Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Here's What Apple Retail's New Machine to Update iPhones in the Box Looks Like

It sounds cool and useful but I have a hard time understanding how it won't be hacked to gain access to people's phones. By governments or everyday hackers
 
now i see it said:
Proof right there that an iPhone can’t really ever be shut off completely. It’s always waiting.
Click to expand...
NFC circuit becomes energized>triggers phone to turn on.

^Valid hypothetical that defeats your premise and has just as much evidence for it.

What say ye?

I love assertions without any semblance of technical understanding. 🙄
 
Fuzzball84 said:
What security mitigations are in place? If you can tamper with a device that still has tamper proof seal in place

Anyone could do anything to it. What if government uses it as a way to change settings to an iPhone going to a certain politician, or business person, or anyone?
Click to expand...
You think the company that goes out of its way to encrypt the connections between components inside its own devices for security reasons (it’s not to fight repairs, it’s an acknowledgement that services like the Tailored Access Operations at the NSA exist)…didn’t think of making sure a certain type of technical verification has to be confirmed before this update mechanism kicks in? Cmon.
 
NT1440 said:
You think the company that goes out of its way to encrypt the connections between components inside its own devices for security reasons (it’s not to fight repairs, it’s an acknowledgement that services like the Tailored Access Operations at the NSA exist)…didn’t think of making sure a certain type of technical verification has to be confirmed before this update mechanism kicks in? Cmon.
Click to expand...
Cmon cmon cmon

The Company? You trust a company whose sole purpose is to turn a profit over a government agency whose sole purpose is to protect and safeguard its country and citizens?
 
NT1440 said:
You think the company that goes out of its way to encrypt the connections between components inside its own devices for security reasons (it’s not to fight repairs, it’s an acknowledgement that services like the Tailored Access Operations at the NSA exist)…didn’t think of making sure a certain type of technical verification has to be confirmed before this update mechanism kicks in?
Click to expand...
It might be a new attack vector, depending on the details.
What is with the hidden cpu register found weeks ago, which could bypass several security features, or with the hardware vulnerability found days ago, which seems not fixable and could leak secret keys.
How many such flaws are still being found?

The rule is, when it is not needed don't do it.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back