Apple iPhone encryption cracked by Russian firm

Having cracked Apple iPhone backups last year, Russian security company ElcomSoft appears to have found a reliable way to beat the layered encryption system used to secure data held on the smartphone itself.

Since the advent of iOS 4 in June 2010, Apple has been able to secure data on compatible devices using a hardware encryption system called Data Protection, which stores a user's passcode key on an internal chip using 256-bit AES. Adding to this, each file stored on an iOS device is secured with an individual key computed from the device's Unique ID (UID).

Apple products containing this security design include all devices from 2009 onwards, including the iPhone 3GS (which can be upgraded to iOS 4), iPhone 4, iPad, iPad 2 and recent iPod Touch models.

ElcomSoft has not explained how it hacked the hardware-stored key system in detail for commercial reasons, but the first point of attack appears to have been the user system passcode itself as all other keys are only vulnerable to attack once the device is in an unlocked state.

The company said it had been aided by subtle weaknesses in the security architecture used by Apple, starting with the default passcode length of 4 digits. This yields only 10,000 possible number variations, which the company said most users would likely use to secure their devices without question.

The only limitation in breaking this key using a bruteforce attack was the need to run through the possible combinations on the iPhone or iOS device itself, which took between 10 and 40 minutes, far longer than would have been the case using a desktop PC.

If the passcode was too long to bruteforce, the company said it was possible to bypass this by hacking what are called "escrow keys," which are created by Apple applications such as iTunes and stored on a user's computer.

Given that the company's hacking of Apple devices began last August with the news that it had found a way to beat the encryption on iPhone backup archives stored on PCs, this could be how the company first spotted the weakness in the iPhone Data Protection system.

"We are responsible citizens, and we don't want this technology to fall into the wrong hands," said ElcomSoft CEO, Vladimir Katalov. "Therefore, we made a firm decision to limit access to this functionality to law enforcement, forensic and intelligence organisations and select government agencies."

The company has updated its Phone Password Breaker software to include the ability to "decrypt iOS 4.x file system images, as well as an optional tools to obtain file system images of the iOS 4.x devices, extract keys required for image decryption and brute force passcode," a note on its website said.

A licence for this can be purchased for £79 with the iOS 4-cracking feature enabled only for customers that meet the stated requirements. How ElcomSoft verifies a customer's credentials is unclear. All buyers of the software have access to the feature that cracks Apple iPhone and BlackBerry backup archives. 

ElcomSoft has gained a reputation in the last three years for cracking encryption systems used in a variety of technologies, including the digital camera image verification systems used by Canon and Nikon, WPA2 wireless security, as well as a range of individual applications.