BC CRIME
Saved by @Mollyycolllinss

My students @maxzks and Tushar Jois spent most of the summer going through every piece of public documentation, forensics report, and legal document we could find to figure out how police were “breaking phone encryption”. 1/

 This was prompted by a claim from someone knowledgeable, who claimed that forensics companies no longer had the ability to break the Apple Secure Enclave Processor, which would make it very hard to crack the password of a locked, recent iPhone. 2/
We wrote an enormous report about what we found, which we’ll release after the holidays. The TL;DR is kind of depressing:

Authorities don’t need to break phone encryption in most cases, because modern phone encryption sort of sucks. 3/
I’ll focus on Apple here but Android is very similar. The top-level is that, to break encryption on an Apple phone you need to get the encryption keys. Since these are derived from the user’s passcode, you either need to guess that — or you need the user to have entered it. 4/
Guessing the password is hard on recent iPhones because there’s (at most) a 10-guess limit enforced by the Secure Enclave Processor (SEP). There’s good evidence that at one point in 2018 a company called GrayKey had a SEP exploit that did this for the X. See photo. 5/
There is really no solid evidence that this exploit still works on recent-model iPhones, after 2018. If anything, the evidence is against it.

So if they can’t crack the passcode, how is law enforcement still breaking into iPhones (because they definitely are)? 6/
The boring answer very likely is that police *aren’t* guessing suspects’ passcodes. They’re relying on the fact that the owner probably typed it in. Not *after* the phone is seized, in most cases. Beforehand. 7/
You see, iPhones can be in one of two states, which are respectively known as “Before First Unlock” (BFU) and “After First Unlock” (AFU). This is pretty self-explanatory.

When you turn your phone on and enter the passcode in the morning, you switch your phone from BFU->AFU. 8/
When you first unlock your iPhone after power-on, it uses your passcode to derive several sets of cryptographic keys. These stay in memory inside your phone, and are used to encrypt the file system. 9/
When you lock your iPhone (or press the button on the side, or leave it alone until the screen goes blank), exactly *one* set of keys gets “evicted”, ie erased from memory. Those keys are gone until you enter your passcode or use FaceID.

All of the other keys stay in memory. 10/
The key that gets evicted on lock is used to decrypt a subset of the files on the filesystem, namely the ones that have a specific protection class (NSComplete). The keys that don’t get evicted can be used to decrypt all the other files.

(This is all well-known so far BTW.) 11/
So the upshot of this is that, if police can capture your phone in the AFU state (yours is almost certainly in that state for 99% of its existence) *and* they have a software exploit that allows them to bypass the OS security measures, they can get most of the files. 12/
The real question is: what exactly does “most of the files” mean, and the corollary is “why not protect *more* than just a few of the files with that special key (the one that gets evicted)”. That’s where things get depressing. 13/
Apple *sort of* vaguely offers a list of the apps whose files get this special protection even in the AFU state. But notice how vague this language is. I have to actually decode it. 14/
Notice how this text simply reports that some app data is “protected through encryption” (this is vague and meaningless, since it doesn’t say whether it’s AFU or BFU) and other app data is explicitly only protected in the BFU state (before you first unlock.) Why so vague? 15/
Here is a version of the same text from back in 2012. Notice how it explicitly states that “Mail, App Launch images, and Location Data” are protected using the strongest type of encryption.

So it seems that Apple is actually protecting *less* data now than in 2012. Yikes. 16/
(Our most likely guess: Apple has weakened the protections on location data in order to enable fancy features like “location based reminders”. So they had to weaken the language in the security guide. This isn’t great.) 17/
But whether you look at the 2012 or 2020 data, the situation sucks. The built-in apps that definitely use strong AFU protection are:

Mail (which probably already exists on a server that police can subpoena, so who cares.)

App launch data (🤷‍♂️)

That’s not great. 18/
3rd party apps can opt-in to protect data using the strongest type of encryption, so this isn’t necessarily the whole story. But let’s list some data that *doesn’t* get AFU protection:

Photos
Texts
Notes
Possibly some location data

Most of what cops want. 19/
So this answers the great mystery of “how are police breaking Apple’s encryption in 2020”. The answer is they probably aren’t. They’re seizing unlocked phones and using jailbreaks to dump the filesystem, most of which can be accessed easily since keys are in memory. 20/
Oh my god my thumbs. 21/
Anyway, this leaves basically only one remaining question:

Why is so little of this data encrypted when your phone is AFU and locked? And the answer to that is probably obvious to anyone who develops software, but it still sucks. 22/
Most apps like to do things in the background, while your phone is locked. They read from files and generally do boring software things.

When you protect files using the strongest protection class and the phone locks, the app can’t do this stuff. It gets an error. 23/
Apple provides some tools to make this less painful: for example, they have a “write only” protection class.

But for the most part it’s annoying for software devs, so they lower protections. And if Apple *isn’t* using strong protection for its in-house apps, who will? 24/
If I could tell Apple to do one thing, I would tell them to figure this problem out. Because without protection for the AFU state, phone encryption is basically a no-op against motivated attackers.

Maybe Apple’s lawyers prefer it this way, but it’s courting disaster. 25/
For those who would prefer to read this thread in the form of a 65-page PDF that also discusses cloud backup systems and Android, here is our current paper draft: https://t.co/k3Qw0DNIoI

This will be on a pretty website soon. Thanks for not blocking me after this thread. // fin

More from Crime

Lachelle Dawn
Lachelle Dawn
@Lachelle_Dawn
Can’t get over Dr. Susan Moore’s death.

It’s on my mind heavy.

Being sick is bad enough - fatigue, pain, shortness of breath. I imagine that to be a member of the majority caste in this country is to be able to just be sick. To be able to focus energy on getting well and maybe (because medical capitalism) how to pay.

There is so much more on the minds of Black patients - considering if the hospital you go to will treat you well (or at all). To have to, in the midst of the emotional and cytokine storm of infection, muster strength to fight for adequate care. To trade rest for diligence.

To have to calculate how a care provider might interpret how you express emotion & pain-too calm & you must be lying, too hysterical & you might invite the non-therapeutic intervention of armed security guards

To second guess fully disclosing your living situation, finances, diet and ability to afford and adhere to medications because of the potential consequences of the judgement that might follow.
CRIME
The Chiefe
The Chiefe
@the_chiefe
Marxist Communist Harris-Biden's Great Reset #DeepState KILLUMINATI agenda

versus

CIA & Mossad #DeepState "Regime change in Iran" CRIME MINISTER Netanyahu TRAITOR-yahu's "Greater Israel Project" propaganda agenda?!?
CRIME
Advertisement
Temitope Badejo
Temitope Badejo
@TemitopeBadejo1
It's another day to expose Peter Alabi @pastorpeealabi of @HoFChurchNG & @ChristTribe. More victims have reached out to us. Unknown to many, Peter Alabi is actually an unrepentant serial sexual abuser. We know that he's been lying that he has repented and that the stories...

... we have put out so far are only with reference to what happened years back. But we can also confirm that he continued to prey on more victims even after he left Ife in 2016. We also know that Peter Alabi made serious attempts to sleep with some ladies during the lockdown...

A victim, who was one of those Peter Alabi tried to sleep with during the Covid-19 lockdown has shared with us some of the chats between her and Peter Alabi, which were initiated by Peter Alabi. According to the victim, when Peter Alabi's intentions became obvious, she decided...

... to play along and act like she was in concert with him. This eventually made Peter Alabi to reveal his covert intentions to sleep with her. The chat began on Instagram in March 2020 and continued on WhatsApp till June 2020. We will be sharing screenshots of the Instagram...

... chats below. Later today, we will share the WhatsApp chats which are more revealing and expository. Please see the screenshots of the Instagram chats between Peter Alabi (peterayoalabi) and the victim below👇🏾 @oauchristians @HoFChurchNG @peterayoalabi @funlola_alabi
CRIME , PASTOR , ALL
Jordan Novet
Jordan Novet
@jordannovet
https://t.co/WCcDjvSn89


https://t.co/GkI8ZnW8Fy


https://t.co/HyiZe1lwFt


https://t.co/xPHEZIz0j1


https://t.co/rHx7oDyXl0
CRIME
Aron Hyman
Aron Hyman
@aron_hyman
THREAD: The following tweets are for the purposes of stories that will appear in Sunday Times Daily. The videos and images depicted may be upsetting but are deemed to be in the public interest. This is the story of the Ayanda "Borhey" Mtila as far as we were able to verify it.


On 13 October Mtila as defacto overlord of the Boko Harram gang, allegedly carried out his penultimate cash-in-transit robbery. Sources say he sustained a head wound in a shootout with security guards. Some friends believe he was killed by a fellow

He died two days later, on 15 October, after allegedly being in a coma for more than a day. His funeral was a spectacle, held on Nyanga Sports fields on 24 October and attended by hundreds of people. Sources say it was made possible by Paarl businessman Lukhanyo "Spur" Mangena.
CRIME

You May Also Like

Patrick McKenzie
Patrick McKenzie
@patio11
Some people really benefit from hearing advice that everyone knows, for the same reason we keep schools open despite every subject in them having been taught before.

In that spirit, here's some quick Things Many People Find Too Obvious To Have Told You Already.

Your idea is not valuable, at all. All value is in the execution. You think you are an exception; you are not. You should not insist on an NDA to talk about it; nobody serious will engage in contract review over an idea, and this will mark you as clueless.

Technologists tend to severely underestimate the difficulty and expense of creating software, especially at companies which do not have fully staffed industry leading engineering teams ("because software is so easy there, amirite guys?")

Charge more. Charge more still. Go on.

The press is a lossy and biased compression of events in the actual world, and is singularly consumed with its own rituals, status games, and incentives. The news necessarily fails to capture almost everything which happened yesterday. What it says is important usually isn't.

Companies find it incredibly hard to reliably staff positions with hard-working generalists who operate autonomously and have high risk tolerances. This is not the modal employee, including at places which are justifiably proud of the skill/diligence/etc of their employees.
TECH
Billy Bostickson \U0001f3f4\U0001f441&\U0001f441 \U0001f193
Billy Bostickson 🏴👁&👁 ...
@BillyBostickson
Enough Jaw Jaw, this is War!
1. People's Justice Courts to be set up worldwide
2. Citizens' arrests of all Identified Suspects
3. Lab Inspections
3. Harsh interrogation using MKULTRA
4. Public Show Trials video streamed live
5. Cross Questioning of suspects via Twitter & Zoom
6.


A growing list of suspects to be interrogated


Foul Traitors, Charlatans, Frauds, Bat Molesters! Frankensteins, Well Poisoners, Plotters, Deceivers!
Dr. Shipmans, Saboteurs, Devils in White Coats!


Organisations to be Investigated
WIV
Wuhan University IMA
WIBP
WCDC
BEIJING IPB
Nanjing Military Lab
SinoPharm
BARDA
NIH
EMERGENT BIOSOLUTIONS
BIOPORT
GILEAD
SIAC
QTEL
USAMRIID
FORT DETRICK
DARPA
DTRA
Metbiota
ONE HEALTH
GVP
ECOHEALTH
MITRE
BATTELLE
TUNNELL
LAURIMA GOV SERVICES


Suspects (1)
China
Zhengli Shi
Peng Zhou
George Gao
Deyin Guo
Major General Chen Wei
United States
ALEX AZAR
JONNA MAZET
ALISON O’TOOLE
ANTHONY FAUCI
BOYD YOUNT
DAVID FRANZ
DAVID KARESH
DENNIS CARROLL
DYLAN GEORGE
GEORGE PAINTER
IAN LIPKIN
JENS KUHN
JEROME HAUER
JONATHAN EPSTEIN
WORLD , ALL
Advertisement
Anu Satheesh
Anu Satheesh
@AnuSatheesh5
Dhanwanthari Temple, Nelluvai
Thrissur District, Kerala.🚩🚩

ॐ नमो भगवते वासुदेवाय धन्वन्तरये अमृतकलश हस्ताय
सर्वामय विनाशनाय त्रैलोक्यनाथाय श्री महाविष्णवे नमः
#temples

Dhanwanthary Moorthy temple in Nelluvai is one among the ancient temples in Kerala.


Dhanwanthari is the Deva of Ayurveda. It is said that the murthy at the temple was installed by Ashwani Devas and it was the same idol worshipped by Sri. Vasudevar in the Dwapara Yuga. The Dhanvanthari Moorthi is facing towards the west
@SriramKannan77


Smrata-Matrarti-Nasanah', Srimad Bhagavatam states that the one who remembers the name of Dhanwantari will be cured and protected from all the diseases. Temple is known for its Oushada Prasada with Ayuvedic medicinal values, called Mukkudi.


Mukkudi Nivedyam is a very special offering to Dhanwantari. It is prepared by using dry ginger, pepper, pomegranate peel, cumin seed, turmeric, rock salt and other medicinal items. It is offered during 'Usha- Pooja', and is later on distributed to the devotees present there.
ALL
Learning @ Prakash
Learning @ Prakash
@Prakashplutus
My simple Approach towards Breakout trading :

1. Scan stocks on the basis of FTDB Scanner.

2. Buy stocks with EMA-9> EMA-21> EMA-63 > EMA 200 & Volume 200% up

3. maximum SL of 1.25X ( ATR )

4. I do breakout trading only in Nifty -500 stocks

#StockMarket
#trading
#Nifty
SCREENERS
Kestrel \u2664 lwj kin
Kestrel ♤ lwj kin
@slutxian
MDZS is laden with buddhist references. As a South Asian person, and history buff, it is so interesting to see how Buddhism, which originated from India, migrated, flourished & changed in the context of China. Here's some research (🙏🏼 @starkjeon for CN insight + citations)

1. LWJ’s sword Bichen ‘is likely an abbreviation for the term 躲避红尘 (duǒ bì hóng chén), which can be translated as such: 躲避: shunning or hiding away from 红尘 (worldly affairs; which is a buddhist teaching.) (https://t.co/zF65W3roJe) (abbrev. TWX)

2. Sandu (三 毒), Jiang Cheng’s sword, refers to the three poisons (triviṣa) in Buddhism; desire (kāma-taṇhā), delusion (bhava-taṇhā) and hatred (vibhava-taṇhā).

These 3 poisons represent the roots of craving (tanha) and are the cause of Dukkha (suffering, pain) and thus result in rebirth.

Interesting that MXTX used this name for one of the characters who suffers, arguably, the worst of these three emotions.

3. The Qian kun purse “乾坤袋 (qián kūn dài) – can be called “Heaven and Earth” Pouch. In Buddhism, Maitreya (मैत्रेय) owns this to store items. It was believed that there was a mythical space inside the bag that could absorb the world.” (TWX)
RELIGION