Jonathan Zdziarski, a forensic scientist and the author of five iOS-related books, has posted slides from a recent conference talk titled “Identifying Back Doors, Attack Points, and Surveillance Mechanisms in iOS Devices.” Zdziarski’s talk, which he gave at the recent HOPE/X conference in New York, reveals an overview “of a number of undocumented high-value forensic services running on every iOS device,” including “suspicious design omissions in iOS that make collection easier.” While Zdziarski characterizes iOS devices as “reasonably secure,” there are undocumented services that can bypass backup encryption, and can be accessed via USB and wirelessly — over WiFi and “maybe cellular.” He notes the “personal nature of the data” is carried in a raw format, which would make it useless for tech support.
Notably, Zdziarski claims that commercial forensic software manufacturers are taking advantage of these backdoor iOS services to develop forensic tools that law enforcement agencies can use to easily extract data from seized devices.
He notes that Apple is allowing packet sniffing without permission and is “dishing out a lot of data behind our backs.” Although Zdziarski raises suspicion to the nature of these services and notes that they “shouldn’t be there,” several of the services he identifies are in fact well-known internal Apple processes for handling things such as device activation, background iCloud and iTunes backup, and iTunes synchronization—processes that by design need to function without requiring the user to first unlock their device. For more details, the slides are available here.
[via ZDNet]
.