Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Researchers Claim Apple Can Potentially Access Encrypted iMessages [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
If Apple has blatantly lied about security, that's bad news. Makes you wonder what else they deliberately and consistently deceive us with.
Wow, this really brought out the conspiracy theorists didn't it?
Newsflash: With any private & public key system, if someone provides compromised public keys which they have a decryption key for, the data can be accessed by them. This type of system is used for a large amount of encrypted communication via the internet including things like Website SSL (https).
Say the certificate authority that provided you with your SSL certificate for your domain happened to provide you with a certificate generated against a known private key - guess what? They'd be able to read all information (for example, your credit card numbers) going through the server's SSL connection if they used a man in the middle attack, e.g. DNS poisoning.
The fact is, if you want your systems to be secure:
Lock up your system in an impenetrable vault that only you have access to, with no access to the internet, having manufactured all the components to build the system yourself and then programmed all the software yourself, including the operating system from scratch.
Otherwise, there's always the possibility that someone, somewhere *might* be able to have access to your data in some way, shape or form. The alternative? You have to hope that people that say they are not going to compromise your privacy, don't.
Welcome to the real world folks.
---
The public key can only be used to encrypt data, not decrypt.
Essentially the first time you use a public & private key based system the two keys are generated.
- The private is only "known" by you/stored on your device and used to decrypt the incoming data.
- The public key is then shared with anyone that needs to encrypt data to send to you.
The process for iMessages likely goes something like this (taking an educated guess):
Contact selected -> iMessages connects to Apple's server to request the recipient's public key -> message encrypted using recipient's public key -> encrypted message sent to recipient via Apple's servers -> recipient's private key used to decrypt message -> message displayed on recipient's device.
Without the correct public key being used to encrypt messages, the private key will not be able to be used to decrypt it correctly which will result in the recipient receiving meaningless data.
Hope this helps!
Newsflash: With any private & public key system, if someone provides compromised public keys which they have a decryption key for, the data can be accessed by them. This type of system is used for a large amount of encrypted communication via the internet including things like Website SSL (https).
Say the certificate authority that provided you with your SSL certificate for your domain happened to provide you with a certificate generated against a known private key - guess what? They'd be able to read all information (for example, your credit card numbers) going through the server's SSL connection if they used a man in the middle attack, e.g. DNS poisoning.
The fact is, if you want your systems to be secure:
Lock up your system in an impenetrable vault that only you have access to, with no access to the internet, having manufactured all the components to build the system yourself and then programmed all the software yourself, including the operating system from scratch.
Otherwise, there's always the possibility that someone, somewhere *might* be able to have access to your data in some way, shape or form. The alternative? You have to hope that people that say they are not going to compromise your privacy, don't.
Welcome to the real world folks.
---
The public key can only be used to encrypt data, not decrypt.
Essentially the first time you use a public & private key based system the two keys are generated.
- The private is only "known" by you/stored on your device and used to decrypt the incoming data.
- The public key is then shared with anyone that needs to encrypt data to send to you.
The process for iMessages likely goes something like this (taking an educated guess):
Contact selected -> iMessages connects to Apple's server to request the recipient's public key -> message encrypted using recipient's public key -> encrypted message sent to recipient via Apple's servers -> recipient's private key used to decrypt message -> message displayed on recipient's device.
Without the correct public key being used to encrypt messages, the private key will not be able to be used to decrypt it correctly which will result in the recipient receiving meaningless data.
Hope this helps!
Last edited:
I've expanded on my answer after realising I misread your question slightly, I hope it's more insightful now!
I didn't see anything in the article suggesting Apple did this on purpose.
My understanding is that backups ARE encrypted, but that iCloud uses server-side encryption, rather than client-side encryption. When sending data to the cloud, it gets encrypted on your machine with SSL, then decrypted at the iCloud servers, then re-encrypted using an encryption key that Apple knows for storage. This means that Apple employees have the technical ability to read your data.
No, it makes me wonder what other lies have been told about Apple by "researchers" looking for linkbait. Until some actual evidence appears, there is no proof that Apple has lied or has access to iMessages.
This is categorically FALSE! If this were true, there would be no security.
The public key is, well, public. As in everybody has access to it. Which would mean everybody would be able to decrypt. Not what you want.
What happens is:
Essentially the first time you use a public & private key based system the two keys are generated.
- The private is only "known" by you/stored on your device and used to decrypt the incoming data.
- The public key is then shared with anyone that needs to encrypt the data they want to sent to you.
So...
In case of iMessage, if I want to communicate with you, I give you my public key, and you give me your public key. When I sent something to you, I use your public key to encrypt, which you can decrypt using your private key. A response you send to me will be encrypted using my public key, that can only be decrypted using my private key.
The article give no indication that that the encryption is breakable. The author asserts that Apple can read the messages because Apple has the keys, that is not breaking the encryption. If I have the key to your lock and I use that key, I have not broken the lock.
If you read the response by the spokesperson, she basically admitted that it was true that they could, therefore Apple's initial statement on the matter--that iMessage is impossible to spy on--was a lie. The "Jailbreaker" (ooh no, not an immoral no-account jailbreaker!) never said they were spying, just that they could be spying. Looks like Apple agrees.
Ugh, I really shouldn't get into security conversations before I've had my morning coffee. You are indeed correct, I've updated my post - Thank you.
There's an easier way to generate a pretty realistic profile of me as a person - Facebook. In fact, I've already done the work for them. It's not like it's a secret.
The supreme court has already ruled that the right to privacy only applies where there's a reasonable expectation of privacy. I do not care if Apple or even the NSA knows things about me. I do not care.
I understand some concern about this sort of thing. We don't want the government to have free access to our personal lives, but as I've gotten older, I just don't get worked up about this sort of thing they way I did when I was in my twenties in law school.
The big issue with touch ID, for most, is less about it being safe as whether the fingerprints are going to a server somewhere and if that info is linked to any other info including phone number, hardware deets, Apple ID etc. Apple says no, no one has proven they are lying. That you have to reset touch id after any restore suggests that the links are on the fly and not saved or sent anywhere.
The smaller issue is 'hacking' for local access. That someone proved he could take a pristine photo of his own print and stick it in another finger isn't really the same as showing that a stranger could do it with a print lifted off your phone. Or do it within the 48 hour lock down period.
All that said I have two issues with the system. First is that it defaults to simple passcode use. Given that touch Id is in there so you don't have to type your passcode I think it should default to a complex one. Or at least give that option on the set up. And 48 hours is too long to me. 12 sounds about right. Or at least let me pick. Same with the purchases thing. If anything that's the one that would be okay being longer since I first had to touch into my phone and perhaps since I was asleep etc hit the 12 hours and had to use my passcode, which shouldn't be allowed to be the same as my Apple ID password.
----------
Actually the hacker doesn't. He might know more about the basics of key cryptography in a general sense but he knows nothing about how Apple's systems are set up. Despite what he wants the world to think
----------
More like if Apple has access then the NSA etc might have access if Apple feels inclined to give them access. But Apple isn't because they didn't include a system for parsing out the keys for one specific user or user combo with guaranteed results it's the correct one. So they would have to turn over the entire database which means opening up all messages and letting the NSA fish for whatever they might find. Which Apple isn't likely to do because it opens up a legal barrel of worms they don't want to mess with.
Then again it's a huge IF whether Apple even has access in the first place which is what Quarks claims but hasn't proven
So?
So the "Researchers" realized they COULD construct a system whereby Apple would be lying when they said they couldn't. Hell, if Apple was a grape, they could make grape juice. I want to take some issue, though. If a police investigation determines that you're likely committing crime on the phone, they can get a warrant and wiretap you. Why should digital media be exempt? Hey, crooks, use iMessage!
Al Qaeda used satellite phones once upon a time, not realizing the NSA could hear what they said. Then some congressman bragged about it. They went silent. Found different ways to communicate. I'm all for better control by the courts of what the NSA can and can't do, but I think the Snowden idolatry is all because we want to be anonymous when we download from Pirate Bay.
So the "Researchers" realized they COULD construct a system whereby Apple would be lying when they said they couldn't. Hell, if Apple was a grape, they could make grape juice. I want to take some issue, though. If a police investigation determines that you're likely committing crime on the phone, they can get a warrant and wiretap you. Why should digital media be exempt? Hey, crooks, use iMessage!
Al Qaeda used satellite phones once upon a time, not realizing the NSA could hear what they said. Then some congressman bragged about it. They went silent. Found different ways to communicate. I'm all for better control by the courts of what the NSA can and can't do, but I think the Snowden idolatry is all because we want to be anonymous when we download from Pirate Bay.
A company sending sensitive information by text isn't worthy of being enterprise level by that logic. They send emails and thats readable too.
The alternative is local storage drives and couriers in some weird Jonny mnemonic world.... Then they get abducted or the data drives get lost .... Security is a myth, giving afraid animals which humans are a source of comfort to grasp on to. Same reasons humans are naturally pack creatures and look to a book for guidance.
Its all about control and reassurance so as not to be afraid. Fear is the absolute controller in this world and people get so caught up on being afraid they dont see the wood for the trees.
This story is a tabloid newspapers dream but in reality its not news.
Not afraid that NSA knows I watch porn sometimes, even if I'm brazilian. Maybe they'll provide me a visa promptly just because of this when I'll apply for a visa on vacations.
"So do you watch dirty porn? Ok, you're pretty friendly to us... have a good time in America."
"So do you watch dirty porn? Ok, you're pretty friendly to us... have a good time in America."
Why? Because privacy is only for criminals? Thats your point, isn't it?I guess we are all drug dealers or spies here.
I can confirm this - spent nearly 12 hours observing logs
I was concerned, the other day, about a possible infiltration onto my network and some of the devices I'd been using - including the mac.
I decided that the Mac had been compromised, but to make sure I decided to ran a series of system faults, followed by terminal and apple logging/profiling.
Apple consistently tried to send packets (more outgoing than incoming), of specific areas of the file system - notably (logs (obviously)/some CF and CRON related files/ etc (the usual)) - but I also noticed that on the log, it stated that Apple was contacting the 'cloud server and security agent - from the face of things it just looked like the security on OS coms with netbot/server in order to restore the most recent back up files and correlate them to the OS logs.
However, on profiling and terminal logging - there was almost 3x more data being uploaded than downloaded, and it wasn't just my logs. iBooks seemed to be something the server was very interested in, iMessages, and also mail. The rest wasn't even popping up so often.
To be honest, I don't really know much about apple;s server systems to make a detailed comment on what was happening - but I'm guessing that they had some interest in trying to either (one - find out what I was up to, and to see if I was the cause of the fault (lets say for Warranty arguments sake); two - it's just the server verifying who I am (I'm pretty sure my MAC address, plus a few hardware and profile keys should help?!?); or three - they're collecting data for no reason (which I also believe they're doing - considering that if you actually read your 'agreement' with apple (and most big corps) - you allow them to collect, monitor, randomly access, sell, etc)
Either way - as encryption gets more advanced and technical, forgetting the original ways of 'back-dooring' = the older techniques become a little handier when used from a different angle (as I suspect is what happened with Tor LD)
I was concerned, the other day, about a possible infiltration onto my network and some of the devices I'd been using - including the mac.
I decided that the Mac had been compromised, but to make sure I decided to ran a series of system faults, followed by terminal and apple logging/profiling.
Apple consistently tried to send packets (more outgoing than incoming), of specific areas of the file system - notably (logs (obviously)/some CF and CRON related files/ etc (the usual)) - but I also noticed that on the log, it stated that Apple was contacting the 'cloud server and security agent - from the face of things it just looked like the security on OS coms with netbot/server in order to restore the most recent back up files and correlate them to the OS logs.
However, on profiling and terminal logging - there was almost 3x more data being uploaded than downloaded, and it wasn't just my logs. iBooks seemed to be something the server was very interested in, iMessages, and also mail. The rest wasn't even popping up so often.
To be honest, I don't really know much about apple;s server systems to make a detailed comment on what was happening - but I'm guessing that they had some interest in trying to either (one - find out what I was up to, and to see if I was the cause of the fault (lets say for Warranty arguments sake); two - it's just the server verifying who I am (I'm pretty sure my MAC address, plus a few hardware and profile keys should help?!?); or three - they're collecting data for no reason (which I also believe they're doing - considering that if you actually read your 'agreement' with apple (and most big corps) - you allow them to collect, monitor, randomly access, sell, etc)
Either way - as encryption gets more advanced and technical, forgetting the original ways of 'back-dooring' = the older techniques become a little handier when used from a different angle (as I suspect is what happened with Tor LD)