Apple Tells US Judge It's 'Impossible' To Break Through Locks On New iPhones

An anonymous reader writes: Apple told a U.S. judge that accessing data stored on a locked iPhone would be "impossible" with devices using its latest operating system, but the company has the "technical ability" to help law enforcement unlock older phones. Apple's position was laid out in a brief filed late Monday, after a federal magistrate judge in Brooklyn, New York, sought its input as he weighed a U.S. Justice Department request to force the company to help authorities access a seized iPhone during an investigation. In court papers, Apple said that for the 90 percent of its devices running iOS 8 or higher, granting the Justice Department's request "would be impossible to perform" after it strengthened encryption methods.

Sounds like

[Chrisq]

Sounds like a challenge!

Re:Sounds like

Nah, Apple was just promoting their new forensics application, iMPOSSIBLE FOR LAW-ENFORCEMENT...

Re:Sounds like

That would be something, if these phone developers actually capitalize on law enforcement's want to be able to unlock a phone at will.

Re:Sounds like

[Carewolf]

Sounds like a challenge!

Not really. It is not hard to break, just not something they want to, or can do automatically. So yes there is no easy way of doing, so it is "impossible"...

Re:Sounds like

[tripleevenfall]

I see this as a marked strengthening of Apple's platform. If truly not even Apple can unlock or decrypt the phones, then that's a huge benefit to using the platform.

Of course this reminds one of TFA from last week, where it was claimed that the NSA had made some sort of computing breakthrough and could decrypt even standards that are thought to be secure today.

Re:Sounds like

[Immerman]

Sure. Assuming they're doing it right then your phone is secure. At least so long as you don't install that new Upset Walruses game making the rounds that includes a discrete monitoring component that harvests everything you do on the phone, credentials included. Or contract any virus or worm with a similar payload.

Still, a huge step forward from the historic state of affairs - at least if someone wants to spy on you they have to be proactive about it.

Re:Sounds like

You know of a way of breaking AES encryption?

Re:Sounds like

It isn't just AES encryption.
It's AES encryption of a dataset with a large known component that partly resides at a known location. (The OS files.)

Re:Sounds like

[Joce640k]

I see this as a marked strengthening of Apple's platform. If truly not even Apple can unlock or decrypt the phones, then that's a huge benefit to using the platform.

Either that or they're just trying to sell you a new phone.

"All our old phones are hackable, this one isn't!"

(The exploit will be released a few weeks before the next model is launched)

Re:Sounds like

Do the smurf attacks still apply to the new IOS? If they can own the device with an undetectable text message then unlocking a phone doesn't really matter.

http://bgr.com/2015/10/12/iphone-android-smurf-spy-malware/

Re:Sounds like

[greenfruitsalad]

and this, my dear fellow slashdotters, is why we need more platforms. we NEED people to run windows phones, blackberries with neutrinoOS, android with enforcing selinux, ubuntu phones with tight apparmor, ios with integrated lawyers, tizen with something else, etc.. we all know about eggs and baskets. apps should be written in some stupid interpreted javascript crap that works on all platforms, run preferably in containers/jails/zones/whatever.

Re:Sounds like

[Joce640k]

You know of a way of breaking AES encryption?

Weird. It's almost as if the very basic principles of encryption went flying right over your head...

Clue: The WD hard drives mentioned in the story below this one are encrypted using AES.

http://it.slashdot.org/story/1...

Re:Sounds like

[Ravaldy]

Either that or they're just trying to sell you a new phone

Among the list of items most users seek to get when upgrading their phone, I doubt being "NSA Proof" is in the top 10. After all, these are the same morons that wait for days in line hoping to be first to brag about getting the newest iPhone.

Re:Sounds like

Not much of a challenge. There are only 10,000 combinations on the keypad, and it's not like a BlackBerry which wipes itself after ten tries.

Re:Sounds like

Doesn't matter if it's encrypted. There are only 10,000 four-digit PIN combinations, and iPhones don't self-destruct after a certain number of tries. Pretty easy to brute force it.

Encryption is a necessary but not sufficient condition for security.

Re:Sounds like

[...] that includes a discrete monitoring component that harvests everything you do on the phone, credentials included.

iOS doesn't work that way. You can't write an app that harvests everything someone does on the phone.

Re:Sounds like

[adamstew]

Every device that is capable of running iOS 8 is the iPhone 4S and greater...so pretty much 5 generations of devices. I doubt many people have a 5+ year old iPhone at this point. iPhone 4 and under account for 4% of the current iOS market share. (source: https://david-smith.org/iosver... )

I doubt that they are now using this as a gimmick to try and force people to upgrade to a new handset at this time.

Re:Sounds like

[Carewolf]

You know of a way of breaking AES encryption?

I know a way to break any encryption based on a password, passphrase, pincode or fingerprint, it is called brute-force, with normal length passwords and pin-codes it is even doable in a reasonable timescale. Of course Apple is under no obligation to do hacking on behalf of the court system, so they can honestly say they have no way of bypassing the encryption, all they can do is assist in brute forcing it.

Re:Sounds like

[Carewolf]

Doesn't matter if it's encrypted. There are only 10,000 four-digit PIN combinations, and iPhones don't self-destruct after a certain number of tries. Pretty easy to brute force it.

Encryption is a necessary but not sufficient condition for security.

Even if it did self-destruct, that wouldn't help. You wouldn't bruteforce on a live device, you do it offline.

Re:Sounds like

Anyone who thinks that the NSA, CIA, FBI etc...would allow any device into the country (or any device to be built here) that they can't read the data from, you are extremely naive! The average geek may not be able to read the data, but you can bet your A** that these agencies that illegally spy on us CAN!

Re:Sounds like

[Dog-Cow]

iPhones absolutely do "self-destruct" after too many attempts. I am not sure exactly what occurs, but you won't be able to attempt to unlock, and I believe you will need to restore from backup. Backups are encrypted by default.

Re:Sounds like

actually iOS devices do wipe themselves after 10 tries.

Re:Sounds like

[Dog-Cow]

It's not like an anonymous ignoramus who doesn't bother to do any research before posting ridiculous comments to slashdot.

Re:Sounds like

[WorBlux]

The flaws in the WD drives were in the implementation, particularly around key security and key generation. The researchers didn't bother to even try to attack the AES cipher. Why knock in the wall in when the key is laying under the welcome mate?

Re: Sounds like

If there's anything I've learned over the years, it's that announcing that your computer security is impregnable to the general public is usually an invitation for large numbers of people to bash their heads into it until it breaks.

Re:Sounds like

[tripleevenfall]

It's not like Joe or Jane iPhone User can even tell you what this stuff is, let alone that they would make buying decisions based on it if they are still milking an iPhone 3G

Re:Sounds like

[Noah+Haders]

My phone locks out after 10 wrong attempts and needs to be restored. This is a setting in iOS.

Re:Sounds like

[WorBlux]

Considering Apple includes a security co-processor it's not actually that easy. Touch ID wrapped keys are discarded after reboot, 48 hrs, or 5 failed attempts. This authentication method can also be disabled or never activated by the user.

Additionaly the root keys are only held in the co-prossesor and co-mingled with a UID (which even apple doesn't know) as well as the password. You can't begin a dictionary or pin attack without pulling out that UID (and cosidering the co-proccessor is running L4, the only way I know to do it is use nano-meter scale probes to spy on the hardware as it operates. The root of the file-system is encrypted by a key held only in the security co-processor, and the comingled password is used in a sort of chain of trust with the hardware key to secure file-metadata and per-file encyprion keys.

The firmware is designed to resist brute force, and apple fixes every known vulnerability to brute-force it discovers. The update mechanism requires the user password and cannot be rolled back to a prior vulnerable version, So apple can't provide a targeted device update to enable brute-forceing. At best the forensic team will have to sit on the device and hope a new vulnerability is discovered, and hope the data erase after 10 failed attempts was not enabled by the user.

https://www.apple.com/business...

Re:Sounds like

[selectspec]

Simple.

1. Remove the flash.
2. Mount it with a non Apple device.
3. Run a dictionary attack on the password.

With the right equipment, it would only take a few hours depending on the complexity of the user's password.

Am I missing something?

Re:Sounds like

[Midnight+Thunder]

Doesn't matter if it's encrypted. There are only 10,000 four-digit PIN combinations, and iPhones don't self-destruct after a certain number of tries. Pretty easy to brute force it.

Encryption is a necessary but not sufficient condition for security.

Apple recently moved to six-digit codes minimum for all phones, by default. With the presence of finger reader this is not much of an issue.

You can reduce or increase the security requirements of the passcode, but that is a personal choice.

Ref: https://support.apple.com/en-g...

Re: Sounds like

Yes, the security processor handles the passwords, the flash is encrypted with a sufficiently long symmetric key, brute force will take longer theoretically than the heat death of the universe, though every few years it seems to halve. The better attack is against the keychain in the active device. Depending on whether the user updated to a longer pin, then only a few days. But if they did enable a passphrase, then no, back to very long time beyond usefulness to LEOs, assuming they didn't choose correct-horse-battery-staple. Or something equally guessable from their private info.
And if they set wipe after ten wrong attempts, the security processor wipes the saved flash security key, and it's gone.

Re:Sounds like

I see this as a marked strengthening of Apple's platform. If truly not even Apple can unlock or decrypt the phones, then that's a huge benefit to using the platform.

LOL.

A while back some third-world countries tried to ban blackberry sales because they were too difficult to crack.

No country has tried to ban iphone or android sales. That should tell you something.

Re:Sounds like

[tlhIngan]

Simple.

1. Remove the flash.
2. Mount it with a non Apple device.
3. Run a dictionary attack on the password.

With the right equipment, it would only take a few hours depending on the complexity of the user's password.

Am I missing something?

Yep. Starting with the iPhone 4, the flash media is encrypted with a key held in the device memory. That key is encrypted with the device UID key, the user's PIN (if enabled), and an instance key. The encryption key is changed when you select "Clear and Delete Everything" (it throws away the key and generates a new one, and re-encrypts it).

Moving the flash chip to a new device means you lack the per-device key which makes the flash inaccessible.

It's a fairly sophisticated system and short of implementation flaws, it's unbreakable.

Re:Sounds like

[gnasher719]

Even if it did self-destruct, that wouldn't help. You wouldn't bruteforce on a live device, you do it offline.

You would, if you could. But the unlocking requires the presence of the particular processor on that phone, it doesn't work offline. Even with iOS7 devices, Apple could never unlock without the actual complete device.

Re:Sounds like

[Cramer]

And you cannot "root" it either... because you don't know how, doesn't mean someone else hasn't figured it out.

Re:Sounds like

[Cramer]

Everybody things biometric ("fingerprint") security is everything! A fingerprint is one of the easiest thing for an attacker to obtain -- we leave them on everything we touch. It's a trivial matter to reproduce to the degree required by those cheap sensors. (Mythbusters did this years ago with a simple thumb scanner door lock. I've done the same with the optical scanner on many laptops -- without having to lick the paper, even.)

Re:Sounds like

[GNious]

Why knock in the wall in when the key is laying under the welcome mate?

More interesting - why do you have a "welcome mate" ? Just how are visitors greeted?

Re:Sounds like

[Mr.CRC]

Maybe he's a Bonobo?

Re:Sounds like

[antdude]

I don't see how companies cannot access its own products' encrypted data. How do they develop and test to see if they work like Apple's FileVault?

Re:Sounds like

Couldn't they just remotely wipe every iPhone and force everybody to go to the Apple store for them to install the new "Insecure " lOS 9x. The customerrs would hate them and their shares would plummet but the company has so much money they wouldn't even feel it. Plus for the first time some hacker could tap into BO's iphone and relay all his calls to Putin's home.

Re:Sounds like

I see this as a marked strengthening of Apple's platform. If truly not even Apple can unlock or decrypt the phones, then that's a huge benefit to using the platform.

LOL.

A while back some third-world countries tried to ban blackberry sales because they were too difficult to crack.

No country has tried to ban iphone or android sales. That should tell you something.

You bring up an interesting point. Blackberry OS is QNX, which indeed is VERY secure. Yet, the NSA has not said a word about problems tapping into blackberries, and there's still a lot of VIPs and politicians that still use them. Is Blackberry just rolling over for the NSA, then? Or perhaps they've actually *built* a back door into it..

Re:Sounds like

[david_thornley]

They can develop and test by using known passwords.

Re:Sounds like

[antdude]

And if there are technical issues like corrupted encryption, etc.?

Re:Sounds like

[niftymitch]

Everybody things biometric ("fingerprint") security is everything! A fingerprint is one of the easiest thing for an attacker to obtain -- we leave them on everything we touch. It's a trivial matter to reproduce to the degree required by those cheap sensors. (Mythbusters did this years ago with a simple thumb scanner door lock. I've done the same with the optical scanner on many laptops -- without having to lick the paper, even.)

The fingerprint vs. keypad/password is interesting.
What you know is protected..
What you are is not ... they can compel you to unlock the fingerprint but not compel you to divulge your pin (what you know).

Bottom line... Q: "....do you understand these rights .... "
                                            A: No

Re:Sounds like

[niftymitch]

Anyone who thinks that the NSA, CIA, FBI etc...would allow any device into the country (or any device to be built here) that they can't read the data from, you are extremely naive! The average geek may not be able to read the data, but you can bet your A** that these agencies that illegally spy on us CAN!

This is a court attempting to compel Apple.. not the NSA, CIA, FBI.

If by design the device is intended to be secure the only answer Apple can
give in open court is "we cannot". Any other answer is to divulge flaws.
Apple has rolled our a longish number of updates recently. It is moderately clear
that Apple is fixing as many bugs as quickly as they can. Their market
is not restricted to the US and in other jurisdictions the penalty and pain of
privacy laws is quite the thing. This global perspective combined with
liability that ApplePay might generate paints a strong need for enhanced
security and aggressive bug fixes.

Point of sale flaws for a tech company with big money in the bank
are not to be ignored in thinking about this.

Re:Sounds like

[niftymitch]

Simple.

1. Remove the flash.
2. Mount it with a non Apple device.
3. Run a dictionary attack on the password.

With the right equipment, it would only take a few hours depending on the complexity of the user's password.

Am I missing something?

Yes you are missing a lot.
https://www.apple.com/business...
https://developer.apple.com/li...

Apple has done a lot of work to improve their systems.
So has Microsoft, FWIW.

It was public knowledge even before the breach at Sony that system failures and
the naive use of systems by customers would prove to be trouble. Those without
their head up their exit port could read the writing on the wall.

Another less discussed topic is IPv6 and the internet of things.
Some minimum safety existed behind home NAT but with IPv6
this little dirty sand box will get worse. The phones and tablets
in my home all are lighting up IPv6 addresses.

Who knows what the neighbors Nest is doing...

Re:Sounds like

> Maybe he's a Bonobo?

Or maybe he's Australian?

Or an Australian bonobo?

Re:Sounds like

[Midnight+Thunder]

This is probably why Apple requires the passcode after a hard reboot, power on, after being flat or not bent used for more than 24-hours. Nothing is ever totally secure, but balancing convenience and security hardness is always an art and will depend on the usage context and what is being protected.

Re:Sounds like

[WorBlux]

Because Coffee has too much caffeine :-)

Remember - Apple is a hardware company.

So all of you must upgrade your phone to be 'safe'

Re: Remember - Apple is a hardware company.

And for convenience sake it only affects OLDER devices. Seriously, Troll? OS is software, Apple could patch it to a similar level of encryption, or better for the stock price - advise you to upgrade the hardware.

Re: Remember - Apple is a hardware company.

However if you're running older hardware, you must upgrade! Dumbass!

Re: Remember - Apple is a hardware company.

[Feral+Nerd]

And for convenience sake it only affects OLDER devices. Seriously, Troll? OS is software, Apple could patch it to a similar level of encryption, or better for the stock price - advise you to upgrade the hardware.

There is a military axiom about not defending indefensible positions. What would you have Apple do? Patch ancient 2nd and 3rd gen iPhones. Should Microsoft still be patching Windows 2000? Should Fedora still be patching FD12? And don't tell me that old phones being obsoleted because they are unable to run a new OS is some sinister plan by Apple to force users to buy new phones. I have a small pile of old Android phones and tablets that were orphaned (as in: Your device is incompatible with this version of Android) long before the end of their useful life because they could not handle the bloat of the new Android OS. Operating systems get upgraded, hardware becomes obsolete and some people do not bother to upgrade and that is a platform independent fact so if you want to rag on Apple try finding something better to complain about.

Re: Remember - Apple is a hardware company.

[bill_mcgonigle]

> do your homework

ha, at least read Apple's security whitepaper if you're going to tell other people to do so. Newer iPhones (5s and later) have trusted hardware - older ones don't, it's that simple. You need a certain OS level to use it effectively, obviously.

I don't even own any iOS devices and I know this. It's no crime to not stay advised of the market, but if you're going to castigate others you really need to be well-informed.

Re: Remember - Apple is a hardware company.

Totally understand - but how long has Microsoft patched Windows 7? Ancient? the First iPhone was released on June 29, 2007. Is the argument that Apple is relieved of all patching for security/privacy concerns for phones that for the most part are less than 5 years old.

A co-worker just swapped from the iPhone 4s due to battery life - the phone still worked just not all day. I get the disposable life style some people have but the upgrade every two year cycle is not usually for an obsolete OS. It is about a shiny new feature.

I doubt anyone can say with a straight face that Apple, among others - I am look at you Samsung. (recent update on Android is that the oldest phone to get 6.0 is the S5) If one continues to use a phone for one or 5 functions (Phone, Text, casual browse for an address, email, and such) why upgrade? It is the same argument for all the casual home PC users? Why upgrade if you check email, and look at Facebook?

Re: Remember - Apple is a hardware company.

[silentcoder]

In most cases, if you root those devices there are third-party ROMS that can run much more recent versions of Android on them. No such pathway exists for apple users.

Re: Remember - Apple is a hardware company.

[Old97]

OS 9 - the current version runs on devices as old as the 4S. I believe the 4S was introduced in 2011. That's a lot longer than 2 years.

Re: Remember - Apple is a hardware company.

[bbelt16ag]

can you even root them anymore? I can't do it to my motoX

Re: Remember - Apple is a hardware company.

[vux984]

OS 9 - the current version runs on devices as old as the 4S. I believe the 4S was introduced in 2011. That's a lot longer than 2 years.

It doesn't matter when it was *introduced*, what matters is when it was *discontinued* -- because people were still buying them new up until that day.

The iphone 4 was discontinued in September 2013. That means, yes, ios9 was released before some iphone 4 users had their phones for 2 years.

And the iphone 4 wasn't eligible for ios8 either which was released a year ago.

So anyone who bought an iphone 4 in mid-late 2013 had support for their phone dropped within a few months of buying it.

Apple is pretty good about updates compared to most android vendors. But there is lots of room for improvement at Apple too.

Re: Remember - Apple is a hardware company.

You mean "runs" on devices as old as the 4S.

If you've been paying attention to the very few sites that bother testing on older devices, you'd discover that iOS 8 basically only ran on the iPhone 5 or better and that iOS 9 essentially only runs on the iPhone 6 or better. In both cases there are two major issues anyone attempting to use an older phone will run into: first, the UI is designed for the larger screen size of the newer phones, so there a lot of unnecessary scrolling on the older phones. Worse, though, the "newer" OSes require the faster hardware and run like crap on the older phones. And that's ignoring the loss in battery life that "upgrading" will cost you.

Sure, it's possible to install them on older phones ... but you really wouldn't want to. Not if you intend to keep on using the phone.

Not that you have a choice if you want security updates...

Re: Remember - Apple is a hardware company.

[corychristison]

Which version of the Moto X? I've got a shiney new (released end of Aug. 2015) Moto X Play (not available in US)... I have been following an XDA Developers thread where they are putting together a CM12 build for it. Seems they were able to root and replace the bootloader quite easily.

Re: Remember - Apple is a hardware company.

[Pieroxy]

I'll have to call you a troll. I have an iPhone 4S since 2011 and it runs iOS9 just fine. Sure, there is some lag here and there and the screen is cramped, but I'm much better off with iOS9 than I was with iOS7. I actually gained in battery life.

So, there's that.

Re: Remember - Apple is a hardware company.

[Rosyna]

Don’t have Trusted Hardware? Hmm? In what way don’t older iPhones have trusted hardware?

Re: Remember - Apple is a hardware company.

[MachineShedFred]

Yeah, because an operating system for a computer platform where performance doesn't double every year, and networking standards don't change every 3 years (desktops / laptops) is exactly the same as an operating system for a platform where they do (mobile telephones)

How long has Microsoft continued to support Windows Phone 7? Oh, right until Windows Phone 8 came out. And how many of those WP7 devices got upgrades to WP8? Not very many, if any at all.

So even with your Microsoft example, it's a double standard.

Re: Remember - Apple is a hardware company.

[UnknowingFool]

Off the top of my head, is the boot ROM secured? Is there hardware encryption of the flash storage? Can the encryption be defeated by replacing hardware? For example can you simply remove the flash and put it on another phone to access it? Can you replace the boot ROM to trick the phone in thinking is being launched/loaded correctly?

Re: Remember - Apple is a hardware company.

[Kjella]

Long story short, PIN codes and such aren't long enough to be cryptologically secure so if you can copy the state you can brute force it easily. So what happens is you have a trusted chip that takes a PIN on one end, returns the AES key to decrypt on the other end. This chip has a countdown so if you enter the wrong PIN too many times, it'll wipe the key. It's also tamper-proof so if you try to open up the chip and alter the countdown or read the key directly it'll self-destruct. Essentially Apple is using the same kind of chip as "Trusted Computing"/"Secure Boot" uses to protect the private keys, nobody is supposed to be able to be extract them. Not me, not you, not Apple, not the courts, not the NSA. Or so we hope. What I guess this means is that older models don't have have that kind of purpose-designed hardware. If Apple wants, they can manage to read the PIN-encrypted key, which can then be brute forced, which can then be used to decrypt the rest of the device. There's not really any fix for that unless you have hardware support. Or you really want to type in >128 bits of entropy each time you unlock your phone.

Re: Remember - Apple is a hardware company.

It doesn't matter when it was *introduced*, what matters is when it was *discontinued* -- because people were still buying them new up until the days/weeks following discontinuance.

FTFY. Discontinued doesn't mean immediately no longer available. Discontinued means no longer in production. Once something is discontinued, it takes days, weeks, or sometimes even months before current stock is sold.

Re: Remember - Apple is a hardware company.

[Fahrvergnuugen]

The iPhones that have a thumbprint scanner have a "Secure Enclave". This hardware is used in conjunction with the software to make it impossible to unlock the device without the passcode.

Re: Remember - Apple is a hardware company.

[swillden]

Long story short, PIN codes and such aren't long enough to be cryptologically secure so if you can copy the state you can brute force it easily. So what happens is you have a trusted chip that takes a PIN on one end, returns the AES key to decrypt on the other end. This chip has a countdown so if you enter the wrong PIN too many times, it'll wipe the key. It's also tamper-proof so if you try to open up the chip and alter the countdown or read the key directly it'll self-destruct. Essentially Apple is using the same kind of chip as "Trusted Computing"/"Secure Boot" uses to protect the private keys, nobody is supposed to be able to be extract them.

It's not quite that good. Secure Enclave isn't a separate chip, and it's not tamper-reactive. Secure Enclave is Apple's application of ARM's TrustZone, which provides a secure virtual CPU. Everything runs on the main CPU, but in a mode that provides access to all of the hardware, while the normal OS is restricted in what it can access. For example, pages of memory can be marked secure, in which case the MMU will not allow the normal (non-secure) OS to access them.

Done right, TrustZone is invulnerable to software-based attacks and can be somewhat resistant to hardware-based attacks.

Re: Remember - Apple is a hardware company.

MS Supports its OS' for 15 YEARS, XP EOL was JUST last year. An "ancient" 2nd or third gen iPhone is what? 4 or 5 years old? False equivalence much?

As for android's support. Yep it's just as stupid as Apples, but in Androids defence they have seen major changes to the entire kernel source from dozens of vendors and 100s of contributors. Apple has only Apple using the same Kernel base, from the same developers, with the same hardware components.

Re: Remember - Apple is a hardware company.

[StevenMaurer]

The key here is "somewhat". I specifically recall an article about a guy using an electron microscope to retrieve information like this. It would be extremely hard to do for average people though, and Apple is well within its rights to tell the Judge that if he wants this information, he can pony up the several million dollars it would take to extract the key.

Or talk to the NSA, if it were a national security matter.

Re: Remember - Apple is a hardware company.

Read the apple security paper https://www.apple.com/business/docs/iOS_Security_Guide.pdf

That tells you exactly how everything works. This is not security by obscurity. No, you cannot swap flash around to read it, yes it’s hardware encrypted and the keys used are a combination of a unique hardware ID (within the SoC) and the user passcode.

Secure Enclave is not trustzone, it’s a separate CPU on the same die.

Re: Remember - Apple is a hardware company.

I'm calling bullshit on that. First off, the people who bothered testing iOS 8 and iOS 9 on an iPhone 4S - using actual tests and actual metrics - measured a decrease in battery life. I've personally used iOS 8 on an iPhone 4S and it was nearly unusable with the one-two knockout punch of not enough room to see the UI and not enough power to run things at anything approaching a reasonable speed.

You sound like the people defending Chipgate. The people who bothered measuring things show a marked decrease in battery life in iPhone using the Samsung part. The people who don't bother measuring things say "it's about the same."

Weird how measuring things can turn out to have wildly different compared to people who are just guessing.

Re: Remember - Apple is a hardware company.

So, you agreed with what he said but called him a troll...

Re: Remember - Apple is a hardware company.

[thegarbz]

Root what? Are you basing your view of an entire ecosystem on a single device from a single vendor? From what I've seen there hasn't been a single phone by Samsung, HTC, or from the official Nexus line that didn't have a root exploit (and in the case of some Nexus devices a written guide in Android's official docs of how to root).

Save for a few carrier specific variants, but that is only something that happens in the USA.

Re: Remember - Apple is a hardware company.

[swillden]

I specifically recall an article about a guy using an electron microscope to retrieve information like this.

Electron force microscopy is one way, but there are others, some that are much cheaper and more accessible. I may be giving a Black Hat talk next year about one of them, so I won't say any more for the moment :)

Re: Remember - Apple is a hardware company.

[swillden]

tell the Judge that if he wants this information, he can pony up the several million dollars it would take to extract the key.

Sorry, should have responded to this as well. Even if you do the EFM attack, it won't cost several million dollars. You can rent the time required on the necessary equipment for a few thousand dollars, at most. Many grad students could get it for free.

Re: Remember - Apple is a hardware company.

[WorBlux]

A few points.

People have extracted key from "secure processors" via hardware probes, but it is very difficult especially on the newest-gen lithography

And the apple model provides more guarantees than that. It layers a pin-derived key and a generated on-chip key at different levels of the file system.

The Secure Boot protocol does not guarantee secure key storage and does not require a specialized chip to implement. It's strongly recommended you rely on hardware mechanisms to verify the firmware, but such mechanisms are distinct feature and the nature of secure boot is that it can't actually verify the firmware on its own. Apple's security coprocessor is similar to a TPM but uses it's own unique API's.

Re: Remember - Apple is a hardware company.

Many independent shops replace the 4S battery for around fifty dollars, two screws to remove the back, then battery is accessible to replace.

Re: Remember - Apple is a hardware company.

MS owned Nokia and eliminated their OS. Do they still patch it? MS doesn't support their music player software or provide a path for migrating to another player. Orphaned DRM on the way. Apple still allows content from the original iPod to play ... The point is the market defines how long you support will last based on cost and profit. MS was petitioned for almost every desktop OS to lengthen support because the customers demanded it. iPhone customers want innovation, and the upgrade rate is phenomenal.... There is no demand to support iOS 9 on iPhone 3Gs even though it could, but without a lot of hardware supported features being available...

Re: Remember - Apple is a hardware company.

um.

If the device is doing the same task list (mail, txt, pictures, etc) on day one of ownership and day seven hundred - why should the user not expect to receive security updates?

MS continued support - but not to the point of adding features.

Re: Remember - Apple is a hardware company.

[BronsCon]

Thank you for making this point more concisely than I've done in the past. I never actually looked as far back as the iPhone 4, so I'll remember that data point for future reference.

Re: Remember - Apple is a hardware company.

[Pieroxy]

Well, numbers don't matter in the end because most of this is just a matter of perception. You can show me that Booting is much slower on iOS9 than iOS8, but I so rarely boot my phone that I don't care. Apps start much faster. The keyboard pops out slightly slower. There are differences and if you want to only measure the things that are slower, you'll have cold hard numbers and still a flawed comparison. So measuring things is only part of the experience.

If iOS8 was almost unusable on your iPhone 4S, then I'm sorry. I've lived with it for about a year and found it fine. It was sure not as snappy as iOS7, but it brought some cool things and I found the deal acceptable.

As far as battery life is concerned, I can go full-day without recharging now which was not the case with iOS8. True, some of it is due to the fact that whan I reach 20% of battery, the iPhone switch to "energy saving" mode (or something like that) which did not exist in iOS8. It may be artificial, but it works. And it works well.

So, as I stated, and this is a subjective opinion, if I could switch back to iOS8 ot iOS7, I wouldn't. I'd keep iOS9. The rest is irrelevant.

Re: Remember - Apple is a hardware company.

[Rosyna]

While the previous models did not have something called the “Secure Enclave” they’ve has dedicated security hardware/features/encryption since the iPhone 3GS.

Re: Remember - Apple is a hardware company.

[david_thornley]

Also, much of the security is from specially designed hardware. I don't know how far back that hardware goes.

Re: Remember - Apple is a hardware company.

[Aqualung812]

So anyone who bought an iphone 4 in mid-late 2013 had support for their phone dropped within a few months of buying it.

Yet, they paid a fraction of what one cost new. This is why.

Re: Remember - Apple is a hardware company.

[niftymitch]

The key here is "somewhat". I specifically recall an article about a guy using an electron microscope to retrieve information like this. It would be extremely hard to do for average people though, and Apple is well within its rights to tell the Judge that if he wants this information, he can pony up the several million dollars it would take to extract the key.

Or talk to the NSA, if it were a national security matter.

Done correctly even if a million dollars was on the table extraction of data would be unlikely.

Judges like the audience of CSI fail to grasp how difficult these requests are.
Most importantly they fail to grock that some points of attack are being assaulted
by bot-farms/botnet on the internet. Some of these collections of machines under the control
of "bad" guys represent millions of machines (hundreds of millions of $$). The size of these
botnets averages closer to 20,000 machines but that is a command and control thing. Still at $200
per machine 20,000 = $4,000,000. Most interesting machines a closer to $1000 so $20million bucks
of networked hardware.

i.e The threat model that Apple, Microsoft and others are attempting to address is very real,
very big and demands some of the strongest technology to address. This issue is global
and larger than the single case in front of this judge. Not just national and corporate security but the
security of all nations and corporations.

Re: Remember - Apple is a hardware company.

[vux984]

Yet, they paid a fraction of what one cost new. This is why.

They still paid a lot.

I can give actual pricing from 2013.

But today the iphone 6S is the new hotness. You can still buy a new iphone 5c which is 3 generations back. And an 8GB 5c costs $480 at one of the local carriers. Anyone buying one is still perfectly reasonable if they expected to get security updates for a couple years from today.

Re: Remember - Apple is a hardware company.

Thank you for making this point more concisely than I've done in the past. I never actually looked as far back as the iPhone 4, so I'll remember that data point for future reference.

Maybe you should buy an Android phone, where hardware encryption is still something hardly a phone has. And certainly wasn't available when Apple introduced it in and build it into every iOS device made since then.

Re: Remember - Apple is a hardware company.

[BronsCon]

Does the Nexus 6 I've had practically since it was released count? It's had hardware encryption since support for the 805's coprocessor was added in 5.1.

Re: Remember - Apple is a hardware company.

In most cases, if you root those devices there are third-party ROMS that can run much more recent versions of Android on them. No such pathway exists for apple users.

Neither is there one for users of more than 90% of Android phones. Don't pretend with that "most" thing - that's a boldfaced lie.

Re: Remember - Apple is a hardware company.

[silentcoder]

Most refferred to phone models not to users. And if you really believe that then there could be quite a lucrative business selling phone rooting to users.

Re: Remember - Apple is a hardware company.

Does the Nexus 6 I've had practically since it was released count? It's had hardware encryption since support for the 805's coprocessor was added in 5.1.

Yeah, naming one phone model out of thousands of models having it counts as most phones not having it. Unless you can name a couple hundred models that do too, I'm right.

Not to mention that people had to disable the encryption on their N6 because it was so slow.

Seized phone

1) If the phone hadn't been seized it would have been trivial for Apple to get the password since it controls the software running on the phone remotely.
2) Why they want to avoid compelling the owner to unlock the phone is not stated. Is he likely to challenge the demand on legal grounds as an illegal search? Isn't that his right? Why the attempt at a reach-around here?

Really think of Carrier IQ, think of its ability to capture everything you do from key presses to app usage to files, to log everything. That is still present on every handset. Samsung in particular absolutely load their phones with spyware that can be run simply from the GSM connection remotely. Apple will have exactly the same. Because behind the scenes Apple was just another company that signed up to PRISM, and so their handsets will be exactly the same, even if they can't reveal that to a Judge.

Made in USA = backdoored, Snowden showed us that.

Re:Seized phone

Theartre, indeed. We are safe now, we care about our consumers rights.

Re:Seized phone

[NoBrakes58]

2) Why they want to avoid compelling the owner to unlock the phone is not stated.

Because legally compelling someone doesn't mean that they will unlock it, just that they'll face further punishment if they don't unlock it.

Re:Seized phone

[NoBrakes58]

Oh, and because it could fall under 5th amendment right to not incriminate yourself. The conversation would be:

"Unlock this."

"Haha. No."

"Oh... well, then..."

but with more legal jargon.

Re:Seized phone

Oh, and because it could fall under 5th amendment right to not incriminate yourself.

Unless you use the fingerprint lock... which courts have ruled isn't protected by the 5th.

Re:Seized phone

[peragrin]

In iOS 9 ( at least)you have to enter you passcode once every 48 hours even with finger print lock.

I have gone a weekend without entering the passcode and suddenly couldn't use my fingerprint anymore.

I wish this part was better documented because it then becomes trivially easy to hit the wall between mandatory unlock and the passcode timer.

Re:Seized phone

[peragrin]

Also you need the passcode upon booting. Simply reboot the phone before handing it over to the police.

Re:Seized phone

[GuB-42]

Made in USA = backdoored, Snowden showed us that.

No he didn't. Stop generalizing.
He showed us surveillance from the NSA. How they did MITM attacks in unsecured parts of networks behind SSL gateways, how they may (or may not) have planted a backdoor in an already dubious random number generator, how they analyze plaintext data (like metadata). Basically, how they do their spying. I also think it is safe to assume they have all the exploit arsenal that blackhats have.
Mandatory backdoors and subpoenas are a legal thing, so for this part, you should read the law instead of Snowden's stories. And while the government may abuse its right to spy, it is still doing it within a legal framework.

Re:Seized phone

[NatasRevol]

Really think of Carrier IQ, think of its ability to capture everything you do from key presses to app usage to files, to log everything. That is still present on every handset

Except iPhones for the last ~4 years.

http://allthingsd.com/20111201...

Re:Seized phone

[dhaen]

Made in USA = backdoored, Snowden showed us that.

Lucky they're made in China then!

Re:Seized phone

[david_thornley]

Good luck with that. I've owned my current iPhone for two years now, and I've gotten that fingerprint lock to work exactly three times.

Re:Seized phone

Good luck with that. I've owned my current iPhone for two years now, and I've gotten that fingerprint lock to work exactly three times.

Well, if you removed your fingerprints with acid, like many criminals do, then yeah. That can happen.

Re:Seized phone

Let's assume the iPhone has that NSA spyware. Does an agency like that needs to disclose how to crack an arbitrary iPhone to Apple, so Apple the private company can spy any phone at any time at their own discretion?

What those guys is saying these days is that the spying is half getting what you want, half 'protecting' them. They want control, not a simple disclosure. I guess that 'signing up to PRISM' means that NSA has staffs who retired very early for no reason that working at outsourced defense contractor. He might have moved from desert in Nevada to California, near Cupertino. He might write some innocent looking device driver or draw a .png file for Photos icon that flips into spy machine. And nobody at Apple or Foxconn will know that for 30 years until one of them seek for his career as a novel writer. That's how spying works.

That, Detective, is not the right question

[rmdingler]

Impossible or not, is it a private company's (or individual's) duty to engage in the evidence-gathering duties of law enforcement?

I'm not sure the judicial conviction of this one suspect is worth granting law enforcement the unfettered ability to deputize anyone, any time it's convenient.

Re:That, Detective, is not the right question

It is their duty when the court orders it so as part of evidence gathering. Law 101, dude.

Re:That, Detective, is not the right question

let me finish that : In specific cases against specific identified people (accounts).

Companies are making this stand because of requests for everything. "Just give us a copy of all the data, we'll leave you alone and sort it ourselves."

I'm curious if the headline is the exact wording used by apple (unlikely) as it implies there may be an access method that was built in. The encryption wouldn't be broken then.

Re:That, Detective, is not the right question

[gstoddart]

Because, apparently, it is now "un-American", or straight up illegal, for private companies to NOT be part of the spy apparatus.

So, either you accept the provisions of stuff like the PATRIOT Act which says every company is required to participate and keep it secret ... or you have to somehow get a court to overturn that (or have the lawmakers repeal it).

But, make no mistake about it, in the present situation, spying is a given, the requirement for corporations to help is real, and the expectation that making something you can't help them break into is just helping terrorists.

So, yes, this may not the be the right question. The problem is to whom are you supposed to ask the right question?

Because apparently most Americans now accept this crap as perfectly normal, and have fully embraced that if you have nothing to hide you have nothing to fear.

The cope creep of national security and terrorism to common day to day crimes was inevitable. And now law enforcement expects to bypass any legal controls, and get what they wish because they want it.

Papers please, comrade. That particular cat has been out of the bag for a while.

Re:That, Detective, is not the right question

[swb]

I'm curious if the headline is the exact wording used by apple (unlikely) as it implies there may be an access method that was built in. The encryption wouldn't be broken then.

It probably applies to pre-iOS 8 devices where data protection/whole system encryption wasn't enabled by default but the device is locked by a passcode. IIRC, iOS 8 did more than just enable data protection by default, I think some kinds of changes were made to strengthen the data protection process.

Apple are probably referring not just to whole device encryption but weaknesses in pre-8 encryption processes that allow them to extract decryption keys.

Re:That, Detective, is not the right question

Impossible or not, is it a private company's (or individual's) duty to engage in the evidence-gathering duties of law enforcement?

Yes, it is.. if you point your gun at their face and say "do my job, or else." It can be anyone's obligation to do anyone else's job.

There is no theoretical upper bound to power. There's only the question of how much power you have so far. And right now, 99% of American voters think the government does not yet have nearly enough power, and we all need to do much more to give more of our power to them.

Re:That, Detective, is not the right question

In specific cases against specific identified people (accounts).

What, all iPhone owners isn't targeted enough for you? Well, the judges with all their legal training have altered the deal. Pray they don't alter it further (but, they probably will).

Re: That, Detective, is not the right question

For devices that can and do run iOS 8, no. For devices that do and can run only up to iOS 7, there is a built in mechanism that allows access to certain limited "active data," such as recent calls and SMSs, and one or two other types of data I can't recall. The full details are in the Apple Law Enforcement Guidelines which you can access from their website.

Re:That, Detective, is not the right question

Papers please, comrade.

I'm thinking it's more like: Papers please, consumer.

Re:That, Detective, is not the right question

Well. Not 99%. The small, constitutionally limited government crowd is far larger than 1%. Although I wish it had more advocates on both sides of the aisle.

Re:That, Detective, is not the right question

[kilfarsnar]

Impossible or not, is it a private company's (or individual's) duty to engage in the evidence-gathering duties of law enforcement?

Yes, it is.. if you point your gun at their face and say "do my job, or else." It can be anyone's obligation to do anyone else's job.

There is no theoretical upper bound to power. There's only the question of how much power you have so far. And right now, 99% of American voters think the government does not yet have nearly enough power, and we all need to do much more to give more of our power to them.

Pointing a gun at someone does not obligate them to do anything. It's a threat, but the one being threatened does not have to acquiesce. They can choose to not obey and call the bluff. It may cost them their life, but there is still no obligation.

Re:That, Detective, is not the right question

[Impy+the+Impiuos+Imp]

Iirc the government cannot force a backdoor or a weak standard, export aside, because the SC ruled citizens retain the right to encrypt as part of the right to speech, for encrypted speech is speech in and of itself.

Re:That, Detective, is not the right question

Is there a Wikipedia article discussing this and answering basic questions? For example, is the private company or individual compensated by the court for their work?

Re:That, Detective, is not the right question

[gstoddart]

because the SC ruled

You seem to be under the illusion they care what either SCOTUS has said, or what the Constitution says.

I'm not entirely sure that's true any more.

Law enforcement increasingly doesn't know, or doesn't care what the law and the courts have said. They just want whatever is expedient.

There's just far too many examples of them completely ignoring stuff to believe they still care about what is strictly legal. They seem to think legal is whatever they say it is.

Re:That, Detective, is not the right question

This is one of many reasons that I'm embarrassed to be an american (intentionally not capitalized) and look forward to convincing my children to move to an actual first world country

Re:That, Detective, is not the right question

[NatasRevol]

This is the exact reason why Apple made changes to their encryption and is actively fighting it.

Are any other phone companies doing the same?

Re:That, Detective, is not the right question

[Anubis+IV]

[Engaging in evidence-gathering duties] is their duty when the court orders it so as part of evidence gathering. Law 101, dude.

No, it is not. There's a big difference between providing information they have, which is their legal duty, and gathering information that they wouldn't otherwise have, which is not their legal duty. That's why plea bargains that provide immunity are a thing: they can't order you to do their job for them, but they can provide strong incentives for you to do so.

Re:That, Detective, is not the right question

you sucker. Do you have any evidence to support your position? Apple moves only to make money. The "apple ecosystem" and the efforts they make to prevent jailbreaking are proof positive that their only ethic is more profit. You've been trolled by dirty capitalists.

Re:That, Detective, is not the right question

[Kjella]

you sucker. Do you have any evidence to support your position? Apple moves only to make money. The "apple ecosystem" and the efforts they make to prevent jailbreaking are proof positive that their only ethic is more profit. You've been trolled by dirty capitalists.

Of course. But if they want to sell to non-US users having encryption that actually protects privacy might be a plus. We care just as much if not more than Americans, particularly since we got fuck all legal recourse if the NSA decides that all my data belongs to them. Nobody expects Apple to be doing it out of the goodness of their heart, they're doing it because it's good business. And now that the cat is out of the bag, if the US tries to push an official government backdoor that's fine with me because it won't sell in the rest of the world. It only worked as long as it was a secret and now it's not.

Re:That, Detective, is not the right question

[ColdWetDog]

You act like this is new - it's not. Law enforcement has always worked like this.

We have checks and balances (Police balanced by courts balanced by legislatures) for this problem.

Re:That, Detective, is not the right question

[ColdWetDog]

you sucker. Do you have any evidence to support your position? Apple moves only to make money. The "apple ecosystem" and the efforts they make to prevent jailbreaking are proof positive that their only ethic is more profit. You've been trolled by dirty capitalists.

you idiot. Do you have any evidence to support your position? Apple likes to make money. One way of doing that is to give it's customers things they want.

Re:That, Detective, is not the right question

[Matheus]

I typically am opposed to Apple's way of doing business. This action I applaud. As many commenters have already stated, "Impossible" is not possible when it comes to hacking BUT for Apple to rebuke the USGOV in saying they can't is a great example to set.

That being said: It's also entirely likely that they are making a big show of saying no while quietly working with the man behind the scenes. "It's way better for the public to think we can't do this and helps us sell iDevices but here's the magic tool you need to pwn your citizens."

Anyway..

Re:That, Detective, is not the right question

[WaffleMonster]

So, either you accept the provisions of stuff like the PATRIOT Act which says every company is required to participate and keep it secret ... or you have to somehow get a court to overturn that (or have the lawmakers repeal it).

But, make no mistake about it, in the present situation, spying is a given, the requirement for corporations to help is real, and the expectation that making something you can't help them break into is just helping terrorists.

I remember Mr. Comey on TV saying as much. He certainly has made it clear that he does not think a lock the FBI can't open should be permissible.

We also know patriot act requires production of "any tangible thing" as if the "third party doctrine" did not already.

Yet there is a difference between being compelled to assist with opening a lock or providing information to advance a specific "investigation" vs being ordered by government not to produce a lock that can't be opened in the first place. The authorities to gather evidence stem from an "investigation" (Unless your the NSA collecting everyones call records illegally). If there is no investigation you could still be limited by regulation or practically by export restrictions if intending to sell products globally but all such restrictions would be public knowledge.

A judge or LEA can't just go to you and say do this or hand over that in a vacuum. It needs to be in the context of an investigation**.

**Qwest CEOs notwithstanding.

Re:That, Detective, is not the right question

[micahraleigh]

Ultimately, that is true. Ancient jurisprudence has deferred to this (e.g. Hammurabi), perhaps for the better. In the modern world that's seen as coercion and adjusts the legal liability (i.e. sentencing).

Re:That, Detective, is not the right question

[Ravaldy]

Because apparently most Americans now accept this crap as perfectly normal, and have fully embraced that if you have nothing to hide you have nothing to fear.

That's because they either don't care enough or they don't understand the issue. Most tech savvy people understand what power comes with access information. I'm willing to trust the authorities within reason but I will protect my data just in case.

I've said this before and I still stand by this belief that the user should have the right to protect his data. Should this person be in a position where access to the data can prove him innocent OR guilty, he should have to provide access to the data with the risk of being proven guilty should he not. I understand this is tricky but I think the current system would allow for the possibility to discard the request if the defendant has grounds to prove it is not required.

My 2 cents.

Re:That, Detective, is not the right question

[Solandri]

Impossible or not, is it a private company's (or individual's) duty to engage in the evidence-gathering duties of law enforcement?

It was in the past. For example, the phone companies (well, phone company initially) set up their networks to make it easier for law enforcement to wiretap if they showed up with a warrant.

But given recent publicity about NSA data collection, all of that public trust and goodwill is probably gone now.* I don't think playing the "Apple is being a bad corporate citizen!" card is going to sway many opinions. If anything people will probably end up more supportive of Apple for giving the middle finger to the Feds trying to pry into things they're not supposed to without a warrant.

* The NSA actually helped make DES stronger in the 1970s. While the algorithm was being developed, the NSA told them "don't use keys within this range of numbers." The developers were a bit suspicious, but went ahead and removed those keys. 20 years later, differential crytanalysis was discovered by the academic community. And lo and behold, the keys most vulnerable to it were precisely the ones the NSA said not to use. That bought the NSA a lot of goodwill, and most security researchers were willing to give them the benefit of the doubt. Up until the recent rumors about NSA data collection and possible tampering with elliptical curve cryptography standards to weaken it. Snowden's revelations have pretty much evaporated any remaining goodwill the NSA had with the security community.

Re:That, Detective, is not the right question

Apple is public company

Re:That, Detective, is not the right question

[rmdingler]

I like to believe the tech companies are made up of people like the ones from Slashdot who are tired of the clammy-handed government overreach.

Of course, I recognize the convenience of my belief system; as, if there are no corporations on the side of privacy in a Corporatocracy, we are truly SOL.

Re:That, Detective, is not the right question

[rmdingler]

Very interesting... I had never considered the NSA had once been thought of in good terms by the security community.

Do you suppose anyone's left employed in public relations at the NSA?

Re:That, Detective, is not the right question

> Apple likes to make money. One way of doing that is to give it's customers things they want.

Heh. You ARE old-fashioned! :)

Re:That, Detective, is not the right question

Efforts to prevent jailbreaking are called security. The entire point of TFA.

You idiot.

Re:That, Detective, is not the right question

[david_thornley]

A private company can be required to turn over what they already have. They can't be required to turn over what they don't have. They are not normally required to keep information longer than their policy says: this is why the American Library Association recommended that librarians throw away all information on who checked something out when the item is returned (gotta love those librarians). They can be required to keep information pertaining to a particular case, but not in general. CALEAis a law that requires that telecommunication systems must be designed to they can be tapped by law enforcement, but the contents of an iPhone are not actual telecommunication. There is no other way to force a private company to design back doors into their devices.

Apple also has an image to preserve here, and they can afford enough lawyers to fill the courtroom sufficiently to suffocate the judge.

Re:That, Detective, is not the right question

[david_thornley]

"They" don't necessarily care what the Constitution says, and most private citizens can't resist "them" in a plethora of lawsuits. Apple does care about the Constitution for this purpose, and Apple can probably outlawyer the Justice Department.

Re:That, Detective, is not the right question

[strikethree]

"Because apparently most Americans now accept this crap as perfectly normal, and have fully embraced that if you have nothing to hide you have nothing to fear."

The media campaign is clearly working. What makes you think "most Americans" accept anything as perfectly normal. Have you performed studies?

As long as most people think that most people are okay with it, nobody will fight it. The media campaigns are working.

Bad guys

This is what encryption is for. Keeping data from the bad guys.

Re:Bad guys

[kilfarsnar]

This is what encryption is for. Keeping data from the bad guys.

So, it has come to this. Law Enforcement are now the bad guys. I'm not saying I disagree (at least not in all contexts), but it is a sad state of affairs in a once promising nation.

Re:Bad guys

What do you mean "now" ? To a large extent they always have been. Even the Red Coats were 'Law Enforcement'.

Re:Bad guys

[NatasRevol]

Frankly, law enforcement did this to themselves.

No pity here.

Re:Bad guys

Did they, or did we make them do what they do to us?

Re:Bad guys

Did they, or did we make them do what they do to us?

The bruises on our face say yes, yes we did make them do it.
We know how angry they can get, and next time we'll remember not to make them so mad.
At least they didn't hit the kids this time.

Re:Bad guys

Dumbest fucking reply I've ever seen on here.

Power hungry assholes are power hungry assholes.

Re:Bad guys

[Fjandr]

Did we, or did they make us make them do what they did to us?

Anything is possible

[cdrudge]

Anything is possible. The impossible just takes longer to figure out.

Besides, obligatory XKCD reference

Re:Anything is possible

[wonkey_monkey]

Anything is possible.

So it's impossible for anything to be impossible?

Re:Anything is possible

[ray-auch]

Anything is possible.

So it's impossible for anything to be impossible?

No, but some "impossible" things may just be very very hard and take a long long time, and that also means it may take a long, long time to show that it definitely can't be done.

Apple should use the deep thought defence:

Judge: your task is to decrypt this phone
Apple: tricky
Judge: but can you do it?
Apple: yes, but it may take a while
Judge: how long?
Apple: approximately seven and a half million years

Now find an expert witness to prove Apple is wrong...

Re:Anything is possible

[wonkey_monkey]

You missed out the best bit:

"Seven and a half..."
"What, not til next week?"
"...million years."

Re:Anything is possible

[cdrudge]

So it's impossible for anything to be impossible?

Possibly.

Re:Anything is possible

Anything is possible. The impossible just takes longer to figure out.

Oh, it's possible. It just requires them to identify the target before they take the phone.

• Law enforcement gets a warrant and serves it on the cell service.
• Law enforcement obtains the MEID or IMEI.
• Law enforcement gets a warrant and serves it on Apple.
• Apple adds code in a software update that checks the MEID or IMEI whenever the user enters his/her passcode, and if it matches, writes that passcode to an unencrypted location (alongside the OS itself) as soon as the user types it in, and then pings a server to tell it that the passcode is in the clear. (*)
• Law enforcement waits for the ping.
• Law enforcement gets a warrant and confiscates the phone.
• Law enforcement uses a tool to extract the unencrypted passcode.
• Law enforcement types in the passcode.

Obviously, this is heavyweight enough that they aren't going to do it for just any random criminal, which is probably the idea.

(*) It might even be possible for Apple to deliver the update only to a specific targeted device. I don't know what data Apple includes in the software update request. However, if a single device shows a software update that nobody else is talking about, it might raise suspicion.

Re:Anything is possible

[david_thornley]

There are propositions in any mathematical system sophisticated enough to use integer arithmetic and first-order predicate logic that are impossible to prove.

Cue new legislation in 3...2...

[NotDrWho]

Introducing the "Mom, Freedom, and Apple Pie Anti-Terrorist Act of 2015," that requires that all phone manufacturers build in government approved backdoors into every phone. And after a few Democrats and Rand Paul pretend to object to it, and briefly pretend to stand up against it, it will be approved by Congress with a unanimous vote and signed by the President (who will also pretend to give a flying fuck about privacy concerns by pinkie-swearing that it won't be abused).

Re:Cue new legislation in 3...2...

[schwit1]

I have phone service from country_A with a cell phone I bought in country_B and while I'm traveling in country_C I'm talking to a person from country_D who is in country_E and his phone was bought in country_F.

So what government gets to control the backdoor on my phone?

Re:Cue new legislation in 3...2...

[gstoddart]

All of them? At the very least, with data sharing agreements they'll all get access to it.

Are you still laboring under the illusion pretty much all the governments are colluding to fuck over their citizens rights?

Re:Cue new legislation in 3...2...

The entire alphabet of course.

Re:Cue new legislation in 3...2...

all of them plus Five Eyes

Re:Cue new legislation in 3...2...

You're still being bent over the table, and your 'backdoor' is still going to be violated. Does it really matter which one it is?

Re:Cue new legislation in 3...2...

CISA is that you?

Can Apple push extra software on the device?

[Gaygirlie]

On Android you can browse the Play Market on a desktop-browser and remotely install applications on your phone, with no confirmation or anything needed on the phone. This applies even if you have automatic updates disabled. Can you do the same on iOS-devices? If you can, then what would be stopping Apple from sending an small application this way to the device that unlocks it? This way there's no decryption needed, no passwords or anything, since they basically have a backdoor behind it all already, and Apple obviously does have access to all the low-level APIs and everything needed.

Re:Can Apple push extra software on the device?

[jaseuk]

Yes sure, you can enroll an iOS device in MDM and then send it an unlock command. The end-user has to agree and approve this first of all of course.

Apple have built the system so that it is immune to a direct unlock. Apple and Microsoft have been giving clear signals that they no longer want to be stuck in the middle of international legal / court disputes requiring them to unlock under court order. So they've re-engineered their encryption and unlock protocols so that they no longer hold any master keys / unlocks etc. This also makes these devices useless when stolen.

The only slightly questionable part is wether they can access any cloud backups. Although that might not be what the court asked.

Jason.

Re:Can Apple push extra software on the device?

[silas_moeckel]

That would realy depend if it was running or not. If it was fully powered down it needs credentials to decrypt the storage and finish booting (I am assuming they are similar to android devices). If it's powered up and connected to even wifi what's stopping it from getting a remote wipe command?

RF shielding is fairly easy, they make evidence collection bags for just this purpose they even keep the phone charged. Both major OS's have build in remote wipe capabilities. So you would need the carrier and the OS manufacturer to implement some specific firewalling so the phone can get on cell data and only get to the OS manufacture who would only send the unlocking app.

Now why the OS would allow an app to be able to control a low level OS security function seems rather broken by design. OS updates should require user intervention as well.

Re:Can Apple push extra software on the device?

So basically you're suggesting that there must be a method that:

1. Auto-installs software remotely
2. Auto-invokes that software
3. Runs the auto-invoked software with powerful privileges.

Such a method would, of course, be very dangerous. I very much doubt that either iOS or Android would have such capabilities purposefully built-in.

Re:Can Apple push extra software on the device?

[The+MAZZTer]

There's two flaws here. 1: When your device is encrypted on KitKat and below, you must enter the decryption password to boot. So no remote access unless the device is already running (which it probably is, but still). I don't know if Lollipop and above are different since I keep encryption off in favor of speed. 2. You can install all the apps you want remotely, but they must be launched by the user at least once before they can start running any background processes. There was an exploit in Android 2.1 and below that allowed an app to run immediately, and there was a "locate my phone" tool that exploited exactly this so you could install it remotely AFTER losing your phone, but it no longer works.

Re:Can Apple push extra software on the device?

No, this isn't possible. The device is encrypted. There's no way to decrypt it without the key. Unlocking the device does nothing useful at all, as the contents are still encrypted.

Re:Can Apple push extra software on the device?

[swillden]

On Android you can browse the Play Market on a desktop-browser and remotely install applications on your phone, with no confirmation or anything needed on the phone.

That only helps if apps can unlock the device. They can't on Android, and I see no reason why they'd be able to on iOS, either.

Re:Can Apple push extra software on the device?

[flink]

On iOS you have to unlock your phone before you sync with iTunes, so I don't think you can push an app over WIFI without knowing the passcode.

Re:Can Apple push extra software on the device?

[swillden]

There's two flaws here. 1: When your device is encrypted on KitKat and below, you must enter the decryption password to boot. So no remote access unless the device is already running (which it probably is, but still). I don't know if Lollipop and above are different since I keep encryption off in favor of speed.

The same is true on Lollipop and Marshmallow. Note that on KitKat and below, breaking the device decryption is not terribly hard, since most user passwords are weak, for convenience. What you do is:

1. Access the flash directly. The easiest way is probably to desolder it from the device and pop it into another device.

2. Read the crypto footer on the data partition. This contains the disk encryption key (DEK), encrypted with a key encryption key (KEK) derived from your password with scrypt.

3. Brute force the password to recover the KEK, and then the DEK. Scrypt should be tuned to take about one second per password, but that's one second on the device. Because you can do this step off-device, you can throw massive hardware at it. Though you probably don't need much against a four-digit PIN.

On Lollipop and Marshmallow it's a little harder, because if your device has hardware-backed credentials, a hardware-based 2048-bit RSA key is used in the KEK derivation process. The key derivation function (KDF) consists of scrypt applied to your password, then an RSA signature of the output, then scrypt of the signature. This is an odd KDF, but prior to Marshmallow, RSA was basically the only hardware-based algorithm available (starting with Marshmallow we now have ECDSA, AES and HMAC in hardware). So to most efficiently brute force the password, you can offload the scrypt operations to big hardware, but you must do the RSA on the device, which rate-limits your attempts.

The rate-limiting isn't very strong in Lollipop; a Nexus 6 can do 20 hardware-based RSA signing operations per second. Still, it provides a lower bound on brute force times. Not one that matters given a four-digit PIN, (10^4 / 20 / 60 / 2 = 4.2 minutes, on average), but a six-character alphanumeric password becomes quite secure (36^6 / 20 / 60 / 60 / 24 / 365 / 2 = 1.7 years, on average).

The rate-limiting is a bit better in Marshmallow. Rather than relying on the speed of the hardware to limit brute force, we have the hardware impose a one-second wait time between operations with the RSA key. Time to crack a four-digit PIN doesn't get much better (10^4 / 60 / 2 = 83 minutes, on average), but a good six-character password becomes all but uncrackable (34.5 years, on average).

I can't give any details, but I want to make it much stronger yet in N.

2. You can install all the apps you want remotely, but they must be launched by the user at least once before they can start running any background processes. There was an exploit in Android 2.1 and below that allowed an app to run immediately, and there was a "locate my phone" tool that exploited exactly this so you could install it remotely AFTER losing your phone, but it no longer works.

Also, apps can't unlock the phone anyway. The GP is assuming Apple has access to some iOS APIs that can do this, but that seems unlikely to me.

Re:Can Apple push extra software on the device?

[dunkindave]

Then I see the need for an app that will automatically wipe the device if it has not been accessed by passcode within some user-configurable period of time. The user sets it for three days or seven days, and if it is kept powered on or if it is booted after that time, poof, no more data. A delay of 30 seconds or a minute can be user enabled so the user could get in if he hadn't used the phone, but law enforcement wouldn't know the app was there so would power it up to see if they could access it, or take it to the user and say "open it", then watch it blank.

And it would be difficult to charge the person with destruction of evidence since such an app has legitimate purposes other than avoiding law enforcement, like to make sure if the phone is lost, stolen by a crook or a competitor, or seized by a border patrol of another country (though not the US of course), the data is permanently made inaccessible.

Re:Can Apple push extra software on the device?

[dunkindave]

On iOS you have to unlock your phone before you sync with iTunes, so I don't think you can push an app over WIFI without knowing the passcode.

Unless the computer it is syncing with has previously synced with that iPhone. During the first access of the phone by a computer, the phone pops up a box asking if this computer should be trusted, and if the person selects yes, a cookie is exchanged. At a later time, if the phone is hooked to the same computer, because of the cookie it will automatically be allowed to access the phone's contents. This is one of the ways law enforcement uses to access seized phones, by also seizing the computer it syncs with, then using the computer to get into the phone.

As far as pushing apps, as far as I know a new app can only be pushed onto an iOS device by the computer with which it is synced. What is possible however is if the phone is set for auto-updates of apps, then it could be told by the app store that an app needs updating and it would pull and install the "updated" app.

Re:Can Apple push extra software on the device?

[silas_moeckel]

These sort of countdown clocks exist for other things. It would be extremely hard to fully implement as an app, they simple dont have the access. It might be able to erase a sdcard but not the rest.

Re:Can Apple push extra software on the device?

[CelticWhisper]

MDM software can do it and that's not provided by the device manufacturer - why not a countdown app?

Re:Can Apple push extra software on the device?

[AHuxley]

It depends how long methods like "Cops Don’t Need A Crypto Backdoor To Get Into Your Iphone" (10.12.15) stay open as a default over every upgrade.
http://www.wired.com/2015/10/c...
As for push down a network onto a single users device? The SISMI-Telecom scandal 1996 shows what could be done years ago given the better quality gov grade telco tools. https://en.wikipedia.org/wiki/...

Re:Can Apple push extra software on the device?

[david_thornley]

Not my experience. When I sync my iPhone with my laptop, it always demands that I enter the passcode.

Made by human..

Then it is not impossible. Now that Apple claims this, watch it will be hacked in a few weeks to months.

Silly Apple.

Re:Made by human..

[cfalcon]

Apple is already a plenty attractive target. Plenty of prestige to be gotten from something like this already.

"Impossible" for Apple

[c]

It's a straight up application of Schneier's Law:

Anyone, from the most clueless amateur to the best cryptographer, can create an algorithm that he himself can't break.

-- Bruce Schneier

Someone might be able to break it, but if they can I doubt they'd talk about it.

Re:"Impossible" for Apple

[Dr.+Evil]

I'm not sure they're denying that:

"In court papers, Apple said that for the 90 percent of its devices running iOS 8 or higher, granting the Justice Department's request "would be impossible to perform" after it strengthened encryption methods."

When the courts ask "can you provide us with the key for this device?", the answer isn't "yes, theoretically, we could, if we invested millions of dollars and years of effort, there's a possibility to crack it", the answer is "no, we are not able to."

Comment removed

[account_deleted]

Comment removed based on user account deletion

Snowden Panorama from 2 weeks ago

Snowden's Panorama Interview revealed GCHQ 'Smurfs', backdoors used to spy and control smartphones. So the timing of this release seems very handy.

http://www.bbc.com/news/uk-34444233

I know a someone

George Holtz, did you see this? Let me know when you are done disproving this.

Marketing

[TFlan91]

This sounds like a marketing scheme to get people to think:

"Oh nos! DOJ can break into my 'older phones' running 'iOS [7 or lower]'! Better buy the newest one!"

Re:Marketing

Facts are horrible that way.

Re:Marketing

[pauljlucas]

iOS updates are free. iOS 8 is supported on devices going back to the iPhone 4S (which is now 4 generations old).

My biggest question

[WormholeFiend]

How does an Apple customer verify that the claim is true?

Re:My biggest question

I see three possible ways: The apple customer can become someone high enough inside the US administration to sue Apple and check that is the documents that Apple will release during the trial, or he can go high enough in the Intelligence part of the state to get the information without a trial, or he can get appointed as Apple CEO (some other jobs at Apple could give him the same information, probably)

Re:My biggest question

[UnknowingFool]

Starting with the iPhone 6, Apple put in a AES crypto chip into their iPhones. I'm not sure whether it is a separate chip or part of the A8 processor. My understanding is that this chip encrypts the information onto the flash storage using an IDs tied to the individual phone and the individual A8 chip. What this does it make it hard to decrypt the information simply by removing the flash and putting it onto another device even another iPhone 6. That would be the test I would use.

Now I don't think it's impossible for the NSA to break the encryption but Apple does not have the resources to do it. Even at 256 bit it would take a supercomputer an impossibly long time to brute force attack. The NSA might have shortcuts though.

Re:My biggest question

"...brute-force attacks against 256-bit keys will be infeasible until computers are built from something other than matter and occupy something other than space."

--Bruce Schneier

Re:My biggest question

Not correct; everything from the iPhone 3GS has AES crypto hardware in the SoC. The initial use was for “data whitening” (making data look random) as this improves bit retention on NAND flash, but a happy side effect is that it also gives you essentially zero overhead encryption (as you need to whiten the data anyway).

Re:My biggest question

[UnknowingFool]

My bad. It was the Security Enclave that was added in the A7 and newer which seems to secure the ROM and all subsystems to prevent tampering.

Not impossible, just difficult.

[mark-t]

If the phone is locked by fingerprint, they don't have to compel the owner to unlock it... they just fingerprint him or her, and fabricate a duplicate that can be used to unlock the phone.

If it is locked via password and they have physical access to the device, they could theoretically still brute force the password, although this may take a while.

Impossible means something different from what Apple is claiming.

Re:Not impossible, just difficult.

[UnknowingFool]

Impossible for Apple means that if law enforcement came to them with a smartphone, Apple could not simply unlock it by themselves. They would require assistance of the owner of the smart phone to do it.

Re:Not impossible, just difficult.

Apple fingerprint scanner makes an internal scan of the unique finger structure. It doesn't use the surface variations.
Impossible means impossible. They are replying under oath. Unlike Bill Clinton, they know they can't get away with playing with definitions of works... not even the definition of "is".

Re:Not impossible, just difficult.

[flink]

My understanding is that the key, encrypted by the user's unlock code and device ID, is stored on a secure hardware module that is unique to the processor on that specific phone. You can configure the phone to erase the key after 10 wrong attempts. This makes it pretty much impossible to brute force the passcode via the OS. What I don't know is if the 10 tries setting is enforced at the hardware level or the OS. If it's only the OS, I suppose you could rig up something to interface with the hardware security module directly. If it is enforced in hardware, you'd have to somehow extract the password-encrypted key from the hardware before you could start trying to brute force the password. I'm sure it's possible, but it's also probably beyond the resources of most law enforcement organizations.

Re:Not impossible, just difficult.

Not invalidating anything you said, but noting how it's even more difficult than it first seems:
* You only have 48 from the last time the phone was unlocked to use a fingerprint to unlock the device.
* After about six failed attempts, the phone is disable for 1 minute. Every couple of failed attempts after that exponentially increment the time disabled.
* You can set your phone to self-destruct (wipe itself) after 10 failed attempts.

Re:Not impossible, just difficult.

[adamstew]

The fingerprint is only good once the phone has been previously unlocked via the passcode. After the phone is either rebooted, or if it's been greater than 48 hours since last unlocked, then then phone can no longer be unlocked via the fingerprint.

My guess is that there is a cache of the decryption key that is stored in RAM. a power cycle will clear that, or the phone clears it itself after 48 hours.

Re:Not impossible, just difficult.

[Osgeld]

or cut off the finger...

Re:Not impossible, just difficult.

[vbraga]

I'm not sure how Apple hardware works but live finger detection (either from molds or cut off fingers) is a feature built in most mid and high end scanners. It's not really that hard to do anymore (albeit a problem in the past).

Spam

Apple even puts ads in their statements to US Judge!

>Old iPhones can be broken, but new ones cannot!
>Isn't it a good reason to buy a new one?

In other news

[JustAnotherOldGuy]

In other news, the Department Of Homeland Security declares that Apple is now an "Enemy of the State", and will be moving to seize all of their assets.

Re:In other news

[halivar]

That will be a day of great internal struggle for most /.'ers.

Re:In other news

[JustAnotherOldGuy]

That will be a day of great internal struggle for most /.'ers.

Yes, but that will be offset by the news that DHS will also declare Microsoft to be an "Enemy of the State".

Re:In other news

Not in your most semen-crusted fantasy.

Apple's rich, which means they have power an political capital. The DHS is a political entity which means they're effectively powerless against Apple.

This was the real mistake made when the DHS, the largest government organization every created (Under the watch of so-called conservatives and the retards that voted for them), was that it took established entities and neutered them by bringing them entirely under control of congress. The same congress that can't even pick a new speaker.

Apple is free to ignore the DHS and do whatever they fuck they want because all Apple needs to do to defy the DHS is issue a few press releases and contribute to some congresspersons election campaigns.

Today this is a win for Privacy and a win for the general public.

What happens tomorrow?

Re:In other news

[micahraleigh]

DHS is late to the game.

US corporate tax policy has already pushed their assets out of the country.

There is relatively little to seize in the US.

Re:In other news

[JustAnotherOldGuy]

There is relatively little to seize in the US.

Lol, that's okay, they aren't really bound by that whole "homeland" thing.

If they need to they'll just tap the FBI or whoever to go after their assets, wherever they may be.

Can you prove that you aren't a pedofile?

[Brannon]

nt

Re:Can you prove that you aren't a pedofile?

Depends, do you trust your mom?

They already are an enemy of the state

Americans and Apple were already declared an enemy of the state; this was implicit when the state deployed their military spy apparatus against them.

is it just me or ...

[originalGMC]

does the stuff on my cell phone seem like it should be protected by the 5th? Much of the data on my cell phone is data I wouldn't want created in the first place, and odds are it's damning enough to land me in prison regardless of whether I did the crime I'm being investigated for or not. If that unintentional byproduct of device usage is going to incriminate me, then how can I invoke the privilege? I feel like if there is a judicial body investigating me, there are places where I can invoke the 5th and draw the line, and my cell phone is one of those. These things are becoming part of us. I say, encrypt the shit out of them automatically. All of them.

It isn't impossible...

[JeffOwl]

It is just that Apple doesn't have the tools in place to do it, and in fact may not know how to do it, and Apple is likely not pursuing the capability to do it. The court cannot compel Apple to do something that they do not know how to do.

Re:It isn't impossible...

[UnknowingFool]

Yes, my understanding of the situation is the same. Maybe the NSA has a way or has created a backdoor, but Apple may not. It might be possible but Apple doesn't have the mathematicians, resources, or desire that NSA has to defeat the security.

So, is this why Steve Jobs was given cancer?

[Thing+1]

I've heard rumors that his cancer was government-caused (like Jack Ruby's). In Steve's case, it was because he wasn't playing ball with the spying agencies. This is saddening, but it's good to see Apple standing up for The People.

Now they have my interest

I have not thought of getting any apple products due to their mediocre quality and business model. But if their new phones really can't expose data if encrypted and locked them sign me up.

Easy or Impossible?

[Alypius]

Anyone else notice that the second story beneath "Apple Tells US Judge It's 'Impossible' To Break Through Locks On New iPhones" is "Self-Encrypting Western Digital Hard Drives Easy To Crack"? (No relationship, just amused)

Revenue stream...

Apple should patiently explain that while not impossible the universe may cease to exist before they are done, but they could get lucky, then charge $1 per key tried. Heck I may set up that business. More money per hour from the courts than Apple had to pay for their antitrust oversight lawyer! Perfectly legal, and make contract good for the statute of limitations of the suspected offense.

but...

it's impossible!

unbreakable.

[bloodhawk]

sounds like Oracle's ridiculous "unbreakable" statement. They may not currently know of a way around it, but I am willing to bet it isn't impossible and someone will discover a weakness, they always do.

Re:unbreakable.

[david_thornley]

There is no known or suspected way to crack AES-256 without the key, and using a sufficiently powerful quantum computer (and there's doubts about whether that is practically possible) to crack it would take more resources than exist in the Solar System. This requires some sort of key management.

I don't know the details of Apple's key management, but part of the key is embedded in silicon, and I don't know whether it's possible to get that. Without it, there's just the device, which can be set to wipe itself if ten wrong unlock codes are entered.

The only way I can see is to use an electron microscope to examine the key in the chip, and I don't know if that's even possible (some chips can self-destruct when opened).

There's an app for that

[Big+Hairy+Ian]

So Apple are saying they can't hack your phone. But they'll still let you install apps that give your data away for free hmmmmm

For PIN, Arduino keyboard. Patterns greasy screen

[raymorris]

For phones that PIN numbers specifically, an easier method I've used is programming an Arduino to act as a keyboard. No need to desolder chips or anything. Plug the Arduino mini into the USB, Android sees it as an external keyboard. A very simple Arduino program can be used to try four or five PINs, then wait a few seconds and loop. It'll get the PIN overnight or sooner. Again, I've done this one.

Screen unlock patterns are often visible as long smudges on the screen if you angle the screen in different ways relative to the light. You'll see lots of small smudges and one big smudge that goes across the screen with a couple of turns. The big one is the unlock pattern.

Re:For PIN, Arduino keyboard. Patterns greasy scre

[swillden]

If the password is weak enough that you can search the space just by entering values, then there's really not much that can be done at present. My "dump the flash" approach is for when that can't work because the space is too large for it to be practical and you need something faster. Prior to Lollipop you could simply obtain the crypto footer then fire up a whole bunch of machines to search the password space in parallel.

The new TEE-based Gatekeepr password authentication app (introduced in M) offers a better way. It implements exponentially-increasing delays between allowed password attempts. I think the slope is too gentle, but it's steep enough that you're unlikely to get more than a couple hundred attempts, and that will take you months. Unfortunately it's not used to protect disk encryption in M (long story).