Yes, that is what it used to mean. But now it basically means:
Jailbreaking = I don't give a crap about my personal security
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Used DMCA Takedown to Temporarily Remove Tweet With iPhone Encryption Key
- Thread starter MacRumors
- Start date
- Sort by reaction score
Yes, that is what it used to mean. But now it basically means:
Jailbreaking = I don't give a crap about my personal security
Right. My point is when people say it’s my device I can do what I want with it, that’s not really true. I suppose it would be if you could completely wipe the device and install another operating system on it.
Reverse engineering the secure enclave (bad!) is not the same as jailbreaking (whatevs), right? Unless I’m wrong, or you can’t have one without the other, it seems that this thread has already conflated the two.
It might be your device but it’s Apple’s software. Have you read the EULA?
Good news for you buddy, there's always going to be exploits and keys published. Security is always changing. This is just a repeat of the "AACS" DVD decryption key that got published and the streisand effect went in full force when they tried to censor it.
Jailbreaking is legally exempt under US copyright law, if you didn't already know. I see nothing wrong with hacking my own device to customize what i do on it. Also, jailbreaking ends up helping apple as they take ideas from jailbreaks, and they beef up their security in the future.
Yes, there's a much bigger picture involved.
- Consumer buys iPad.
- Consumer jailbreaks/hacks iPad because it's "their" device, right?
- iPad stops working properly.
- Consumer takes iPad, still in the warranty period, to Apple for support.
- Apple has to spend money supporting that hacked iPad, at no fault of their own.
Apple has a responsibility to all of its customers to keep their support services affordable. Anyone that tries to circumvent that for their own personal benefits (jailbreaking, hacking) only raises the costs for everyone, and that's not right.
Today's macOS and iOS is already super capable without going down the road of jailbreaking.
It doesn't. Jesus, I hope they correct this article. It isn't a Secure Enclave or whatever encryption key. It's the key to decrypt an iOS Secure Enclave Firmware File so security researchers can decompile it and find bugs and report them. This in NO way affected user privacy.
Do you really think that security researchers, who want to improve product security, would tweet a master decryption key to everyone's data?
I love simple Google searches.
There is no copyright on algorithms. ... There are some cryptographic algorithms which are patented, but most are not and some used to be patented (but patents ultimately expire) https://arstechnica.com/civis/viewtopic.php?f=20&t=1123453
Last edited by a moderator:
At worst a jailbreak makes it so you have to restore the device in iTunes. It's pretty hard to actually brick an iOS device from just jailbreaking it.
but it’s not one of the classic blunders, those involve Asia and Sicilians
The key can’t be copyrighted. That guy posts a lot of bad information.
[automerge]1576104038[/automerge]
First off, he’s not a dimwit.
If he can get the key, then it is safe to assume others have it also. It is better to make it public and force Apple to do something versus letting people think it is secure.
Last edited:
You’re confusing confusing with conflating... I know, it’s confusing.
Lol, sorry... I couldn’t resist! =)
People are delusional if they think it's only a security threat when someone post the key publicly. This forces Apple to improve their security. There are many hackers who are doing exploits for malicious purposes in the background that never goes public.
Last edited:
I’d say it was a perfectly reasonable case for DMCA. It’s Apple IP and not made public by Apple so they have every right to have it removed from public domain.
It also could have been a smart bluff. By issuing the takedown and then almost immediately backtracking, Apple have made it clear they know it’s out there but feel it’s not a threat. Perhaps less people will try to use it maliciously if they think Apple has deemed it useless.
Or it’s literally useless. Time will tell!
We both know that Apple is about image first. Its evident everytime Tim Cook has an interview but then when you cross check those stories where developer or hacker reports an issue and Apple takes its sweet time then that kinda paints different story, don't you think?
I love Apple, don't get me wrong but I am not happy with some of their choices (which is fine).
To me, privacy is important too so if it takes a controversial step for Apple to improve then so be it. These days the most common action is that everyone sues everyone but very few people focus on what really matters. Apple is building an image so they should also take actions that back their "mentality".
Example: look how long Apple spends on Memoji or Slofies vs how much time they spend on privacy etc.
When they present something, the focus on privacy is secondary but then they put a billboard talking how it all stays on your device.
It should be the other way around. Memoji, Slofies etc. should get the little time privacy has each keynote and privacy should get the spotlight.
Yes, I understand that the society these days is so obsessed about self gratification, instant attention etc. that unfortunately those stupid Memoji, selfies, Slofies etc. simply is what people really want. Heck, even my mum started doing this nonsense and she is almost retired.
So yeah, let the hackers expose as much as possible because thanks to those guys we will most likely get better and more secure systems. Anything that touches Apple's image is usually fixed fairly quickly. Apple is obsessed about the right image so its the only way how to get stuff done fast
Nope, encryption keys are not copyrightable and DMCA takedown notices can only be used to take down copyrighted works.
Encryption keys could be protected under the DMCA anti-circumvention provisions though, but those provisions are not enforceable through DMCA takedown notices: a court needs to issue a restraining order.
Mmm, my jailbreak is much more stable than any release of iOS13 so far.
Jailbreak gives you optimization, speed, multitasking, split screen, better controls. These guys are incredibly creative and do a better job at bringing features with stability than Apple Engineers do.
Exactly! No one is leaking a key, if they can make money of it. If anything, this is a canary, of the fact that iPhones are not even close to being as secure as they are made out to be
Nope. You will get old one day and the time needed for all the stuff in your life will outweigh the effort of doing all those little jailbreak tweaks.
It's not that hard. Write a story, include the key in the story, the key is copyrighted. (Remember, don't publish the story.)
Don't forget the firmware.
The key was almost certainly leaked from the inside. Apple without question would be using public/private key cryptography. The key would not exist on the phone or anywhere outside of Apple Corporate Headquarters. Hopefully they find the person who checked the key out. Hopefully very bad and painful things happen to that person.
Yes it is dumb! People who jailbreak are the sort of people who are likely to wave a loaded gun around saying they have the right to do so and should be allowed to do so, then when the gun goes off and kills someone they moan about why someone did not stop them.
Jailbreaking leads to a less secure device and never EVER leads to a more secure device.
I value security more than the need to perform a small tweak etc that is not exactly life or death or is hardly amazing.
So with respect you jailbreak all you like but when you get hacked and your identity stolen and you are up a creak with no paddles do not complain about it and take your punches like a grown up.
meanwhile I will enjoy being secure and safe.
Good luck
exactly! Hackers like them are mostly in my view idiots who just want their 5 minutes of fame so that they can say "Hey look how cool I am and where is my parade!"
They need to get out more and actually get laid for once rather than try to undermined the security of other people in the name of their egos.
I like to figure out how things work and more to the point I am good at figuring how to defeat systems and I would Neve rever consider posting or making known anything that could weaken the security of any system.
The only sort of hacks that should be allowed are white hat hackers who hand over all their findings to the company/orgainsation involved and do not post anything at all. Even if the flaw(s) get patched.
I only hope that apple make it harder for this sort of info be harder to find in the future.
[automerge]1576109687[/automerge]
To jailbreak is to basically weaken the security which is what the leaked encryption keys possibly harming the Secure Enclave is about.
So they are essentially the same thing as in that they both are a form of hacking for the sake of hacking and not for the sake of making apple products stronger.
[automerge]1576109822[/automerge]
except that jailbreaking your device is actually weakening that security and makes It easier to figure out how to defeat my device that is not jail broken.
You are naive if you think that by jailbreaking you are making things stronger, that is like a drug dealer saying they are helping to cure cancer with respect.
Sooo... Is the Secure Enclave vulnerable now, or not? The rest of this discussion is interesting and all, but...
If it leaked from within Apple, then some one is in deep 💩.
My guess is Apple took it down for a few days to slow down its dissemination while they try to get ahead of the problem.
If he’s got it, then the toothpaste is out of the tube. If it’s crackable, and this guy didn’t crack it, it would just be a matter of time before someone did. Better for the world to know it’s been cracked than to continue in blissful ignorance.
If it leaked from within Apple, then some one is in deep 💩.
My guess is Apple took it down for a few days to slow down its dissemination while they try to get ahead of the problem.