This is the whole reason there's even an argument on this. I'd be surprised if more than a few people have a problem with Apple helping the government access -a- phone, assuming no other phone would ever be affected.

Problem is, I don't believe that's even what the government wants.

So let me get this straight. We have the phone of a woman murderer, who was a non USA citizen, the woman was killed in a shootout with the police, the FBI got a court order to have the phone manufacturer aid in a the investigation of a murder, the phone manufacturer is the most valuable company in the world because they make an insane amount of money, the phone manufacturer has been accused of operating sweat shops in China to manufacture their phones, and the left wing is up in arms because of the dead woman, non US citizens, murderer's right to privacy needs to be protected as well as being worried about the phone manufacturer's long term profitablity. Ok,

.......You don't have this straight. This is not about that person's rights or privacy. This is not about protecting Apple. This is about the protection of everybody walking around with an iphone right now.

Apple has sold 700 million iPhones. It's mostly about the 699,999,999 owners who haven't gone on killing sprees.

^Incredibly wrong. DUCY?

I give. What.

cool to ask iphone questions itt? oot seems awful

i'll just ask ban me whatever, I just got a new 6s+ and I backed up my old 6 to itunes, but when I restore to the new phone my music won't copy over, what am I doing wrong?

Not posting in the OOT iphone thread.

http://css.csail.mit.edu/6.858/2015/...rity-may12.pdf

This doc outlines the iphone security model. It was all new to me.

1. It's really good. Partly because they are control freaks who want to own everything in their universe, but it's really good. Every piece of data on your iphone gets encrypted and the keys are buried in silicon. Only Apple signed code gets to run, and everything runs with the minimum rights needed.

2. I believe they can restrict to one device. The consequences of exploits aren't clear but the design is only Apple can load an image, and only one they approve of for that device.

3. The default passwords are 4 digit pins, but a user can do arbitrary passwords. In which case the brute force attack will fail.

the default 4 number pin was changed in the latest iOS version, think it's 6 now

700 million phones doesn't mean 700 million owners, of course

paul took my hyperbole a little too seriously

but it's more like 100 million people, i would think. Still a large number.

2. Yeah they can easily restrict it to one device by knowing the unique ID of the device. They could also break the device in house and just give the FBI remote access to crack the code, then somehow make sure the FBI can't lift the special image Apple created with the data they want.

3. It still has to be numbers only right? That obviously is very crackable.

https://support.apple.com/en-us/HT204060

can be alphanumeric

too bad they weren't lazy and didn't use fingerprint. That'd be easy to crack with them being dead and all.

Nobody would ever guess pi to twelve digits.

Except, for the analogy to be more accurate, it's like some terrorist has a secret in his head, and there's some brilliant scientist who may be able to create technology that allows the government to read his the terrorists thoughts, and the government gets a court order compelling the scientist to create the technology.

For #2, it's already the case that every image is cooked up special. The procedure is iphone checks in with apple providing ids, what's already running, and a magic random number. Apple replies by creating and signing an image that has the device id & magic random number built in. Another iphone won't install it because the magic random number will never match.

3:

full alpha supported

As a computer programmer I can say that what the court is asking Apple to do is probably more like the court asking a scientist to create a chemical compound. Either it's possible and Apple knows it, or it's not even possible. Either way Apple scores big PR by holding out.

Obviously the govt already tried the approach to keep it out of the public eye. Which makes me wonder if maybe there isn't a way to do it. In a terrorist case of this magnitude, I would think Apple would have been more than happy to do what the govt wanted, quietly. But maybe they're turning over a new leaf.

True but I wouldn't be shocked if the terrorists didn't even know that was available. No one else does.

They should lean on his bank to get his atm pin. That has to be a big favorite. Otherwise, 1234.

This guy hates big government when it's providing assistance to disadvantaged minorities. But, man, he'll bend right over for the government so long as it's to protect him from brown people. What a coward.

There's probably nothing valuable on the phone, otherwise they would have destroyed it beyond recognition. They seemed to have thought most of this stuff out well ahead of time. Well except for just heading back home and chilling for 2 hours.

Nobody cares about security. I think I read it was a company phone and the security was a result of corporate policy turning it on. The company turned on the 10 guess wipe by default.

Didn't RSA build a backdoor into their token system?


edit- never mind, don't think you are actually talking about the actual company

That's what i imagine too. They would have expected that the government would look at their phones.

Don't know what this means but it reminds me of this.



I've got nothing to add. I'll show myself out.

full alpha supported = iphones allow the use of full alphanumeric passwords (a-z, 0-9)