FBI agrees to unlock iPhone for Arkansas prosecutor

> How does the prosecution prove the plaintext came from defendants' devices?

You show the recovered key and plaintext and demonstrate that they match the ciphertext.

The chance that several gigabytes of encrypted data accidentally happen to decrypt with wrong key to a different several gigabytes of perfectly valid data is rather slim, which means that any key which produces valid data is the key you are looking for.

You have someone from the FBI and/or the private contractor testify as to how the plaintext was obtained. Same thing as when you do a DNA match, you need to have the technician testify (unless the defense stipulates).

They might just be planning to use the information learned from this to assist in the prosecution without providing it as evidence? For example they could subpoena those involved in the imessage conversations or find other criminal leads?

Same way they 'prove' that the report about DNA is an accurate description of what the actual analysis showed, or that there even was an analysis at all: by trusting the technicians who did it, and the protocols surrounding that. There is no 'single legal way' to do DNA analysis: it's all about the judges and jury trusting the experts to be impartial. Manufacturers of DNA analysis devices don't have to show their firmware source code for the analysis to be admissible as evidence.

> and that they were going to use it as a precedent

Directory Comey very explicitly said that "The San Bernardino litigation isn't about trying to set a precedent or send any kind of message"

https://www.lawfareblog.com/we-could-not-look-survivors-eye-...

> Remember that the FBI said that if Apple provided a solution, it would not be used in other cases

Given Apple didn't provide a solution, that seems rather moot...

>Remember that the FBI said that if Apple provided a solution, it would not be used in other cases and that they were going to use it as a precedent (IIRC the details).

That's not what they said. What they said is that each particular case is about unlocking each particular phone. And mind you, these are phones that the government has every right to access if they can find a way, either because they have search warrants or are the legal owners (or have the permission of the legal owners) of the phone.

There is nothing controversial about this. The government has used vulnerabilities to extract info from devices gathered during legal searches for a long time. If they seize a safe from your home, they don't need special permission to crack it open.

The government still needs a search warrant or legal ownership of a device in order to perform a search. You're perfectly entitled to make your stuff harder to search, and they're entitled to all the hacking they need to extract the data.

I do not recall any such statements regarding solutions developed in house or learned from organizations other than Apple. If anything the implied threat should have been, either help us or we will find a way and tell all other branches.

It really doesn't seem like we should be blaming Apple here. Apple did what we wanted it to do, stand up for privacy. The FBI is showing off and acting ridiculous. I think they are the ones who are at fault here and we should stop making it sound like Apple did something wrong and that this abuse of power is their fault.

Obviously, they're an easier target so that's why people are attacking them but, honestly, what did they do other than stand for their (AND OUR) values?

IIRC, didn't the unlock in the San Bernardino case use an exploit(s) specific to the 5C or something? Also IIRC the iPhone 6 has some sort of hardware-level protection against this.

Computers are rarely found with full-disk encryption. When Ross Ulbricht was arrested he did have his laptop encrypted, but the FBI went to great lengths to arrest him at a cafe when he had it open, on, and unlocked. Normally computer forensics just consists of making an image of the unencrypted disk. Microsoft Bitlocker defaults to asking you to save a recovery key in the cloud where it can be subpoena'd. Apple is unique in offering high-security by default devices to the general public - although the security is part of their product strategy of keeping complete control of the platform.

Safes are drillable, and there may also be "password recovery" services available from the manufacturer.

It is interesting that they have a way to unlock the device, both because it means iPhones are less secure than we thought and because it contradicts their earlier position that they needed Apple to disable security features for them to access a locked device.

The issue is not that they're trying to unlock it, but that they're trying to force the manufacturer to unlock it for them.

nobody answered your question because there is no difference.

I think because Apple decided, after the Snowden illegal wiretapping stories, to grandstand for PR purposes. And many tech writers took that bait.

No it does not. Govt never claimed this. What it does is show that, the FBI will do exactly what the Chinese are currently most likely doing if need be.

But this request also shows that unlocking was never about just that one phone.

"The FBI has agreed to help prosecutors gain access to an iPhone 6 and an iPod..."

So yea, it's an iPhone 6.

http://www.latimes.com/local/lanow/la-me-ln-arkansas-fbi-pho...

No. The vulnerability probably existed (and therefore was available to whoever had the resources) before; FBI helped to make it headline news.

Good (excellent) article on IOS security: https://www.apple.com/business/docs/iOS_Security_Guide.pdf

See Page 12 on advantage of A7 or higher processor, but, in particular:

"On devices with an A7 or later A-series processor, the delays are enforced by the Secure Enclave. If the device is restarted during a timed delay, the delay is still enforced, with the timer starting over for the current period. "

The question still outstanding, is whether the Secure Enclave can be modified, and also, whether it can be modified without a passcode.

>"Ok, now how to make these phones even more secure?"

Or more likely how to _market_ the next round of phones as being more secure and whether claiming the upgrade is essential for businesses ("our old phones are all broken now, you must upgrade") will lead to a gross increase in profits or not.

How so?

If it is discovered that Apple knows about the exploit, regardless of how they know about it, then they can be compelled to reveal it in court. An NDA does not give one a pass on testifying in a court of law.

It is in Apple's best interest to find out what the exploit is, how long it's been out there, and fix it instead of playing legal games. Such an exploit in the wild is a security concern for every person who owns that phone, not just criminals. There is no telling how many people are out there accessing privileged information in the private and government sectors with that phone. It is a concern covering criminal activity all the way to foreign government spying.

As a bonus, if it's an exploit that's been known from before the FBI's claim that only Apple can help them breach the phone, then we know the FBI was full of it. The FBI has been known to use questionable tactics before and backed out of cases that weren't going their way to avoid revealing those questionable tactics. This whole iPhone thing reeks of this.

'If all else fails' they would have to write the security firm a blank cheque. I know Apple have a lot of money but the fee would likely be astronomical. Unless, of course, Apple wanted an ongoing contract with the firm to dig out vulnerabilities (on top of whatever they already do). I wonder if that sort of relationship would be economical for both parties.

Nope. It could be one of many security flaws that are unknown. And you can't be sure which one they used.

Anyone can sue for anything anytime, but there is no way they'll ever get to compel the FBI to do so, no.