Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Iphone Privacy Security Apple

Cops Told 'Don't Look' at New iPhones To Avoid Face ID Lock-Out (vice.com) 84

As Apple continues to update its iPhones with new security features, law enforcement and other investigators are constantly playing catch-up, trying to find the best way to circumvent the protections or to grab evidence. From a report: Last month, Forbes reported the first known instance of a search warrant being used to unlock a suspect's iPhone X with their own face, leveraging the iPhone X's Face ID feature. But Face ID can of course also work against law enforcement -- too many failed attempts with the 'wrong' face can force the iPhone to request a potentially harder to obtain passcode instead. Taking advantage of legal differences in how passcodes are protected, US law enforcement have forced people to unlock their devices with not just their face but their fingerprints too. But still, in a set of presentation slides obtained by Motherboard this week, one company specialising in mobile forensics is telling investigators not to even look at phones with Face ID, because they might accidentally trigger this mechanism.

"iPhone X: don't look at the screen, or else... The same thing will occur as happened on Apple's event," the slide, from forensics company Elcomsoft, reads. Motherboard obtained the presentation from a non-Elcomsoft source, and the company subsequently confirmed its veracity. The slide is referring to Apple's 2017 presentation of Face ID, in which Craig Federighi, Apple's senior vice president of software engineering, tried, and failed, to unlock an iPhone X with his own face. The phone then asked for a passcode instead. "This is quite simple. Passcode is required after five unsuccessful attempts to match a face," Vladimir Katalov, CEO of Elcomsoft, told Motherboard in an online chat, pointing to Apple's own documentation on Face ID. "So by looking into suspect's phone, [the] investigator immediately lose one of [the] attempts."

This discussion has been archived. No new comments can be posted.

Cops Told 'Don't Look' at New iPhones To Avoid Face ID Lock-Out

Comments Filter:
  • by Anonymous Coward

    Simply outlaw personal use of cryptography, and require manufactured to provide a backdoor code. Then we won't need police officers jumping through a lot of hoops trying to get around privacy laws.

    • by mark-t ( 151149 )
      That's true... instead, all of that police effort and then some will have to be focused on protecting the millions of innocent people who have been made more vulnerable by the weakening of such encryption.
    • by cmarkn ( 31706 )
      Criminals and spies would just love for all devices to have backdoors.
  • by PPH ( 736903 ) on Friday October 12, 2018 @04:59PM (#57469414)

    ... into the abyss, the abyss will gaze into you.

  • How long before LEOs are issued with devices to cover iphone front cameras

  • by Locke2005 ( 849178 ) on Friday October 12, 2018 @05:08PM (#57469444)
    I use my dog's face to unlock my phone.
  • Where my phone would lock if it got more than 5 feet away from my Apple Watch.

    Apple already has a system for detecting your Apple Watch for logging into Mac desktop/laptops, so this isn't much of a stretch.

  • It's states right on the sticker, "Do not look at with remaining eye"
  • Wait, these cameras point at the user? Seriously? What kind of narcissist would want a camera that points at THEMSELVES? Would that not be some kind of mental disorder?
  • Police: Don't look into the subjects phone so it doesn't lock you out.

    or

    Non-Police: Don't use biometrics ( face-id or fingerprints ) to unlock your phone in the first place.

    If you just stick to a decent password, not only will it help those forgetful law enforcement types ( because it won't matter if they look at your phone or not ) but you also cannot be forced to give up a password ( in the US at least . . . . for now ) so it's a win-win for everybody :D

    Personally, I think the phones should have an emer

    • by tlhIngan ( 30335 )

      If you just stick to a decent password, not only will it help those forgetful law enforcement types ( because it won't matter if they look at your phone or not ) but you also cannot be forced to give up a password ( in the US at least . . . . for now ) so it's a win-win for everybody :D

      Personally, I think the phones should have an emergency user-configurable duress code. Key it in even once and the phone encrypts the entire phone ( just to be sure ) to some random key ( plausible deniability. . . . you trul

  • by aquabat ( 724032 ) on Friday October 12, 2018 @07:56PM (#57470024) Journal
    Not sure how finicky the facial recognition is on these things, but couldn't you just stick out your tongue or something when registering your face ID? Whenever you wanted to unlock the phone, you would stick out your tongue again. If someone pointed your phone at you in an attempt to unlock it, you could just sit there and do nothing, and the phone would register a failed attempt, right?
  • It's almost as if the entire device was covered in s. Do not look directly at the s!

  • Why wait for 5 attempts? just one failure and lock-out; even send some SoS for help. You know there is no reason someone should be looking into your phone [may be provide a exception set like for family]
  • by andymadigan ( 792996 ) <amadigan@@@gmail...com> on Sunday October 14, 2018 @01:58PM (#57476824)
    I'm amazed nobody has mentioned this yet.

    - Go to Settings->Emergency SOS

    Make sure "Call with Side Button" is on (that's the default) and turn off Auto-Call.

    On any iPhone with Face ID, pressing the side button 5 times will now activate Emergency SOS mode, which immediately disables Face ID. There's a similar mode on Touch ID devices.

    So, any time you're going through TSA, a border crossing, or see a cop heading towards you, press the side button 5 times. The phone will vibrate twice to indicate it's working. You don't even need to take it out of your pocket.

    I'm sure Android has something similar, but the process would be device/skin-specific.

Genius is ten percent inspiration and fifty percent capital gains.

Working...