Apple posts public Q&A on FBI request

By , Feb 22, 2016


In addition to an all-hands memo issued to troops Monday about the government’s demand that it create what would basically be an ‘FBiOS,’ a software backdoor to help unlock San Bernardino shooter’s iPhone, Apple has also posted a public Q&A on its website this morning, showing a company unwavering in its position that fulfilling the request would constitute a dangerous precedent.

Titled “Answers to your questions about Apple and security,” the webpage details the case and provides some more technical information about the government’s request, while also answering some of the burning questions such as whether Apple has unlocked iPhones for law enforcement in the past.

Some of the highlights of the Q&A webpage follow below.

Apple is objecting to the government’s order, arguing that the creation of a unique version of iOS that would bypass security protections on the iPhone Lock screen and let the government brute-force their way into the device electronically over a USB cable or Wi-Fi/Bluetooth, would be wrong because “if we lose control of our data, we put both our privacy and our safety at risk.”

“The passcode lock and requirement for manual entry of the passcode are at the heart of the safeguards we have built in to iOS,” reads the post, adding fulfilling the demand would also set a legal precedent that would “expand the powers of the government and we simply don’t know where that would lead us.”

“Should the government be allowed to order us to create other capabilities for surveillance purposes, such as recording conversations or location tracking? This would set a very dangerous precedent,” argues Apple.

The common argument of the people in the FBI camp is that Apple could build this operating system just once, for this iPhone, and never use it again.

But the technique, once created, could be used over and over again, on any number of devices, said Apple, adding so-called ‘FBiOS’ would be “the equivalent of a master key, capable of opening hundreds of millions of locks.”

“Again, we strongly believe the only way to guarantee that such a powerful tool isn’t abused and doesn’t fall into the wrong hands is to never create it,” reads the post.

Making note of the fact that law enforcement agents have already said they have hundreds of iPhones they want Apple to unlock if the FBI wins this case, the company underscored it hasn’t unlocked iPhones for law enforcement in the past.

“For devices running the iPhone operating systems prior to iOS 8 and under a lawful court order, we have extracted data from an iPhone,” but due to improved security features in iOS 8 or later Apple is “no longer able to use the data extraction process” on these devices.

Responding to the court’s objection that Apple’s position in this case appears to be based on concern for its business model and marketing strategy, Apple said:

Absolutely not. Nothing could be further from the truth. This is and always has been about our customers. We feel strongly that if we were to do what the government has asked of us — to create a backdoor to our products — not only is it unlawful, but it puts the vast majority of good and law abiding citizens, who rely on iPhone to protect their most personal and important data, at risk.

Thus far, Apple has handed over all the data it has about the phone’s owner, including an iCloud backup of the iPhone in question (which is sent and stored on Apple’s servers in an encrypted form). However, that backup is two weeks old and it was discovered that the FBI, performed a password-request on the Apple ID password associated with the phone to get into the iCloud account.

That move has destroyed the chance of obtaining more data by pairing the phone to a previously joined network, which would have triggered an iCloud backup and allowed the FBI to get the data they are now asking for.

“Unfortunately, we learned that while the attacker’s iPhone was in FBI custody the Apple ID password associated with the phone was changed. Changing this password meant the phone could no longer access iCloud services,” writes Apple.

The Q&A wraps up saying Apple believes that the best way forward “would be for the government to withdraw its demands under the All Writs Act” and form a commission to discuss its implications for national security, privacy and personal freedoms.

“Apple would gladly participate in such an effort,” the firm said.

Today’s company-wide memo and the public Q&A follow a message to customers that the company posted last week on its website, signed by Tim Cook.

In it, Apple vehemently opposes the FBI’s request to create a one-off version of iOS with decreased security, arguing that would be creating a backdoor into the iPhone which would undermine everyone’s security.

According to FBI Director James Comey, this isn’t about undermining everyone’s security. Instead, he insisted, the San Bernardino litigation is “about the victims and justice” and “isn’t about trying to set a precedent or send any kind of message.”

Read our recap of last week’s events in the FBI vs. Apple case.

Source: Apple

  • Share:
  • Follow:
  • Lui

    Why do not they jailbreak it? 😀 Or send the iPhone to Apple to open it up without giving out any less secure version..

    Another way is to make an exact copy of the flash memory, then it could be brute forced without attempting to enter PIN.

    • Satyam Panchal

      Apple can’t open it up .. iOS is more secure so Apple also can’t open it up …..that what we pay for

    • Please tell how you can jailbreak a locked phone

    • A longer key is generated from your passcode and unique hardware identifiers. Apple can make sure that each device generate a different unpredictable key for the same passcode.

      To crack a dumped image, you won’t be trying 4-digit passcode. Instead, you would have to try the longer key (possibly 256-bit) for millions of years.

  • John Smith

    So Apple gave the FBI an iCloud backup of the phone.. this means Apple can already give law enforcement / government all your cloud data.

  • Ronny Llerena

    What it really comes down to, is that as always Apple just doesn’t like ANYBODY doing anything they don’t like, for example jailbreaking a phone, they have never given a DAMN about anybody but themselves. I thought we were supposed to COOPERATE with the government if it has to do with NATIONAL SECURITY, but obviously that’s the last thing on their mind. Apple has always been and always will be only about THEMSELVES. What about the saying that ” if you haven’t done anything WRONG you shouldn’t have anything to fear “.

    • Flabalanche

      Apple hasn’t done anything wrong. And I don’t think you are seeing the bigger picture. If Apple complies with the fbi this time, any future case can reference this one to make apple open up any iPhone to my understanding.

    • Rowan09

      Where have you been living? Tell me the last time anything the government did yield great results for anyone except the government? The Patriot Act was for “national security” and that allowed the government to listen to our calls, get general search warrants, etc. It’s not only about not doing anything wrong it’s about privacy. How would you like it if every week the FBI comes into your home to search it? Would you feel like go ahead I’m not doing anything wrong?

    • M_Hawke

      Well, you can speak for yourself, but as for me, I’m glad that Apple is protecting my personal data. If you think that a “one time” backdoor will stay a secret, you are naive. You are equally naive if you think that such a backdoor can be entrusted to a government agency and that it will not be abused.

  • Rob Jones

    I am surprised that the issue of foreign governments is not discussed more. If Apple create this, what will stop the Russian/Chinese/Pakistani govt demanding the same service – do not forget Blackberry withdrew some services from Pakistan due to similar requests from their govt.
    While I get that there are a few people out there who are still happy to trust Uncle Sam – do they seriously trust Putin et al?