Tim Cook Talks About Encryption, Right to Privacy, Public Safety, and DOJ (time.com) 135
TIME reporters sat down with Apple CEO, Tim Cook, to talk about encryption, public safety, and right to privacy among other subjects. The wide-ranging interview captures Cook's discomfort with how his company has been treated by the Department of Justice. Following are some interesting excerpts from the interview: The thing that is different to me about Messages versus your banking institution is, the part of you doing business with the bank, they need to record what you deposited, what your withdrawals are, what your checks that have cleared. So they need all of this information. That content they need to possess, because they report it back to you. That's the business they're in. Take the message. My business is not reading your messages. I don't have a business doing that. And it's against my values to do that. I don't want to read your private stuff. So I'm just the guy toting your mail over. That's what I'm doing. So if I'm expected to keep your messages, and everybody else's, then there should be a law that says, you need to keep all of these. [...] Law enforcement should not be whining about iPhones; it should be rolling around in all the other free information that criminals and terrorists are spewing through social networks and Nest thermostats, surveillance cameras and Hello Barbies. [...] Going dark -- this is a crock. No one's going dark.
He makes a good point (Score:5, Insightful)
Re: (Score:1)
The DOJ obsessing over the locked phone of a dead shooter in the guise of protecting America, while being totally silent about the insane privacy violations of Windows 10, seems rather hypocritical.
What you see as hypocritical, they see as strategic.
Re:He makes a good point (Score:5, Insightful)
What you see as hypocritical, they see as strategic.
I'd like to point out, for the benefit of those who somehow haven't already got the memo, that there are 'law enforcement' types all over the place, who would like nothing better than to return to the 'good old days' of being able to drag a 'suspect' into a room, and beat them senseless, repeatedly if necessary, until they sign a pre-written 'confession' of their 'crimes' -- then railroad them through the court system, and into prison. That's the sort of mentality we're dealing with here, even if (on the surface) they seem more sophisticated about it. Law enforcement at all levels tends to attract control-freak types who in their heart of hearts believe they're above the law they're supposedly enforcing, and should be allowed to do whatever they want in pursuit of that so-called 'enforcement', and that peoples' 'rights' should be more like a 'privilege' that they can revoke whenever they feel like it.
Re: (Score:2)
"there are 'law enforcement' types all over the place, who would like nothing better than to return to the 'good old days' of being able to drag a 'suspect' into a room, and beat them senseless, repeatedly if necessary, until they sign a pre-written 'confession' of their 'crimes' ..."
I've been wondering what the FBI did back to solve crimes back before they could hack cell phones. Thanks for reminding me.
Re: (Score:2)
I've been wondering what the FBI did back to solve crimes back before they could hack cell phones. Thanks for reminding me.
The FBI has a long and storied history of taking the low road. Just one example of many [nytimes.com]:
Re: (Score:2)
I've been wondering what the FBI did back to solve crimes back before they could hack cell phones. Thanks for reminding me.
Back then, they had to keep some of the suspects alive for questioning.
Re: (Score:2)
The new technique is to manufacture a crime. Get some hotheads together with an FBI agent provocateur. Get them to make some terrorist plan that has no chance of success. Discuss it at length. Come up with some completely legal thing they can do to start getting the plan rolling, then arrest all the idiots on conspiracy charges.
Re: (Score:2)
Re:He makes a good point (Score:4, Insightful)
At least Jack Bauer was actually trying to save people's lives and prevent actual terrorism from happening, not just grabbing power.
You're kinda missing the point. That what all bad cop types think they are doing.
The justice system, and the courts in particular, exist because sometimes the person really is innocent.
Jack Bauer is sure he knows how the real criminal is and (I'm assuming) is right. But there are lots of other types that are simply wrong. That person they are sure is a terrorist/pedophile/killer/etc is not the man they want. Rights and trial-by-your-peers exist so people are not held accountable for crime they didn't commit by some manic with a badge who thinks red tape only exists to make his job harder. No, it's to make sure he does his job right and his procedure itself doesn't become a form of punishment.
Re: (Score:2)
Re: (Score:2)
If things were better in the real world then we wouldn't have as many young black men being shot down in the streets for, apparently, just being young black men. Comparatively speaking, a fictional character like Jack Bauer is closer to the ideal than reality.
You don't know the real motivations of those cops gunning down those African Americans, you're just assuming there's some racist reason behind it. They may be under the (false) idea they they really are "getting the bad guys". Like I said, to the "bad cop" he knows who the perp is. He knows. If only he wasn't being stopped by his gumshoe partner and the Chief, he could get that scumbag and make lives a little easier for the good people of this city.
Jack Bauer is just the bad cop who happens (for plot reaso
Re: (Score:2)
Like I said, to the "bad cop" he knows who the perp is. He knows.
..because the 'perp' doesn't have white skin. Racism is alive and thriving in America, it never went away, it just went underground. Wake up and stop being dumb.
Re: He makes a good point (Score:2)
Re: (Score:2)
We act like fools for awhile and then when we lull them into a false sense of security we strike!
Re: (Score:1)
DOJ is behind the Win 10 free upgrades, because MS has all the back doors the DOJ has requested. The more Win 10 deploys, the more data the DOJ has access to.
Removing the tin foil hat......
Re:He makes a good point (Score:5, Informative)
You should see what they did to Lavabit under the guise of security.
Holy fucking shit.
https://twitter.com/JZdziarski [twitter.com]
They were literally denied their 4th Amendment rights by a FUCKING FEDERAL JUDGE.
Re: (Score:2)
They also ticked off the judge, which should not have affected the ruling but probably did. When given a court order, you should either comply without funny stuff or you politely file a motion why you shouldn't be required to do it. Trying to find some useless way to comply with the letter of the order will get you in trouble.
Re: (Score:2)
Given that the judge said, before this, that they didn't have 4th amendment rights, I'd tell him to fuck off too. And rightfully so.
Re: (Score:2)
Fourth amendment rights for what? The court asked for stuff about some of their subscribers, probably legally, and LavaBit responded by being as uncooperative as possible, until the judge ordered them to turn over keys, since it was apparently impossible to get them to cooperate.
That was dumb. Given a court order you don't want to follow, the intelligent choices are to comply, file a legal motion arguing against compliance, or possibly to dissolve the company so there's nothing left to have an order se
Re: (Score:2)
Yep collecting user data as spelled out in the EULA is worthy of the FBI / DOJ getting involved.
Or not.
Re: (Score:2)
The DoJ caring about "privacy" of citizens? In what world do you live?
Re:Generally Dislike Apple (Score:4, Insightful)
I generally dislike Apple because they're so damn expensive for what you get hardware-wise
Had it occurred to you that they're more expensive exactly because they're not making a profit off mining your data?
Obligatory John Oliver (Score:5, Insightful)
so.. where is this going to go (Score:2)
Re: (Score:2)
Your questions are good.
It's well known that foreign governments are watching this case very closely. It's understood that if the US wins this case, governments like China are going to start requiring backdoors as well.
While Apple winning this case doesn't prevent China, etc from doing so ... Apple loosing this case will assuredly open the floodgates to foreign governments all getting their hook in the code.
Re: (Score:2)
Re: (Score:1)
Apple didn't start this case. The FBI did.
The FBI didn't even serve papers to Apple telling them. Apple found out about it from the FBI's news release.
Re:so.. where is this going to go (Score:5, Insightful)
He's not going to protect us, he's going to protect himself, his company, his values. That protects others who share his values.
No need to run off the rails because he isn't Harry Potter.
Re: (Score:3)
He's not going to protect us, he's going to protect himself, his company, his values.
I find this funny, he will argue his point publicly and loudly because at the moment it protects his company image and is what the customers want. If he looses apparently the iPhone is so secure that not even the FBI can hack it without the help of the geniuses that made it, which still works out for the company image, just not as well as if he wins.
It would however be funny if the all of the sudden they dropped the issue by saying "Never mind, it was easier to hack than we thought.".
Re: (Score:2)
The NSA could have easily hacked the phone this past summer.
It's not about the hack...
Re: (Score:2)
You and I know there are already tech forensics companies out there that work with law enforcement and provide tools and that this is about making manufactures give access not about them actually being able to gain access, but that's not what the rest of the world sees or wants to see.
Re: (Score:2)
Its about making the PRISM material legal in any US state or federal open court. The brand and phone becomes the named informant. GPS, logs, images, movement, voice, files.
A cell phone brand can even be the origin of an entire case in open court, hiding deeper human or mil signals parallel construction.
Recall the " and the zombies would be paying customers?" quote from
iSpy: How the NSA Accesses Smartphone Data (September 09, 2013)
http://www.spiegel.de/internat... [spiegel.de]
Re: (Score:2)
It's not about establishing legal evidence. That's what parallel construction is for. This is to establish that there is no right to privacy, and that everybody must cooperate with the TLAs to break it whenever asked.
Re: (Score:2)
Huh? The question is not whether Apple can't do what the court order says. The question is whether they can be legally compelled to do it.
Re: (Score:2)
I thought the question is even if they are able to legally compel them how much will Apple protest in order to protect their company image.
Re: (Score:2)
You are absolutely correct. It just so happens that protecting himself, his company, and his values aligns very closely with protecting me, and my values. Therefore, I support his efforts.
Re: (Score:2)
Re: (Score:2)
Well, the government can always just force you to turn over the keys and access ALL of your customers' info that uses them for encryption.
It's what they did to Lavabit.
https://twitter.com/JZdziarski... [twitter.com]
Re: (Score:2)
I'm sort of hoping that soon it will be an offline computer in a big white room in Dublin or somewhere like that. There's no technical reason why not.
Re: (Score:2)
Cook should build phones that just cannot be broken into, not even by someone with full access to the source code, firmware signing keys, and hardware.
That does appear to be the way he is pushing his engineers. However, in the mean time there are billions of iPhones out there for whom this level of protection is not yet possible, and cannot be retroactively applied. I don't even believe that Cook has attempted to portray his actions as altruistic, just that what is in the best interest of Apple Inc., and what is in the best interest of owners of Apple devises are in sync with each other on this issue.
Apple Inc sees no value and only cost associated with
Re: (Score:2)
> while you may think the FBI is trustworthy
Honestly, I don't see how anybody who is in any way familiar with the FBI, it's history, it's most well-known director, the culture and organization he built, the shenanigans (to put it mildly) during his tenure, and the fact the the FBI still reveres and honors said director, even residing in a HQ building bearing his name... could *POSSIBLY* consider the FBI trustworthy. We're not talking about the television FBI of Mulder and Sculley. The real thing is the
Re: (Score:2)
In fact, unlike you, I trust neither Apple, nor the FBI, nor the Chinese government. You live in a fantasy if you think that Apple hasn't already cooperated with the Chinese government in order to get access to the Chinese market, [qz.com] just like Microsoft has already done with the Russia [zdnet.com]
Re: (Score:2)
Re: (Score:2)
That's PR bullshit. Apple isn't fighting for the right to provide encryption on their devices; if they did, I'd be cheering them on. What Apple is fighting for is the right to protect flawed encryption from a valid court order. And the problem with that is that no matter whether they win or whether they lose, the public will be worse off as a result.
Re: (Score:2)
If Apple loses, then they and other cell phone manufacturers will be required to include backdoors and maintain work arounds for the government indefinitely. Sucks to be you if the FBI wants access to your phone, and sucks to be you if someone other than Apple or the Government is able to get access to the tools or reverse engineer the work around.
If Apple wins, then it will still be possible in the future to develop completely encrypted bullet proof phones in t
Re: (Score:2)
The iPhone 5C already has a backdoor; that's the problem. Furthermore, you can be certain that the NSA and other agencies can get in through that back door. Apple winning or losing makes no difference to that. But if Apple wins, it gives the appearance that your data is protected when in fact it is not. Furthermore, if Apple wins, it will give more am
Re: (Score:2)
The iPhone 5C already has a backdoor; that's the problem. Furthermore, you can be certain that the NSA and other agencies can get in through that back door. Apple winning or losing makes no difference to that. But if Apple wins, it gives the appearance that your data is protected when in fact it is not. Furthermore, if Apple wins, it will give more ammunition to people demanding laws that require explicit backdoors.
So in your opinion we are damned if we do and damned if we don't? The lack of completely secure phones today (or at least back when the iPhone 5C was sold) completely invalidates any potential advances to make them more secure in the future, and if Apple wins in court then the legislature will (despite having failed to do so during the first encryption debate) of course pass laws to grant such a back door in the future. That's an awfully pessimistic view. If legislators from my state start supporting such a
Re: (Score:2)
False dichotomy. Apple's mistake was pretending that their backdoored phone was secure. They should have simply admitted that the iPhone 5C wasn't secure and moved on, instead of pretending that they are out defending everybody's rights.
Re: (Score:2)
Unless you've got a specific Chinese or Russian law to which you can point, your assertion is baseless. I don't disagree that these governments would very much like to have this infor
Re: (Score:2)
Microsoft has already released their source code to Russia and China under pressure from their governments; isn't that evidence enough?
Yes, that is how discovery usually works. Apple might have argued an "undue burden", but not that the FBI isn't entitled to this in principle.
Switzerland (Score:2)
Re: (Score:2)
not the whole company, but the parts that deal with crypto.
if apple was smart(er) they would be actively working on a fullproof decoupling of the base system from the crypto. make it so that its actually impossible for US forces to storm any apple site and try to force the company to do the feds' bidding.
the crypto code would not be on any network, not even any apple network. the build would be done locally via specially vetted employees, etc etc. you can imagine how it could work.
what they have now (I'm
Re: Switzerland (Score:1)
Switzerland has surrendered to the US and EU its invaluable banking secrecy and you think they could defend your data? How naive can you be?
Re: (Score:1)
Correct analysis. Now that they are surrounded by a certain four letter Imperium, they are arguably in a much worse state than ever.
They resist as much as they can, but they are not killing themselves. They collaborate like they had to collaborate earlier. They hope that a tiny amount of Allemanic freedom can be preserved.
Let's hope they keep their rifles all well oiled.
Re: (Score:2)
How did that work out for Swiss banks and their tradition of banking secrecy? They eventually caved in to IRS demands to track down tax evaders.
There are maybe 4-5 countries on Earth with the combined economic, military and diplomatic power to be home to a product completely beyond the influence of any government.
And even then it doesn't guarantee that the product will be available anywhere outside of its home country (where presumably you're also able to manufacture it, so you don't have any dependency on
Cook is wrong about why banks keep information (Score:5, Informative)
Re:Cook is wrong about why banks keep information (Score:5, Insightful)
Banks, in order to operate with integrity, DO need to keep a transaction ledger. Honest ones had been doing so for centuries before the Bank Secrecy Act.
There is a highly important yet subtle difference here. The Bank Secrecy Act requires banks divulge information they already were keeping.
A similar act given to apple would require them to divulge information about your account (information they are already keeping). But, the newest FaceTime does peer-to-peer VoIP if it can. Is Apple required to engineer a backdoor in to listen to a conversation that *today* they only facilitate the initial call setup? Should they be required to keep an audio copy of the call? Apple currently does not store the call, and if possible they only arbitrate the two phones finding each other (they may not even transit the call audio). This would be like requiring you bank to keep tabs on how you spend your cash.
Re: (Score:2)
Re: (Score:2)
I don't see a large distinction between divulging information you're already retaining vs being compelled to retain new information that you also must divulge. For example the Bank Secrecy Act compels banks to retain transactional history that they weren't already keeping, such as details of specific credit and cash transactions that exceed $10,000/USD.
Banks keep track of every transaction. How do you think you get a balance sheet every month itemizing your every transaction? They don't do it because the Federal Government compels them to. They do it because that is the nature of banking. The only thing that law requires them to do is to notify the government when a 'suspicious' transaction occurs. They're already privy to all the details of the account holder - bank relationship. In the case of Apple they are also privy to all the details of the ph
Re: (Score:2)
Re: (Score:2)
You're implying that banks already kept all the information and had all the necessary procedures like account verification that were necessary to comply with the Bank Secrecy Act before the law was passed. If you read the regulation (https://www.fdic.gov/regulations/safety/manual/section8-1.pdf) you'll find that's likely not the case, that many banks had to start tracking additional information and employ new procedures. So there is a precedent for the federal government to compel businesses to collect information and enact new procedures.
Other than the training requirements and the forms required to be filed with the IRS, I don't know of any new transactional record the bank would be required to keep under this law. Sure they had to start verifying SSN or TIN for account holders, yes. But you'll also note that this only covers banks that make use of FDIC or NCUSIF insurance programs. You could create a non-insured bank and it would not, at least under the original BSA rules, be required to keep any of these records or to verify the SSN o
Re: (Score:2)
Monetary Instrument Sales Records : A bank must retain a record of each cash sale of bank checks, drafts, cashierâ(TM)s checks, money orders, and travelerâ(TM)s checks between $3,000 and $10,000 inclusive. These records must include evidence of verification of the identity of the purchaser and other information. (31 CFR 103.29)
And for a more di
Re: (Score:2)
Here's an example of the additional information banks were required to obtain and retain as part of BSA (https://www.hsdl.org/?view&did=439815): Monetary Instrument Sales Records : A bank must retain a record of each cash sale of bank checks, drafts, cashierâ(TM)s checks, money orders, and travelerâ(TM)s checks between $3,000 and $10,000 inclusive. These records must include evidence of verification of the identity of the purchaser and other information. (31 CFR 103.29) And for a more direct example of precedent as it relates to Apple, the BSA actually required the banks to develop and deploy software to detect money laundering. One of the core arguments Apple makes is that companies can't be compelled to develop something to comply with a court order (and in turn a law). https://en.wikipedia.org/wiki/... [wikipedia.org]
Again, banks already had records of each sale of bank checks, drafts, cashier's checks, money orders, and travelers checks between $3,000 and $10,000. This was in the 60's. That was a hell of a lot of money and no bank would honor a cashier's check it had no record of issuing. Don't be ridiculous. And the federal government did NOT mandate that banks write software. They said "If you want to participate in the FDIC insurance program, you will meet these requirements." The federal government didn't car
Re: (Score:2)
Re:Cook is wrong about why banks keep information (Score:4, Insightful)
"If the federal government can compel banks to keep this information I'm not sure what prevents them from compelling Apple as well. "
What prevents them is the lack of actual law that authorizes the federal government to do so. If we want the federal government to able to compel Apple to turn this data over then we must make a law authorizing the federal government to do so. IF not, then the federal government should not be using unrelated threats to compel a "voluntary" action that it cannot actually compel.
Re: (Score:1)
"If the federal government can compel banks to keep this information I'm not sure what prevents them from compelling Apple as well. "
What prevents them is the lack of actual law that authorizes the federal government to do so. If we want the federal government to able to compel Apple to turn this data over then we must make a law authorizing the federal government to do so. IF not, then the federal government should not be using unrelated threats to compel a "voluntary" action that it cannot actually compel.
The difference is that the banks, for sake of their reputations and their business, already keep all that information. All the Feds do is compel them to hand it over by providing the appropriate authorization paperwork ( I know slippery slope ).
Nothing is built, nothing is constructed, all the needed material to respond to the Feds is already available. Unlike with Apple, where Apple doesn't have the information, and has no way to get it directly from the phone. What Apple has done in the past, is to
Re: (Score:2)
Re: (Score:2)
The Senate Intelligence Committee is on the job! http://www.reuters.com/article... [reuters.com]
propaganda (Score:5, Insightful)
Going dark -- this is a crock. No one's going dark.
This is key. Their main argument is bullshit. They are not going dark. If anything, they have massively more surveillance than they did, let's say, 50 years ago. Or 30 years. Or virtually any time.
20 years ago, what chances did police have to get a recording or transcript of a conversation between criminals one month after the fact? Unless they already were watching and wiretapping them, almost none. Today, chances are quite good that you will find some e-mails, chat log or other exchange.
10 years ago, what chances did police have to find out where someone was on a given day one year later? Unless they were already shadowing him, almost none. Today, he checked in on Facebook or Foursquare or his phone location data gives him away.
Maybe there was a high point a few years ago, when most of what we have today was already there, but encryption was lagging behind. Maybe compared to that short golden period they now see less - but it is still vastly more than ever before in the history of police work.
And when someone lies to get something, you already know they can't be trusted, so giving them something that can potentially be abused would be really, really, very, very stupid.
Nice swipe at Google along the way.... (Score:4, Insightful)
"My business is not reading your mails"
Nope, because you make craptons of cash selling hardware.
I was going to say the usual "overpriced" hardware but...what price your privacy?
My wife and I are happy with android, but we upgrade regularly.
With the effective demise of blackberry, soon might be Apple is only option
Re:Nice swipe at Google along the way.... (Score:4, Insightful)
From someone up above:
"Has it occurred to you that Apple is more expensive exactly because they're not making a profit off mining your data?"
Re: (Score:2)
So which phone manufacturer is making a profit from mining our data then? Considering that Android connects to Google's services (encrypted of course.), not Samsung or HTC or Huauwei.
Breakdowns of iPhone "R&D" costs and the internal hardware always show an enormous profit margin for them, 69% in the case of the iPhone 6 [smh.com.au].
That doesn't dilute the value of Tim Cook's arguments though.
What propaganda looks like (Score:2)
See this article:
http://www.mprnews.org/story/2... [mprnews.org]
Note:
The so-called "Caliphate Cyber Army" posted the details of 36 officers on the encrypted messaging app Telegram
Get that? It was posted on an "encrypted messaging app" - although oddly the police and FBI were able to read it.
You'll see more and more of this in the news - linking encryption and ISIS.
Re:In this article: (Score:5, Insightful)
The "going dark" theory doesn't seem to hold water. There is vastly more information available now, in a very "hoover-able" (able to be sucked up) fashion, than ever before.
The law enforcement community in the US complained that with the digitization of telephone service, they would not be able to tap phones when needed - so they got a law that requires all phone switches be remotely "tappable" and voila, better access than ever before by law enforcement. We have all taken to using mobile phones, smart phones, and e-mail; all of which places all kinds of information in an electronic form that can be easily captured when before it was in ephemeral conversations and/or a million pieces of paper that couldn't be easily trolled through in a million years.
Sure, there has been a change in how law enforcement gathers information, with some ways going away, but new ways being made available. Overall it seems to me (without being in any way an expert) that there is probably a substantially larger amount of information available more easily today than 30 years ago before the explosion in personal digital communications. Encryption may impede some access, but overall it seems like a net gain.
Having said that, it doesn't necessarily make it a simple job to get the goods on someone to have all of the information available. It still has to be analyzed, assessed, and linked together with all of the other bits in order to be useful in an investigation. Its easy to see why law enforcement wants to make this process as easy as possible. But that's why we have constitutional protections - to help lay out the ground rules for finding a balance. I'm not surprised that there are some in the law enforcement community leaning on the scales as hard as they can, probably with the hopes of making sure the balance tips just a little bit more towards making their jobs easier.
Re: (Score:2)
Re: (Score:2)
If a hermit wants to go dark, that is called "freedom." If he's also the unibomber, that just means police work is hard.
That's OK, they're paid really well because their job is dangerous, even if it doesn't make the top 10 in actual danger.
I'm confident that when this gets to the Supreme Court, they'll remind the FBI that their job is to enforce the law, not prevent crime.
Re:In this article: (Score:5, Insightful)
Police work _must_ be hard. They _must_ be limited in what they can do. It is not and has never be the task of the police to catch every criminal. It is their task to keep the problem enough under control so society continues to function. As soon as police work becomes too easy, they expand into areas they were never supposed to go and control everything. Police-persons just cannot help themselves, that is their mind-set. The result of a failure to strongly limit the powers of the police is a police-state and that almost universally evolves to full-blown fascism over time.
Don't get me wrong, we need them. There are enough bad actors that need to be kept under control. But the police itself immediately becomes such a bad actor if not controlled tightly. Handing them the rains is about as stupid as handing it to the military or to the big corporations: They all place their own agenda far before the welfare of society.
Re: (Score:2)
If a criminal wanted to "go dark" 60 years ago, there were still forms of encryption and communication that the United States Government couldn't do fuck-all about. Somehow it's different now, than it was 60 years ago if someone used a one-time pad and a telegram?
Re: (Score:2)
Law enforcement gets easy wins by going after the dumb criminals. They've done this forever. Everyong applauds for having the suspect found so quickly. The evil mastermind however has always been hard to catch, and when they're caught it's because someone else was stupid (like printing out the plaintext). Where law enforcement is panicking is because cryptography is so common place now that even the dumb criminals have access to it. Not as much low hanging fruit anymore.
Re: (Score:2)
Re: (Score:2)
Aside from the one-time pad (which the KGB showed us was easy to mess up), I don't know of any encryption a criminal would have access to that the US couldn't break. Cipher machines were really expensive (except that the Brits scooped up as many Enigmas as they could to sell cheap to emerging countries that didn't know the Brits could crack them), so criminals wouldn't have them. Aside from that, there were plenty of pencil-and-paper ciphers available to people who knew them that quite a few people in th
Re:In this article: (Score:5, Insightful)
I think "going dark" is actually about "we need to see everything", i.e. not about enforcing laws at all, but about creating strong chilling effects. There is a special kind of despicable human being that cannot stand others having independent "unauthorized" thoughts and, worse, putting them in writing. Traditionally, an all-seeing, all-knowing God took care of that. These days not even most religious people fall for the idea that "God" would enforce the agenda of all-too-flawed worldly "authorities", so they are now trying to enforce that "you cannot hide your thoughts" by technological means to make people self-censor and self-oppress.
For the case at hand, this means this is not about the phone at all and not about the firmware Apple is requested to write. It is about that said despicable individuals cannot deal with being told "no" when they want to demonstrate that nobody is safe from them. While I am sure not all of the FBI and DoJ is like that, the current "leaders" there have the mind-set of the Inquisition and the GeStaPo and are a huge threat to free society.
Re:In this article: (Score:4, Insightful)
Exactly. The last point is important. The FBI and local law enforcement fucked up the evidence. This is the equivalent of not properly locking down a crime scene and all the fingerprints being smudged out, and then blaming the owner of the building where the crime scene was located.
Re: (Score:2)
Might be a conspiracy-theory, but I now consider it possible that this was by intent.
Re: (Score:2)
Tim Cook talks about a bunch of things he doesn't actually understand.
And Slashdot files the article under "Democrats".
Re: (Score:2)
Re:Why not restore the original iCloud password ha (Score:4, Interesting)
Or, even better, had the County employee(s) in charge of managing the phones done their job and put MDM software on the phone, this wouldn't be an issue. The County could have been given the court order to unlock the phone and ten seconds later told the FBI, "Here ya go."
As I have said in previous posts, I did this for a government agency I worked for. I was the one put in charge to develop the procedures to secure the phone, including turning off Siri and cloud backup (the users were told no documents were to be put on the phone). Without exception every iPhone we got had MDM software put on it despite the whining from some about being tracked. As I told one guy, "We're not tracking you, we're tracking the phone. We don't care about you. We care about our equipment."
On a few occasions I was asked by a user to unlock their phone because they forgot their passcode so I know how easy this procedure is. As I said above, it is literally ten seconds to unlock the phone with this software installed.
Re: (Score:2)
There's reasons why I use my stuff for my purposes and company stuff for work purposes (and Slashdot).
Re: (Score:2)
You hear that, FBI? I know you're following these stories and reading these comments. Follow up.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
I suspect the FBI has been waiting for any excuse to force Apple to unlock the phone for them. Any other practical solutions is not likely to be entertained as they have already said that even if they had all the iCloud backups, they need to check everything on the phone.
They've been waiting for the right excuse so they can set a precedent on a case the public won't care about it.
Re: (Score:2)
I wonder... does Apple actually overwrite the existing credential record when a password is changed, or do they create a new record and mark the old one as invalid? If they do the latter, they can roll back to the old password and allow the backup to take place. The FBI should, perhaps, ask about this.
There is no "credential record".
All the data on an iPhone is encrypted. There is a master key that can unlock all the encryption keys that are used. That master key is not stored anywhere. Instead, it is calculated from three components: A device key, stored on the flash drive, and easily readable. Another key stored in the CPU, not known to anyone, and not accessible to anyone. And your passcode. If you have the device key, the right CPU, and the correct passcode, then the masterkey can be calculated.
Re: (Score:2)
As for there being no record of the password, there is certainty a hash to compare against for login purposes, otherwise how would Apple's systems know if you entered the correct password? Freakin' magic? No. There is a record to compare against and, if Apple retains the old hashes, rather than overwriting them, they can roll back to the pr