his account get blocked by his use of 2 factor ID. Instead of being grateful the guy complains on twitter that he is too busy to have correctly backed the recovery key he was warned he was would have to safeguard.

    Clearly, Apple's procedures up to now avoided having the backdoor of saving the recovery key. That was OUR responsibility. Not saving it meant that Apple could NOT be social engineered or hacked into revealing it.

    Some random guy complains that "it's not his fault his account was hacked" & that he "deserved" his account back. He eventually finds a screenshot but calls for Apple to change the system to add a backdoor so that they can recover any account they want.

    The attack wasn't random guy's fault but it was his fault to not save his recovery key. More importantly, any social engineering or leakage of everybody else's accounts that occur due to Apple backdooring their 2 factor ID WILL be in part his fault. Way to go there, of course your convenience is more important than our security...

    --
    Democracy is a sheep and two wolves deciding what to have for lunch. Freedom is a well armed sheep contesting the issue
  4. Re:TLDR: Apple has access to your encrypted files by Ronin441 · · Score: 2

    TFA says "The current two-step method will continue to work indefinitely, so as not to lower security for older users nor break systems." So it's entirely possible that Apple genuinely doesn't have access to devices and files currently two-factor-protected.

  5. Re:"I've lost my password" by michelcolman · · Score: 2

    Hey, and I even know his moth... I mean... my mother's maiden name!

  6. Re:Good by Anonymous Coward · · Score: 2, Interesting

    Furthermore, I wouldn't trust those Apple "geniuses." They are utterly clueless and unhelpful. I recently had to call in to get some help because someone else had somehow managed to open a new account using my email address instead of theirs (ours were similar). Apparently there's no email verification before they can use it for an account. Anyways, I kept getting bombed with email intended for him so I reset the password on the account (since I'm in control of the email, this was easy) and noticed he had set his actual email as the recovery email--which I could not remove nor edit in any way, meaning he could then reset the password too. Point is, I either wanted them to remove my email from the account, or remove his recovery email from it, and the "geniuses" I had talked to couldn't seem to understand that simple request. In the end, their best advice was, "I don't know. Just deal with it I guess? There's nothing we can do." So, here we are still, both of us still have access to this account and neither of us can do anything about it.

    Great customer support.

  7. Re:Good by michelcolman · · Score: 4, Insightful

    Exactly, if you can reset your account password by "talking to a human", all the Fed has to do is talk to that same human.

    This is just because they probably had too many Apple users call them with "I lost my password, can you reset it? Recovery key? What's that?".

    Since there are probably ten times as many of those, compared to the number of people who actually care about security, it makes sense for them to dumb down the system. Keeps the majority of their users happy. And the Fed, to boot.

  8. Social Engineering Hack by wile_e_wonka · · Score: 2

    Aren't humans a problem with a lot of important hacks anymore. For example:
    http://appleinsider.com/articl...

    If not for a human at Apple, this hack wouldn't have happened. The authentication code was intended to prevent this issue.

  9. Re:"I've lost my password" by Anonymous Coward · · Score: 2, Funny

    Apple still makes a backup key, they just give it to the NSA...

  10. Insecurity as a feature by mysidia · · Score: 4, Insightful

    Sounds like they might be spinning "The government forced us to change our design so we can break the encryption for them"
    TO: "For your convenience, you no longer have to keep a copy of a 14 character recovery code to decrypt your phone: now we can just recover your account for you with a 'super-secure' human verification of the last 4 digits of your credit card that 10 other online retailers know about, and your SSN that can be looked up in a public database."

  11. Re:Because social engineering... by gnasher719 · · Score: 2

    Because social engineering is like the hardest point of entry of any computer system. A'ight. Mitnick approves

    That's not the only problem. If Apple (or any other company) has the capability to give you access to your data if you forget your password or passcode or whatever, then obviously this can be used against you through social engineering. But it can also be used against you by the police, the NSA etc.

    Your biggest protection against Apple ratting you out to any agencies is the fact that Apple deliberately avoids being able to do so. Once they have the capability, they can be forced to use it against you.

  12. Re:Good by Maestro485 · · Score: 4, Informative

    Except this is the recovery key for an Apple account, not an encryption key. Apple explicitly has access to information about your account. For example, they know which songs you've purchased from iTunes and which iPhone apps you've downloaded.

    This has nothing to do with encryption. This information is already available to the government if they have a warrant. The recovery key in question here is to authenticate, not to decrypt.