DOJ Says That The Crack Of Syed Farook's iPhone Only Applies To That Model Of iPhone

from the that's-not-how-tech-works dept

Update: We've now added to the story that the DOJ is saying that CNN got the quote wrong, and the vulnerability applies to any iPhone 5C, which is more believable, but still raises questions. Original story, with a note appended is below.

So late yesterday the Justice Department told magistrate judge Sheri Pym that it had successfully broken into Syed Farook's work iPhone and therefore no longer needed to continue with the court's order compelling Apple to write a new version of its iOS with security features removed. And then, in talking to the press, the DOJ apparently claimed the method only works for Farook's iPhone:
On Monday, the Department of Justice said the method only works on this particular phone, which is an iPhone 5C running a version of iOS 9 software.
Perhaps the CNN reporter who wrote this really meant "this particular type of phone," in which case the statement would be only marginally more believable, but the idea that it only applies to "this particular phone" makes absolutely no sense, and suggests the DOJ is flat out lying again. The only way in that works with just this phone would be magically finding Farook's passcode (perhaps he left a post-it somewhere?). But if that was the case, the DOJ wouldn't have asked for two weeks to "test" the method (even if they only took one week). Finding the passcode and testing it doesn't take that long. Update: A DOJ spokesperson says that CNN got the quote wrong and that the actual statement was that the crack only applied to iPhone 5C devices.

And if it's any other method, it must have wider applicability to other iPhones. It's possible, if unlikely, that the method in question only works on iPhone 5Cs running iOS 9, but if it's a true vulnerability, it's likely that it impacts much more. It is true that later versions of the hardware include a chip called the Secure Enclave that might get in the way of certain vulnerabilities, but claiming that any such crack is limited to a specific phone is ludicrous.

And, of course, as we mentioned in the original post, if the DOJ really did find a vulnerability and refuses to share it with Apple, then the Justice Department is making us all less safe by refusing to reveal a potential security flaw that may impact tons of people. And then it's also lying about it publicly. Not a good look, but an all too typical one, unfortunately.
Hide this

Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.

Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.

While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.

–The Techdirt Team

Filed Under: crack, doj, fbi, iphone, syed farook, vulnerability
Companies: apple


Reader Comments

Subscribe: RSS

View by: Time | Thread


  1. icon
    vadim (profile), 29 Mar 2016 @ 6:43am

    FOIA request

    Apple need to send FOIA request for information about vulnerability, citing National Security reasons....

    link to this | view in thread ]

  2. icon
    Jessie (profile), 29 Mar 2016 @ 6:45am

    Of course they don't want to help. Every phone that is out there that a LEO want's into, is another chance to find a judge willing to order Apple to do it. At which point they get exactly what they wanted in this case. If they keep throwing it at the wall, eventually one will stick.

    link to this | view in thread ]

  3. icon
    KnownHuman (profile), 29 Mar 2016 @ 6:54am

    They clearly meant it "this phone," since they used a wish from a Genie to unlock it.

    link to this | view in thread ]

  4. identicon
    Anonymous Coward, 29 Mar 2016 @ 6:54am

    If it applies only to this one phone, then it's useless for any other phone/case - so the FBI can just tell us what the vulnerability is - right?

    link to this | view in thread ]

  5. icon
    Mason Wheeler (profile), 29 Mar 2016 @ 7:01am

    But if that was the case, the DOJ wouldn't have asked for two weeks to "test" the method (even if they only took one week).

    It's known as the Montgomery Scott school of project estimation. It's good to see they at least have some competent techs working for them.

    link to this | view in thread ]

  6. icon
    Mike Masnick (profile), 29 Mar 2016 @ 7:03am

    Updated

    Added an update to the post after the DOJ "clarified" and said the CNN reporter got the quote wrong. It didn't apply to just his iPhone, but to any iPhone 5C.

    link to this | view in thread ]

  7. identicon
    Anonymous Coward, 29 Mar 2016 @ 7:04am

    i'm convinced that if you aren't already a splendid liar this govt has no use for you so don't even apply.

    link to this | view in thread ]

  8. identicon
    Anonymous Coward, 29 Mar 2016 @ 7:07am

    One of the FBI technician's kids showed them how to do it...

    The kids learned how to do it from YouTube.

    link to this | view in thread ]

  9. icon
    Ninja (profile), 29 Mar 2016 @ 7:16am

    Magic

    They found a golden key!

    Ahem.

    link to this | view in thread ]

  10. identicon
    Rob, 29 Mar 2016 @ 7:26am

    Something I don't understand

    When they said "we can't hack this phone", everyone rightly questioned what they were saying.

    But now, "we hacked this phone" seems to be largely accepted. Why? Granted, this time it's actually a feasible statement, but they still have a lot to gain from lying. It's a permanent out from the case that has been a disaster for them. Consensus seems to be that the data would be largely useless, so why would they even make the effort? Without details of the hack and/or revealed data that could only have come from it, why should they be given an iota of trust? Them backing off of the hack in general supports this hypothesis.

    link to this | view in thread ]

  11. icon
    John Fenderson (profile), 29 Mar 2016 @ 7:37am

    Re: Something I don't understand

    "But now, "we hacked this phone" seems to be largely accepted. Why?"

    I don't accept or reject the assertion. The FBI's word cannot be trusted, so there's no way I can determine how likely what they said is to be true.

    But it also doesn't matter to me. I don't actually care one whit whether or not the feds manage to break into that phone. What I care about is preventing the feds from setting the precedent they were shooting for. Them dropping the case resolves that issue for me.

    Although I completely expect that this will come up again. Next time, the feds will do their best to keep it out of the public eye.

    link to this | view in thread ]

  12. icon
    scotts13 (profile), 29 Mar 2016 @ 8:17am

    The only thing we know for certain...

    The only thing we know for certain is that we'll never know exactly what happened. Too many people with good reasons for lying. Saying they got in serves a purpose whether they did or not. What they found, if they did - hurts their case if it was nothing, might get found out if they fabricate. Certainly they'll never release real details. Give Apple information that might make it harder next time? Don't make me laugh.

    link to this | view in thread ]

  13. icon
    DannyB (profile), 29 Mar 2016 @ 8:22am

    Re: Updated

    Or maybe CNN got the quote right. The FBI wanted this to be the party line. For consistency with prior untruths. But then realized after it was published that it doesn't pass the sniff test. So a new lie about the quote being incorrect can cover up the first lie.

    So many different lies becomes difficult to manage.

    CNN won't dispute the incorrect quote, no matter what the reporter thinks they heard, even if an audio recorder also mis-recorded it as saying the incorrect thing. Becuase CNN is the government's lap dog. That's why I quit watching after watching their astonishingly one sided coverage of Snowden in '13. And SOPA prior to that, but I kept watching.

    link to this | view in thread ]

  14. icon
    DannyB (profile), 29 Mar 2016 @ 8:25am

    Re:

    I've got to hand it to the FBI (or FIB). It is remarkable how well such a large organization can manage such complex webs of lies, reasonably well.

    link to this | view in thread ]

  15. icon
    DannyB (profile), 29 Mar 2016 @ 8:26am

    Re: One of the FBI technician's kids showed them how to do it...

    You do realize you are not supposed to reveal classified information?

    link to this | view in thread ]

  16. icon
    DannyB (profile), 29 Mar 2016 @ 8:29am

    Did the FBI actually crack this phone?

    As I said in a previous TD article about this, one outcome I suggested was that the FBI would now somehow magically crack this phone. Or would try, but be unsuccessful. I also suggested in the process that the phone might be 'accidentally' destroyed during the attempt.

    But one thing I was clear about: this ruse was going to happen in order for the FBI to back out of this case before it might set a precedent they didn't want. Nevermind the bad PR they were getting. Better to try again another day, in a secret court.

    link to this | view in thread ]

  17. identicon
    Anonymous Coward, 29 Mar 2016 @ 8:54am

    Pathogens!

    OH Man we are all doomed now, those dormant cyber pathogens are going to be let loose! EVERYBODY RUN!

    link to this | view in thread ]

  18. icon
    oninoshiko (profile), 29 Mar 2016 @ 8:55am

    Re: Re: Something I don't understand

    I'm going to have to disagree with you here. I find it GREATLY disturbing that this remains an unresolved issue. I would by far prefer the FBI gets a precedent.

    Said precedent could be resolved in two letters: NO.

    link to this | view in thread ]

  19. identicon
    Anonymous Coward, 29 Mar 2016 @ 9:28am

    They have lied throughout this entire case, why would they start telling the truth now.

    It's not like they can be held accountable for their lies, so what incentive is there to tell the truth.

    link to this | view in thread ]

  20. identicon
    Anonymous Coward, 29 Mar 2016 @ 9:31am

    And, of course, as we mentioned in the original post, if the DOJ really did find a vulnerability and refuses to share it with Apple, then the Justice Department is making us all less safe by refusing to reveal a potential security flaw that may impact tons of people.
    That's assuming "making us safe" was their concern to begin with.

    link to this | view in thread ]

  21. identicon
    Anonymous Coward, 29 Mar 2016 @ 9:34am

    Re: The only thing we know for certain...

    Sorry there is NO good reason for lying.

    If we hope to have and keep liberty then the activities of Justice and its institution must live inside of a clear house.

    It is impossible for a citizenry to remain free of tyranny when "State Security/Secret" can be used to hide government activity or used to incarcerate or punish others.

    I only make 1 exception and that is Military application. But once a military tool is provided to any agency that deals with Citizens then it should be immediately declassified and the details made available to the public.

    While not amazing that many people like you fail history to the detriment of the nation, it is still sad none the less.

    Please obtain wisdom so that you may understand how fundamentally terrible it is to even entertain the idea that a government of 'secrets' could ever be anything other than corrupt.

    link to this | view in thread ]

  22. icon
    Uriel-238 (profile), 29 Mar 2016 @ 11:18am

    Fixed it.

    Every phone out there, a LEO wants into.

    Full stop.

    link to this | view in thread ]

  23. identicon
    Anonymous Coward, 29 Mar 2016 @ 11:39am

    It does only apply to this phone...

    They found the password written on a piece of tape on the back.

    link to this | view in thread ]

  24. identicon
    Anonymous Coward, 29 Mar 2016 @ 11:49am

    Again more evidence of the NSA inserting programmers/Narcs into Apple HQ.

    They KNEW all along of weaknesses in the iPhone OS, but hoped Apple would rollover and they could pretend THAT was the reason iOS was cracked.

    Sadly Apple didn't play ball and now everyone knows.

    Betcha Apple is currently HEAVILY vetting its iOS and OSX staff and making them turn over their bank statements to see who got paid off by the government....

    link to this | view in thread ]

  25. identicon
    Anonymous Coward, 29 Mar 2016 @ 12:12pm

    Re: Updated

    Well, the DoJ should be jailed for Terrorism. I mean, their campaign at the moment is all aboput inciting a fearful response out of the populace by force, right?

    link to this | view in thread ]

  26. identicon
    Anonymous Coward, 29 Mar 2016 @ 2:50pm

    Re: Re: Re: Something I don't understand

    I agree, I also would have liked this case to continue instead of them just being able to drop it. It would be far more useful to get a precedent telling the govt "Hell No!"

    link to this | view in thread ]

  27. identicon
    Anonymous Coward, 29 Mar 2016 @ 2:54pm

    Re: It does only apply to this phone...

    I was thinking it was either that or they called the psychic friends network and got it.

    link to this | view in thread ]

  28. identicon
    Anonymous Coward, 30 Mar 2016 @ 12:47am

    Re: Re: Updated

    Wrong, at least from the government viewpoint, terrorism is when you force the government to do something, even if that something is the will of the people. Therefore the FBI are not terrorists, as they are protecting the government from fear, and making the people fearful helps to protect the government.

    link to this | view in thread ]


Follow Techdirt
Essential Reading
Techdirt Deals
Report this ad  |  Hide Techdirt ads
Techdirt Insider Discord

The latest chatter on the Techdirt Insider Discord channel...

Loading...
Recent Stories

This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it
Close

Email This

This feature is only available to registered users. Register or sign in to use it.