Apple rejecting calls from FBI to unlock gunman's iPhone

Apple rejecting calls from FBI to unlock gunman's iPhone

Author
Discussion

andy_s

19,544 posts

265 months

Saturday 27th February 2016
quotequote all
Meanwhile, in the DoD, they're adopting Blackphone as they are 'NSA' proof...

Leithen

12,013 posts

273 months

Saturday 27th February 2016
quotequote all
KaraK said:
Leithen said:
KaraK said:
...they are being asked to help exploit one that is already there as part of a perfectly legal process.
The legality of he process is the most immediate question - the FBI have been forced to use a very old piece of law to try and make Apple do as they wish. The background appears to be a failed attempt over the past few years to get congress to introduce and pass legislation that would specifically neuter encryption on such devices.
It's an old law certainly but that in of itself isn't a reason to disregard it is it? It's certainty still in use - twice in the last 50 years that I know of. One of which was actually in 2014 and was funnily enough used to make an unnamed smartphone manufacturer bypass a phone lock screen so there is recent precedent.
Indeed, and ultimately the courts may find that it's use is entirely appropriate. Equally it's entirely within Apple's rights to challenge it's use. By either party taking it to the Supreme Court, the purpose can be scrutinised too. And that is the real battle here IMO.

It would be useful if The Supreme Court had a full complement of judges by the time it makes it there....

GoodDoc

559 posts

182 months

Sunday 28th February 2016
quotequote all
silverous said:
ewenm said:
Which is great, but how do you restrict such tools to law enforcement?
I'm sure a company that is capable of restricting phones to avoid law enforcement interference could figure it out....
I get frustrated by the "they're clever, they should be able to do something" argument. The general public has an inability to understand just how difficult some tasks are, we saw it when the government wanted a "porn filter" that would only block 'bad' things' without blocking 'good things'. The ability of technology to impress us does not mean it can achieve the impossible.

Over the last 30 years we've seen the capabilities and rights of law enforcement ratcheted ever up, particularly in the US. We've also seen those abilities abused and used for activities law enforcement said they've never use them for. You can't argue for "law enforcement to have any tool available that allows them to swiftly gather evidence" without placing controls on how this mythical technology is used, or abdicating responsibility for securing it to somebody else.

The raw materials of encryption are mathematics and, regardless of your intentions, you can't legislate against maths. Once you've created a mathematical hole in encryption for law enforcement it's exists for anyone to take advantage of. It simply isn't possible to restrict such tools to law enforcement.

silverous said:
They have the ability to dip into our icloud backups by the sound of it but I don't see that getting leaked out to all and sundry.
iCloud backups are encrypted using an Apple key and because Apple have the key, they can decrypt those backups. iCloud backups are not getting "leaked out to all and sundry because even if you get access to the backups you can't decrypt them. Strong encryption keeps them safe, weaken that encryption and you make them a target.

Desire to give law enforcement every tool they desire, and hope that technology can protect those tools are two very frightening ideas for any individual to believe in.



KaraK

13,267 posts

215 months

Sunday 28th February 2016
quotequote all
The idea of an encryption algorithm with a backdoor in is imho a bad thing - and one of the reasons that the selection process of the algorithm for AES was done in such an exceptionally transparent way was to prevent such a backdoor and also allay fears of one.

Enough cryptographers who seriously know their stuff have declared it sound for me to feel more than comfortable believing that if correctly implemented AES 256 is not feasible to crack and I would point out that Apple are not being asked to do this here. To those worried that if Apple agree to the writ that such a backdoor will be "requested" I would say that such a request is actually more likely to be the result of a refusal "see, we tried to play nice bur Apple wouldn't carry out our request so we had no choice but to play hardball". If Apple agreed to the current case then that would set a precedent that searches deemed legally reasonable would be possible so that would IMO make any request for a backdoor seem very much that they were only wanting it for carrying out unreasonable / illegal searches. The warrantless surveillance carried out under the FISA and PATRIOT powers are the real threats to privacy and civil liberties in my book.

But really I'm still of the opinion that the NSA don't want such a backdoor, not for any altruistic reasons but because such a backdoor would be far too easy for rival governments and criminals to exploit. They would much rather have it require a whopping great supercomputer to break, ideally the more expensive and specialist the better since they would a) be more difficult for a "bad guy" to get and b) they would stand a very good chance of knowing that the bad guy had such a computer. Hence the supercomputer research programs the NSA is conducting. If AES were "too easy" to crack they would drop the standard like a hot potato just like they did with DES.

Pixelpeep7r

8,600 posts

148 months

Sunday 28th February 2016
quotequote all
It's a massive conspiracy between the FBI and Apple. There is a standard 4 digit code (6969) which will automatically unlock any iOS device. The reason for the 'case' is to bump sales for apple and to sink all the terrorists into a false sense of security that all their devices are watertight*


*Dramatisation, may not of happened.

silverous

Original Poster:

1,008 posts

140 months

Sunday 28th February 2016
quotequote all
GoodDoc said:
silverous said:
ewenm said:
Which is great, but how do you restrict such tools to law enforcement?
I'm sure a company that is capable of restricting phones to avoid law enforcement interference could figure it out....
I get frustrated by the "they're clever, they should be able to do something" argument. The general public has an inability to understand just how difficult some tasks are, we saw it when the government wanted a "porn filter" that would only block 'bad' things' without blocking 'good things'. The ability of technology to impress us does not mean it can achieve the impossible.

Over the last 30 years we've seen the capabilities and rights of law enforcement ratcheted ever up, particularly in the US. We've also seen those abilities abused and used for activities law enforcement said they've never use them for. You can't argue for "law enforcement to have any tool available that allows them to swiftly gather evidence" without placing controls on how this mythical technology is used, or abdicating responsibility for securing it to somebody else.

The raw materials of encryption are mathematics and, regardless of your intentions, you can't legislate against maths. Once you've created a mathematical hole in encryption for law enforcement it's exists for anyone to take advantage of. It simply isn't possible to restrict such tools to law enforcement.

silverous said:
They have the ability to dip into our icloud backups by the sound of it but I don't see that getting leaked out to all and sundry.
iCloud backups are encrypted using an Apple key and because Apple have the key, they can decrypt those backups. iCloud backups are not getting "leaked out to all and sundry because even if you get access to the backups you can't decrypt them. Strong encryption keeps them safe, weaken that encryption and you make them a target.

Desire to give law enforcement every tool they desire, and hope that technology can protect those tools are two very frightening ideas for any individual to believe in.
Why do people keep talking about encrypton holes and back doors ? That hasn't been asked for.
So Apple has the keys for icloud but you and others suggest that anything that exists that is a backdoor isn't safe - so how come they managed to keep the iCloud encryption key(s) safe?
I understand why a porn filter is difficult and don't consider myself to be general public.
I'm not arguing for law enforcement to have tools without controls - the FBI are going down a route to achieve this access and as long as there are sufficient safeguards and controls, as I've said previously on this thread, that should be sufficient.
People keep suggesting what the FBI have asked for is impossible - is it or isn't it? You've talked about how difficult some things are and then referred to the impossible - are you saying Apple *cannot* do what is being requested by the FBI?

RobDickinson

31,343 posts

260 months

Sunday 28th February 2016
quotequote all
Apple are not being asked to break the encryption.

They are being asked to create a custom firmware and update the phone so it doesnt lock itself after a limited number of tries so the FBI can then brute force the passcode.

Apples argument here is that they are 'far removed' from the device, they built it and sold it and there ends the connection with it.

jmorgan

36,010 posts

290 months

Tuesday 1st March 2016
quotequote all
Spooky, about to chuck this in
http://www.reuters.com/article/us-apple-encryption...

Same story.

andy-xr

13,204 posts

210 months

Tuesday 1st March 2016
quotequote all
anonymous said:
[redacted]
The implications of the government’s position are so far-reaching – both in terms of what it would allow today and what it implies about Congressional intent in 1789 – as to produce impermissibly absurd results
Couple of things. I dont know the OP, but you seem to have made a bit of a beeline for him on this one. I dont know why, because had you just said

anonymous said:
[redacted]
then that would still work, and you wouldnt look like you're making a target of someone. It generally works better when opinions are accepted as peoples own, without the need to attack them

Second point - this is a different case to the San Bernadino one. This one's in New York and has a different interpretation applied by both the courts, the Gov agency and the offender.