Former NSA, CIA Director Michael Hayden Sides With Apple Over FBI

cold fjord writes: General Michael Hayden (Retired), who served as head of both the NSA and CIA, has taken a position supporting Apple in its conflict with the FBI. Apple is fighting a court order to assist the FBI in breaking into the government owned phone used by one of the two dead terrorists responsible for the recent San Bernardino massacre. General Hayden stated, "You can argue this on constitutional grounds. Does the government have the right to do this? Frankly, I think the government does have a right to do it. You can do balancing privacy and security dead men don't have a right to privacy. I don't use those lenses. My lens is the security lens, and frankly, it's a close but clear call that Apple's right on just raw security grounds. ... I get why the FBI wants to get into the phones but this may be a case where we've got to give up some things in law enforcement and even counter terrorism in order to preserve this aspect, our cybersecurity."

Ponder this

[koan]

If, eventually, a computer can do whatever a human can do, and do it better, what is the point of human existence?

Re:Ponder this

I think you meant to comment on the post about AlphaGo.

Re:Ponder this

[halivar]

Parent may already have been replaced by a cunning Eliza program.

Re:Ponder this

Be the sloshy, meatbag friends of the Bender bots?

Re:Ponder this

[drinkypoo]

If, eventually, a computer can do whatever a human can do, and do it better, what is the point of human existence?

To invent those computers, obviously, and then either use them to better ourselves or fuck off and let them go on

Re:Ponder this

[koan]

I did, no coffee in the house...

Maybe if I had a robot...

Re:Ponder this

To be and enjoy it. Or change as you would like to. Just because someone is better than something and even if it is by orders of magnitude beyond your understanding that doesn't mean you are worth less as a person. Whether that is a fundamental truth or a quirk of the Human brain I think that should be something we should hypothetically instill (Not necessarily install.) in others. So find something to do.

Re:Ponder this

Perhaps you should read "The Culture" series, by Iain M. Banks.

Re: Ponder this

Replicate without human interference?

Re:Ponder this

[arbiterxero]

What was the point of human existence before computers?

I doubt it's changed.

Re:Ponder this

There are already people that can do what I do and do it better... so what?

Re:Ponder this

[fustakrakich]

what is the point of human existence?

To dream... to love

Re:Ponder this

[bentcd]

Life has whatever meaning you choose to attach to it.

Re:Ponder this

But you are not sure you you may have been replaced by a cunning Eliza program?

Re:Ponder this

If that derails the purpose of humans then that means you're saying that the point of human existence currently is to be "better than computers".

Re:Ponder this

What was the point of human existence before computers?

I doubt it's changed.

Near as I can tell, the point of human existence is to eat, shit, fuck, and suffer. Too bad, those poor computers won't get to do any of the fun stuff once they replace us.

Re:Ponder this

what is the point of human existence?

To dream... to love

Liberal arts major detected. Proceed with caution.

Re:Ponder this

[gtall]

To shoot the machine in the head when it gets too big for its britches.

Re:Ponder this

[kheldan]

You're absolutely right. Maybe you should just find a quiet, painless way off this mortal coil now, and beat everyone to the punch.

..or, alternately, you could quit being a Negative Nelly and find some purpose in your life. Based on the first impression you give, I'd also recommend you go find a decent talk therapist, and enter into some conversation with them about why you're so (obviously) depressed.

For the rest of you: I don't forsee anytime in approximately the next 100 years, humans being completely outmatched by computers in all areas that define us as sentient beings, so don't quit your day jobs just yet.

Re:Ponder this

[arbiterxero]

Eating and shitting aren't our purpose, that's like saying my cell phone's purpose is to consume battery.

It's a byproduct of the actual purpose.

To fuck and suffer.

Or more elegantly, to fuck and be fucked in return.

Re:Ponder this

[Applehu+Akbar]

"What was the point of human existence before computers?"

Ask your grandpa. People played cards and board games, and porn was printed on paper.

Re:Ponder this

Cynical techno weenie detected. Try getting away from it all for awhile with only nature and loved ones to keep you at peace and entertained. It could change you.

Re:Ponder this

Back when computers didn't even exist, what was the point of human existence?

Answer: there was no point. And still isn't one. We are just here, in this predicament, and that's it.

Many people have tried to make up some sort of higher purpose because they are incapable of coping with purposelessness (which is all "free will" really is, upon deep analysis). But they can't provide even a shred of evidence, nor anything even remotely resembling a compelling argument.

It all just is. You just are. Respond to that fact however you feel inclined.

Re:Ponder this

[macs4all]

Parent may already have been replaced by a cunning Eliza program.

Say, do you have any psychological problems?

Re:Ponder this

Fucking isn't so different from shitting. It requires more active involvement, but is still just a biological process which is a natural part of being a member of a two-gender species. The drive to do it is hard-coded in the brain, much like the drive to eat (and hence shit).

Suffering isn't a purpose, it is a consequence of damage. It usually motivates animals to do something to avert the suffering, as instilled by the process of natural selection.

It's all just stuff we do, none of it is the ultimate purpose.

Because there is no ultimate purpose. The concept of an "ultimate purpose" is something our overpowered brains made up. We also made up the notion that the absence of an ultimate purpose is bad, which in turn makes us suffer. For no good reason at all.

We are just here. That's it. Deal with it.

Re:Ponder this

No, the purpose of human life is very SIMPLE, just not EASY TO DO:

We are here to be kind, loving, and helpful to each other.

That is all.

Re:Ponder this

^^^This.

"I'm sorry, Dave. I'm afraid can't do that."

Re:Ponder this

We aren't here "for" anything at all. We SHOULD be kind, loving, and helpful, but that's not some kind of grand cosmic purpose.

Re:Ponder this

Spoken like a true liberal arts major.

Re:Ponder this

Ponder des nuts: Even if we stop building computers tomorrow... what is the point of human existence? There isn't any. It doesn't matter whether computers exceed humans or not... there never was a point to human existence and there never will be a point to human existence. There is nothing deep about your question, there is nothing interesting to ponder, you've just taken an absurd question and prefaced it with an irrelevant condition.

Re:Ponder this

[fustakrakich]

... to learn! Try giving it a shot

Re:Ponder this

[Darinbob]

The point of human existence before computers was the develop technology to the state able to create computers.

Re:Ponder this

[shawn2772]

If, eventually, a computer can do whatever a human can do, and do it better, what is the point of human existence?

Man is that he might have joy.

Re:Ponder this

We are here merely to fulfill the requirements of evolutionary biology (create more Homo Sapiens Sapiens) and what happens to us individually is beyond irrelevant as long as we help keep moving that genetic material down through time. It doesn't matter if the tiger gets us as long as we reproduce or otherwise help keep others alive to do so. That's the roots of altruism, and that's my Biology degree talking.

I posit no cosmic significance to living a kind life simply because that's how this bunch of hairless, tailless small-group primates gets along best.

Draw a bigger circle (allow more people in),
share what you know,
be kind and helpful.

And hope you aren't crushed by the forces of history.

Re:Ponder this

Spoken like a true cynical techno weenie. Shall we continue?

Re:Ponder this

[slashdotwannabe]

We are just here. That's it. Deal with it.

We DID deal with it... by inventing the concept of "higher purpose". Like God, "higher purpose" is self-reinforcing and not falsifiable, thus providing never-ending fun for we great apes!

Subject

[Kardos]

Can we can bring him out of retirement and put him back in charge?

Re:Subject

He was in charge when most of the current Prism bullshit got put into place. You really think that is a good idea.

Re:Subject

[TheCarp]

It is almost as if.... a paycheck prevents a person from understanding things that would be detrimental to the reception of said check.... and removal of that income can help to bring these issues into focus, especially when you realize someone else is now at the reigns and has the power to do unto you with the powers you used to have to do unto others.

Re:Subject

[93+Escort+Wagon]

I think the issue is a bit different.

The FBI is basically a national police force. I've known a few cops, and their point of view has been all about solving and preventing crime. Even the ones I like as people... on these sorts of subjects it's like they're wearing blinders. Innocent people's privacy isn't a concern to them. Constitutional guarantees aren't a concern to them, except when it's been hammered into their heads as something they're required to do by the higher ups - not because they agree with those guarantees, but because they know it will mess up the eventual prosecution if they don't do it.

Their job is to prevent and solve crimes, and anything that obstructs those two goals should be done away with (in their view).

In a cop's perfect world, they'd be able to just walk into your house and look around. They'd be able to stop people on the street and frisk them. And of course they should be able to use license plate scanners, and have unrestricted access to the data forever.

So of course they they think should be able to look through anyone's phone.

Re:Subject

[sexconker]

No, because he's an idiot:

"You can argue this on constitutional grounds. Does the government have the right to do this? Frankly, I think the government does have a right to do it."

Frankly, this clown is wrong.

"You can do balancing privacy and security dead men don't have a right to privacy."

Wrong again.

"My lens is the security lens, and frankly, it's a close but clear call that Apple's right on just raw security grounds."

Frankly, it's not a close call at all. (And this guy uses "frankly" way too often.)

Re:Subject

[gnasher719]

He was in charge when most of the current Prism bullshit got put into place. You really think that is a good idea.

He was also in charge when the decision against the Clipper chip was made.

The guy has one interest: National security. He doesn't care about privacy, about finding some kidnapper, anything like that. Just national security.

So he tells everyone who wants to hear that what the FBI wants Apple to do is damaging national security. As I said, the guy doesn't do "think of the children", he does national security.

Re:Subject

Yes.

Also though, the chatter of day-to-day issues often overwhelms these people. And if it's not tactical stuff then it's groupthink.

How many President's, upon leaving office and having several years to think about it, have said something like "I really wish I had done X." And the citizens, upon hearing this, think "yeah, why didn't you do X?"

Whether X was a contradiction to the sitting President's policies is almost beside the point. The point being, once you lose the power you can no longer implement policy. And your opinion places you in the vast body politic with lots of opinions and no (direct) way to implement those opinions.

Re:Subject

Their job is to prevent and solve crimes, and anything that obstructs those two goals should be done away with (in their view).

Their job is to apprehend criminals without trampling on the rights of citizens. They have a duty to uphold the constitution. It's not just a philosophy, or a "would be nice", it's a JOB REQUIREMENT.

If they can't DO THEIR JOB without CHEATING, then THEY FUCKING SUCK AT THEIR JOB. Plain and simple.

captcha: impotent

Re:Subject

[david_thornley]

The government has a right to read what's on the phone, given either a warrant or permission from the owner of the phone, which is the dead guy's employer. You can object to how warrants are issued, and I'd be with you there, but the government has a right to try to get any information with the proper authorization.

What the Feds don't have is the ability to read what's on the phone, and the question is whether Apple should have to damage the security of their product to allow government fishing expeditions. I don't think it's a close call either.

Re:Subject

[sexconker]

Permission from the owner of the phone would not give them the authority to search the user's personal files when there's an expectation of privacy, just like permission from a telco doesn't grant the government the authority to eavesdrop on all calls or permission from the post master doesn't let them open your mail. And the use of encryption is about as explicit a declaration of privacy as you can get.
Further, they can't legally force the user to unlock the phone because of the 5th amendment. (Yes, judges order this and the 5th has been shat on, this just means the judges are tyrants).

The dude being dead makes no real difference.

Trying to force Apple to do anything about it is 2 or 3 wrong turns past the point of sanity.

Re:Subject

[david_thornley]

Do you live in the US? Many European nations have much stronger privacy legislation. In the US, if it's on the employer's equipment, the employer may access it. I don't see that this does any major harm; if I want to do anything personal that I want to keep private, I do it on stuff I own. The "Private" folder on my work computer contains stuff that I got a one-user license for, not anything related to my private life.

It's also possible to ask for almost anything legally, given a search warrant. The owner need not cooperate, but there may be less damage if the owner does.

AIUI, US jurisprudence has been that someone can legally be forced to unlock something that is already known to be on the device, when it's already known that the someone can unlock it. Any other case is considered covered by the 5th.

still pretending we have secrets?

if secrets are outlawed only genocidal mutants will have secrets?

Translation...

[Comboman]

Translation... The NSA/CIA is already able to break into iPhones without Apple's help and we don't want to share our advantage with the FBI.

Re:Translation...

[ole_timer]

that part of the FBI that does regular crime, which this is vice that part of the FBI that does cyber...

Re:Translation...

[gtall]

Why is this modded interesting? It is pure conjecture.

Re:Translation...

Why is this modded interesting? It is pure conjecture.

Uh, because it's interesting conjecture? Now if you were complaining about 'Insightful' mods you'd have a case...

Re:Translation...

[Cyberpunk+Reality]

Something is obviously up. Hayden is a liar with zero interest in the public good.

Re:Really?

[Desler]

Except Snowden doesn't say what you claim. He states that he disbelieves the FBI's claims that they can't break into the phone. According to what is referenced in that article, he doesn't say anywhere that this is just Apple putting on a show.

Security threats are a strawman

Cunning straw man he's raising. Note he's not objecting on constitutional grounds, and agrees the government has a right to ask Apple to do this. He's objecting for some nebulous 'security' reason. What, precise, impact to the security of iOS phones could -actually- crafting the exploit (rather than keeping it as a theoretical concept that we all know is possible) cause?

Why, the threat it escapes Apple's control, and can be used to hack any iPhone on the planet of course!

Leaving aside the obvious argument that, if Apple can keep the existing source and signing key secure, why would it suddenly lose control of a patched build for the FBI, watch his buddies at the FBI demolish that straw man by promising that Apple can keep the patched iOS version under lock and key, linked to a single iOS serial number, and destroy it afterwards. See, no problem now! No threat to the wider iOS ecosystem, no risk it could released into the wild.

Objecting to this on security grounds, that you think there's a risk that coding this exploit poses a danger to all iPhones, that it 'escaping' could be a problem, means you don't understand the issues. The true objection should be on grounds of freedom.

Re:Security threats are a strawman

[ledow]

The question is not "what if it escapes".

What if, one of the guys working at Apple is able to get his hands on that "one-serial" version? Is that guy security checked? Is he a spy?

That such a version even exists is a risk. Whereas if all the Apple firmwares issued, to anyone, are just consumer, technical, etc. firmwares that don't allow arbitrary bypass of security restrictions, it's much harder to make happen.

And how difficult would it be for, same, some enterprising country to get their hands on this "one-serial" firmware and hack either the serial is applies to AND/OR the serial on the hardware they want to get into?

It's not public escape and the guys on the firmware hacking forums that this guy would care about. That kind of thing could already be going on anyway. It's that Apple are providing firmwares capable of device compromise to anyone who asks in any of their legal locations. Like China. If the FBI succeed in the US, what's to stop the appropriate equivalent Chinese agency succeeding in China (where it would be done much more quietly and probably without any safeguards at all?). Nothing.

Short of Apple literally having to pull out of China if they are forced to do it, they would have to comply with the laws there too, by their court's interpretation, whether the device was originally bought in the US, the EU or anywhere else, if if a similar case comes up and the highest Chinese legal authority decrees they want this, and Apple has already provided the facility to the FBI, it's almost impossible to deny them it short of pulling out of sales in that country entirely. And that would hurt Apple and, by proxy, the American export economy.

This guy is making some sense, at least. He's not even trying to pretend that the courts aren't within their right in this instance, what he's saying is that it's a much bigger issue than just resolving one legal dispute, and will affect the security and export of US electronics worldwide.

It's got nothing to do with "how many times we give in", but "that we gave in the first time", which is a sad and oft-repeated lament where law is concerned. Apple aren't even saying they COULDN'T do this... they are saying they SHOULDN'T.

It would destroy exports, user confidence, and provide a tool that - with almost zero effort - could be applied elsewhere. And, please bear in mind - evidence submitted in a court can be requested, inspected, queried and argued over by the other side too.

In the same way that the firmware of breathalysers and all kinds of other devices are legally forced open in many jurisdictions (because you are putting people behind bars based on the assertions that the software is making, and thus the software has to be able to be inspected by an appropriate professional analyst if the defendant makes a fuss about it, in order to dis/prove their case), providing this firmware to the FBI may well pave the way to providing it to the defendant's lawyers, legal team, analysts, courtroom, etc.

It's not joe-public hacking the firmware on their iPad that anyone cares about. It's creating a tool that you then can't "uncreate" and may well be able to be applied to everything from some kiosk-like visitor-log device in the White House to the kid's tablet in Downing Street, and then advertising that the tool exists to any court in the world that might demand it.

Though I hate Apple with an absolute, physical, lividness, this is actually a big case with much more impact for Apple, the US electronics economy and the global IT economy, plus the national security of almost every country, than just "who might bypass your passcode when they can put a hacked firmware on your iPad when you leave it unattended in a bar".

It doesn't even need to "escape". If Apple get summonsed to provide this same tool by a Chinese court, or an EU one, they will have to comply or fight the same fight. If they could point at the US and say "No, look, we argued this over there, we're not going to do it", it holds much more precedent than "We caved to the FBI, but we don't like your court system over here so we won't do the same for you."

Re:Security threats are a strawman

[rgbscan]

I didn't read the article, but I heard the interview on NPR. Basically his reasoning is this: Cybersecurity is our biggest defense gap. It's clear now that the chinese have stolen designs for expensive weapon systems of ours and we've seen signs that foreign entities have the ability to manipulate our power grid and infrastructure, and possibly the stock market. In this context, building in any weakness at all - even for a seemingly slam dunk case such as terrorism, we should be cautious. In a landscape so woefully filled with security holes, it is more incumbent upon us to protect Americans by tightening security, than gaining a little extra information about some lone wolf shooters.

Re:Security threats are a strawman

What if, one of the guys working at Apple is able to get his hands on that "one-serial" version? Is that guy security checked? Is he a spy?

More to the point. the FBI is painting a huge target on Apple employees' heads.

http://it.slashdot.org/story/14/03/21/1214223/inside-nsas-efforts-to-hunt-sysadmins

That's what our spies do to random sysadmins at foreign telcos.

If the FBI gets its way, even if the Apple employees who crack the thing sincerely intend to never disclose the technique, their lives are effectively over, as they will be targeted for spearphishing and watering-hole attacks every Chinese and Russian cyberespionage group will be targeting them for the rest of their lives.

Re:Security threats are a strawman

He is military and strategy after all, which earns more respect than stupid fed cops who are always out to twist and get you.
Of course he has the NSA's, even the CIA's, own secret shit to cover from exposure in his position statements, but those are more likely to be relating to somewhat honorable foreign things than fucking around with the civilians.

Re:Really?

[koan]

Which, if true, underlines what I've said, why else have all this show if they can already break it?

Because they want everything compromised, Apple how ever stands to lose something if they "do it willingly".

So they put on a show.

Re:Really?

[Ol+Olsoc]

Even if your premise is true, You don't need side stories to be against this. If a backdoor is planted in the software that allows Law Enforcement to bypass the security features of the system, it does indeed make it easier for Law Enforcement do dig into a device. It also makes it easier for some folks other than Law Enforcement to dig into your device.

Looking over my iphone I don't really have anything that Law enforcement would be interested in - however, I really really really do not want the bad guys having that very same access.

note: I don't actually want anyone snooping in my phone at all, so let's not have the semi-obligitory "First they came for....." sillieness folks, mKay?

Re:Really?

Hey, don't confuse him with facts. He believes what he wants to believe, and it seems unfathomable to him that a huge corporation would actually take a stand rather than worry about PR or the immediate bottom line.

Of course Apple is right

[sjbe]

You can argue this on constitutional grounds. Does the government have the right to do this? Frankly, I think the government does have a right to do it.

I disagree. I think the government doesn't (or at least shouldn't) have the right to compel companies to break security protocols on behalf of the government when that would affect parties other than the one under legal scrutiny. Furthermore it seems clear to me that this creates an unreasonable burden on Apple (or any other company) to support the government. I'm not sure the court in this case fully appreciates what they are asking from Apple. By breaking the encryption on this device they materially devalue the product Apple is selling substantially. I think you can argue this on at minimum 1st and 4th amendment grounds.

it's a close but clear call that Apple's right on just raw security grounds.

"Close"? No it isn't. Apple is clearly correct that breaking security for one phone breaks them all. That's how it works. Anybody with even a basic understanding of cryptography on computers would know this. If we break it for the US government we break it for foreign governments, black-hats, paparazzi, etc. There is no way to restrict it to just one specific party. Apple is 100% correct to do what they are doing. I'm not always a fan of Apple but they are both morally and technologically correct in their position here.

Re:Of course Apple is right

...Apple is clearly correct that breaking security for one phone breaks them all. That's how it works. Anybody with even a basic understanding of legal precedent and abuse of it would know this.

FTFY, since we still think this has fuck-all to do with cracking crypto.

Re:Of course Apple is right

[oh_my_080980980]

RTFA. He wasn't talking about Apple's position on encryption. He was saying the argument that the government should be allowed to force Apple to break the iPhone security. He said on Constitutional grounds the government possess the authority to force Apple to break the iPhone security. However, on cyber security grounds, the government should not do that because it would weaken our cyber security. Government's right versus Cyber Security, that's what is close. Law enforcement would gain but we would lose some cyber security. So the balancing act would err on the side of cyber security.

Re:Of course Apple is right

[tlhIngan]

RTFA. He wasn't talking about Apple's position on encryption. He was saying the argument that the government should be allowed to force Apple to break the iPhone security. He said on Constitutional grounds the government possess the authority to force Apple to break the iPhone security. However, on cyber security grounds, the government should not do that because it would weaken our cyber security. Government's right versus Cyber Security, that's what is close. Law enforcement would gain but we would lose some cyber security. So the balancing act would err on the side of cyber security.

Exactly. The government can, but whether it should is a different matter.

Because once they do, it weakens cybersecurity for all, INCLUDING THE GOVERNMENT. Secrets that were protected, aren't anymore.

So the price of unlocking one phone means potentially losing data on ALL phones. And who are you going to lose the data too? Economic competitors mostly, but also to spy on others. Once the tool is created, any government may request Apple help them. China would love it - they'd "inspect" every iPhone of every high level executive passing through the border to get access to email and other strategic information, which will be passed onto China's local industries.

It was believed that one of the solar energy manufacturers in the US was hacked by China - purely to get at strategic plans. The plans basically made it clear that China needed to flood the PV market with cheap cells, push them into bankruptcy and then scoop up the technology for cheap.

But basically the gist is - for one iPhone, you're basically putting the entire US intelligence and industry at risk

Ponder something else

[sjbe]

If, eventually, a computer can do whatever a human can do, and do it better, what is the point of human existence?

Some humans can do everything certain other humans can do and do it better. Does that make the existence of less capable humans pointless? I think not.

Anyway it's a moot question. You can argue that the point of human existence is to pass on their genes and robots cannot in any manner pass on human genes. So there is always at least one thing humans can do better than robots.

The epiphany

[fustakrakich]

Why is it that only former and retired officials have them, and never the current ones? Pure public relations bullshit.

Re:Really?

Except Snowden doesn't say what you claim. He states that he disbelieves the FBI's claims that they can't break into the phone. According to what is referenced in that article, he doesn't say anywhere that this is just Apple putting on a show.

They likely can break into the phone, but that is not what this is all about. And it never has been, just as this has never been about "one phone", regardless of who wants to claim that bullshit.

This is about setting legal precedent. Period. End of statement. And once it's set, it will be abused. Guaranteed. There is zero evidence in our history to even prove otherwise.

Isn't it sad that I don't trust him?

[kheldan]

Really, the guy is coming down on the side I think is right, for both 'security' and (of course) technological reasons, but I don't trust him, have this sneaking feeling that there is some hidden agenda, or that we're being misdirected somehow. Isn't that sad?

Am I the only one that feels this way about this? Somehow I think not.

See what you've done to us U.S. Law Enforcement and Government? You've fucked everything up so much that we can't trust anyone anymore, even when they agree with us.

Re:Isn't it sad that I don't trust him?

[oh_my_080980980]

Why? He was in charge of cybersecurity, fighting cyber terrorism. So he's position is unique. People are only thinking in terms of aiding an investigation with the premise of thwarting another attack. He provides a big picture prospective.

Re:Isn't it sad that I don't trust him?

[AHuxley]

The "hidden agenda" has always been in public view. Follow the funding and the ability to be seen as having the only role to win missions.
Recall PRISM. The NSA has its way into all the US brands and likes to be the one stop security gatekeeper of all such missions.
The big brands let the US gov in by default, working with the US gov or the US gov found some always open way in that was always kept wide open..
The ability to collect information, act on it and then decide who and how to share it with is what protects a massive mil and gov budget. Moving beyond the very limited support role to getting budgets for setting and winning missions.
No other branch or group within the US gov or mil is going to get the new budget support or to be allowed to be seen as winning the same mission at a lower price or legally in a domestic setting.
The idea that any such methods would leak out in open court under cross examination or end up in front of another Church Committee https://en.wikipedia.org/wiki/... asking question about a vast network to spy domestically is not going to be allowed.
This is all about the FBI getting the same lists of contractor tools and then not requesting the NSA domestically or for shared international criminal investigations.
Once the FBI shows how easy and cheap getting to US gov mandated trapdoors and backdoors is, thats funding, fame, political access for the FBI. More funding and missions move to the easy, lower cost and very legal FBI and away from the legally complex domestic role of the NSA.
The FBI can also stand before a domestic court, the US press and political leaders and tell of their new efforts and wins. Funding flows and other budgets get reduced.
No bid NSA support contracts are then wide open to FBI tender and real marketplace competition. Skills and brands move in and the funding for new tools is shared domestically. Once secure generations of no bid contracts are lost.
The methods then leak, get sold, mentioned in court, ex and former staff and contractors sell their skills to the world.
Better to keep it all secret, never face any court, push for "privacy" and ensure only the NSA gets funding and keep its role as the main provider of such expensive and expert skill sets.

Re:Really?

[fustakrakich]

And you know what the FBI wants? That's pretty powerful stuff there. Those four items are a backdoor. And just because the FBI doesn't publicly reveal their desires, it doesn't mean they don't exist. You need to acknowledge precedent.

Re:Really?

Because they want a president set that it's okay for the government to insert backdoors into encryption solutions, and make unreasonable requests of tech companies, so that when it comes to inserting backdoors in all communications systems, it'll be easy to force through.

Re:Really?

Only Apple has access to
Allows the FBI to

If only Apple has access to it, how can it "allow the FBI to" anything?

The FBI wants Apple to give them the phone with the backdoor on it. Once it's out of Apple's hands, it's out of Apple's hands. Once it's in the government's hands we'll see it on torrent sites right next to the TSA master key design within a year, because an Apple master key is waaaay more valuable of a target than a key that can unlock your stanky underwear.

Re:Really?

[oldmac31310]

What?! The FBI want Apple to install Thunderbolt ports on iPhones? Wow. You know a lot of things about not very much.

Re:Really?

They want you to think your iPhone is secure so that you'll be more comfortable showing them all your cards. That's why.

We can?

[penguinoid]

General Hayden stated, "You can argue this on constitutional grounds."

I wasn't aware that ever worked.

The obvious reason is...

[fredrated]

there is something on the phone that implicates General Hayden as a terrorist!

Re:The obvious reason is...

there is something on the phone that implicates General Hayden as a terrorist!

i know that is a joke but it's also not a joke....

given the fact that he worked for the feds, heading not one but two agencies over his career besides his 'military intelligence' service, during the ongoing warrentless mass surveillance era.. that fact doesn't need any further evidence to prove true.

Re:Really?

[Coren22]

Fine, I got it wrong, it is a lightning connector:

http://www.apple.com/iphone-6s...

As I am not a iPhone owner, I wasn't aware that they have a special name for the port on the phone. So sue me.

Re:Really?

[Coren22]

Considering that what the FBI wants is listed in the court order, you should be able to find it on your own without issue. I guess you think the FBI is somehow keeping their request secret?

http://www.ndaa.org/pdf/SB-Sho...

I suppose you could just read the court order, but maybe that is too hard? The FBI already stated that they don't want a generic backdoor, nor do they want access to the backdoor, but I guess you know so much more than I do.

Re:Really?

[jafiwam]

Um, have you read anything at all about this case? No one has asked Apple to insert a backdoor. The FBI has asked Apple to write a program that:

1. Remains in memory 2. Only Apple has access to 3. Allows the FBI to use unlimited guesses on the PIN 4. Allows the FBI to use a custom pin entry through the Thunderbolt port

Nowhere in there is a request for a backdoor on every phone, nor does the FBI want a generic backdoor they can use whenever they want. In fact, the first item is because the FBI doesn't want anyone to claim they can reverse engineer the backdoor from the firmware.

You are a moron, or a liar, or both.

Unlimited access to the pin IS a backdoor. There is no functional equivalent between one iPhone 5c with one serial number and another. The claim that the software can't be used on a different iPhone 5c is an unmitigated lie.

Why do we allow our officials to lie to us?

[strstr]

This guy Michael Hayden is a war criminal and couldn't care two shits about any of us personally nor the FBIs ruthlessness. He and the FBI commit and cover up the same crimes. See below. They have methods of surveillance and murder so high tech they don't even need access to our cellphones by the way. It is one big cover story. They already have access to all the intelligence they just want us to believe they get it off our cellphones sometimes.

The Executive Summary:
Neuropsychological and Electronic
No-Touch Torture Report

Based on “The Torture Memos” and the Senate Intelligence Committee’s Declassified “Torture Report”

By Robert Duncan, A.B., S.M., M.B.A., Ph.D.

04/2015

Download: PDF, DOCX | Visit drrobertduncan.com.

Torture is a horrific topic and most minds will turn away from it because it can’t be comprehended that humans can be motivated, or computer programs can be run to do this to other sentient beings. Just when we believed we were becoming more civilized as a culture, the technology for torture has advanced more than a hundred fold in recent decades.
This summary will get into ‘the minds of the dishonorable monsters’ of the psychology of torture. Those like Dick Cheney who helped authorize it under certain administrations and regimes of the U.S. government which have been proven to be criminal under U.S. law, treaties, and the International Criminal Court. There are many people involved in the conspiracy and cover-up including General Hayden.
The full report discloses the spectrum of techniques of interrogation and torture used by the U.S. and its allies. The United States government will officially deny the claims of this “no-touch torture report” but in time it will stand firm.
The technologies used are still classified as state secrets and will not be discussed in this summary. The torture methods have been leaked through thousands of American citizens who have survived the no-touch torture programs. The research and testimony has been accumulated since 2002 and merely used as examples but the names of the victims are withheld.
This report will not use skewed, misleading language such as “enhanced interrogation” to describe the torture techniques.
Why torture? The CIA claims it works. The assumption is that it works to gain actionable intelligence. Torture is often used for revenge, punishment, interrogation, and behavior modification. In other terms torture is used to remove the continuity of thought to confuse the target to reveal information, erase brain patterns such as values and beliefs, or to break down the human spirit to make them submit and obey their handlers.
The downside of torture is that the countries that do it lose “moral soft power” in world politics. Without due process, over 25% of those reported in the Senate Torture Report were declared innocent. Blowback is always a repercussion of torture. Torture often takes a long time to affect the target from months to years. Torture has shown to be unreliable except for getting false confessions and bad information but the U.S. and its allies are improving on their tactics and techniques.
The purpose of this report is to draw the parallels between physical torture techniques and no-touch torture methods used in secret by governments who possess the technologies that still go on today. This is a brief summary of offensive psychological and information warfare methods using traditional methods and modern cybernetic techniques while exploring hyper-game theory to walk the target to the desired path: leak intelligence, commit assassinations, or change beliefs.

Numerated Torture Methods for
Interrogation and Behavior Modification

(A comparison between physical and no-touch torture tactics)

1. Induction of Depressive/Manic states
The idea is to shake up the emotional states of the target because different information can be accessed at each state. Making the target fee

Re:Really?

[fustakrakich]

Oh please! You got all sorts of secret 'requests' and gag orders, the most obvious being the national security letters. You only know what's public. The government does not operate very publicly in these matters. The entire theater is to vilify private, secure communications in the public's mind. The government already has more than one phone that they want to break into. They are trying to make a case against encryption. And it sounds like you side with them. If that is true, I guess there's nothing to discuss.

What am I reading in the summary?

[buck-yar]

Govt doesn't have rights.

Re:What am I reading in the summary?

[oh_my_080980980]

The Constitution states otherwise.

Re:Really?

I'm sure they do want a president set that it's okay for the government to insert backdoors into encryption solutions. But even more importantly I think they want a precedent set that it's okay for the government to insert backdoors into encryption solutions.

Re: Really?

[bill_mcgonigle]

There's a good ACLU piece this week talking tech about why the FBI is lying.

Its all deception

Question everything the spooks, Schmidt, Cook says.

Blackmail works. Coercion and Cooperation are sisters.

Re:Really?

"Precedent," not "president." Although they may want that as well.

I seriously don't get why this is a big deal.

[Sloppy]

The only reason this is happening, is that the key in question is expected to be unusually easy to brute force. (We think the user's passphrase was 4 or 5 decimal digits.)

The general case is much harder, and it doesn't matter how much you beg/force a manufacturer or anyone else:

1. With sufficiently tamper-resistant hardware, even the manufacturer can't help you perform a brute force attack. (If they can help, then the hardware is either defective or obsolete, depending on how harsh your views.)
2. With decent keys (granted, this may remain uncommon with handhelds) even if you're able to perform a brute force attack, you don't expect it to succeed within any practical time limit.

No matter which side wins this battle, the war is settled: attack loses and defense wins.

It should be worthless to the government to attempt to win this new right of theirs, since they're in the closing days of ever getting to use it anyway. It also looks like it's nearly worthless to Apple and the public, to win the defense against this government expansion. No matter which side's shoes I try to wear, victory and defeat look nearly the same, and there's little risk of dangerous precedent.

What am I missing? Tell me how a government or Apple win causes a future that is unlike its alternative.

Re: I seriously don't get why this is a big deal.

In my mind's eye it goes like this;
Apple wins - the conversation about security and encryption continues to happen
FBI wins - the public caves and points to the decision any time potential issues are brought up (kinda like Citizens United or Patriot Act)

Re:I seriously don't get why this is a big deal.

Indeed, the argument here has nothing to do with encryption. It's about an entity that uses cryptographic signatures as a way of guaranteeing that their software is authentic and non-malicious, being told to provide such a signature for a piece of software that they know to be highly malicious. If the FBI wins this sets an extremely dangerous precedent in that they could make similar demands of any person or organization that publishes software, especially software that performs automatic updates.

As a technical matter, I think what this means is that organizations that are likely to be targeted - e.g., OS distributions or web browsers - will need to move to a model in which multiple signatures are required, from entities in multiple countries. It also means that as a best practice, the update process will need to be designed to prevent the distributor from sending specific malicious updates to specific people (for example, by downloading all updates over Tor.)

Regardless of how this case turns out, I think that we're likely to see these changes implemented among the more paranoid software developers in the near future, so I suppose we can thank the FBI for spurring the community to improve its security practices. Still, it would be a major blow to freedom for the US to become one of those jurisdictions that need to be avoided.

Re:I seriously don't get why this is a big deal.

[Sloppy]

If the FBI wins this sets an extremely dangerous precedent...

It's too late. Even if the FBI loses, by pointing their gun at Apple's face, we the public have already been given a real-life non-tinfoil-hat reminder that signers can be coerced. There is never any going back from this. Or rather, we should go back to when we still had a little common sense, when..

a model in which multiple signatures are required

..Phil Zimmermann taught us that's what we ought to be doing anyway, a quarter century ago when he set up the defaults for what "moderately trusted" means. :-) [Yes, I realized this was in reference to trusting identities rather than messages themselves, but the idea is the same.]

I suppose we can thank the FBI for spurring the community to improve its security practices.

That's probably the healthiest way to look at it. A different attacker (but essentially doing the same thing) would have been publicized much less.

Re:I seriously don't get why this is a big deal.

[Jason+Levine]

If the FBI gets the precedent set that Apple has to unlock the phone for them, then how long will it be before it's declared that all phone vendors must be able to unlock phones for law enforcement at any time? We're already seeing laws of this kind being proposed in some states. The precedent will grease these wheels and make the move towards stronger encryption risky for any device manufacturer.

Re:I seriously don't get why this is a big deal.

[Sloppy]

Suppose that happens. So what? FBI says to manufacturer: "unlock this phone."

Manufacturer: "Sure thing. I will help you however I can. What model phone do you need help with?"

FBI: "It's a 2014 or later model."

"Oh. Sorry. I literally lack the capacity to help you, because that phone answers to its user, not us."

This entire issue is sliding into obsolesence.

Re:I seriously don't get why this is a big deal.

[Jason+Levine]

Except that "we don't support older phones" won't be a valid response to a court order of "unlock this phone." In addition, precedent will state that since Apple unlocked these phones before, they have the ability to keep unlocking it. Worst case scenario would be that the court says "ok, you don't need to unlock these old phones in the future - you just need to give the FBI a universal unlocking program and THEY can unlock the phones."

You do bring up a good point, though. Once this precedent is set, Apple will be all but required to have unlocking tools (either on-hand or given to the FBI) for any version of their OS and any model of their phone.

Re:I seriously don't get why this is a big deal.

[Sloppy]

I think you haven't read up on exactly what the court demanded Apple give the FBI, and why it will work on the iPhone 5C. Am I mistaken?

Re:I seriously don't get why this is a big deal.

[Jason+Levine]

I have read what they wanted. The court ordered Apple to write software to a) remotely disable the "10 PIN tries and the phone is erased" feature and b) give the FBI the ability to make PIN attempts from a simulated USB keyboard (so they could automate PIN attempts). I just don't believe that it will stop here. If this is allowed and the next iPhone makes this impossible, the courts will just extend the request a little more and a little more. There seems to be an attitude in the FBI that all companies should work full time on making the FBI's job easy and if they don't then they are "supporting terrorists." The FBI will push the courts to expand what the "standard request" calls for, will justify it under the "fighting terrorism" banner, and will get the court to rule in their favor.

The line in the sand needs to be drawn here.

Re:Really?

[Coren22]

So, a court order, asking for Apple to modify a single phone is somehow going to make every iPhone in the world backdoored? Do you really think that?

http://www.ndaa.org/pdf/SB-Sho...

There is the court order, please show me where they ask Apple to give them access to the software. Please show me where it says that they want a generic backdoor, compiled and signed with Apple's key that they can use on every phone in the world.

Instead, the court order asks for a single backdoor, which is keyed to a specific phone, and compiled and signed with Apple's code signing key. This would NOT give the FBI the ability to create a backdoor for every phone, as they don't have the private key used to sign a new firmware, so they are still out a backdoor. This will only give Apple the ability to make changes to phones which they support already. But I guess you don't care about facts in your attempt to accuse the FBI of something that they are not doing.

Distinctions without differences

[sjbe]

He wasn't talking about Apple's position on encryption. He was saying the argument that the government should be allowed to force Apple to break the iPhone security.

RTFA yourself. That is a distinction without a difference. Security = Encryption in this case. The iPhone's security relies on encryption. To break the iPhone security means to circumvent the encryption. By breaking or circumventing the encryption you make the encryption (security) immediately worthless on every iPhone in the process. Arguing that the government has a right to force Apple to break this security means that ALL citizens are no longer entitled to first and fourth amendment rights and the privacy rights that flow from them. It also creates an unreasonable economic burden on Apple as a company. Furthermore the government is arguing a position that would fundamentally weaken the security of products the government uses itself.

Short version is that I completely disagree with his assertion that the government does (or should) has any constitutionally granted authority to force Apple to break the security of their own products.

Re:Distinctions without differences

[gnasher719]

By breaking or circumventing the encryption you make the encryption (security) immediately worthless on every iPhone in the process.

Not quite. Nobody can break _the encryption_ of the iPhone. What the FBI wants Apple to do is to disable a feature where trying to brute force the passcode erases the phone after ten wrong attempts.

If that feature is disabled, you can brute force the phone at a maximum rate of one key every 80 milliseconds. Which means 4 digit passcode security is broken (takes 15 minutes to brute force). 6 digit passcode takes two weeks to crack. 8 digit passcode takes two years to crack. 8 random lowercase letters takes 529 years. 8 random lowercase or uppercase letters takes 135,000 years.

Re: Really?

[UnknowingFool]

Considering the the motion to order Apple to comply was filed ex parte meaning Apple could not see the FBI's motion nor respond to it, yes, the FBI had something to hide. In the New York case, Apple was able to defeat that motion because they were able to supply a judge with convincing arguments.

Re: Really?

[UnknowingFool]

Seriously a single iPhone? Considering that the FBI asked the same thing in the New York case, that is factually not true. What the FBI is also asking as other amicus curae briefs have noted is the FBI wants it for this "single" iPhone until they ask again. So Apple not only has to design the software, they have to devise a system where they will have to manage all these "single" cases in that the software is not only secured from others but that the software only works on one phone at a time. New York has said they have over 100 "single" phones that they would Apple to break into.

Re: Really?

[Coren22]

I just linked the motion. Are you trying to claim what I linked is not the motion, or that it was somehow secret despite that I linked it to you?

Re:Really?

[koan]

And Apple is in this too, so why do I always get -1 for such comments? That many fanbois or is someone playing "forum police".

I rant about other shit rarely get marked down as quickly as pointing Apple's security "issues" or point out the fallacies of this case.

When this all becomes evident to even the dimmest fanboi what then? Will you stop buying their products?

Doubtful.

Re:Really?

[Jason+Levine]

The FBI only wants Apple to have the access right now just like it's "just for this one phone." Once the precedent is set, the FBI will ask for more and more phones to be unlocked for ever-less-severe crimes. It'll go from "he's a terrorist" to "he's a murderer" to "he threatened someone" to "this person uploaded some movies against copyright law." Meanwhile, the law enforcement agencies requesting this unlocking will increase. It'll start with the FBI, but eventually local law enforcement will want access. Also, law enforcement agencies around the world will demand that Apple unlock devices for crimes committed in their own countries.

As the requests pour in, Apple will take longer and longer to fulfill the them (at greater and greater cost to Apple) until the FBI tells Apple to just hand over a generic "unlock any iPhone" program. Apple will resist but the precedent will have already been set. This is just quibbling over who has the program (and it'll be spun that this is easier for everyone involved) so Apple will hand the program to the FBI... and then to local law enforcement... and then to law enforcement organizations across the world. And then the inevitable leak will occur and hacking groups will get access to it.

I know "slippery slope" can be a tenuous argument, but the FBI and various law enforcement agencies haven't even tried to hide their true intent. They want to be able to unlock any phone, at any time, based on the flimsiest of reasons. Apple is standing in the way and they want the courts to order Apple to comply and weaken our security (device encryption) to make us more "secure" (as in anti-terrorism security theater).

Re:Really?

[Jason+Levine]

Actually, the FBI's been pretty overt with what they want and they view "just this one phone" as a stepping stone to unlock any phone they want at any time they want. Like you pointed out, precedent is the important thing here. If Apple fails to set the right precedent, then it's only a matter of time before Apple is flooded with requests and the FBI demands that Apple turn over the unlocking program so that the FBI can unlock phones quicker.

Security == Insecurity

If you do not understand, you may listen to Hillary Clinton and Carly Fiorina.

What they say is that "computer security is a threat to national security. We must be able to break into ANY system, as it may contain operational data of terrorist". Worldwide, anywhere. (Ok, my words, but read them, that's what these women say).

Now, how do they procure Security by Computer Insecurity ?

The most important element is the C language, which has successfully displaced Algol- and Pascal- based operating systems like the ones from HP (MPE), Unisys, ICL and Elbrus. By small coincidence it was the U.S. government who invented the C language (through their Bell Laboratories organization, also an NSA contractor).

The mentioned Memory Safe Languages had lots and lots of built-in Safeguards against cyber intrusions. That was deemed a national security threat. So USG started to push the C/Unix Crack. Just imagine how horribly dangerous it would be for Hillary if people could communicate in private (with truly secure ciphers running on a secure OS) using their computers ! The undisputed rule of the 1% would be in danger and they could no longer hose the 99% thoroughly.

See ? Your computer must not be secure, because only terrorists need secure computers. And Cyber War is a good thing, creates revenue for Raytheon, L3, Lockheed and similar benevolent outfits.

Re:Really?

So, a court order, asking for Apple to modify a single phone is somehow going to make every iPhone in the world backdoored?

A backdoor does not mean that everybody can get immediate access. It means that people who know about the backdoor can get easier access. The situation now is that you need an apple engineer with software signing rights + you need to write new software and compile an iOS binary. If the FBI gets its way then all you will need is an apple engineer who has access to the pre-existing software and signing rights. In other words, anyone who can kidnap the right person will be able to break into a phone.

That's not only a backdoor but a serious and irresponsible threat to the lives of apple software engineers caused by the FBI.

Wow, more Apple ADs!

[fbobraga]

there's ponies in that?

NOT

Michael Hayden presided over the increased Mass Collection "just in case" of innocent communications data. He essentially excremented on Magna Charta and the U.S. constitution.

His reasoning was that "all that data is stored in a lockbox. It will only be touched when an analyst searches (like googleing) in the lockbox". Of course even if that is true they can ANYTIME change the rules. They can write algorithms which will do much more than the described search engine does. E.g. "give me all persons who ever called the anoymous alcoholics phone number and a MD in the same time frame".

If General Michael Hayden were a lover of freedom, he would never have allowed the collection of totally innocent data. Instead, he would have limited the collection to the 0.1% of suspicious persons and their immediate communications partners. But he is a control freak, he is a traitor to freedom and we better do not trust him.

Captcha "redneck". Yeah, what a rooten people you are. You deserve NSA, slashdotters.

Really ?

They apparently got hold of hundreds of thousands of SSH and IPSEC keys. Best guess is that they run a covert, automated program to

1.) subvert firefox by means of main-in-the-middle malware injection - they own the network backbones

2.) install a keylogger in X11

3.) collect pass phrase and .ssh contents

4.) Store them in a big data silo for future use

5.) use said keys to unmask any SSH and IPSEC communications

In other words, I cannot seee them losing. Rather, it seems their total victory has already happened.

Brought to you by...

cold fjord, surveillance state apologist.

Hayden Just Playing For Camera Time

Hayden is sitting on the fence to get back in the TV/Cable common tater game for $$.

When the bitcoin trail from China, to Syria/Somalia/Yemen/Iran leads to Cook's bank accounts in Ireland then the real fun starts.

Ha ha
 

Re:Really?

[Ol+Olsoc]

Um, have you read anything at all about this case? No one has asked Apple to insert a backdoor.

The FBI has asked Apple to write a program that:

1. Remains in memory

Already an issue. This means that Apple has to remove one of it's features. No wiping the phone

2. Only Apple has access to

Bwahahhahahahaha! Yes, only apple will ever have access to it. Spare me your self righteous hmm's seriously? Seriously. Looks like the perfect scenario, because Nothing that is ever a secret gets out. Never ever happened so far. Right?

3. Allows the FBI to use unlimited guesses on the PIN

Sounds like a fine brute force ...... get ready for it....... backdoor

4. Allows the FBI to use a custom pin entry through the Thunderbolt port

You gotta be shitting me don't ya? This is doubleplusgood talk. Let's just not call any of this stuff a "backdoor", make up your own name if you like, but if there's a program written so that the phones can be accessed by apple, it can be accessed by others. And if a brute force attack can access the phone, and let's face it, Numbers only makes for a faily limited set of choices - Its delivering the keys to the kingdom to just about anyone. Because once again, if Apple provides it to one group, other groups can find and utilize it.

Re:Really?

[Ol+Olsoc]

Considering that what the FBI wants is listed in the court order, you should be able to find it on your own without issue. I guess you think the FBI is somehow keeping their request secret?

http://www.ndaa.org/pdf/SB-Sho...

I suppose you could just read the court order, but maybe that is too hard? The FBI already stated that they don't want a generic backdoor, nor do they want access to the backdoor, but I guess you know so much more than I do.

right, they just want access when they want it, with nothing hindering the process.

All of your "solutions are actual backdoors. So now if you want to say thy don't want backdoors you have to tell us why you were wrog when you first told us we were wrong. You're digging a pretty deep hole for yourself.

Re: Really?

[fustakrakich]

I guess you take everything at face value, but from known liars?

Only Dead Men? That can be fixed

[tomxor]

dead men don't have a right to privacy

Is this true? is that the law in USA? ... If death makes private information easier to legally obtain, doesn't that make it very dangerous for the people still alive with private information? it's far easier to make people dead and then legally obtain their secrets than convince the courts that they have no right to privacy while alive.

Re: Really?

[UnknowingFool]

First of all you did not link the motion. You linked the order. Those are two separate things. Second, you failed to understand legal procedure. Here are the series of events in this case.

1. FBI files ex parte motion to order Apple to assist them. Again ex parte means that Apple could not comply or submit a brief objecting to the order.
2. Judge grants order same day.
3. Apple makes public statements about order.
4. FBI files motion to compel.
5. Apple files motion to vacate the order.

In Apple's motion: "And more importantly, by invoking “terrorism” and moving ex parte behind closed courtroom doors, the government sought to cut off debate and circumvent thoughtful analysis." Please explain how the original motion was not ex parte.

Re:Really?

[macs4all]

Um, have you read anything at all about this case? No one has asked Apple to insert a backdoor. The FBI has asked Apple to write a program that:

1. Remains in memory 2. Only Apple has access to 3. Allows the FBI to use unlimited guesses on the PIN 4. Allows the FBI to use a custom pin entry through the Thunderbolt port

Nowhere in there is a request for a backdoor on every phone, nor does the FBI want a generic backdoor they can use whenever they want. In fact, the first item is because the FBI doesn't want anyone to claim they can reverse engineer the backdoor from the firmware.

And all they have to do is to desolder the Flash, read the (encrypted) contents (I'm sure Apple will give them the pinout for the flash chip, even if proprietary (which I don't believe it is. In fact, Step 10 in this iFixit Teardown reveals that it is a Toshiba THGBX2G7B2JLA01 128 Gb (16 GB) NAND flash)), and have at it. No "remote wipe", no "10 tries", no "escalating timeout" issues.

Re:Really?

[UnknowingFool]

1. Remains in memory

What does this mean? Someone has to write this code. This code must exist on disk somewhere. Obviously you've not done any coding. Every single piece of code I ever created had to be saved when being developed. So this code will at the least exist at Apple. Apple now becomes a huge target for hackers wanting to access this code.

2. Only Apple has access to

The FBI has physical access to the phone. They will have to at the transfer ownership temporarily to Apple but then they will get back the phone to do the breaking. As soon as they break the phone, the FBI will have access to the software. What is to stop them from copying everything and trying to reverse engineer the Apple signing keys and the new version? Nothing.

4. Allows the FBI to use a custom pin entry through the Thunderbolt port

Not quite. The FBI asked for access through a cable, WiFi, or Bluetooth. This is not current functionality on the phone due to security. This in effect creates a new vector of attack, a new door. You could call this a back door.

In Other News

Hell has frozen over!
GNU Hurd hits version 1.0!
systemd releases to universal acclaim!
The Sagrada Familia cathedral is finished!
The Linux Year of the Desktop is formally proclaimed!

Re:Really?

[gnasher719]

Not that bullshit again. If you remove the flash memory, you separate it from one of the 256 bit keys required for decryption which is locked inside the CPU.

Hayden wants to make a small contribution

A final gesture of good will to the people of this little planet who have given—from whom he have taken—so much.

Re:Really?

[macs4all]

Not that bullshit again. If you remove the flash memory, you separate it from one of the 256 bit keys required for decryption which is locked inside the CPU.

Which still allows you to sicc your fancy Quantum computers on about 10,000 copies of the data, without fear of the "Wipe", the "Timeout", or having to have 10,000 interns manually keying in "0001, 0002, 0003..."

So yeah, that bullshit again.

Re: Really?

[echnaton192]

It is this easy: Apple closed the backdoors they had left open for your spooks in iOS 8 after the Snowden-files.

Snowden claims that apple does the right things (can't trust their cloud, but there are secure alternatives as caldav, carddav and IMAP for notes are ssupported out of the box).

Android is way (!) more insecure, leaving encryption keys on wiped devices and supporting the way more insecure cloud from google and security fixes usually require to buy a new phone or wait indefinitely for the manifacturer after (!) the fix made it in the vanilla android ftom Google, while apple still supports the iphone 4s from 2011.

I do not trust apple, they had their hands in the cookie jar until iOS 8. But I do trust the international hero Snowden. He claims apple is doing the right things at the moment. To my knowledge, he is right.

You are just a random guy.

Slashdot is still about credibility, although it changed a lot. Your carma shows you have none. Maybe you should think about that and why we trust a REAL security expert like snowden with first hand experience in your governments capabilities WAY more than we trust random loser koan?

I gladly sacrifice some carma for this ;)

Re: Really?

[echnaton192]

It is this easy: Apple closed the backdoors they had left open for your spooks in iOS 8 after the Snowden-files.

Snowden claims that apple does the right things (can't trust their cloud, but there are secure alternatives as caldav, carddav and IMAP for notes are ssupported out of the box). Android is way (!) more insecure, leaving encryption keys on wiped devices and supporting the way more insecure cloud from google.

I do not trust apple, they had their hands in the cookie jar until iOS 8. But I do trust the international hero Snowden. He claims apple is doing the right things at the moment. To my knowledge, he is right.

You are just a random guy. Slashdot is still about credibility. Your carma shows you have none. Maybe you should think about that and why we trust a REAL security expert like snowden with first hand experience in your governments capabilities WAY more than we trust random loser koan?

I gladly sacrifice some carma for this ;)

Re:Really?

[Rakarra]

How is this for a precedent: The Clipper Chip, an encryption chip designed by the NSA in the early 1990s which was intended to be included in communications devices. They were pretty open about it having a backdoor that only they had access to; this was pretty much the point of its push.

Although it was opposed by the strange-bedfellows partnership of John Kerry and John Ashcroft, it was the technical flaws that doomed the chip, specifically the lack of security inherent with key escrow systems, and some of the papers are being referenced again today in arguments for why Apple couldn't give up a master key that law enforcement agencies could use to access devices.

Re: Really?

[Rakarra]

I do not trust apple, they had their hands in the cookie jar until iOS 8. But I do trust the international hero Snowden. He claims apple is doing the right things at the moment. To my knowledge, he is right.

Snowden has been holed up in Russia for the last three years, and it's likely his access to impartial media is even worse than the average American's. How could he possibly know what Apple is doing? He has no special access, he's a sideline watcher like the rest of us.

I have no doubt of his good intentions, but he doesn't have any knowledge of what Apple and the NSA are up to since he fled the country.

Re:Really?

[Rakarra]

The FBI already stated that they don't want a generic backdoor, nor do they want access to the backdoor, but I guess you know so much more than I do.

Well, we know what FBI Director James Comey has publicly stated. In his testimony before the Senate Intelligence Committee.

"Encryption is a problem in our investigations and it is also a great thing. And therein lies the problem."

He mentioned they haven't been able to access the phone of the San Bernadino shooter, and then stated that wider use of encryption is "overwhelmingly affecting" law enforcement operations, including investigations into murder, car accidents, drug trafficking and the proliferation of child pornography. (Sadly, the Senate has not provided a transcript, but this is what was reported in the Reuters story)

He says, specifically, that he doesn't want a "backdoor," and then says that tech companies need to change their business model – by selling only communications gear that enables law enforcement to access communications in unencrypted form rather than products that only the parties participating in the communication can decrypt. So... no "backdoor," but something that sounds exactly like a backdoor. He said the nature of enabling that would be up to the tech companies.

Re:Really?

[Rakarra]

Look dude, the FBI specifically said they don't want a backdoor. They just want the tech companies to sell "only communications gear that enables law enforcement to access communications in unencrypted form" rather than the two parties to the communication. TOTALLY different from a backdoor. I'm not sure how, but Comey proposed it, and you don't become FBI Director by being a dullard.

Re:Really?

[Rakarra]

That's not only a backdoor but a serious and irresponsible threat to the lives of apple software engineers caused by the FBI.

I doubt the FBI would go that far. All they need is an informant in Apple.

Re:Cops / FBI

The bottom line on Cops / FBI is one thing and one thing only...
YOU CANNOT TRUST THEM.
Anything you say can and will be used against you.
Even if you yourself just got murdered by a crack addict
in broad daylight wtih 10 witnesses, they're still going to
be looking at you sideways and eyeballing your coffin with
desire to search it and dig up the dirt over you so they can
send you to rot in jail too.

Cops are WORTHLESS, before, during and after the crime
(which by the way is just the shameful state sanctioned
vengeance you called for, not real healing between parties.)

FBI can be useful in the strictly feds on feds/public cases,
but feds on citizens are the same as Cops.

Re:Really?

Welcom to the grand and never failing history of ALL governments...
sooner or later they become self-aware and it ends up being ALL for them and NONE for you..
then revolt happens...
Stupid ain't it.
Too bad most of you are in that situation now.
Hope you like it...
Sheep.

Re:Really?

[oldmac31310]

I have my lawyers working on it.

Re:Really?

[david_thornley]

There are backdoors in all communications systems, required by CALEA. This is about the iPhone as a computer, not as a phone.

Re:Really?

[david_thornley]

Um, Apple is doing the right thing, and when this becomes obvious to the dimmest fanboi said fanboi will stop buying Apple products? Or is it that Apple products are insecure, and so the correct thing to do is to buy less secure products?

Is it your opinion that it's trivial to design an easy-to-use device that can withstand any security attack from highly motivated entities with great resources and knowledge who not only have physical control of the device but don't have to worry about destroying it or letting anyone know? This particular attack will not work on the 5S or later, and although I've read there are similar attacks Apple is probably continuing to improve its security.

Re:Really?

[david_thornley]

The court order is not to create a generic backdoor directly. It is to establish a precedent, and to make sure Apple has the ability to break in. The All Writs act has been held to allow the government to compel third parties to use tools they already have, which means that if Apple had this software they could clearly be compelled to use it. If Apple gives in on this case, they won't have a leg to stand on when the next 254,984 orders come in.

Re:Really?

[david_thornley]

That wouldn't work. The flash memory is encrypted with AES-256, which is impossible to brute-force with optimal quantum computers using only the resources of the Solar System until the heat death of the Universe. It seems highly unlikely for several reasons that the NSA has a way to crack it. This means that the only way to read the flash is to recreate the key.

Apple has a special piece of hardware that does AES-256 encryption and decryption. It includes a secret 256-bit random number that can't be read, and which can only be accessed by combining a PIN with it to form the key. I don't think the key is exposed either, so the only way to read the flash is to enter the correct PIN into that particular hardware. It cannot easily or reliably be copied, and if it's destroyed the flash is permanently unreadable.

Brute-forcing a 4-digit or 6-digit PIN is trivial, except that iOS permits only ten tries before wiping the random number and rendering the flash permanently unreadable, and the tries have to come through iOS on that particular device. The FBI wants a changed version of iOS that doesn't have the wipe, the lockout delay, and which accepts access through new means.

Re:Really?

[macs4all]

That wouldn't work. The flash memory is encrypted with AES-256, which is impossible to brute-force with optimal quantum computers using only the resources of the Solar System until the heat death of the Universe. It seems highly unlikely for several reasons that the NSA has a way to crack it. This means that the only way to read the flash is to recreate the key.

Apple has a special piece of hardware that does AES-256 encryption and decryption. It includes a secret 256-bit random number that can't be read, and which can only be accessed by combining a PIN with it to form the key. I don't think the key is exposed either, so the only way to read the flash is to enter the correct PIN into that particular hardware. It cannot easily or reliably be copied, and if it's destroyed the flash is permanently unreadable.

Brute-forcing a 4-digit or 6-digit PIN is trivial, except that iOS permits only ten tries before wiping the random number and rendering the flash permanently unreadable, and the tries have to come through iOS on that particular device. The FBI wants a changed version of iOS that doesn't have the wipe, the lockout delay, and which accepts access through new means.

For someone pretending to have some knowledge of the situation, you have (deliberately or ignorantly) left out a few key points, to wit:

1. The phone in question is a iPhone 5C. So no "Special piece of hardware" (Secure Enclave chip). This is VERY significant.

2. As I pointed out in another post, AES256 is actually weaker than other forms of the algorithm. So it may be breakable in less time than the Universe has left.

3. When you Brute Forrce a key on a pile of static data in situ, all you need is the data. All the "random numbers" (salt), special hardware (Secure Enclave), secret keys burned into chips, user PINs, etc. are rendered moot. All you need is the encryption algorithm, and the data. Then you "solve" for "key". Since you know the (real) key-length (256 bits), and you know the encryption algorithm, the rest is simply a matter of processing speed. And with multiple copies of the data, you effectively multiply your processing speed by the number of copies.

So, sorry. The problem is trivial (tedious, but trivial), once the data is sitting outside of the control of the phone.

Who bribed him from Apple?

[sethstorm]

This seems to be counter to his usual opinion.

Re:Really?

[david_thornley]

1. The 5C does not have the Secure Enclave chip. This does not mean the key is in the open. Part of it is in the CPU, and therefore the iPhone can only be decrypted as itself, not by examining the flash. See this Ars article for more details. The key isn't nearly as well protected as it would be in the the Secure Enclave, but it's not trivial.

2. AES-256 has problems that raise the possibility that it may be a lot weaker than it should be for a 256-bit key. You're not citing an actual attack. It may turn out that AES-256 is practically crackable, but that's covered in my earlier "It seems highly unlikely for several reasons that the NSA has a way to crack it", considering it's still used for secret government documents. You're speculating that what I claim to be highly unlikely right now might come to pass.

3. You have no idea what you're talking about here, do you? You seem to assume that brute-forcing a 256-bit key is a matter of throwing enough computrons at the problem. It is not possible to brute-force a 128-bit key using only the resources available in the Solar System, unless using sufficiently powerful quantum computers (which may turn out to be impossible). Quantum computers halve the effective length of a key, so AES-256 might be able to be brute-forced by a Kardashev Type III civilization using sufficiently powerful quantum computers.

So, the problem is doable, if not trivial, for a Kardashev Type III civilization with powerful quantum computers.