Skip to content

iPhone Security, or lack there of

July 24, 2009

iPhoneSo iPhone has added encryption to the 3GS model, as opposed to their earlier versions which didn’t feature any encryption.  So therefore the new iPhones must be more secure, right?

Well if security is what Apple was going for when they added encryption, then they may have missed the boat, or for that matter the ocean.  As Jonathan Zdziarski, an iPhone developer and a hacker who teaches forensic courses on recovering data from iPhones, puts it, “I don’t think any of us [developers] have ever seen encryption implemented so poorly before, which is why it’s hard to describe why it’s such a big threat to security.”.  That doesn’t sound very good now does it.

2 Minutes….That’s how long it can take to crack it with a little bit of readily available freeware!  If you thought that Credit Card numbers, or Social Security numbers that you entered through the iPhone would be safe, you need to think again.  So what is the problem with the encryption? For one, once one begins extracting data from an iPhone 3GS, the iPhone begins to decrypt the data on its own.  I’m pretty sure that’s not very secure.

In Apple’s quarterly earnings conference call Tuesday, Apple chief operating officer Tim Cook said almost 20 percent of Fortune 100 companies have purchased 10,000 or more iPhones apiece; multiple corporations and government organizations have purchased 25,000 iPhones each; and the iPhone has been approved in more than 300 higher education institutions.

Now that big business is starting to run with the iPhone it becomes a little scary, IMO.  Read the whole article from here.

No comments yet

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: