BC CRIME
Saved by @Mollyycolllinss

My students @maxzks and Tushar Jois spent most of the summer going through every piece of public documentation, forensics report, and legal document we could find to figure out how police were “breaking phone encryption”. 1/

 This was prompted by a claim from someone knowledgeable, who claimed that forensics companies no longer had the ability to break the Apple Secure Enclave Processor, which would make it very hard to crack the password of a locked, recent iPhone. 2/
We wrote an enormous report about what we found, which we’ll release after the holidays. The TL;DR is kind of depressing:

Authorities don’t need to break phone encryption in most cases, because modern phone encryption sort of sucks. 3/
I’ll focus on Apple here but Android is very similar. The top-level is that, to break encryption on an Apple phone you need to get the encryption keys. Since these are derived from the user’s passcode, you either need to guess that — or you need the user to have entered it. 4/
Guessing the password is hard on recent iPhones because there’s (at most) a 10-guess limit enforced by the Secure Enclave Processor (SEP). There’s good evidence that at one point in 2018 a company called GrayKey had a SEP exploit that did this for the X. See photo. 5/
There is really no solid evidence that this exploit still works on recent-model iPhones, after 2018. If anything, the evidence is against it.

So if they can’t crack the passcode, how is law enforcement still breaking into iPhones (because they definitely are)? 6/
The boring answer very likely is that police *aren’t* guessing suspects’ passcodes. They’re relying on the fact that the owner probably typed it in. Not *after* the phone is seized, in most cases. Beforehand. 7/
You see, iPhones can be in one of two states, which are respectively known as “Before First Unlock” (BFU) and “After First Unlock” (AFU). This is pretty self-explanatory.

When you turn your phone on and enter the passcode in the morning, you switch your phone from BFU->AFU. 8/
When you first unlock your iPhone after power-on, it uses your passcode to derive several sets of cryptographic keys. These stay in memory inside your phone, and are used to encrypt the file system. 9/
When you lock your iPhone (or press the button on the side, or leave it alone until the screen goes blank), exactly *one* set of keys gets “evicted”, ie erased from memory. Those keys are gone until you enter your passcode or use FaceID.

All of the other keys stay in memory. 10/
The key that gets evicted on lock is used to decrypt a subset of the files on the filesystem, namely the ones that have a specific protection class (NSComplete). The keys that don’t get evicted can be used to decrypt all the other files.

(This is all well-known so far BTW.) 11/
So the upshot of this is that, if police can capture your phone in the AFU state (yours is almost certainly in that state for 99% of its existence) *and* they have a software exploit that allows them to bypass the OS security measures, they can get most of the files. 12/
The real question is: what exactly does “most of the files” mean, and the corollary is “why not protect *more* than just a few of the files with that special key (the one that gets evicted)”. That’s where things get depressing. 13/
Apple *sort of* vaguely offers a list of the apps whose files get this special protection even in the AFU state. But notice how vague this language is. I have to actually decode it. 14/
Notice how this text simply reports that some app data is “protected through encryption” (this is vague and meaningless, since it doesn’t say whether it’s AFU or BFU) and other app data is explicitly only protected in the BFU state (before you first unlock.) Why so vague? 15/
Here is a version of the same text from back in 2012. Notice how it explicitly states that “Mail, App Launch images, and Location Data” are protected using the strongest type of encryption.

So it seems that Apple is actually protecting *less* data now than in 2012. Yikes. 16/
(Our most likely guess: Apple has weakened the protections on location data in order to enable fancy features like “location based reminders”. So they had to weaken the language in the security guide. This isn’t great.) 17/
But whether you look at the 2012 or 2020 data, the situation sucks. The built-in apps that definitely use strong AFU protection are:

Mail (which probably already exists on a server that police can subpoena, so who cares.)

App launch data (🤷‍♂️)

That’s not great. 18/
3rd party apps can opt-in to protect data using the strongest type of encryption, so this isn’t necessarily the whole story. But let’s list some data that *doesn’t* get AFU protection:

Photos
Texts
Notes
Possibly some location data

Most of what cops want. 19/
So this answers the great mystery of “how are police breaking Apple’s encryption in 2020”. The answer is they probably aren’t. They’re seizing unlocked phones and using jailbreaks to dump the filesystem, most of which can be accessed easily since keys are in memory. 20/
Oh my god my thumbs. 21/
Anyway, this leaves basically only one remaining question:

Why is so little of this data encrypted when your phone is AFU and locked? And the answer to that is probably obvious to anyone who develops software, but it still sucks. 22/
Most apps like to do things in the background, while your phone is locked. They read from files and generally do boring software things.

When you protect files using the strongest protection class and the phone locks, the app can’t do this stuff. It gets an error. 23/
Apple provides some tools to make this less painful: for example, they have a “write only” protection class.

But for the most part it’s annoying for software devs, so they lower protections. And if Apple *isn’t* using strong protection for its in-house apps, who will? 24/
If I could tell Apple to do one thing, I would tell them to figure this problem out. Because without protection for the AFU state, phone encryption is basically a no-op against motivated attackers.

Maybe Apple’s lawyers prefer it this way, but it’s courting disaster. 25/
For those who would prefer to read this thread in the form of a 65-page PDF that also discusses cloud backup systems and Android, here is our current paper draft: https://t.co/k3Qw0DNIoI

This will be on a pretty website soon. Thanks for not blocking me after this thread. // fin

More from Crime

Dannielle (Dossy) Blumenthal PhD
Dannielle (Dossy) Blum...
@DrDannielle
New DHS center countering human trafficking https://t.co/mKU6XlEsO8 via @AddThis

Interagency Task Force - United States Department of State

https://t.co/VxT0iGCcQz


It ends now

You are heard

https://t.co/FTcaAxTIwF
CRIME
Ford Fischer
Ford Fischer
@FordFischer
THREAD: Portland's Antifa movement held a New Years Eve demonstration Thursday night that became the first declared riot of 2021.

Police confronted the crowd with riot munitions as activists shot fireworks at them.

Filmed by @MaranieRae for @N2Sreports. Contact me for licensing
CRIME
Advertisement
The Chiefe
The Chiefe
@the_chiefe
Marxist Communist Harris-Biden's Great Reset #DeepState KILLUMINATI agenda

versus

CIA & Mossad #DeepState "Regime change in Iran" CRIME MINISTER Netanyahu TRAITOR-yahu's "Greater Israel Project" propaganda agenda?!?
CRIME
Conor Gogarty
Conor Gogarty
@ConorGogarty
Got an FOI response almost three years late... a short thread

Back in December 2017, when I was a reporter for the Gloucestershire Echo, I went to a knife crime event where a police officer gave a talk mentioning he'd been running undercover stings on local shops - sending in underage teens to see whether the store would sell them knives.

That's an interesting story, I thought. So I asked the @Glos_Police press office for some details about the operation, and the shops which had fallen foul of it. They said they'd rather not give those details.

So I put in an FOI on December 5, 2017, hoping for a response within the 20 working day limit.

I got one on November 20, 2020, having forgotten all about it

It refuses to confirm or deny whether the info is held: "Whilst there is a public interest in providing reassurance that the Police Service are appropriately and effectively holding information of this nature, there is a stronger public interest in safeguarding national security"
CRIME
Ilyas Nagdee
Ilyas Nagdee
@ilyas_nagdee
Statement from the #JusticeForShukriAbdi Campaign

The Coroner released her verdict of accidental death brings to a close a painful chapter for the family, one which has been made even more painful due to the failure of all the institutions that were meant to protect Shukri.

17 months ago,this campaign was created in the wake of the tragic death of Shukri. Since then her mother Zamzam &her family have faced what can only be described as a never-ending nightmare as she demanded answers & the truth of her beloved daughter's last moments on this earth

This vulnerable refugee mother, whose daughter was taken from her in dubious  circumstances, was left in limbo with unanswered questions and her own trauma to deal with all the while trying to support her other children come to terms with what had happened to their older sister

Her family protected her the moment she stepped onto UK soil, but sadly those authorities who should have protected Shukri Abdi, categorically and without question, failed her.  The facts are now firmly out there for the world to see that this was not merely a 'tragic accident'.

This campaign was set up to protect & provide support for the family, & to fight alongside the legal team to ensure that the truth of Shukri's death was exposed, & to ensure that no family ever has to experience the obstacles this mother had to face to simply get to the truth
CRIME

You May Also Like

AAdhira \U0001f319\U0001f1ee\U0001f1f3
AAdhira 🌙🇮🇳...
@Aadhiraspeaks
Shri Hanuman had boon to be immortal. And be present where ever there is Ram stuti.
I came across this beautiful story that I would like to share
#threadstories
#Hanuman ji is believed to live in the foothills of Himalayas. But once he spent a lot of time in Sri Lanka
1/9


Where Ravan's brother ruled for many years..
On his way back he came across tribal people from community called #Mathanga
He gave Darshan to them. The chief of the tribe asked him to keep coming back to guide their generations
Hanuman ji said that whoever recites this mantra
2/9


I will give them Darshan. But there are two conditions
1st he/she must know his relationship with me
2nd there must not be anyone around him in 950 mts radius. If present, that person must also know about my relationship with him /her.

He promised to come after every 41 yrs
3/9

The Mathangs also maintain a ‘logbook’ where they record all the words spoken and ‘leelas’ performed by Lord Hanuman.
They call him their Guru
Who teaches them how to live their lives.
A Sri Lankan organization called Setuu is studying this ‘logbook’ and also conduct
4/9

programmes for Hanuman devotees who can do ‘Sadhna‘ under the guidance of Setuu masters. Devotees who qualify all the criteria will be eligible for Hanuman’s ‘sakshaat darshan‘
The Setuu has certain conditions that need to be kept in mind which includes devoting one complete
5/9
RELIGION
Jaya_Upadhyaya
Jaya_Upadhyaya
@Jayalko1
MEENAKSHI AMMAN, MADURAI (TN)
#bharatmandir #navratri2021

A paadal Petra sthalam where Shiva took the form of Sundareswarar (the handsome one) and married Devi Parvati (Meenakshi).
Devi is also known by the name Angayarkanni (mother with the beautiful fish eyes).
@GunduHuDuGa


Devi Meenakshi emerged from yagna fire as a 3 year old girl when Pandyan King Malayadwaja and Kanchanamalai were praying for a child.
It is said that Devi was born with three breasts and there was a prophesy that her superfluous breast would melt away when she met her husband.


Devi ruled over Madurai and captured Indralok. She went on to capture Kailasha. When she saw Shiva, her 3rd breast disappeared and she realised that Shiva would be her consort.
The divine marriage was attended by all Devas and Sri Vishnu (as her brother) gave her hand to Shiva.


It is said that Indra found a swayambhu lingam at Kadamba Vanam. He placed it in Madurai where the kshetram stands. Here, Shiva is seen on the vehicle of Indra.
The Golden Lotus Tank is said to be the place where a golden lotus blossomed for the puja performed by Indra.


The Meenakshi Thirukalyanam festival is celebrated in the Chithirai month to mark the divine marriage of Meenakshi Amman. The festival includes a procession where Meenakshi and Sundareshwara travel in a chariot and Sri Vishnu gives away his sister in marriage to Shiva.
ALL
Advertisement
Kieran Snyder
Kieran Snyder
@KieranSnyder
1 There's a chasm between an NLP technology that works well in the research lab and something that works for applications that real people use. This was eye-opening when I started my career, and every time I talk to an NLP engineer at @textio, it continues to strike me even now.

2 Research conditions are theoretical and/or idealized. A huge problem for so-called NLP or AI startups with highly credentialed academic founders is that they bring limited knowledge of what it takes to build real products outside the lab.

3 A product is ultimately a thing that people pay for - not just cool technology or user experience. But I’m not even talking about knowledge gaps in go-to-market work. I'm talking purely technical gaps: how you go from science project to performant + delightful user experience.

4 Most commoditized NLP packages solve well-understood problems in standard ways that sacrifice either precision or performance. In a research lab, this is not usually a hard trade-off; in general, no one is using what you make, so performance is less important than precision.

5 In software, when you’re making something for real people to use, these tradeoffs are a big deal. Especially if you’re asking those people to pay for what you’ve made (can’t get away from that pesky GTM thinking). They expect quality, which includes precision AND performance.
MACHINE LEARNING
Erik Torenberg
Erik Torenberg
@eriktorenberg
1/“What would need to be true for you to….X”

Why is this the most powerful question you can ask when attempting to reach an agreement with another human being or organization?

A thread, co-written by @deanmbrody:


2/ First, “X” could be lots of things. Examples: What would need to be true for you to

- “Feel it's in our best interest for me to be CMO"
- “Feel that we’re in a good place as a company”
- “Feel that we’re on the same page”
- “Feel that we both got what we wanted from this deal

3/ Normally, we aren’t that direct. Example from startup/VC land:

Founders leave VC meetings thinking that every VC will invest, but they rarely do.

Worse over, the founders don’t know what they need to do in order to be fundable.

4/ So why should you ask the magic Q?

To get clarity.

You want to know where you stand, and what it takes to get what you want in a way that also gets them what they want.

It also holds them (mentally) accountable once the thing they need becomes true.

5/ Staying in the context of soliciting investors, the question is “what would need to be true for you to want to invest (or partner with us on this journey, etc)?”

Multiple responses to this question are likely to deliver a positive result.
LIFE
\U0001f1fa\U0001f1f8I Support Our Military & Law Enforcement\U0001f1fa\U0001f1f8
🇺🇸I Support Our Milita...
@TheWiseOwl_AZ
1. There are more people added on the list of arrests and executions of famous people but no further intel is available at this time.

ARRESTS and EXECUTIONS OF FAMOUS PEOPLE 2020 UPDATED
Explanation of the latest military tribunal arrests and executions of famous people in 2020.

2. The tribunals are arresting these people in plain clothes. We saw the Obama’s arrest, although we didn’t know it was an arrest at the time. The arrest was done nonchalantly so as to not get noticed by the public.
All arrests of these famous people were done this way.

3. If the person is convicted of child sex trafficking, crimes against humanity or treason, they will be executed.
If the person arrested has evidence on someone else to help their prosecution, or is willing to help Trump, & they want to cooperate, they may be allowed to do so.

4. A sentence of execution down to life in prison may be accepted if their evidence is worth anything.
When a plea deal is done, the defendant must present evidence they have to make their sentence lighter. This information is given to the prosecution, defense, and to the judge.

5. If evidence is accepted, they are presented the plea deal. They will have to make a guilty plea to the crime with a video confession & written statement. That is how all plea deals work.

All famous people arrested were either treasonous or involved in satanic worship rituals.
CRIME