If you purchase Apple Care, the whole replacement is free. It will pay for itself....
Isn't that what's essentially referenced in the quote from an Apple spokesperson that is included in the article?Good write up however I have yet to see how this would in actuality work. Nothing from Apple either. If the "chain" is needed for security why c an't Apple just come out and say it.
And my single biggest issue: what gives Apple the right to permanently brick my device remotely?
I am in the same space. Have yet to see anything that gives technical or factual credence to a security issue. Instead we are currently left with vaguely worded official responses and a whole lot of online supposition.
Facts.
What is this mental disorder kiddies today seem to have where anything a little dated is obsolete? What makes you think the age of the law has anything to do with its relevance?
Don't screw your customer. Don't destroy their product because they do something with it you don't like. There's nothing new or trendy about that.
And for the record, I wasn't even born in 1971, but all these little kiddies these days saying it's old, it's junk just make them sound like the stupid children they are. Same goes for the ones saying they should replace the 3.5mm audio pin just because it dates to the 70's.
The Magna Carta is 801 years old from before the US even existed. It's really time to throw away those horrible antiquated legal concepts. Public jury trials are so 800 years ago, we should modernize and let government agents try people in secret just because that law is so old.
Apple pulls it and people defend them, although there is no proof. People are already making up scenarios that don't exist from a meaningless apple PR statement. For some people is like big brother, and people follow them blindly.
Good write up however I have yet to see how this would in actuality work. Nothing from Apple either. If the "chain" is needed for security why c an't Apple just come out and say it.
And my single biggest issue: what gives Apple the right to permanently brick my device remotely?
I am in the same space. Have yet to see anything that gives technical or factual credence to a security issue. Instead we are currently left with vaguely worded official responses and a whole lot of online supposition.
Facts.
All Apple has to do is confirm, technically as of right now, the threat exists, and a device has been compromised in this manner, hence the bricking. They have not done so. Until they do so, its about as credible as our government taking away our civil rights cause there "might" be a threat of terrorism, and they require access to our data to prevent it.
I am all for security for a reason, a solid reason. This update that suddenly bricks a phone without clear communication is amateur hour, especially if I own the device!
Apple is testing the waters here, they have been very careful in their wording.
I am not of the current generation of mac users where the device is glued, I am from a generation where tinkering, upgrading and getting the most of your device was encouraged, the early generation of mac users. If Apple is telling me that they can brick any of my devices in the future......cause it has non apple parts, that is every mac I own pre 2012, , including ipods, where I have changes the battery/hd.
Heck, they can turn around to all of us and say that the RAM, and HDDs we replaced could have been modified to steal our data.....and the device will not function until official parts are put back in.
What I find funny is that had Microsoft or Google pulled this stunt, these forums would be on FIRE, saying how could they etc. Apple pulls it and people defend them, although there is no proof. People are already making up scenarios that don't exist from a meaningless apple PR statement. For some people is like big brother, and people follow them blindly.
I wait for some evidence. Any piece of evidence that backs up Apple's action. None has been presented so far.
Isn't that what's essentially referenced in the quote from an Apple spokesperson that is included in the article?
They would most certainly not get my money if this happened to me.Sales next quarter won't be down apparently, due to the fact that whomever has had their phone bricked will need to purchase a new one. As of now anyway.
So, according to this logic, if you take your new Lexus to a non-dealership repair shop and they put non-factory aftermarket replacement parts on your car, Lexus is liable when something goes wrong?
no, it means that Lexus would have the ability to make your entire car unusable just cuz
Until we know exactly what happened all scenarios are made up, including your own. Welcome to the internet.
Except it's not "just cuz".no, it means that Lexus would have the ability to make your entire car unusable just cuz
I just want proof. Dont care about the money angle, I want to know the iphone is secure, even with a 3rd party sensor
It'll never be fully secure as long as it has that fingerprint sensor, since it can easily be fooled with a fake finger.
That's why it's so bogus to use security as an excuse in this case. A fake finger attack seems far more likely than having your sensor replaced with a unit customized for evil intents![]()
Except it's not "just cuz".
Yep.
For the car analogists: please go and try switching out the ignition on any modern car without getting the immobilizer and boards on the ignition itself programmed (at significant cost) by the dealer, we will wait while you do. Spoiler: your car will be a $20-$100K brick on wheels. This also goes for the car's CPU, ABS computer, and many of the electronic drivetrain components (ie- traction control computers)- and that's with official first party parts! This is true for nearly every vehicle made by every major car manufacturer for at least the last 10 or so years.
This continues to be a terrible analogy for many reasons, not the least of which is that it directly contradicts the point the people bringing it up are are trying to make.
Hey Ford!! I took the ignition out of my Explorer and replaced it with one from Bob's Cheap Ignitions down the street, and now my car won't start! You bastards did this on purpose! I'm lawyering up!
Yes but using non-original parts.And again, read the headline! It clearly says "...Some Stores Authorized For Repairs"
here's the problem, people did switch out the ignition with a third party, and their car worked just fine until they were foolish enough to let the manufacturer brick it without being given a heads up
we can agree, i think, to let the courts decide
The person to give the "heads up", would be the imbeciles who replaced it and knew about it (known since IOS 8.3) but took the client's money anyway... But, hey, Apple has more money so lets go after it instead....
If so called "authorized" (sic) places didn't use the proper parts and the proper procedures (both needed), then THEY should be sued, not Apple.
As I recall, that type of reminder alert comes up only if/once the update was downloaded onto the device and was waiting to be installed, and that downloaded update can be deleted which should stop the reminders.The phones that were bricked worked fine until they tried to update. Quick refresher- the daily reminder to update your iOS does not have the option for "quit reminding me", so you get the message every day until you relent.
Here's a thought- "Apple has determined that your hardware is not compliant with the latest software update and may render your device completely useless, click accept to proceed or cancel to exit"
or how bout an option to restore from last backup…
Apple broke the device, they didn't need to. I applaud the efforts being taken to bring a class action on this.
So you are saying that my bank, and all third party apps, allow me to log in with only my phone's four digit password? Mastercard, Visa etc. allow this too? I find that hard to believe. My bank doesn't / shouldn't know my phones passcode. Even if it did, it wouldn't match my bank password.
I'm guessing that the Touch ID either returns a "go" or "no go" to the app that queries the Touch ID information. "Yes, this is Joe Mama, it's okay to let him proceed."
Any developers care to comment on this?
Page 12 said:(NSFileProtectionComplete): The class key is protected with a key derived from the user passcode and the device UID.
Page 15 said:... when a passcode is entered, the NSFileProtectionComplete key is loaded from the system keybag and unwrapped.
Page 9 said:If Touch ID is turned off, when a device locks, the keys for Data Protection class Complete, which are held in the Secure Enclave, are discarded. The files and keychain items in that class are inaccessible until the user unlocks the device by entering his or her passcode.
With Touch ID turned on, the keys are not discarded when the device locks; instead, they’re wrapped with a key that is given to the Touch ID subsystem inside the Secure Enclave. When a user attempts to unlock the device, if Touch ID recognizes the user’s fingerprint, it provides the key for unwrapping the Data Protection keys, and the device is unlocked.
Page 8 said:Touch ID can also be configured to approve purchases from the iTunes Store, the
App Store, and the iBooks Store, so users don’t have to enter an Apple ID password. When they choose to authorize a purchase, authentication tokens are exchanged between the device and the store. The token and cryptographic nonce are held in the Secure Enclave. The nonce is signed with a Secure Enclave key shared by all devices and the iTunes Store.
Page 34 said:The Secure Element will only allow a payment to be made after it receives authorization from the Secure Enclave, confirming the user has authenticated with Touch ID or the device passcode. Touch ID is the default method if available but the passcode can be used at any time instead of Touch ID. A passcode is automatically offered after three unsuccessful attempts to match a fingerprint and after five unsuccessful attempts, the passcode is required. A passcode is also required when Touch ID is not configured or not enabled for Apple Pay.
Page 7 said:When Touch ID scans and recognizes an enrolled fingerprint, the device unlocks without asking for the device passcode. The passcode can always be used instead of Touch ID