The FBI Doesn’t Need Apple

Regarding the San Bernardino iPhone 5C, Daniel Kahn Gillmor over at the ACLU blog writes about something I’ve pondered myself: why doesn’t the FBI simply attack the hardware itself? Specifically, why not back up the phone’s NAND memory, which contains the encryption key, so that they can simply restore the key even if it gets erased by making 10 incorrect guesses.

As Gillmor says, desoldering the NAND chip and making a copy of its contents is a routine operation requiring very a modest set of equipment. There are, in fact, commercial enterprises that provide this service. There is, then, no real reason to force Apple to unlock the phone. No reason, that is, to accomplish what the FBI is claiming they want. But the FBI is being less than honest. What’s really at stake here is setting a precedent that the government can force Apple and other tech companies to sign arbitrary updates. This would have disastrous results in our already fragile security ecosystem because people would become suspicious of updates and refuse to install them. That, in turn, means that devices would continue running software with known vulnerabilities.

When Judge Orenstein asked the FBI—in the New York case—whether there was any way they could get the data themselves the FBI equivocated and basically refused to answer the question. Judge Orenstein called them out for that in his opinion but given that applications for a warrant are made under oath, why isn’t someone facing perjury charges?

A related question is why should we believe anything the FBI says on this or any other matter. By pushing so hard on this and lying at every stage of the proceedings—we’re only interested in this one phone; we have no other way of getting the data; and so on—the FBI, and by extension the DOJ and even the government itself, is squandering what little trust the public has left in them.

UPDATE: know → known

Posted in General | Tagged , | Leave a comment

Find a Related File

Here’s a nice tip if you’re writing in a language that has header files.

Posted in General | Tagged | 1 Comment

Testimony of Susan Landau

The House Judiciary Committee recently held hearings on encryption and what should be our policy concerning disputes such as those between Apple and the FBI. If the committee reaches the wrong decisions it won’t be because they didn’t have expert and thoughtful testimony.

Susan Landau, a Professor of Cybersecurity Policy at Worcester Polytechnic Institute, testified March 1, 2016 on security threats, encryption, and securing smartphones. She explained to the committee in careful detail that the issues are not as simple as they seem and that our security is (much) better served by having unbreakable security on our devices—especially on our smartphones. ‘Especially’ because our smart phones are already our access to personal, financial, and proprietary commercial information both through data held on the phones themselves and through access credentials held on the phones. Landau says this situation is accelerating and that it is crucial that these devices be secure if we as a nation are going to defend against the increasing cyber attacks from criminals and unfriendly nation states.

Sadly, this debate has been mischaracterized by a lazy and ignorant press as a fight between security and privacy. The goal, they say, is to balance privacy and security. Landau makes the point that the choice is not between privacy and security, although that tension is also present, but between security and less security. That’s a point that’s been mostly missed by those commenting on the issue.

Landau says that the FBI is stuck with a 20th century view of investigative techniques and that they need to let go of their agent-centric view and adopt one that realizes that most crimes today have a cyber component. She says that it is possible to do effective investigations even with unbreakable smartphones but the FBI needs to upgrade their technical capabilities. They are, she says, where the NSA was in 1999. As the NSA has shown, it is still possible to perform effective surveillance even in the face of encryption.

The testimony is a bit long but it’s an interesting and informed read. It’s a great place to point someone who is undecided about the debate but still has an open mind.

Posted in General | Tagged , | Leave a comment

Bulk Rescheduling of Org Agenda Items

Ben Maughan over at Pragmatic Emacs has a really useful tip for rescheduling Org agenda items in bulk. Maughan’s use case is that when at the end of the day he has unfinished TODO items in his Org Agenda he can reschedule them for the next day all at once. That’s really easy to do: you merely mark the items you want to reschedule with an 【m】, enter bulk mode with a 【B】, and then choose rescheduling with an 【s】. See Maughan’s post for the details.

It turns out, that you can do more than reschedule the items. After reading Maughan’s post, I cancelled a bunch of blog ideas from my “blog ideas” file that I hadn’t acted on. It’s the same process: mark, enter bulk mode, change TODO → CANCELLED. There are several possible operations, which you will see on a menu when you enter bulk mode.

This is a really useful tip and something I didn’t know about. If, like me, you keep everything in your agenda, it’s worthwhile investigating how you can add the bulk operations into your workflow.

Posted in General | Tagged , | 1 Comment

Can We Have Our Cake and Eat It Too?

No, but don’t let that stop you from asking.

Posted in General | Tagged , | Leave a comment

Rotating an Org Table on Export to PDF

This is a note to myself but you may find it useful too. Kara Woo asks how she can arrange to have an Org table rotated on the page when she exports it to PDF:

The answer turns out to be pretty simple but, as usual with LaTeX, it involves swinging the cat around your head the correct number of times. Sometimes you have a table with many columns making it too wide to fit on the page in portrait mode. In those cases, being able to display it in landscape can save the day.

Posted in General | Tagged , | Leave a comment

Rickrolling the FBI

I found this way funnier than I should have.

Posted in General | Tagged | Leave a comment

How to be Efficient in Emacs

Bin Chen has an interesting post on making Emacs use as efficient as possible. The idea is to remap the commands you use the most to easy key sequences. To do that, you need to know what commands you’re using, of course. As usual, Emacs has us covered. You can count the commands you use with keyfreq-mode. It’s easy to set up—see Chen’s post—and you can even exclude commands that have key sequences you like.

Xah Lee has done similar research here and here and even gives some advice on which key sequences are the most efficient. If you’re into remapping keys for maximal efficiency you should read all three posts.

Posted in General | Tagged | Leave a comment

Filtering the Dired Display

Ben Maughan over at Pragmatic Emacs has a nice post on the dired-filter package. The idea is that you can filter the files that will be displayed in your Dired listing. Take a look at his post to see how it works.

You can do the same thing without dired-filter by marking the files you want to see, possibly with a regexp, inverting the markings, and then killing the marked files. That’s a little confusing because “killing” the marked files really means deleting them from the listing not deleting them from the file system. See this post of mine for the details.

Still, the dired-filter package seems easier to use. Maughan has it mapped to / so you need merely type the / and your filter string. That’s conceptually easier than marking the files, inverting the markings, and then killing the marked files.

Posted in General | Tagged | 2 Comments

Journalists and Their Coverage of FBI/Apple

This is why my “Note to journalists” in today’s earlier post was necessary:

Posted in General | Tagged , | Leave a comment