The coaliti is comprised of several technology companies that have taken a stand against weakening encrypti, including Apple, Google, Microsoft, Dropbox, Snap, Evernote, LinkedIn, Oath (Veriz property) and Facebook. The Government Watch recently announced a new basic encrypti principle that will guide our advocacy efforts, and we ctinue to believe that strg encrypti helps protect the security and privacy of individuals and businesses across the globe. world. We have csistently raised ccerns about proposals that would undermine the encrypti of devices and services by requiring "exceptial access" for law enforcement. Recent reports have described new proposals for integrating vulnerabilities into devices and services – but they seem to suffer from the same technical and design issues that security researchers have identified for years.
As ZDNet points out, the statement follows an article by WIRED describing Microsoft technical leader Ray Ozzie and his suggesti. for a soluti called "Clear" that would give law enforcement access to encrypted data with less security risk.
Ozzie's proposal uses a public key and a private key (hosted and protected by a company like Apple) that are used to encrypt and decrypt a generated PIN code the device. Nobody is supposed to be able to decode and use the PIN code to unlock the device outside the provider, using the aforementied private key.
So, let's say that the FBI needs the ctent of an iPhe. First, federal authorities must obtain the device and obtain court authorizati to access the informati it ctains. The Ozzie system does not allow authorities to enter informati remotely. With the phe in his possessi, they could then access, via the lock screen, the encrypted PIN code and send it to Apple.
Armed with this informati, Apple would send trusted employees to the vault where they could use the private key to unlock the PIN. Apple could then return this secret secret code to the government, which can use it to unlock the device.
Ozzie demstrated his "clear" soluti to representatives of tech companies that included Apple, Google and Facebook, according to WIRED but unsurprisingly, ne of them had "any interest "to voluntarily implement this type of access in their devices and services.
In April, the Apple coaliti released a basic principle of ensuring the security of the device by strg encrypti and calling governments to avoid taking acti that would force companies to "create security loopholes in their devices." products and services". 19659002] Strg encrypti of devices and services protects the sensitive data of our users – including individuals, businesses and governments. Strg encrypti also promotes free expressi and the free flow of informati around the world. Forcing technology companies to incorporate vulnerabilities into their products and services would compromise the security and privacy of our users, as well as the global IT infrastructure. Governments should avoid any acti that would force companies to create security vulnerabilities in their products and services.
The renewed activity of the Reform Government mitoring group follows reports suggesting that enforcement officials quietly crack down proposals that would compel technology companies to add backdoor access in electric devices to the company. Intenti of law enforcement officials.
FBI and DOJ officials met with security researchers to develop approaches that would provide "extraordinary access" to encrypted devices like the iPhe, with DOJ officials "cvinced" that 39, there is way to create a backdoor defense of a device against piracy.
Craig Federighi, the director of Apple's software engineering, recently said that this type of disguised access "would inject new and dangerous weaknesses into the product's security."
"The weakening of security makes no sense if we csider that our customers rely our products to secure their persal informati, run their business or even manage vital infrastructure like the power grids and transport systems, "says Federighi.
Apple vehemently opposes backdoor solutis like the e proposed by Ozzie because they have the potential to weaken device encrypti and provide new ways for bad actors to access to device data.
Apple's strg positi against impaired protectis devices for access to law enforcement was highlighted in the 2016 Apple's FBI dispute that prevented Apple from create a rear access soluti allowing the FBI to hack the iPhe 5c from San Bernardino. Syed Farook shooter.
Without backdoor devices, law enforcement officials have still found ways to break devices like iPhes by other means. At the present time, for example, agencies like the FBI and the DOJ have access to an iPhe unlock box called GrayKey, which is able to unlock the latest iPhes from Apple running modern versis of iOS.
Note: Due to the political nature of the discussi this topic, the thread is in our forum Politics, Religi, Social Issues. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.