Apple Won't Sue FBI To Reveal Hack Used To Unlock Seized iPhone

An anonymous reader quotes a report from ZDNet: Apple will not pursue legal action against the US government to discover how federal agents broke into an iPhone used by one of the San Bernardino shooters. Attorneys for Apple speaking on background during a media briefing call on Friday said that it believed the method used to unlock the iPhone 5c would be short lived. It follows similar comments by FBI director James Comey who said in a speech on Thursday that the hack used to unlock the encrypted phone works on a "narrow slice" of devices. Apple attorneys said that the company is "confident" that the security weakness that the government alleges to have found will have a "short shelf life." The FBI's hack in the San Bernardino case would not help agents access a newer iPhone 5s used by a drug dealer in New York, where Apple faces a similar case against the government.

If they know he's a drug dealer

[ArmoredDragon]

...Then why do they need his phone? They're calling him a drug dealer already, so it sounds to me like they have a conviction already. However if they don't have a conviction and fail to get one, they're looking at some potential civil liability...

Cause of Action

[davesays]

[Apple faces a similar case against the government] I find it very difficult to believe that Apple brought a case in New York state, asking them to crack an iPhone.

Chicken shit

[DaMattster]

Apple is really just chicken shit. They should've sued the FBI

DMCA Violation?

[brian.stinar]

Doesn't it violate the DMCA, section 1201 which bans reverse engineering? I wonder if anyone could bring suit for the (potentially criminal) DMCA violations?

Re:DMCA Violation?

[Gravis+Zero]

law enforcement is exempted from most laws, including the DMCA, dummy.
see subsection "(e) Law Enforcement, Intelligence, and Other Government Activities." which is literally right above subsection "(f) Reverse Engineering."

Re:DMCA Violation?

[brian.stinar]

Oh thank you, I missed that section.

Re:DMCA Violation?

[MobileTatsu-NJG]

Grabbing someone off the street and locking them up in your house is illegal, but the FBI can do that.

Re:DMCA Violation?

[truedfx]

That's what "or a person acting pursuant to a contract with the United States, a State, or a political subdivision of a State" is about. It's covered. It's one paragraph in the law. It's easy to read. Don't jump to conclusions based on merely its title.

Re:DMCA Violation?

[NicBenjamin]

There's an "Encryption Research" exception that allows to develop products to sell legally is perfectly legal under the DMCA. Since the FBI cannot be sued under the DMCA under any circumstances (there's a whole "Law Enforcement" clause that says so), they are allowed to buy the encryption-cracking product and use it on any device they have the Legal Power to search. So neither the company (which is, IIRC, actually in israel making prosecution for DMCA-violations rather tricky), nor the FBI can be penalized under the DMCA.

In general, there's absolutely no way for a scenario of this kind to ever happen. The whole architecture of the government is that their legal abilities (called "Powers") are completely different from that of a private citizen's (called "Rights"), so a law giving them the capital-P-Power to send your ass to jail for hacking is almost always gonna have jack-squat effect on the government's ability to do hacking.

The Feds/Army/etc. still can be restricted by Acts of Congress (to an extent -- if the Constitution grants the Executive or the Judicial a capital-P-Power Congress can't undo that by statute), but the Act that affects your Rights as a private citizen is not gonna be the one that affects their Powers as the government.

DMCA

[Narcocide]

Title says it all. They should simply sue the FBI because it was illegal for them to subvert the device's security measures in the first place.

There's really no grounds for a suit.

[BitterOak]

Apple can't force the FBI to divulge security weaknesses it found any more than the FBI can force Apple to break into phones for them.

Re:There's really no grounds for a suit.

[Narcocide]

Well, also, Apple's engineers probably already have a pretty good guess as to how a previous-generation iPhone was hacked.

Re:Apple is lucky not to be seized for enabling

[zieroh]

If I could mod you "-1 Incoherent" I would.

wrong, dummy.

[Gravis+Zero]

DMCA, section 1201.e

(e) Law Enforcement, Intelligence, and Other Government Activities.—
This section does not prohibit any lawfully authorized investigative, protective, information security, or intelligence activity of an officer, agent, or employee of the United States, a State, or a political subdivision of a State, or a person acting pursuant to a contract with the United States, a State, or a political subdivision of a State. For purposes of this subsection, the term “information security” means activities carried out in order to identify and address the vulnerabilities of a government computer, computer system, or computer network.

Re:wrong, dummy.

[Narcocide]

Yea, yea everyone sites that clause, but there's two things about its use in this case with which I take issue:

1) It clearly caveats "lawfully authorized" without being clear about whether they mean the agents or their actions have to be lawfully authorized. In this situation I think there is a case to be made that the agents may not have been acting in a lawfully authorized fashion, because they were stepping beyond their authority in their initial request to Apple.

2) This clause also seems to be only intended to apply to government computers/networks.

I.A.N.A.L.

Re:wrong, dummy.

[NicBenjamin]

It takes real talent to fail at being a rules lawyer when you're talking about the legal system.

There is no Constitutional principle that the designer of a product has to asked permission before law enforcement circumvents it's security features. If there was Kwikset would have to be consulted every time they broke down a door. In fact Apple's entire case against the FBI was all about it's absolute right to have absolutely nothing to do with hacking this particular phone.

"Lawfully authorized" clearly means that the Search is legal. If the Search was not lawfully authorized there's massive Constitutional issues, which are a wee bit more important then the DMCA.

How narrow for how long?

[AHuxley]

As consumers the wider buying population of telco products now has a feel for a backdoor in the hands of state/federal task forces, federal officials, ex staff, former staff, contractors and anyone who can afford expert help from ex staff and former staff.

nice

[grayberry]

omg, how can i do that?

Re:Um, hello

[110010001000]

Of course. If you have physical access to the computing device it isn't secure. Everyone clueful knows that.

From a financial perspective

[nehumanuscrede]

It would be far easier, and cheaper, to simply pay the company who did it for the FBI vs a lawsuit.

For that matter, they could also brib. . . . er. . . contribute campaign funds to those in Congress who were briefed on the matter.

Have they said what was on it yet ?

[Izuzan]

I notice a distict lack of information as to what they found on it. If it had been something good they would be all over the news bragging.