DaveB answered my question - just ignore me.
-
Last edited by BrilloPad; 17 February 2016, 12:41. -
Can't they put the imaged disk into another phone and use that to enter a PIN?Originally posted by DaveB View Post
Rinse and repeat until the 10,000th guess works
(although I assume they can't else they would have tried it)Originally posted by Stevie Wonder BoyComment
-
I asked the same. Then I read the links.Originally posted by BrilloPad View Post
AIUI The pin is processed by a cpu that has a random UID hard wired into it. If the pin is correct, the cpu releases a AES key (comprising a hash of the pin and the UID) that can be used to decrypt the data. The cpu must be running for any of this to work. Hence offline attacks are out. The cpu microcode will forget the pin (or rather the hash) after ten attempts. The AES key is too strong for a brute force attack on the data to work within a reasonable time.Down with racism. Long live miscegenation!Comment
-
So what I have learned, is, if I see someone wearing the usual Muslim attire, carrying a large bag that might contain guns or a bomb, who is holding an iPhone, it's probably best to be some place else.Comment
-
The 9-11 hijackers didn't wear whatever you might think of as Muslim attire, didn't carry large bags, and didn't have iPhones. Other than that…Originally posted by DimPrawn View PostComment
-
Originally posted by NickFitz View PostI imagine if they manage to clone the drive (or a portion of the drive) they can brute force the key because they won't need to worry about it deleting the data.
Oh wait nope, I was wrong, brute forcing would take until the heat death of the universe.
However, if they can clone the drive, they can just try every combination and reclone it back if it wipes itself (to the same device). Unless the key is stored on some internal flash memory that you can't get to, I suppose.Last edited by NibblyPig; 17 February 2016, 12:59.Unless you're the lead dog, the scenery never changes.
Currently 10+ contracts available in your areaComment
-
Not flash memory, in a dedicated encryption CPU, with it's own hardwired access paths.Originally posted by NibblyPig View Post"Being nice costs nothing and sometimes gets you extra bacon" - Pondlife.Comment
-
I don't think they were worried about someone hacking their phone when they "landed"Originally posted by NickFitz View PostComment
-
So despite the fact that nothing you originally posted held true, you are still trying to stick to your grubby little racist stereotyping?Originally posted by DimPrawn View Post"Being nice costs nothing and sometimes gets you extra bacon" - Pondlife.Comment
-
Ah, it seems this is quite an old phone (5C), so doesn't have much of the latest encryption hardware: Errata Security: Some notes on Apple decryption San Bernadino phone
So it may, just possibly, be feasible for Apple to get it to unlock with a special software update. Which explains why they're challenging the court order (which, BTW, the order itself explicitly says they can do) but haven't said it's impossible for them to comply, which would probably be the case with a more recent phone.Comment
Comment