Apple's 'Unbreakable' iOS Device Encryption Highlighted

[MacRumors]

Technology Review takes a look at the evolution of security on the iPhone, noting how Apple has been able to gain acceptance in government and enterprise by overcoming its initially lax stance on device security to roll out industry-leading encryption options that can defeat essentially all attempts at accessing properly protected devices.

At the heart of Apple's security architecture is the Advanced Encryption Standard algorithm (AES), a data-scrambling system published in 1998 and adopted as a U.S. government standard in 2001. After more than a decade of exhaustive analysis, AES is widely regarded as unbreakable. The algorithm is so strong that no computer imaginable for the foreseeable future--even a quantum computer--would be able to crack a truly random 256-bit AES key. The National Security Agency has approved AES-256 for storing top-secret data.

As Apple highlights in a recent white paper (PDF) on iOS security, this hardware security involves the incorporation of a unique AES-256 key fused into each iOS device and which can not be directly read.

Access to the device's software can be restricted with a PIN passcode, and while the default passcode option for iOS is a four-digit number, users can opt to use significantly longer and more complex passcodes. And with brute-force attacks required to break iOS passcodes needing to be run on the device itself at a speed of 80 milliseconds per attempt, a device with an eight-digit passcode could take up to 15 years to compromise.

"There are a lot of issues when it comes to extracting data from iOS devices," says Amber Schroader, CEO of Paraben, a supplier of forensic software, hardware, and services for cell phones. "We have had many civil cases we have not been able to process ... for discovery because of encryption blocking us."

Most of the information included in this report is not particularly new, and Apple's white paper goes into more detail on the company's efforts to address security on iOS devices, but the report offers an overview of the layers of security Apple has built into its products.

Article Link: Apple's 'Unbreakable' iOS Device Encryption Highlighted

 

[chainprayer]

Will Apple phone tech support tell you your key if you give them your home address and last 4 digits of your credit card number?

 

[D.T.]

Unfortunately, the backdoor for the encryption system is the last four digits of your App Store credit card ...

Will Apple phone tech support tell you your key if you give them your home address and last 4 digits of your credit card number?

Hahaha, good timing

 

[GQB]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.
And the security/complexity of the lock-screen password is inversely proportional to the likelyhood that one will actually be used.
Still, good that they're using strong AES.
But passwords aren't the solution.

 

[Amazing Iceman]

So the best approach would be to hack the user instead of the device...

 

[GQB]

Will Apple phone tech support tell you your key if you give them your home address and last 4 digits of your credit card number?

And will Amazon give you those 4 digits?

 

[Amazing Iceman]

Unfortunately, the backdoor for the encryption system is the last four digits of your App Store credit card ...


Hahaha, good timing

AFAIK, that's been closed. But there's always a way around it.

 

[Zunjine]

Not to be picky.

"Not to be picky" is as certain the preceed pickiness as "with all due respect" is certain to forshadow an utter lack thereof.

 

[BC2009]

So the best approach would be to hack the user instead of the device...

*Phone Rings*

Hi this is Tom calling from Apple. We noticed some recent activity on your iTunes account potentially originating from your iPhone and we need your iPhone device passcode to verify whether or not these charges for $45,912 are fraudulent so we can refund your money.

...

 

[gjwfoasfsaevg]

So Apple is using AES. Big deal. Most systems are not cracked by breaking the encryption algorithm, but by exploiting weaknesses in key management. XBOX, PS3, Bluray, iCloud, FileVault are notable examples where the best encryption algorithm in the world wouldn't have changed anything.

 

[BigBeast]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.
And the security/complexity of the lock-screen password is inversely proportional to the likelyhood that one will actually be used.
Still, good that they're using strong AES.
But passwords aren't the solution.

Couldn't have said it better myself!

Yes, 256 AES is nearly impossible to crack in a timely fashion, that only addresses brute force attacks. The main weakness to encryption is humans-- through other programs installed on the systems which contain weaknesses (looking at you Adobe), not updating patches in a timely manner, phishing, and social engineering. No one needs to crack AES, they just need you, the user, to show your weakness-- a much simpler way to get what they want.

So update the grey fatty mass between your ears, and learn how to keep your 1's and 0's private. Also, hope that those who take care of your info are doing the same (looking at you Apple, Google, Microsoft, Sony, Chinese take-out receipts [credit card info], etc.)

It may just be easier to put your head between your legs and kiss your ass goodbye.

 

[shartypants]

Will Apple phone tech support tell you your key if you give them your home address and last 4 digits of your credit card number?

Only if you ask nicely.

 

[schmidm77]

And yet Apple still can't figure out how to prevent a website from allowing the device to be jailbroken.

 

[commander.data]

http://www.technologyreview.com/news/428477/the-iphone-has-passed-a-key-security-threshold/

Does society really want extremely private mobile devices if they make life easier for criminals? Apple's newly toughened standards sharpen the focus on that question.

It's interesting that the article's tag line is the above. As if user privacy shouldn't be improved, because criminals will take advantage of it.

 

[KnightWRX]

Security works in layers. Implementing a layer is as important as implementing the whole. People saying this is useless are only looking at it at the layer level.

Sure the passkey can be gotten from social engineering. However, this is not what this layer of security protects. This protects someone from accessing what is on the NAND memory if they have physical access to the device itself, but not the user (stolen/lost iPhone). This is a requirement for enterprises as they do not want their secrets to fall into the wrong hands.

As such, Blackberries were highly regarded.

 

[Mikey7c8]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.

True, but the value of the data decreases over time and depending on that data may make it economically unfeasible to do so.

And the security/complexity of the lock-screen password is inversely proportional to the likelyhood that one will actually be used.

Very true. Mine doesn't have one - but that said, it doesn't store company/state secrets

 

[Bezetos]

Big deal. Most smartphones use encryption.

Moreover:

(...) a device with an eight-digit passcode could take up to 15 years to compromise.

That's not true.

Direct quote from Apple's white paper:

The iteration count is calibrated so that one attempt takes approximately 80 milliseconds. This means it would take more than 5½ years to try all combinations of a six-character alphanumeric passcode with lowercase letters and numbers, or 2½ years for a nine-digit passcode with numbers only.

An eight-digit passcode would "only" take 92 days to compromise. A four-digit passcode (from my experience the most popular one) would only take 13 minutes to compromise.

 

[velocityg4]

I thought the device goes into permanent lock down requiring it to be wiped if the wrong password is used too many times. So how could you brute force the password?

The iCloud issue is really only there if you actually are foolish enough to trust that your data is secure with cloud computing. I don't use iCloud myself so I could not see how they could reset/restore everything like that reporter had happen. If I actually stored anything of importance on my phone I'd backup to my home computer in an encrypted directory.

 

[Carouser]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.

They used scare quotes, pedant.

 

[AppleInLVX]

Will Apple phone tech support tell you your key if you give them your home address and last 4 digits of your credit card number?

I came here to say exactly this. Hear, hear!

 

[gregwyattjr]

Its nice to see Apple taking security a little more seriously. I hope their doing these sorts of things for OS X as well.

 

[notabadname]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.
And the security/complexity of the lock-screen password is inversely proportional to the likelyhood that one will actually be used.
Still, good that they're using strong AES.
But passwords aren't the solution.

To be picky, the article didn't state that the 8 digit pin was "unbreakable", only the AES-256 encryption. But even with just 8 numbers and letters, not case sensitive, you break into trillions of permutations.

 

[dethmaShine]

Not to be picky, but "a device with an eight-digit passcode could take up to 15 years to compromise" does not equal 'unbreakable'.
And the security/complexity of the lock-screen password is inversely proportional to the likelyhood that one will actually be used.
Still, good that they're using strong AES.
But passwords aren't the solution.

Eight binary digits or Eight decimal digits?

Eight decimal digits ~ 34 binary digits. => 2^34 probably keys.

So according to the rootN formula, on an average it would take approximately 2^17 trials to find the random key. This is such a small number that I maybe able to crack in a matter of days and not 15 years.

Moreover, if the encryption was so hard that a brute force attack took 15 years, I would call it 'unbreakable' as there is no perceivable way to break the encryption for a forceable future.

EDIT: I've made a stupid maths mistake, given I was posting this casually. I divided 100,000,000 by 64 recursively and was left with ~ 6 as the quotient at the very end. It was divided by 64 - 4 times. Given this was really late last night, I made the mistake of treating 64 as 2^8 whereas it was 2^6. 2^[(8*4)+2]
(+2 for 6/(2*2*) is how I got my answer. Nonetheless, it should 2^(6*4+2) = 2^26. Or simply use log_2{100000000}.

More on the rootN explanation in a future post.

 

[samcraig]

does this mean I can't set my PC to 1234 or 1111 anymore?

 

[antster94]

1. 'only likely to be broken in 10 years' = 'broken in a few months with a bit of luck'
2. >implying everything doesn't use AES
3. >implying all current cryptography can't be broken easily with a quantum computer

[citation] http://en.wikipedia.org/wiki/Shor's_algorithm

jimmy status = extremely rustled