Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
Security Apple

Why is South Korea's Military Set To Ban iPhones Over 'Security' Concerns? (appleinsider.com) 50

"South Korea is considering prohibiting the use of iPhones and smart wearable devices inside military buildings," reports the Defense Post, "due to increasing security concerns."

But the blog Apple Insider argues the move "has less to do with security and more to do with a poorly crafted mobile device management suite coupled with nationalism..." A report on Tuesday morning claims that the ban is on all devices capable of voice recording and do not allow third-party apps to lock this down — with iPhone specifically named... According to sources familiar with the matter cited by Tuesday's report, the iPhone is explicitly banned. Android-based devices, like Samsung's, are exempt from the ban...

The issue appears to be that the South Korean National Defense Mobile Security mobile device management app doesn't seem to be able to block the use of the microphone. This particular MDM was rolled out in 2013, with use enforced across all military members in 2021.

The report talks about user complaints about the software, and inconsistent limitations depending on make, model, and operating system. A military official speaking to the publication says that deficiencies on Android would be addressed in a software update. Discussions are apparently underway to extend the total ban downwards to the entire military. The Army is said to have tried the ban as well...

Seven in 10 South Korean military members are Samsung users. So, the ban appears to be mostly symbolic.

Thanks to Slashdot reader Kitkoan for sharing the news.
This discussion has been archived. No new comments can be posted.

Why is South Korea's Military Set To Ban iPhones Over 'Security' Concerns?

Comments Filter:
  • by HBI ( 10338492 ) on Sunday April 28, 2024 @09:58AM (#64430850)

    NK sympathizers are always gathering intel from them. This is a country where a small unit raid or artillery fire mission could happen at any time and people are dying on a regular basis. So when they ban mobile device microphones for OPSEC reasons, I don't argue all that much.

    With that said, their security posture is good but their actual IT is not as great as it could be.

  • by Somervillain ( 4719341 ) on Sunday April 28, 2024 @10:04AM (#64430858)
    This is just basic protectionism and as the TFA stated, it's symbolic. If you are serving in the military and you really want your iPhone, I guess you'll buy a cheap burner phone for the base, just like how most of us did 20 years ago when work gave us a blackberry which we couldn't use for non-work purposes. We'd carry a blackberry on our belt (for some reason, that wasn't an embarrassment) and our real phone for talking to our family in our pocket.

    I guess this is the new future? I don't care too much. The US bans TikTok to protect it's local social media industry and South Korea does the same to protect it's smartphone industry. It's not great, but not in the top 10 of my daily worries.
    • by xlsior ( 524145 )

      This is just basic protectionism and as the TFA stated, it's symbolic.

      I'd argue that blocking the 30% of the devices on site because they effectively contain a known operational security vulnerability would be a little more than just symbolic

      • 30% is not iPhone share, is anything else than Samsung, it includes iPhones but just as well Android devices from brands other than Samsung.

    • by ArmoredDragon ( 3450605 ) on Sunday April 28, 2024 @02:18PM (#64431106)

      I doubt it considering the DoD doesn't allow iPhones either in certain cases. They have their own version of Android specifically built for this use, and runs on a Samsung phone. Apple would never allow that, particularly because it takes ownership of the device away from them. Likewise I could see Apple giving Korea a similar cold shoulder.

  • Wut? (Score:4, Interesting)

    by Ol Olsoc ( 1175323 ) on Sunday April 28, 2024 @10:07AM (#64430864)
    Banning iPhones, but not Androids?

    It's been policy for years - at least here - that you take the smartphone out of your pocket, turn it off, and put in a little locker designed to hold it until you leave the area where classified discussions might occur.

    You always turn it off, because ET always tries to connect to a tower. In that little metal cage, it ramps up to full power, and drains the battery quickly.

    We can discuss all day, but tracking and connecting is the core of how the cellular system works. It's a short hop from there to surreptitious recording.

    • A compromised tower can track phone's location even if actual communications are encrypted.
    • by JBMcB ( 73720 )

      Banning iPhones, but not Androids?

      I'll take a wild guess and say that Samsung and LG phones are approved.

      • by cusco ( 717999 )

        It's an administration issue, they can't control what is done on an iToy because Apple only permits themselves to control their users. There are a number of nice management suites for Android phones (although apparently the one they currently use badly needs an update). Apple of course refuses to provide any such thing, and will sue the pants off anyone else who tries. This is much the same reason why they only occupy a very niche position in the corporate world, there are scores of management suites for

        • It's an administration issue, they can't control what is done on an iToy because Apple only permits themselves to control their users. There are a number of nice management suites for Android phones (although apparently the one they currently use badly needs an update). Apple of course refuses to provide any such thing, and will sue the pants off anyone else who tries. This is much the same reason why they only occupy a very niche position in the corporate world, there are scores of management suites for Windows and Linux but Macs are essentially unmanageable.

          The issue with smartphones and computers when dealing with security is that for all of the peter waving between iPhone and Android, there is a whole lot more to handling classified data than what most people think of.

          Smartphones have cameras, microphones and recording devices. If you plan to take them into a classified facility, they must be physically disabled. A very few phones have mechanical kill switches. But they are tiny little DIP switches, and are you going to remember, to turn them off or bet

          • by cusco ( 717999 )

            Phones can be safely permitted into a restricted facility **IF** there is a way to adequately manage them, the same as laptops. Phones which are added to a good management suite can serve multiple purposes safely, if they're not managed then they can't. Ballmer screwed up by not extending AD, SMS, etc. to the Windows phone and pushing it as a secure solution to corporate communications, but he didn't have the attention span to maintain a low-revenue product long enough for it to seize sufficient market sh

        • by JBMcB ( 73720 )

          It's an administration issue, they can't control what is done on an iToy because Apple only permits themselves to control their users.

          That's news to my company, and pretty much every school district.

          https://support.apple.com/appl... [apple.com]
          https://www.apple.com/business... [apple.com]

          And here are some 3rd party management tools:
          https://www.jamf.com/solutions... [jamf.com]
          https://jumpcloud.com/ [jumpcloud.com]
          https://www.kandji.io/ [kandji.io]

          I forget what 3rd party management system my son's iPad uses. It has it's own app store, though.

          • So which one of these disables the camera for all apps? Scrolling through your links, you provided a Mac configurator, a marketing piece. The first one (jam) doesn't specifically mention disabling hardware. I've also personally seen at least two MDMs on idevices that leave the Camera / Mic enabled, and only block install of other apps / force install the business's. So, can you actually post relevant links to the discussion at hand? I don't see any mention of them offering the ability to disable the
            • by JBMcB ( 73720 )

              The point of the post is to responed to the OP's point that Apple doesn't offer an MDM nor 3rd party MDMs at all. This is not true.

              In any case, you can turn off the camera via an MDM policy in iOS.
              https://support.apple.com/guid... [apple.com]

      • Banning iPhones, but not Androids?

        I'll take a wild guess and say that Samsung and LG phones are approved.

        Do Samsung and LG not have cameras, audio recording and microphones?

        I get it. People hate Apple anything. But the phones available for only a very few high level people must be modified to verifiably turn off all of those devices.

        • by JBMcB ( 73720 )

          Do Samsung and LG not have cameras, audio recording and microphones?

          Yes, but my point was that they are South Korean companies.

          • Do Samsung and LG not have cameras, audio recording and microphones?

            Yes, but my point was that they are South Korean companies.

            Oh yeah, I agree with what you said. It's just that they might be patriotic South Koreans, but they are gonna be pwned. Pine makes a Linux smartphone that has hardware switches, but the things are activated by DIP switches, and really, it's just easier to put them in a metal box/

    • Banning iPhones, but not Androids?

      It may sound strange but it's actually not weird in the slightest. There's a long history of why Android devices would be better suited to the job. Samsung was rolling out hardened security systems with corporate MDM back when Apple was still pretending that corporations didn't exist and the iPhones were just for consumers. It wasn't until they were actively losing market share in the corporate world that they even entertained the idea of giving someone control over parts of the OS via MDM.

      In the meantime A

      • Banning iPhones, but not Androids?

        It may sound strange but it's actually not weird in the slightest. There's a long history of why Android devices would be better suited to the job.

        Apple simply hasn't offered the same level of control over their devices and several Android vendors have.

        Perhaps our Security department was completely wrong, but we had to put all phones of any make or brand, smartphones, flipphones any 2 way device in secure containers. If you brought one into a secure area, and were caught, you were given a security violation. The only way you could escape that is if you removed the battery - if it could be removed. Androids were no exception. No cameras, or microphones or recording devices. All of which are on Androids.

        There are certain exceptions for high level peopl

        • No not wrong. You just applied a more stringent requirement. It's common in some places. But for places where there are looser requirements including those for MDM controlled by company devices there is still a difference between Android and iPhone in capabilities. And I should say there's difference in Android and Android. Again different vendors, different capabilities in the Android world.

          • No not wrong. You just applied a more stringent requirement. It's common in some places.

            We are speaking about the South Korean Military. Not Some places.

            They cannot use your idea of Androids are secure enough, unless the South Korean never deals with any classified information. As an ally of the USA, that would be very strange indeed.

            I know that the Pine and Purism offerings have hardware switches, But every phone would have to be inspected to insure the switches are in the right position. Any meeting I had responsibility would have every cell and smartphone and recording device left outs

    • by PPH ( 736903 )

      It's been policy for years - at least here - that you take the smartphone out of your pocket, turn it off, and put in a little locker designed to hold it until you leave the area where classified discussions might occur.

      This.

      First of all, I thought that MDM software only worked on corporate-owned devices enrolled in the system. Someone brings their own device to work and all bets are off. Also, personal devices can be placed in airplane mode. So they refuse to connect to any towers. But many, if not all, can be equipped with apps that can record audio/video to local storage and then upload later. So if the company didn't give you a device for specific use in secure areas, you leave your toy in the locker.

      There are a few

  • Does iPhone have the equivalent of KNOX containers?

    • I don't know how useful is the "business" part of "knox", but on consumer phones its only feature is to delay the boot of a properly rooted device until the user pushes the power button. The removal of samsung bloatware, however, speeds up the device more than enough to compensate.

  • In South Korea, they have a saying, something like "Only 3 things are guaranteed: death, taxes, and Samsung."

  • The speaker can be GPIO repurposed as a microphone. A 2nd microphone is easily installed inside the case - or the battery modified to contain - memory. The Camera may also be good enough to pick up window vibrations, or off a cellophane decoration. Physical off switches are the only thing that can be trusted. Blutooth or the general purpose modem chip processor can to a custom broad spectrum transmission. The solution is no mobile phones at all- check them in on arrival. These flaws are also common to all
  • Seriously, the iPhone is a 'black box' designed by a US lifestyle corporation and built in China. I wouldn't want one on military property.
  • Android phones are remotely secure. Might be because people who have iPhones have greater data access, are fatter targets? Or... Apple is hurting Korean mobile manufacturers?
    • by EvilSS ( 557649 )
      From TFS:

      A report on Tuesday morning claims that the ban is on all devices capable of voice recording and do not allow third-party apps to lock this down — with iPhone specifically named...

      The issue appears to be that the South Korean National Defense Mobile Security mobile device management app doesn't seem to be able to block the use of the microphone. This particular MDM was rolled out in 2013, with use enforced across all military members in 2021.

      iOS doesn't allow MDM software to control the microphone. That's the stated reason at least.

  • https://arstechnica.com/security/2023/12/exploit-used-in-mass-iphone-infection-campaign-targeted-secret-hardware-feature/ [arstechnica.com]
    Looks like Apple Silicon is (likely deliberately) backdoored on an instruction set level.
  • It's incredible that phones are allowed inside buildings with sensitive material. Many defence forces ban the _presence_ of any personal electronics in areas where there is classified material. Here's a US summary: https://news.usni.org/2018/05/... [usni.org]
    "Personal and Government mobile devices that transmit, store, or record data are prohibited inside secure spaces within the Pentagon."

"The medium is the message." -- Marshall McLuhan

Working...