Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Can someone who really knows it, please explain one thing for me? I've heard different statements and don't know which one is correct.

Can Apple - in theory - unlock that phone?

Is it

a) Unless there's a defect in HSM module (Secure Enclave) that allows the key extraction (like SEM data forensics or whatever), Apple just can't unlock the phone, because it's outside of their control.

I mean, I can readily imagine a system where encryption key is completely unknown to the OS, OS doesn't have any access (or has a write-only access using public key encryption) to the user data while the phone is locked, and encryption is performed by a tamper-resistant hardware, that won't do anything without a correct secret (passphrase) and HSM will irreparably erase key material after 10 failures (which is the behavior hard-coded into silicon).

or

b) Apple technically can unlock the phone by doing an OS update with a specially crafted insecure OS, but doesn't wants to do so, because it would create a bad precedent. I.e. the HSM isn't absolute and can be forced to disclose the key (or accept brute-force attacks) by the OS.

To put it simply: in theory, can Apple defeat their own security - if they would really want to - or not?

Edit: s/TPM/HSM/g



This seems to be a common question and I've seen it answered incorrectly a number of times.

The simple answer is that Apple has the key to sign software that will run on iPhone boot, AND Secure Enclave boot. Neither technically require the phone to be unlocked, and SE updates do not (currently) wipe secrets.

Lots of talk about 5c vs 5S onward phones, but Apple can remove bruteforce protections from all iPhones currently on the market.

The answer is B (though they can only update the software to remove bruteforce protections in this case).

(That said, I firmly believe that won't be the case for long)


So to clarify my understanding... i-whatevers have some sort of "trusted computing" bootloader or something... so can only boot a digitally signed version of the OS.

So even if the FBI dumped the firmware from the phone and found just the right branch instructions to flip to disable the time delay and data erasure... they couldn't deploy the firmware because it wouldn't boot.

Is that generally what the issue is? And if it is... wouldn't that mean that Apple is 100% correct in saying that creating such a firmware would allow "law enforcement" to do this to any phone in their possession (since they could install the same firmware on other Apple devices?)


Yes except the FBI wants to send the phone to Apple to do the hack and remotely access it so the firmware never leaves the building.

Apple's claim is that this 1) may be abused by authorities through subsequent requests and 2) is too dangerous to create because "cyber criminals" will try to hack them and steal it.

Abuse is definitely a concern, although one would hope that could be resolved through democratic oversight, rather than shutting down the ability of law enforcement to obtain digital records under most circumstances.

But as for the concern about getting hacked, I wonder if Apple is being a bit coy. They already possess the private signing key. That's already a super valuable secret that would allow criminals to install their own malcode. That danger already exists. It would be harder if the hacker also had to hack the firmware, but probably not harder than hacking Apple to get the private key in the first place.


The private signing key can and should be stored only offline. It's presumably only used when new OS updates need to be signed, and as a result it's fine to require manual intervention during that process.

By contrast, putting a device with the modified firmware on the network and allowing it to be accessed remotely makes it a much easier target than the private signing key. A compromise still isn't likely, mind you, but that's a pretty damn attractive target.


That's a good point about the private key never even touching a network.

Here's a thought: if the crack firmware does leak, and Apple becomes aware of it, could they just push out an OS update that rotates the signing key? That should effectively disable it, once updated.

What I'm getting at is this seems more about resisting government abuse / repressive regimes than technical infeasibility of limiting it to authorized users.


Depending on how it was done, they might still have to go through Apple.

But China/Iran/Russia/whereever could say: "You did it for the FBI, so you need to do it for us, too."

And the FBI could say: "You did it in that last case, so you need to do it in these other cases too."

And every local podunk sheriff in any jurisdiction could do the same thing, and there would be no end to Apple having to fight these things or do this work.

Not to mention that its customers would start getting harmed in countries where leaks of your private information can lead to your death.


That's not an argument against legal search and seizure.

If Apple doesn't want to be in that position, they shouldn't have put themselves in that position by retaining and requiring full control over devices via platform-level DRM.


The FBI is saying Apple should create a version of their firmware that only works on this specific device. I'm not sure if that's possible, though - if whatever ID they're checking can be spoofed on another device, they'd have a backdoor for all devices.

This is really more about the legal precedent.


> i-whatevers have some sort of "trusted computing" bootloader or something... so can only boot a digitally signed version of the OS.

Yes.

> So even if the FBI dumped the firmware from the phone and found just the right branch instructions to flip to disable the time delay and data erasure... they couldn't deploy the firmware because it wouldn't boot.

Correct.

> Wouldn't that mean that Apple is 100% correct in saying that creating such a firmware would allow "law enforcement" to do this to any phone in their possession.

Only Apple knows the answer to this with 100% certainty.


It's (b) but they can't unlock the phone. They can make it easier to perform a brute force passcode attack against the device. The method to do this would be to restore the phone with a modified (and obviously signed) version of iOS that bypasses the passcode failsafes: such as wiping the data after 10 failed retries, and the exponentially increasing password retry delay.

The hardware imposes a limit of ~80ms on password attempts due to the nature of the hashing computations. So a four digit passcode could be brute forced in a maximum of 15 minutes if Apple were to install a purposefully hindered version of iOS on the device.


The failsafes as I understand it (from recent reading here) also include the inability to programmatically attempt login. As shipped, they will only accept such attempts from user input (keypad UI or fingerprint scanner).


Thanks!

Hope in the new phones they'll just enforce the important constraints right in the silicon, effectively closing this gap.


Yes, someone with Apple's signing key can write new firmware to the device which disables the auto-wipe and PIN retry lockout features, which is what the Feds are asking for. Apple has never argued that it is impossible for this phone hardware with this OS version, which is why they're (correctly IMO) arguing that it would set incredibly bad precedent for a court to force Apple to create a tool to destroy their own security.


b is correct.

Further, this is a 5C and doesn't have a secure enclave, and even if it was a 6S they could still get access to the phone by doing an OS update.


On a 6s that is not correctly(not sure with the 5c). Apple cannot just access a 6s. They have to use the password to get in, just like you, me, the fbi and everyone else does. Apple can only remove some of the things that makes guessing the password harder.


Why can't they just update iOS and allow many attempts at the passcode, just like with the 5C?


They can. I never said they couldn't. They still have to crack the password afterwards tho.


Obviously it isn't "a" because then Apple would not need to fight the FBI's court order


Regarding B), Can OS updates even be pushed to a locked phone?


Yes, via DFU mode.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: