Tag Archives: Encryption

Has Israeli ‘Cellebrite’ Reverse-Engineered Some/All Of Apple iOS 8.x To Unlock iPhones?

by Anura Guruge


Click here to access “patentlyapple.com” original of this article.

applepatently

Click to ENLARGE and read this article excerpt here.


Not sure whether Apple and others are being disingenuous here BUT from the time I heard of Cellebrite’s involvement with the FBI to bypass the “wrong password” retry safeguards it was very clear to me that Cellebrite MUST offer this service to others.

I also don’t think that the FBI was their first client.

It would appear that they have been unlocking, in terms of encryption, phones for some time now.

In the case of iPhones they might have reverse engineered some of the iOS source code at the MACHINE CODE instruction level (as opposed to C++ code). Reverse engineering code is doable with enough smarts and hard work.

What we now need is ENCRYPTED machine code! Something that I thought about 40 years ago, while working for IBM, around the same time I came up with my software authentication scheme (which is still used today) in 1978. Think about it. SMILE. It is doable. 


Related posts:
++++ Search on ‘Apple’ for many other related posts >>>>


by Anura Guruge

That FBI, With Help From ‘Cellebrite’, Could Compromise Apple iPhone Encryption Is Bad News For The World.

by Anura Guruge


The media, alas, continues to misrepresent exactly what the issue was to begin with and how and what the FBI (and Israeli ‘Cellebrite’) did to get to the encrypted data.

They did NOT break encryption.

That is pretty hard to do.

What they did was DISABLE the ‘Wrong Password’
retry safeguards.

You have all seen it. Enter the wrong password to say an online bank or credit card account three times and you are LOCKED OUT. You have to call in and start providing valid credentials and explanations. Well what the FBI and Cellebrite did was DISABLE this wrong password retry safeguard. Then they could keep on trying MILLIONS of passwords a second until they eventually got the one that unlocked the data.

NOT GOOD NEWS.

That a 3rd party was able to do this disabling is downright bloody scary.


Apple encryption bypass with Cellebrite by Anura Guruge

Click to ENLARGE.


cellebrite

Click to access the Israeli ‘Cellebrite’ Website.


appleinfographic

Very good ‘Infographics’ in “LA Times” on this issue. Click to access.


applecw111

Click to access GOOD article in “ComputerWorld” on this Apple issue.


Related posts:
++++ Search on ‘Apple’ for many other related posts >>>>


by Anura Guruge

Apple Already HAS A Trapdoor Built Into iPhones — IF NOT FBI Would NOT Have Made Request!

by Anura Guruge


iphonedfuYou need to be somewhat technical to understand and appreciate this.

The basic issue when it comes to this ‘Encryption Battle‘ is that the FBI wants Apple to develop some new code (a compromised version of the iPhone OS) that will enable the FBI to try entering new PINs, in rapid succession, programmatically, without the Apple OS deleting the encrypted data in the phone, or introducing delays between each attempt at entering the PINs.

So you have to ask the VITAL question (if you understand these matters).

IF the iPhone is locked — which is the case here — how can Apple or the FBI download this new code that they want Apple to develop.

IF an iPhone is locked then you should NOT be able to mess with the software already on it.

And this is where Apple has ALREADY compromised iPhones. They built into iPhones the so called “Device Firmware Upgrade” bypass. By attaching an USB connection to the iPhone you can enter DFU Mode.

DFUMode

Click to ENLARGE and goggle here. From: theiphonewiki.com/wiki/DFU_Mode

To be fair to Apple this is a NICE recovery mechanism to provide.

BUT, if it wasn’t there NONE of this would have come up.

A locked iPhone would have stayed LOCKED until you found the PIN.

So Apple created this slippery path.

As a Computer Technologist of 47-years I just wanted you to know about this.

I am torn. I do clearly see both sides. So I think they should just throw the damn phone into the Pacific and that Apple should eradicate DFU mode.


Related posts:
++++ Search on ‘Apple’ for many other related posts >>>>


by Anura Guruge