Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI Says It Can't Release iPhone Hacking Tool Because It Might Still Be Useful (zdnet.com)

Posted by msmash on from the how-about-that dept.

Justice Dept. officials say that details of a hacking tool used to access a terrorist's iPhone should not be released because it may still be "useful" to federal investigators. From a report: The government is fighting a case against three news organizations, including the Associated Press, which are fighting to release details of the hacking tool that FBI agents used to unlock a passcode-protected phone used by San Bernardino shooter Syed Farook. Details of the hacking tool have remained classified, not least because the Justice Dept. believes the tool may could still be used by the FBI in similar cases. "Disclosure of this information could reasonably be expected to cause serious damage to national security as it would allow hostile entities to discover the current intelligence gathering methods used, as well as the capabilities and limitations of these methods," said David Hardy, section chief of the FBI's records management division, in a court filing released late Monday.

36 of 70 comments (clear)

  1. Poor grammar by chromaexcursion · · Score: 1

    Not can't. They most certainly can.
    WON'T

    Bad grammar reduces a story's credibility.

  2. hello_1984.m by Kunedog · · Score: 1, Funny
    You can run this code to see if your Apple machine is compromised by Big Brother:

    #import <Cocoa/Cocoa.h>

    int main(int argc, const char * argv[]) {

    NSDecimalNumber *oneish =
    [NSDecimalNumber decimalNumberWithString:@"1.1111111111111111111"];

    NSInteger two = 3 - [oneish intValue];
    NSInteger othertwo = 3 - [oneish integerValue];

    NSLog(@"2 + 2 = %ld", two + othertwo);

    return 0;

    }

    1. Re:hello_1984.m by Anonymous Coward · · Score: 3, Informative

      It's supposed to be a joke.

      It's a play on the Star Trek: Deep Space 9 episode where Commander Pikard is abducted by Romulans and subjected to mental torture. They keep telling him that two plus two equals six, but he denies this. Each time he denies it they smack him around. Then Captain Data and his star ship get there just in time and teleport Commander Pikard out, just like happens in pretty much every sticky situation in that series.

      In this case 3 - 1.1111111111111111111 equals 2.99999999999999999. So if you think in terms of integers then 2.99999999999999999 becomes 2 and so 2 + 2 = 4, but in this fellow's program 2.99999999999999999 + 2.99999999999999999 = 5.888888888888888 when is rounded up to 6. So it outputs "2 + 2 = 6", and then you're supposed to laugh because it's supposed to be funny, or something like that.

    2. Re:hello_1984.m by fuzznutz · · Score: 1

      In this case 3 - 1.1111111111111111111 equals 2.99999999999999999.

      I must be missing something. How does 3 - 1.1111111111111111111 = 2.99999999999999999? Integer math should be 2 and real math should be less than 2. I guess I just don't get the Objective C syntax as I am not an Apple guy.

    3. Re:hello_1984.m by Zocalo · · Score: 1

      Give the "hello_1984.m", I rather suspect it's a play on the scene from George Orwell's "1984" where Winston gets tortured by O'Brien over the number of fingers he's holding up rather the number of lights based rip-off Trek did (it was TNG not DS9, btw).

      --
      UNIX? They're not even circumcised! Savages!
    4. Re:hello_1984.m by PPH · · Score: 2

      New math. Understand what you are doing rather than get the right answer.

      --
      Have gnu, will travel.
    5. Re: hello_1984.m by ModernGeek · · Score: 1

      Casting to int generally just cuts off the digits so (int)4.8 returns 4

      --
      Sig: I stole this sig.
  3. Is this part of the adult conversation by Bob+the+Super+Hamste · · Score: 4, Interesting

    I wonder if this is part of the "adult conversation" about encryption that FBI director James Comey mentioned last year that he was preparing to have this year. Also when ever mentioning that fucking iPhone it should also be pointed out that nothing of value was found on it. This way it becomes clear that encryption wasn't something that hampered the case in any way so they can't trot out that old saw to try and make their case against the public having access to strong encryption.

    --
    Time to offend someone
    1. Re:Is this part of the adult conversation by Anonymous Coward · · Score: 2, Informative

      The fact that something happened (or didn't happen) in this particular case doesn't invalidate their point, since their point doesn't depend on finding something useful in every single instance. There may be other facts or issues that do invalidate their point, but not this one.

  4. give me a break by nimbius · · Score: 1

    it would allow hostile entities to discover the current intelligence gathering methods used

    news flash: that six months of PR Hell after the San Bernadino shooting? that was broadcast across the world. they already know damn well to avoid the iPhone.
    the question is, just how long will you keep this exploit to yourself, in the hopes that nobody else knows it, only to randomly find out its been used against you.

    --
    Good people go to bed earlier.
    1. Re:give me a break by Kkloe · · Score: 1

      i think they know about it and it is a risk they are willing to take, so it is not so much of a news flash

  5. Licensed tool by Anonymous Coward · · Score: 1

    Although a third-party company, said to be made up of professional hackers, created the hacking tool that was used to break the passcode lock on the iPhone 5c, the company's name has not been revealed

    If the FBI is the licensee of this software, then maybe they can't release it because they don't actually own the code? Also, releasing details about the tool may violate trade secrets of the company which developed it so that may be another factor preventing release.

    1. Re:Licensed tool by AF_Cheddar_Head · · Score: 1

      NOPE and NOPE. This dodge is what the company that makes the "Stingray" tries. Put it into the contract that a police department cannot reveal that they use the "Stingray". Then when the judge/defending attorneys ask about methods the Police state they are contractually bound not to reveal them.

      The general method can be discussed without revealing details. AKA we purchased hacking tool "X" to perform the mission, details are contractually limited. Then the judge can make a ruling as to the validity of said contract limiting discussion.

  6. The federal government must be made to choose by El+Cubano · · Score: 2

    To me, there is definitely solid reason to classify intelligence sources and methods. However, I think that we have to continue to resist the blurring of lines between foreign intelligence and law enforcement. Certainly law enforcement gathers intelligence (really, they gather information) as part of the investigative process. Our standard for evidence should allow for two possible choices on the part of the government:

    • 1. The operation or activity in which the classified source/method was employed was a foreign intelligence concern. In such cases, classification should be allowed to prevent disclosure because the intelligence apparatus will undoubtedly strive to exploit it for as long as possible. This brings with it all the legal restrictions regarding employment against a US person (yes, that part of the system has problems that need to be fixed, but that is a different issue).
    • 2. The operation or activity in which the source/method was employed was a law enforcement concern. In such cases, the evidence should only be legally considered admissible if the source/method was disclosed (with key exceptions for the identity of human sources; for example, their disclosure may be only to the judge hearing the case, etc.). Think of it as the evidence's chain of custody is broken without the disclosure of the source/method.

    Foreign intelligence is used to make strategic, operational, and tactical military decisions as well as national policy decisions, while information gathered in the course of a law enforcement investigation could be used to support criminal prosecution.

    This way the spooks and feds get to argue to higher authority (probably the AG, DNI, and National Security Council) which is more important: continued use for foreign intelligence or disclosure to support criminal prosecution. That way the decision makers get to earn their keep and everything stays on the up and up.

    1. Re:The federal government must be made to choose by flink · · Score: 1

      Agree with everything you said except this:

      (with key exceptions for the identity of human sources; for example, their disclosure may be only to the judge hearing the case, etc.).

      This denies the defendant's right to face their accuser and prevents the defense from cross examining. There are very limited exceptions to this, such as dying declarations, but they should be few and far between, and event then the witness's identity isn't concealed.

      But yeah, absolutely, if the method of acquiring evidence can't be disclosed because it is too valuable to national security or whatever, then you obviously value the method over the conviction and the evidence should be thrown out. That also serves as an incentive to keep a strict firewall between our intelligence agencies/military and domestic law enforcement.

    2. Re:The federal government must be made to choose by El+Cubano · · Score: 1

      (with key exceptions for the identity of human sources; for example, their disclosure may be only to the judge hearing the case, etc.).

      This denies the defendant's right to face their accuser and prevents the defense from cross examining. There are very limited exceptions to this, such as dying declarations, but they should be few and far between, and event then the witness's identity isn't concealed.

      Yeah, I realize I left a key piece of that. I was referring to certain human sources, something which would have to be severely limited and done with careful oversight. I was thinking of instances like people whose relationship to the case could result in their life being threatened if their identity is revealed. I know that there is witness protection, but I assume that is not the appropriate solution in every case. I was just trying to make room for the possibility. A real legal expert would need to figure this out, and I am no such person.

  7. It's about trust by sgrover · · Score: 3, Insightful

    If they reveal the tool, and it is revealed it is faulty/suspect in anyway, then the information they "recovered" from the phone(s) all become untrustworthy. That does not support the verse the authorities are trying to play out to the general public. So instead of being proactive and helpful, we get innuendo, and "trust me" type comments, with no hope of verification/validation by the public.

    1. Re:It's about trust by Bob+the+Super+Hamste · · Score: 2

      Well it was already disclosed that nothing of value was found on the San Bernardino iPhone so it doesn't matter at this point anyway for that case. As you point out if the tool is used in other cases and there is some juicy bit of evidence found any flaw in the tool will be used to discredit it. The longer that is put off the better chance to get convictions based off of evidence produced by the tool.

      --
      Time to offend someone
    2. Re:It's about trust by evolutionary · · Score: 1

      It will probably get leaked by concern citizen, just like the rest. Of course what could be next are the tools that the CIA uses to KEEP secrets in general. That could get interesting. what is also interesting, is we don't hear about this happening in Russia or China. At least not in our mainstream news.

      --
      "Imagination is more important than knowledge" - Einstein
    3. Re:It's about trust by richardellisjr · · Score: 1

      I don't think you understand how this works... There will never be any useful information found, or at the very least never any information that's presented as evidence. That way the government still gets the information, without ever having to disclose how.

    4. Re:It's about trust by Bob+the+Super+Hamste · · Score: 1

      Unfortunately I do understand and realize that what most likely will happen is that any evidence collected wont be used in court or will be used in parallel construction to get what they want. This year there is going to be another push from the likes of the FBI, CIA, etc. to get the laws changed on encryption just like they have been doing for the past couple of years. With the media circus that is Trump they might actually succeed in getting what they want. Here is what congress knows about encryption and while reasonably unbiased there still is the pro state slant in it. Also there is this document that came out at the end of last year that I missed that has some more details on the questions and what congress should be thinking about in regards to encryption.

      --
      Time to offend someone
  8. lets wait for wikileaks to reveal it by JcMorin · · Score: 1

    Maybe wikileaks will reveal it for them.

  9. Re: Sounds like a non sequitur by Zero__Kelvin · · Score: 1

    That was the point. Everyone is assuming they are saying the problem is that it is still useful to them. What they really mean is that they don't want to release it because it still might be useful to others .

    --
    Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
  10. Fruit of the poisoned tree by Macdude · · Score: 2

    If the use of the tool and the workings of the tool can't be examined in court, then any evidence provided by the tool or any evidence found because of any information provided by the tool can't be trusted in court. "Trust us" isn't good enough in a court of law.

    --
    "Grab them by the pussy" -- President of the United States of America
    1. Re:Fruit of the poisoned tree by EmagGeek · · Score: 3, Insightful

      That's what Parallel Construction is for...

    2. Re:Fruit of the poisoned tree by Macdude · · Score: 2

      That's what Parallel Construction is for...
      Unfortunately you're right...

      --
      "Grab them by the pussy" -- President of the United States of America
    3. Re:Fruit of the poisoned tree by gweihir · · Score: 1

      And if they are caught lying under oath, nothing happens to them.

      --
      Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  11. Really?! by LifesABeach · · Score: 1

    There's a better one on WikiLeaks.

  12. The FBI would rather... by TsuruchiBrian · · Score: 3, Insightful

    The FBI, et al. would rather exist in a world that is very dangerous and they alone possess the tools to (sometimes, maybe) protect us, than live in a world that is a little safer and no one has those tools. This is in the interests of the FBI and not necessarily in the interests of the society it is tasked to protect.

  13. Re:One thing is for sure by AF_Cheddar_Head · · Score: 2

    " And the most worrisome attack on national security and counter intelligence agencies is the idea that the US should extend the protections of the Constitution and Bill of Rights to foreigners operating internationally or domestically."

    Fucking aye right we should extend these to foreigners. The bill of rights is a basic template of right that all human beings should have not just citizens. How can we be any kind of example if we say "Nope, you're French so no freedom of speech for you." or "Nope, you are here on a visa so you don't have "habeas corpus" right so we can imprison forever without redress."

    Nothing in the Bill of Rights inherently limits these rights to only US citizens.

  14. What about what was recovered? by ukoda · · Score: 1

    Was it ever disclosed what was discovered on the phone? The whole fuss in the first place was the extreme importance of getting access to the contents of the phone. At the time I was dubious that they would find anything of any great value on the phone and therefore forcing Apple to break the security of their products was not justified. So now they have that data what value was it? Has it saved the lives of thousands or do we now know what he ate for lunch on Wednesday?

  15. "National Security" = We have no good reasons... by gweihir · · Score: 1

    ... but we do not want to tell you and this way we do not have to explain ourselves.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  16. Re:Partij Voor de Vrijheid by gweihir · · Score: 1

    No, he is advertising a pretty repulsive right-wing populist that promises the world if elected, but will deliver nothing. Kind of like Trump, but worse.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  17. Re:The deep state says no! by gweihir · · Score: 1

    Well, he certainly has experience dismantling and shutting down large organizations. Let's see whether he can to it to a whole nation as well.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  18. I don't get it. by nospam007 · · Score: 1

    For the thousands of iPhones in their evidence locker it will still work and also on all the old/non-updated phones out there, publishing the tool won't change that.

    But them telling us that old phones are vulnerable, might boost Apple sales.

  19. Re:One thing is for sure by cavreader · · Score: 1

    If the world wants protection under the Bill of Rights and Constitution they should start paying US taxes. And I think the other poster was talking about foreign intelligence operatives not the people visiting for vacation, education, or other such mundane reasons.

    "Nothing in the Bill of Rights inherently limits these rights to only US citizens." Only because the idea is so ludicrous that nobody gave it a second thought.