Feds Can't Crack Apple's iMessage Encryption for Investigation Purposes
April 4, 2013 10:46 AM
comment(s) - last by
The FBI is looking to amend a 1994 law so that it includes Internet companies
U.S. government agencies are upset that they can't spy on suspects' who are using
Apple's iMessage service
According to government agencies like the Drug Enforcement Administration (DEA) and the Federal Bureau of Investigation (FBI), messages sent between iPhone users with the iMessage chat service are "impossible" to access because of iMessage's heavy encryption.
managed to get its hands on a DEA document, which describes a criminal investigation from February of this year. The document said that "it is impossible to intercept iMessages between two Apple devices" because of the encryption -- even with a federal court order.
Apple's iMessage chat service works a lot like a text message, but is transmitted through the internet rather than SMS messages by wireless carriers. It's an encrypted chat program that has become wildly successful. Apple CEO Tim Cook said 300 billion iMessages had been exchanged as of fall 2012.
However, the DEA and FBI are having troubles keeping an eye on suspects who use the chat service. For instance, in a case where the DEA drafted a request for a court order to carry out electronic surveillance under Title III of the Federal Wiretap Act, it found that text messages from Verizon Wireless were incomplete because the suspect was an iMessage user.
"There is a growing and dangerous gap between law enforcement's legal authority to conduct electronic surveillance, and its actual ability to conduct such surveillance," said FBI director Robert Mueller. "We must ensure that the laws by which we operate and which provide protection to individual privacy rights keep pace with new threats and new technology."
The FBI is pushing for legislation on the topic, but even if that doesn't go through, government agencies can employ other methods -- such as obtain a warrant allowing them to go into someone's house/office, install keystroke-logging software and record passphrases. They can also send malware to take control of the suspect's device.
One year ago today, it was reported that the U.S. Department of Homeland Security (DHS) and the U.S. Navy had launched a new research initiative to explore ways of allowing the government to hack into gaming consoles like the
, Wii, or PlayStation 3 to obtain information on gamers.
This article is over a month old, voting and posting comments is disabled
RE: Chat Logging
4/4/2013 6:45:55 PM
I thought by now ALL text messaging are logged by their service providers.
The problem with logging iMessage chats is that the encryption is endpoint-to-endpoint. That is, the plaintext is encrypted by the sender's phone, and decrypted by the recipient's phone. The only version of the message the service provider and Internet sees is the encrypted version. Even if Apple or your phone carrier were logging the messages (which apparently they are since the Feds were able to get copies to try to decrypt), they're still encrypted.
What we're seeing here is a fundamental shift in the concept of sending a message. In the old days, it was always possible to intercept a message. Modern cryptography and advances in computing power now mean that it's possible to send messages whose plaintext simply can't be intercepted (at least not in a realistic timeframe). The early salvos were strong encryption ciphers like DES, then RSA (public-private key). But iMessage is probably the widest-implemented due to the popularity of iPhones.
All this stuff about wiretaps and warrants is based on the premise that messages
be intercepted. But they go out the window if you're using messages which
be intercepted. Even if you ban endpoint-to-endpoint encryption, it's still possible for anyone to manually write a program that implements it.
This is the brave new world we're heading towards, whether law enforcement likes it or not. One where wiretaps are impossible. You can no longer intercept a message; you have to get a copy of it either from the source or the recipient. (Phones can still be remotely hacked, and encryption keys surreptitiously copied.)
RE: Chat Logging
4/5/2013 10:35:22 AM
"the plaintext is encrypted by the sender's phone, and decrypted by the recipient's phone. The only version of the message the service provider and Internet sees is the encrypted version"
Sounds basically the same as public key encryption, like PGP. Must be idiot proof and super easy to use or it wouldn't be on iPhones. Why hasn't this been a standard feature of every email application for years?
"I'm an Internet expert too. It's all right to wire the industrial zone only, but there are many problems if other regions of the North are wired." -- North Korean Supreme Commander Kim Jong-il
Richard Branson Wants to Start A Population on Mars
September 21, 2012, 12:01 AM
Report: 250GB Xbox 360 Console/Kinect Bundle Dropping to $300
May 31, 2011, 10:06 AM
Microsoft Launches Budget Lumia 640/640 XL; No High-End Devices Until This Fall
March 4, 2015, 9:10 AM
Finished Apple Watch Expected to be Showcased at"Spring Forward" Mar. 9 Event
February 26, 2015, 12:17 PM
Google Preps Pixel 2 ChromeBook, New X Server Replacement "Freon"
February 24, 2015, 11:12 PM
Report: Samsung Semiconductor Bounces Back w/ iPhone SoC and Memory Orders
February 24, 2015, 1:40 PM
Comcast Borrows Apple's Branding Flourishes for Its Remotes
February 24, 2015, 11:32 AM
NVIDIA Bows to Outraged Overclockers, Will Restore Feature in Upcoming Driver
February 23, 2015, 12:30 PM
Most Popular Articles
FCC Bans Data Discrimination, Defies Comcast, Adopting Net Neutrality Regulation
February 26, 2015, 4:03 PM
Google Steps up Snub of Adobe Flash, Auto-Converting Flash Ads to HTML5
February 25, 2015, 6:16 PM
Windows 10 Adds USB 3.1 for Dual-Role Peripherals, External Display Support
February 27, 2015, 11:39 AM
Australian Engineers Successfully Developed 3D-Printed Jet Engines
March 2, 2015, 11:08 AM
Smartphone STD Scanner Dongle Can Detect HIV in Just 15 Minutes
February 26, 2015, 11:04 AM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information