with enough time and effort you can crack any device. Security has never been about 'perfection'...at any point in the history of mankind. Ever.
The whole point of security is to raise the cost (time, money, political capital in this case) that must be spent to break in. Seeing that the government is basically having to go 15 rounds with Apple to break into the iPhone of a deceased terrorist--that seems like pretty good security to me.
But I understand your confusion--which isn't to say that I'm excusing it, just that I think you're probably generally confused about technology in general.
1. Even during the worst stretch the suicide rate at Foxconn was lower than that for China or the US.
2. I'm not sure why it is Apple's fault that China has a lower quality of life. If Apple pulled their business from China and instead built the phones using robots in the US, do you think that would help the average Chinese person? The average Chinese worker IS getting a raw deal, but that blame rests squarely on the shoulders of their economic system & government.
3. Obviously a "few pennies per day" is hyperbole. Can you find a way to make your point without lying?
4. You still seem to have no idea what "slave labor" is. Just to be clear, you are saying that slavery as practiced in the 19th century in the US was no worse than what is currently happening at Foxconn in China?
The summary creates a strawman "Apple would probably break end-to-end encryption for the Chinese if that asked Apple to" and then chastises Apple for hypocrisy. You, like a good little lemming pipe up with "Because $$$".
It would be like if I said: "publicly wjcofkc is against pedophilia, but privately he is probably a pedophile--while is wjcofkc such a hypcrotical pedophile?".
Overwhelmingly Apple makes their money by selling real products to real customers--they have essentially 0 interest in selling your private information to anyone.
It's weird that Apple is always pointed out for using "slave labor" when every other manufacturer of consumer electronics is at least as bad.
BTW: have we now fully accepted the redefinition of "slave labor" to mean "voluntarily working at a job which pays the at or above the typical prevailing wage of the area in which the job is located"? Because "slave labor" used to mean something...different.
Presumably you've made a perfectly secure smartphone yourself--that would certainly justify your 'holier than thou' attitude. Can you point me to where I can buy it?
Failing that, just point me to any perfectly secure consumer computing device. Go ahead, I'll wait.
I'm not sure why it's so hard to just say the truth instead of wishy-washy crap like "I think it depends on the OEM". We aren't having this debate about Android phones because it is trivial for the FBI to crack an Android phone.
History has taught us that communism leads to poverty and Orwellian government control. The former is a consequence of removing the incentive for innovation & hard work, the latter is necessary to enforce a planned economy and to prevent an uprising once the population notices that the grass sure looks greener on the capitalist side of the fence.
That makes the phone functional again, just disables the non-compliant fingerprint sensor and thus you are forced to use your passcode. That seems like a reasonable compromise.
Apple only locked out the un-certified counterfeit ones. If you recall there was a counterfeit cable that started a fire that killed someone in China, that's when they started cracking down.
The problem was people who had their phone serviced at an unauthorized shop and then later updated to iOS 9.2.1. That version of iOS included a more thorough check of the fingerprint sensor.
Apple never tried the security update on a phone that had received a third-party repaired fingerprint sensor. Why would they?
People complained, Apple realized that it wasn't all that rare for people to have their home buttons (including sensor) repaired by third party shops, and then realized that they needed to more gracefully handle this case.
I'm sure you are able to anticipate every possible technical consequence of every line of code you write, but you can't expect everyone to live up to your god-like perfection.
Having the fingerprint scanner in the secure enclave makes it harder to (a) remotely record somebody's fingerprint, and/or (b) apply a fingerprint image from a database to a hacked iPhone with the sensor swapped out.
Pointing out that there are "other possible ways" to hack an iPhone is a clear indication that you don't understand how computer security works. Here's a hint, it has absolutely nothing to do with perfection.
The real sensor takes some effort to ensure you are pressing something like a finger to the sensor (a picture of a fingerprint won't work). A fake 'sensor' could just pass images from a database.
It's not undefeatable, but security has nothing to do with perfection, it has to do with making something harder and more expensive.
If you are running iOS 9.2 and swap out the fingerprint sensor you will immediately get Error 53 and it will wedge your phone.
The intention here was security, Apple clearly didn't anticipate or test against phones that got unauthorized sensor replacements and thus the unintentional bricking. The new update just renders the replaced sensor inoperative but otherwise allows the phone to be used normally.
Slashdot Mirror
The current one is shaking his fist at a storm. Why can't we hire someone who has some common sense about technology?
You can't put the toothpaste back in the tube, encryption is here to stay--and there's nothing you can do about it.
we weren't talking about the NFL, we were talking about the NCAA. Try to keep up.
with enough time and effort you can crack any device. Security has never been about 'perfection'...at any point in the history of mankind. Ever.
The whole point of security is to raise the cost (time, money, political capital in this case) that must be spent to break in. Seeing that the government is basically having to go 15 rounds with Apple to break into the iPhone of a deceased terrorist--that seems like pretty good security to me.
But I understand your confusion--which isn't to say that I'm excusing it, just that I think you're probably generally confused about technology in general.
nt
It varies by school but college football generally pays for itself.
1. Even during the worst stretch the suicide rate at Foxconn was lower than that for China or the US.
2. I'm not sure why it is Apple's fault that China has a lower quality of life. If Apple pulled their business from China and instead built the phones using robots in the US, do you think that would help the average Chinese person? The average Chinese worker IS getting a raw deal, but that blame rests squarely on the shoulders of their economic system & government.
3. Obviously a "few pennies per day" is hyperbole. Can you find a way to make your point without lying?
4. You still seem to have no idea what "slave labor" is. Just to be clear, you are saying that slavery as practiced in the 19th century in the US was no worse than what is currently happening at Foxconn in China?
The summary creates a strawman "Apple would probably break end-to-end encryption for the Chinese if that asked Apple to" and then chastises Apple for hypocrisy. You, like a good little lemming pipe up with "Because $$$".
It would be like if I said: "publicly wjcofkc is against pedophilia, but privately he is probably a pedophile--while is wjcofkc such a hypcrotical pedophile?".
Overwhelmingly Apple makes their money by selling real products to real customers--they have essentially 0 interest in selling your private information to anyone.
It's weird that Apple is always pointed out for using "slave labor" when every other manufacturer of consumer electronics is at least as bad.
BTW: have we now fully accepted the redefinition of "slave labor" to mean "voluntarily working at a job which pays the at or above the typical prevailing wage of the area in which the job is located"? Because "slave labor" used to mean something...different.
Presumably you've made a perfectly secure smartphone yourself--that would certainly justify your 'holier than thou' attitude. Can you point me to where I can buy it?
Failing that, just point me to any perfectly secure consumer computing device. Go ahead, I'll wait.
I'm not sure why it's so hard to just say the truth instead of wishy-washy crap like "I think it depends on the OEM". We aren't having this debate about Android phones because it is trivial for the FBI to crack an Android phone.
Go ahead, I'll wait.
nt
Can you provide a list of these, please?
Maybe this woman understands how authoritarianism is an inevitable consequence of communism.
History has taught us that communism leads to poverty and Orwellian government control. The former is a consequence of removing the incentive for innovation & hard work, the latter is necessary to enforce a planned economy and to prevent an uprising once the population notices that the grass sure looks greener on the capitalist side of the fence.
That makes the phone functional again, just disables the non-compliant fingerprint sensor and thus you are forced to use your passcode. That seems like a reasonable compromise.
Apple only locked out the un-certified counterfeit ones. If you recall there was a counterfeit cable that started a fire that killed someone in China, that's when they started cracking down.
The problem was people who had their phone serviced at an unauthorized shop and then later updated to iOS 9.2.1. That version of iOS included a more thorough check of the fingerprint sensor.
Apple never tried the security update on a phone that had received a third-party repaired fingerprint sensor. Why would they?
People complained, Apple realized that it wasn't all that rare for people to have their home buttons (including sensor) repaired by third party shops, and then realized that they needed to more gracefully handle this case.
I'm sure you are able to anticipate every possible technical consequence of every line of code you write, but you can't expect everyone to live up to your god-like perfection.
If it can't boot then it can't do a device-only update.
Are you just happy to be considered profound by other idiots? Because that is fucking stupid.
As of iOS 9.2.1 Apple disables a tainted fingerprint sensor and reverts to passcode security. We eagerly await your retraction.
Having the fingerprint scanner in the secure enclave makes it harder to (a) remotely record somebody's fingerprint, and/or (b) apply a fingerprint image from a database to a hacked iPhone with the sensor swapped out.
Pointing out that there are "other possible ways" to hack an iPhone is a clear indication that you don't understand how computer security works. Here's a hint, it has absolutely nothing to do with perfection.
The real sensor takes some effort to ensure you are pressing something like a finger to the sensor (a picture of a fingerprint won't work). A fake 'sensor' could just pass images from a database.
It's not undefeatable, but security has nothing to do with perfection, it has to do with making something harder and more expensive.
If you are running iOS 9.2 and swap out the fingerprint sensor you will immediately get Error 53 and it will wedge your phone.
The intention here was security, Apple clearly didn't anticipate or test against phones that got unauthorized sensor replacements and thus the unintentional bricking. The new update just renders the replaced sensor inoperative but otherwise allows the phone to be used normally.