The FBI Can Get Into The Latest IPhones, So Why Is It Asking Apple To Break Encryption On Older Models?

from the reminder:-the-FBI-still-hasn't-updated-its-locked-device-count dept

The FBI has asked Apple to break the encryption on devices owned by the Pensacola Naval Base shooter. It hasn't made this request officially -- there's no court order being sought to compel Apple's assistance -- but it's asking nonetheless.

Attorney General Bill Barr put a little more muscle behind the FBI's informal request. His statement insinuated that Apple was making the country less safe by refusing to break encryption. He also stated that time was of the essence in cases like this and Apple's general unhelpfulness wasn't acceptable.

Apple fired back by again stating it would not break phone encryption for the US government. It also pointed out the FBI did not inform of it a second locked device until a month after the shooting. If the government was concerned about time slipping away, it did not act with alacrity during this latest investigation.

Donald Trump followed Bill Barr's lead, attacking Apple via Twitter with a particularly stupid tweet that suggests the president is still all about quid pro quo.

The administration is trying to turn public opinion against Apple. This will make it easier to push anti-encryption laws and policies. But the FBI doesn't seem to need Apple to break encryption for it. It has options it's apparently decided not to use in this case.

As we've noted earlier, a handful of tech companies offer devices that break or bypass encryption to pull data and communications from locked phones. Yes, it's still an arms race, with companies like Apple patching the flaws these tools exploit, but there's plenty of money to be made cracking open devices for government agencies.

The FBI isn't interested in these tools, except when it's convenient for the agency. Legal precedent compelling phone manufacturers to break encryption is infinitely more useful to the FBI. So, it chooses to ignore these options when it thinks it has a compelling case for encryption backdoors. That's what appears to be happening here.

Thomas Brewster of Forbes says the FBI has used third-party hacking tools to access the contents of Apple's latest iPhone.

Last year, FBI investigators in Ohio used a hacking device called a GrayKey to draw data from the latest Apple model, the iPhone 11 Pro Max. The phone belonged to Baris Ali Koch, who was accused of helping his convicted brother flee the country by providing him with his own ID documents and lying to the police.

If the FBI can get into the newest devices, why does it need Apple to break encryption on the shooters' phones, which are much older?

Given the models in the Pensacola shooting case are iPhones 5 and 7, it’s unclear why a GrayKey hasn’t proven useful in that investigation. Forbes has previously revealed a GrayKey brochure that showed it worked on older devices, too.

It's a question the DOJ probably doesn't want to answer. It will have to, though. Senator Ron Wyden has already asked the DOJ to explain its actions in this case.

The most obvious answer is this: this case pushes all the buttons the administration wants pressed. It involves the shooting of US military members by a foreigner. The San Bernardino shooting was pretty much the same thing: the shooting of government employees by foreigners. These are the only two cases where the FBI has gone public about its desire to force Apple to undermine its own encryption. For everything else, there are third-party hacking tools that actually give the FBI the evidence it wants without undermining the security of millions of iPhone users.

The FBI will only push for precedent when it thinks it has the public's support. It failed to read the room during the San Bernardino case. It hasn't gotten any better at gauging public opinion since then. Even with Barr and Trump going on the attack, the public's mood hasn't shifted. Compelled encryption-breaking makes everyone less secure, not just the targets of investigations. Trying to parlay dead people's phones into court precedent is not a good look for the agency. But the agency -- and the administration running it -- don't particularly care what the public wants or is best for it.

Filed Under: chris wray, doj, encryption, fbi, going dark, graykey, pensacola, technology, william barr

San Bernardino 2.0: FBI Asking Apple To Crack Encryption On Phones Owned By Pensacola Naval Station Gunman

from the encryption-is-letting-dead-men-get-away-with-crimes-they-already-committed dept

It looks like the FBI wants to relitigate the San Bernardino shooting. After that tragedy, the FBI tried (and failed) to obtain legal precedent forcing cellphone manufacturers to crack open seized phones at the drop of a warrant. Finally, a third party sold a solution to the FBI that opened the phone and allowed it to recover nothing useful whatsoever from the shooter's device.

The FBI was displeased that it didn't get this precedent. Internal communications showed FBI officials were doing everything they could to avoid using a third-party solution. The theoretical existence of evidence related to a tragic shooting was the only leverage the FBI had and a private company's cracking service took that leverage away. It could no longer claim approaching Apple directly was the only way to access the contents of the phone.

The FBI is trying again. It has more locked phones and another shooting to use as leverage.

The FBI is asking Apple Inc. to help unlock two iPhones that investigators think were owned by Mohammed Saeed Alshamrani, the man believed to have carried out the shooting attack that killed three people last month at Naval Air Station Pensacola, Florida.

In a letter sent late Monday to Apple's general counsel, the FBI said that although it has court permission to search the contents of the phones, both are password-protected. "Investigators are actively engaging in efforts to 'guess' the relevant passcodes but so far have been unsuccessful," it said.

Apple is helping the FBI but it's not doing the only thing the FBI really wants it to do. Apple's statement says it's already turned over "all the data in [Apple's] possession." But it's not going to break the devices' encryption.

And no matter what legal precedent the DOJ obtains -- should it decide to force the issue by seeking a court order compelling decryption -- it still may not find anything useful, or indeed anything at all, if it manages to unlock the devices. There's a twist in this case that sets it apart from the San Bernardino shooting.

A law enforcement official said there's an additional problem with one of the iPhones thought to belong to Alshamrani, who was killed by a deputy during the attack: He apparently fired a round into the phone, further complicating efforts to unlock it.

Shooting someone right in the evidence is a new logistical hurdle -- one that probably can't be cleared with a stack of legal paperwork and precedent. But this is the FBI's latest attempt to undermine device encryption. Attorney General Bill Barr has made it clear he feels encryption is only good for criminals. If the DOJ decides to take another run at this, it will be less likely to back down even if presented with a third-party solution.

The FBI and DOJ are always on the lookout for another tragedy to use as leverage for anti-encryption precedent. Unfortunately, this country produces more than its share of mass shootings, so the FBI and DOJ will always have plenty to work with.

Filed Under: doj, encryption, fbi, going dark, pensacola
Companies: apple

High School Principal Cancels Entire Reading Program To Stop Students From Reading Cory Doctorow's 'Little Brother'

from the you-want-to-learn-about-questioning-authority? dept

Welcome to the modern equivalent of a book burning. The principal of Booker T Washington High in Pensacola Florida has apparently cancelled the school's "One School/One Book" summer reading program all in an effort to block students from reading Cory Doctorow's (absolutely fantastic) book Little Brother. It appears he may be against the fact that one of the messages of the book is the importance of "questioning authority," and has decided to show the school what true, obnoxious authoritarianism looks like.

Little Brother had been selected and approved as the school's summer One School/One Book reading pick, and the school librarian Betsy Woolley had worked with Mary Kate Griffith from the English department to develop an excellent educational supplement for the students to use to launch their critical discussions in the fall. The whole project had been signed off on by the school administration and it was ready to go out to the students when the principal intervened and ordered them to change the title.

In an email conversation with Ms Griffith, the principal cited reviews that emphasized the book's positive view of questioning authority, lauding "hacker culture", and discussing sex and sexuality in passing. He mentioned that a parent had complained about profanity (there's no profanity in the book, though there's a reference to a swear word). In short, he made it clear that the book was being challenged because of its politics and its content.

Ultimately, the entire schoolwide One Book/One School program was cancelled.

In an attempt to... er... question that authority, Doctorow and his publisher, Tor, are sending 200 free copies of the book to the school. A school trying to ban books is almost always a stupid idea, but it seems particularly stupid in this day and age with this particular book. In the end, all it is likely to do is cause more people to actually read the book and to, you know, question authority.

Filed Under: booker t washington high school, challenging authority, cory doctorow, florida, little brother, one school one book, pensacola, reading, students
Companies: tor