Slashdot Mirror

← Back to Stories (view on slashdot.org)

iOS 11 Has a Feature To Temporarily Disable Touch ID (cultofmac.com)

Posted by BeauHD on from the cop-button dept.

A new feature baked into iOS 11 lets you quickly disable Touch ID, which could come in handy if you're ever in a situation where someone (a cop) might force you to unlock your device. Cult of Mac reports: To temporarily disable Touch ID, you simply press the power button quickly five times. This presents you with the "Emergency SOS" option, which you can swipe to call the emergency services. It also prevents your iPhone from being unlocked without the passcode. Until now, there were other ways to temporarily disable Touch ID, but they weren't quick and simply. You either had to restart your iPhone, let it sit idle for a few days until Touch ID was temporarily disabled by itself, or scan the wrong finger several times. The police, or any government agency, cannot force you to hand over your iPhone's passcode. However, they can force you to unlock your device with your fingerprint. That doesn't work if your fingerprint scanner has been disabled.

22 of 138 comments (clear)

  1. Re:"Baked into" by Presence+Eternal · · Score: 4, Insightful

    "Baked into" implies it's non-removable and non-optional. "Included with" implies it's optional. The terms are discrete and worth using.

  2. Re:"Baked into" by Anonymous Coward · · Score: 3, Insightful

    I wasn't aware that the standard well-understood phrase "baked in", that has been around far longer than I have been alive and doesn't come from cooking, is now "cool" and "hipster".

    Maybe it's time to stop worrying about hipsters hiding under your bed.

  3. Re:"Baked into" by Anonymous Coward · · Score: 2, Informative

    He does have a point though, tech world today is full of stupid, needless phrases that are meant to sound nice to investors and shareholders rather than actually describe something accurately.

    We could say the mechanism is integrated, built-in, anything really. But no, let's use some appy-app appminology to appscribe apps and appctions a device comes pre-apped with.

  4. what i find surprising by sad_ · · Score: 3, Insightful

    is that unlocking your phone with a password is considered different from using a fingerprint according to the law/police.

    --
    On a long enough timeline, the survival rate for everyone drops to zero.
    1. Re: what i find surprising by bsDaemon · · Score: 5, Informative

      The difference is that the cops are already going to physically take your hand , stick it in ink, and force it onto paper if they have arrested you. They're going to go through your possessions and if they find keys, can try them on locks they also find on you.

      They can't make you say anything though. In fact, they will specifically advise you of your right NOT to talk.

      This is one of the reasons why biometrics make terrible single-factor authentication. If not for yubikey or smartcard as 2fa, I wouldn't use finger print on my laptop. Biometrics are better replacements for usernames than passwords, imo, especially given the limited ability to change most of them, and the fact that anyone who is in physical possession of both you and the device doesn't need your cooperation.

    2. Re:what i find surprising by msauve · · Score: 5, Insightful

      "unlocking your phone with a password is considered different from using a fingerprint according to the law/police."

      A fingerprint is physical, like a key. The taking of fingerprints does not fall within the category of either communication or testimony so as to be protected by the Fifth Amendment privilege. United States v. Wade, supra.

      A PIN is knowledge, and protected.

      --
      "National Security is the chief cause of national insecurity." - Celine's First Law
    3. Re:what i find surprising by decep · · Score: 2

      From a legal perspective, there is not much difference. The law can compel you to provide a fingerprint or password. The difference is that they can physically force you to provide a fingerprint by simply manhandling you. For a password, there is no way for them to force you to provide it.

      It does not mean you cannot be put in jail for failing to provide the password, but providing the information is always 100% voluntary.

      If it exists in the physical world, the law can force you to provide it.

    4. Re:what i find surprising by Anubis+IV · · Score: 3, Informative

      what is the difference if the police ask you to unlock your phone and you refuse?

      It's similar to the distinction we make in cryptography between what you know and what you have.

      Generally speaking, what you know is protected by the 5th Amendment. They cannot compel you to testify against yourself. What you have is not protected by the 5th Amendment. It's material evidence that can be used against you in a court of law.

      Provided they have a valid warrant, the police still need a means to execute a search that doesn't rely on compelling you to share something you know. For years, that meant they had nothing they could ask us for, since all we had were passcodes, and they couldn't compel us to turn those over (which led to the false belief that they couldn't compel us to turn over anything at all that would allow access). But the police have the right to collect material evidence, such as a fingerprint, and use it in the pursuit of their investigation. And they have a right to access the contents of the phone. If it just so happens that your device is locked by something material, that's a shame for you, but it's not testimony: it's simply evidence that can be used against you. It's no different than having a key on you that can open a safe.

      And really, when you think about it, this all makes sense. If the police weren't allowed to use material evidence that you were forced to provide against your will, we'd find ourselves in a bizarre world where pretty much any material evidence collected from a defendant (e.g. DNA, fingerprint, blood, etc.) would be inadmissible. After all, who would consent to "testifying against themselves" by allowing a DNA sample or fingerprint to be collected that could place them at the scene of the crime? In fact, it'd be so far reaching that we wouldn't even be able to seat the defendant in the courtroom against their will, since the jury may recognize that the person in the security footage is the same as the person sitting at the defendant's table, or an eyewitness may be able to point at them to confirm that they are the same person. They would, effectively, be "testifying against themselves" by being forced to provide something they have—their physical appearance—that can be used against them.

      Thankfully, this is a case where common sense won out in the courts, since the courts have repeatedly held that material evidence is not testimonial in nature, and thus is not protected so far as the 5th is concerned. In fact, most of those examples I just gave are ones that the Supreme Court or appellate courts have mentioned in the major cases addressing the topic of what is or isn't covered by the 5th (usual disclaimer: IANAL).

      All of which is to say, the courts have made a pretty clear distinction between testimonial and material evidence. Passcodes are protected under the 5th because they're testimonial in nature, whereas biometrics are protected solely under the 4th because they are material in nature. You can use either method to lock your phone, but the 4th is a significantly weaker form of legal protection than the 5th, so which you choose to use will come down to how you balance security and convenience.

  5. The English language by Thor+Ablestar · · Score: 2

    The Russian tourist asks a British cop: Sir, can I? - Cop: Yes, you can!
    No, Sir, I mean, may I? No, you may not.

    The cops MAY NOT force you to hand over your passcode, but they CAN.

  6. what I'd like to see by AvitarX · · Score: 2

    Simple PIN unlock (not just finger print as an easy option, something that works right out of the shower) and long password to unencrypt for booting.

    I have android, but the if I want a secure phone (long boot password), my only easy unlock option is the fingerprint, which doesn't work with touch screen gloves, and doesn't work with post shower fingers.

    Then, make the five button click reboot rather than disable touch.

    --
    Wow, sent an e-mail as suggested when clicking on "use classic" banner, and got a fast response that addressed my msg
  7. Re:Not in the UK by black3d · · Score: 4, Informative

    You'll be held in contempt until you provide it.

    --
    "The true measure of a person is how they act when they know they won't get caught." - DSRilk
  8. oblig. xkcd by Anonymous Coward · · Score: 5, Funny

    https://www.xkcd.com/538/

  9. Re:"Baked into" by aaarrrgggh · · Score: 4, Insightful

    "Integrated" would be a less colloquial term and clearer and more transparent to a diverse audience.

  10. Re:"Baked into" by Anonymous Coward · · Score: 2, Funny

    Hiding under the bed is so mainstream. Hipsters hide in your pillowcase.

  11. Re:"Baked into" by hackwrench · · Score: 2

    Baked into is really the older term and shorter to boot so who's being stupid here? There's nothing new to see here and I'm 40 years old. They said baked into about the space shuttle.

  12. And you get charged with obstruction if you resist by schwit1 · · Score: 2

    I'm not saying it will pass legal muster. Prosecutors use the pain of the process to wear down defendants. You will be vindicated in the end but be out thousands of dollars in attorney's fees and time spent incarcerated.

  13. Be careful with this by Anonymous Coward · · Score: 2

    A lot of comments on the 5th amendment here, buy taking proactive action to prevent access to evidence would likely be seen as obstruction of justice. Basically, if it is reasonable to a judge that knew an investigation was about to happen and you do something like this, it is no different than wiping your hard drive or burning your flash paper. It would be best not to use touch id at all.

  14. Re: Not in the UK by infolation · · Score: 3, Interesting
    Actually the UK police grab the unlocked phone out of the criminal's hand, like a mugger.

    I know this probably sounds difficult to believe, but it's actually true.

    Officers have become increasingly frustrated with criminals who refuse to hand over the passwords for their encrypted mobiles, denying them access to vital information.

    But the Metropolitan police have come up with a novel solution, by snatching an iPhone from a suspect on the street before he had a chance to lock it.

    Officers investigating a credit card racket realised that crucial evidence was stored on the phone of suspect Gabriel Yew, 45, that would be inaccessible without his password.

    To get round the problem covert officers from Operation Falcon, the Met police team that investigates major fraud, seized the mobile from Yew's hand as he took a call in the street. They then tapped the screen to prevent it from locking while the evidence was being downloaded.

  15. Re:"Baked into" by JohnFen · · Score: 3, Interesting

    Yep, I'm even older and can attest that the phrase was very common from before I was born. It used to be electronics jargon, and software adopted it later.

  16. So it's an accidental feature? How doe that work? by Brannon · · Score: 2

    It seems perfectly in keeping with Apple's business plan--they do seem to care about customer security.

  17. What's new? by david_thornley · · Score: 2

    I used an option in Settings to disable the fingerprint scanning on my phone quite some time ago. If the idea is that you set your phone up in advance, that's nothing new. If the idea is that you can quickly do it when being arrested, that's legally risky.

    --
    "When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
  18. Not sure how long that will stand up by ErichTheRed · · Score: 2

    Usually, the high-profile "phone unlocking" cases you hear of lately are terrorism or drug-related. Your average iPhone owner is most likely looking to protect his contact list, evidence of dealings, etc. than planning an attack. I'd say Apple aimed this feature squarely at their core demographic -- affluent Millenials:
    - Locking up your phone when high/drunk prevents people from using your fingerprint without your knowledge to get access to the phone
    - If you're stopped for a minor offense (traffic stop, DWI, etc.) it could prevent the police from finding anything else to make your situation worse if they are suspicious
    - Almost all non-violent interactions with the police involve traffic issues or drugs. If a cop catches you in possession of a small amount of drugs, they may or may not be more willing to just let you go if they have to go through a whole search warrant process, take you in and fill out paperwork to see what's on your phone.

    What would be an even more interesting feature is if you held down a certain key sequence (three long, three short, three long sounds good...SOS) and the phone instantly wiped itself by shorting out the flash memory and destroying itself. You wouldn't have your $1000 computer in your pocket anymore, but you'd have to decide if that was worth less than the evidence the police could have obtained.

    I guarantee this is going to get challenged in court to sort it out. 200+ years ago, and even in the Miranda era, no one was carrying a device capable of storing every personal detail of their lives in their pocket. The best you'd ever get is a drug dealer's notebook with their contacts. Phones are interesting in that they're extensions of the people who carry them.