Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
FBI Vs. Apple: Privacy Syllabus
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
Luongo
Luongo,
User Rank: Apprentice
3/25/2016 | 2:39:37 AM
Re: There is a way out
nice great
Grands-mamans
Grands-mamans,
User Rank: Apprentice
3/9/2016 | 2:35:01 AM
Re: There is a way out
The FBI have probably already cracked it :(
wedgetail
wedgetail,
User Rank: Apprentice
3/1/2016 | 12:06:54 PM
Re: Apple vs FBI
The FBI have probably already cracked it.  If not, then they are not utilizing their available resources very well.

Apple know that their encryption is not infallible, however they must defend their position otherwise the public will lose faith, purely a marketing decision.

Cracking any encryption takes too much time and every time the FBI attempt to crack an iPhone, they start at zero, even if they have a preferred method.  If the FBI identify a faster way to penetrate iPhones then of course they will try to get it, and set legal precedent along the way.
KeithM986
KeithM986,
User Rank: Apprentice
3/1/2016 | 11:56:58 AM
I guess I am in the minority in being unclear how your phone becomes so protected...
So if you commit a crime, the police/FBI, with a warrent, are allowed to search your house and/or buisness, get access to your accounts and computer, they can impound your car, check phone records, get access to safes or anything else that you might have. They even might get access to search friends and neighbors to an extent, but god forbid they have access to your phone...that is sacred.

 

Clearly your phone, as well as the rest of your privacy, needs to be protected...so no unwarrented search and seizure...of anything, but if you are suspected of a crime...suspected enough that a specific warrent is made out for your arrest, then I don't see how your phone suddenly becomes civil rights hollowed ground.

 

Now if this is the case that Apple simply cannot do it from a tech stand point (cause really, if they are saying they can load an OS that allows the phone to be brute forced that means anyone could do that) then that is something else...
cyberpink
cyberpink,
User Rank: Strategist
3/1/2016 | 10:45:41 AM
Re: David against Goliath ?
I share your concern for the common good of our country.  Privacy is not the real issue at stake.  But it is being used to sideline the public.  Safety and security of the American public is at stake.  The question I ask, "Is there ever a situation where the safety of America trumps the privacy of a cell phone?"  Does a 9/11 event ever rank as important enough?  Or a Pearl Harbor attack?  It is obvious that cell phones and the internet are used to coordinate attacks - their primary purpose is to communicate no matter where your location is.  Everyone involved wants the privacy of America preserved.  But at what cost?
audrey-privateblog
audrey-privateblog,
User Rank: Apprentice
2/28/2016 | 4:31:54 AM
David against Goliath ?

I don't know what will happen with this "Apple vs government story", but i think it won't be very good for users...  as ever :(

Dr.T
Dr.T,
User Rank: Ninja
2/25/2016 | 5:00:00 PM
The information in iPhone
Another point I would like to make, there should not be any information in iPhone that is not somewhere else. The only think that can be in iPhone are the pictures most likely, there rest is always somewhere else too.
Dr.T
Dr.T,
User Rank: Ninja
2/25/2016 | 4:56:57 PM
Re: Apple vs FBI
Obviously they could not. The government does not really have resources and skills that Apple has.
Dr.T
Dr.T,
User Rank: Ninja
2/25/2016 | 4:54:39 PM
Re: Dark Reading's Primer on FBI vs Apple
For me is it an easy choice, both FPI and Apple should stop scaring public with the terrorism stick and get back to work and do this in a way that that can only wok on that phone. They have been working on all other cases, this is not any different.
Dr.T
Dr.T,
User Rank: Ninja
2/25/2016 | 4:48:26 PM
Re: Solid Support
That is how our laws are getting very complex and eventually costing regular hard working population. Apple and FBI is going to be just fine. They do not care about us.
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Black Hat USA 2022 Attendee Report
Black Hat attendees are not sleeping well. Between concerns about attacks against cloud services, ransomware, and the growing risks to the global supply chain, these security pros have a lot to be worried about. Read our 2022 report to hear what they're concerned about now.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-37041
PUBLISHED: 2022-08-12
An issue was discovered in ProxyServlet.java in the /proxy servlet in Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0. The value of the X-Forwarded-Host header overwrites the value of the Host header in proxied requests. The value of X-Forwarded-Host header is not checked against the whitelist of ho...
CVE-2022-37042
PUBLISHED: 2022-08-12
Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP archive and extracts files from it. By bypassing authentication (i.e., not having an authtoken), an attacker can upload arbitrary files to the system, leading to directory traversal and remote code execu...
CVE-2022-37043
PUBLISHED: 2022-08-12
An issue was discovered in the webmail component in Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0. When using preauth, CSRF tokens are not checked on some POST endpoints. Thus, when an authenticated user views an attacker-controlled page, a request will be sent to the application that appears to b...
CVE-2022-37044
PUBLISHED: 2022-08-12
In Zimbra Collaboration Suite (ZCS) 8.8.15, the URL at /h/search?action accepts parameters called extra, title, and onload that are partially sanitised and lead to reflected XSS that allows executing arbitrary JavaScript on the victim's machine.
CVE-2022-37423
PUBLISHED: 2022-08-12
Neo4j APOC (Awesome Procedures on Cypher) before 4.3.0.7 and 4.x before 4.4.0.8 allows Directory Traversal to sibling directories via apoc.log.stream.