Forgot your password?
typodupeerror
Security IT

Mobile 'Remote Wipe' Thwarts Secret Service 383

Posted by CmdrTaco
from the cry-them-a-river dept.
bennyboy64 writes "Smartphones that offer the ability to 'remote wipe' are great for when your device goes missing and you want to delete your data so that someone else can't look at it, but not so great for the United States Secret Service, ZDNet reports. The ability to 'remote wipe' some smartphones such as BlackBerry and iPhone was causing havoc for law enforcement agencies, according to USSS special agent Andy Kearns, speaking on mobile phone forensics at a security conference in Australia."
This discussion has been archived. No new comments can be posted.

Mobile 'Remote Wipe' Thwarts Secret Service

Comments Filter:
  • Aww.. (Score:5, Insightful)

    by Jaysyn (203771) <jaysyn+slashdot@ ... m minus math_god> on Tuesday May 18, 2010 @10:01AM (#32252956) Homepage Journal

    My heart bleeds for these guys. Really, it does.

    • Re:Aww.. (Score:5, Funny)

      by h00manist (800926) on Tuesday May 18, 2010 @10:09AM (#32253084) Journal

      My heart bleeds for these guys. Really, it does.

      Your free flight to a remote dark room is on its way.

    • Re: (Score:3, Insightful)

      by palegray.net (1195047)
      It's okay. Hopefully they'll still have plenty of information from tapping phone calls that were already placed.
    • by pelrun (25021)

      Watch out - remember they've almost figured out how to detect sarcasm in forum posts now!

      http://science.slashdot.org/story/10/05/17/1541236/Software-Recognizes-Sarcastic-Tweets

    • Re: (Score:2, Insightful)

      by Lumpy (12016)

      To me it highlights how much bumbling idiots these guys are. If you have a phone that you NEED the evidence inside it, the second you get it you wrap that thing in several layers of tinfoil and take it directly to a faraday cage workspace to start the process. Honestly, this should have been standard practice for ANY phone over the past 10 years.

      Dont they teach these guys anything?

      • I know this is crazy talk, but if you read the article they specifically say that their standard procedure is to put the phone in a Faraday bag. From there the phone is then brought to a shielded room for dissection.

        Like everything else... it's people, policies and procedures.

        Just because an agent has a kit containing a Faraday bag, doesn't mean they'll use it...
    • by oakgrove (845019)
      If ever there was evidence that remote wipe is a Good Thing(TM) and sorely needed as a native tool on Android, this is it.
  • Secure wipes? (Score:2, Interesting)

    by Infiniti2000 (1720222)
    Are they secure wipes or can data still be gleaned?
    • Re:Secure wipes? (Score:5, Informative)

      by Anonymous Coward on Tuesday May 18, 2010 @10:16AM (#32253172)

      Are they secure wipes or can data still be gleaned?

      I don't know about iphone, but blackberry wipes securely. The blackberry platform has been tested, audited & certified by many government & private agencies:

      http://na.blackberry.com/eng/ataglance/security/certifications.jsp [blackberry.com]

      The iphone has been tested, audited & certified by... nobody.

      But there is one advantage to the iphone - since you can't take out the battery, it remains on the network for a longer time to receive the wipe signal.

      • by afidel (530433)
        iPhone 3GS with OS4 will be secure, it will wipe the key immediately and then clean the datastore in the background. This change was made because the old phones took forever to wipe their fairly large flash storage space.
        • by aaarrrgggh (9205)

          The 3GS should be pretty secure now; the key is wiped immediately, although I don't know if the data store is cleaned. The feature wasn't brought out until OS3, so the 3G and 2G phones shouldn't expect the function. Only the 3GS encrypts the data on the device itself and has the hardware to support on-the-fly decryption.

        • Re: (Score:2, Funny)

          by Anonymous Coward

          What is this? Multitasking and background processes on my iPhone?

          • Re: (Score:3, Informative)

            by natehoy (1608657)

            You've always had multitasking and background processes of stuff Apple writes into the OS. It's third-party apps that don't allow multitasking.

            Plus, if the phone is being wiped, I don't think any other processes are going to be running. :)

      • by SQLGuru (980662)

        Were I in law enforcement, I would institute a policy where electronic devices were put into a signal inhibiting box (Faraday cage) upon acquisition. Said box could then be taken to a room for analysis. It won't necessarily prevent the wipe, but it will help a lot. Would also help in situations where the bad guys were doing something with the phone signal (like trying to locate where the cops were staked out).

        • by jimicus (737525)

          Had you RTFA, you'd know that this is already in place. It's just that the occasional agent here and there has forgotten to follow it and has sent a device off to the lab without removing the battery and/or putting it in the shielded envelope.

          The entire FA is a big fuss about nothing, AFAICT. Even the lab admitted that it happens occasionally but it's not a huge problem.

      • But even for an iPhone, you can't remote wipe it if the device is powered down, right? I would think even putting it in airplane mode would be sufficient, as the phone stops, well, "phoning home". And if the Secret Service can't even manage to remember to turn off the phone, well, yeah. My heart bleeds for them.
      • by AmiMoJo (196126)

        Put a tinfoil hat on it, no network signal.

        If you don't have time to make a tinfoil hat then an anti-static bag is just as effective.

        • Put a tinfoil hat on it, no network signal.

          If you don't have time to make a tinfoil hat then an anti-static bag is just as effective.

          I'm not so sure about that. The tinfoil hat might work okay but if you're talking about the typical plastic anti-static bag then I think you're mistaken. RF will go right through one of those things, especially at the frequencies (~800MHz-2.5GHz) on which cell phone networks operate.

    • Re:Secure wipes? (Score:5, Informative)

      by fuzzyfuzzyfungus (1223518) on Tuesday May 18, 2010 @10:19AM (#32253228) Journal
      Depends on the phone model, I suspect.

      My understanding is that the accepted "proper" way to do it is to have all the user-relevant data on the phone stored in encrypted form, with a stored key making it transparently accessible. That way, when the "wipe" command comes, you just have to nuke the key, which takes mere moments, rather than a potentially quite large block of Flash, possibly hiding behind one or more controller chips that are abstracting things, and remapping, and doing other stuff that interferes with your ability to wipe the data hard enough to resist an adversary willing to physically inspect the memory chips, or even a raw dump of their contents.

      If a phone implements that correctly, any three-letter-agency without a magic quantum computer stolen from the Greys isn't going to be able to do much about it. If there is some nasty flaw in their implementation, or if they use an inferior system of some sort, it is quite possible that fairly trivial attacks will reveal most or all of the information.
      • by OzPeter (195038)

        any three-letter-agency without a magic quantum computer stolen from the Greys isn't going to be able to do much about it.

        I call you a liar .. CSI is a 3 letter agency and they surely won't need some imaginary computer stolen from some imaginary space peoples in order to recover the photo that the victim took of their attacker just moments before they died.

        • Re: (Score:3, Funny)

          by GameboyRMH (1153867)

          Plus even if the attacker's face is only 10 pixels wide in the grainy, dark, blurry photo they can zoom it right up, run an "enhance filter" (proprietary CSI stuff) on it a few times and see his face in high resolution.

      • by mlts (1038732) *

        This is how Windows Mobile 6 and newer protect the contents on the memory card. It creates a key (and I forgot what exact file it uses under \Windows), and when writing to files on the SD card, uses that key with AES-128. When reading files, it checks the file against the list of keys stored to see if it can decrypt it. If it can, it will transparently decrypt it.

        Hard reset the WM device either by a remote wipe, too many wrong PINs, or physically, and that keyfile is wiped and recreated with a new random

    • by guruevi (827432)

      Usually (as in the case with the iPhone and Blackberry), all data is encrypted by default and the remote wipe deletes the encryption key a couple of times. This makes all data unreadable and unrecoverable - even if you could read the data it would still be worthless.

  • Hm (Score:4, Insightful)

    by pudge (3605) * Works for Slashdot <slashdot@NOSpAM.pudge.net> on Tuesday May 18, 2010 @10:03AM (#32253000) Homepage Journal

    The Secret Service just need a Faraday Cage Fanny Pack.

    • Or just put the phone into 'airplane mode'. I would have thought that would be what they did anyway, do they just leave them connected to the network all the time when they're working on them or what?

      • Or just put the phone into 'airplane mode'.

        That would require every police officer to know how to navigate the menu system and do that on every smartphone ever made. Even just turning off a phone you've never seen before isn't necessarily obvious.

        What isn't clear to me is exactly what evidence they're expecting to find. A log of every phone call made or received, and every text sent or received, is already available from the service provider. If a criminal is smart enough to know about and deploy a remo

    • Re:Hm (Score:4, Interesting)

      by davidbrit2 (775091) on Tuesday May 18, 2010 @10:07AM (#32253056) Homepage

      They have one, apparently.

      "Hopefully our officers are putting the cell phones in a Faraday bag that is shielded, pulling the battery [out] and turning them off [before] getting them into the shielded laboratory."

      • Re: (Score:2, Funny)

        by Anonymous Coward

        "Hopefully our officers are putting the cell phones in a Faraday bag that is shielded, pulling the battery [out] and turning them off [before] getting them into the shielded laboratory."

        Deep below the earths crust where an army of techie-like-gremlins work tirelessly in a labrinthy maze of dusty, dirty laboratories consisting of ancient testing equipment made before the dawn of man. Only Down here, where only the flicker of overhead lamps shine shadows into the darkness, is justice done.

      • by pudge (3605) * Works for Slashdot

        That's what I get for not reading the story fully. At least they know what to do ... they just now need to get the people on the scene to do it. :-)

    • by elrous0 (869638) *
      Good luck explaining a scientific concept to the average Secret Service agent. That's like trying to tell a CIA analyst that psychics don't exist in real life.
      • by bzzfzz (1542813)

        Although most of them aren't scientists or engineers, they're smarter than your average bear. Nearly all have four-year degrees, in addition to their law-enforcement training.

        Don't conflate them with the donut-eating locals whose eyes glaze over when you try to explain the Doppler effect and what it has to do with their radar.

    • What no empty aluminized mylar potato chip bags?

      Or a bag made out of the same Steel Mesh as these Wallets?

      http://www.wired.com/gadgets/miscellaneous/news/2007/07/steel_wallet [wired.com]

  • Gist of the story (Score:5, Insightful)

    by thesaurus (1220706) on Tuesday May 18, 2010 @10:05AM (#32253034)
    If officers don't follow evidence procedures correctly, evidence gets screwed up. And it doesn't happen very often.

    "Sometimes you'll get a cellphone that comes in that is wiped, [but] it's not all that common," he said. Agents were trained to incapacitate devices, but Kearns cautioned that not all enforcement agencies had the same knowledge.

    • by oldspewey (1303305) on Tuesday May 18, 2010 @10:17AM (#32253192)
      So basically, this is crime scene preservation training 101. If an officer stumbles around a physical murder scene, eating hot chicken wings, randomly picking up pieces of evidence, and leaving delicious buffalo sauce all over everything, he will destroy the physical evidence before it can be expertly analyzed. But hopefully with adequate training, he learns how to take adequate precautions.
  • I wouldn't waste a moment waiting on the phone to power down on its own.

    • by zill (1690130)
      Especially on phones running Android, where anyone proficient in Java can make a fake "Power off" button that zeros out the entire device.
      • by nneonneo (911150)

        Most Android phones also have a battery cover, so in these cases you just pull the battery: problem solved.

  • Seems to be that the gating factor with a laptop is that it has to be online in order to get a poison pill. A smart phone, well that's easy to send a poison pill because it's still online even after the point you lose control of the device. A laptop, however, can be left turned off and the disk duplicated before anyone actually turns the power on the drive.

    Disk encryption helps to the extent that it prevent an unauthorized people from accessing the drive but that's not the same as a remote wipe, since you

    • My understanding is that this very feature is either available or available-real-soon-now in certain corporate models with integrated cellular broadband cards(since, effectively, if the PC has a cell card with BIOS integration, doing just about anything a smartphone could do under the circumstances is just a matter of implementation).
    • by blueg3 (192743)

      Remote wipe is super easy on a laptop. Use full-disk encryption and don't leave your laptop powered on. If they can't guess your passphrase, it's equivalent to what happens when an iPhone is remote-wiped -- with the exception that you could be convinced to give them your passphrase eventually.

  • Sounds like it's working then.

  • by syrinx (106469) on Tuesday May 18, 2010 @10:15AM (#32253156) Homepage

    So the Slashdot groupthink's anti-law enforcement stance has extended to the Secret Service now? Which part are we in favor of: counterfeiting money or assassinating the president? Personally I'll go ahead and take a bold anti-counterfeiting/anti-assassination position and say that this is a bad thing.

    • by chill (34294)

      Personally, I'll bet it is the counterfeiting that irritates them most. The gov't hates competition.

      From the article:

      The problem is that accomplices can remotely wipe the phones if the agencies don't remember to remove the battery or turn off smartphones before sending them off to the forensics laboratory, he said.

      Fortunately, the person in the article isn't wanting anything done about it other than agents remembering to do this. Nothing to this article, other than the guy saying "sometimes we forget to do this and it is a pain. Don't forget."

    • by tnk1 (899206)

      I'm a counterfeiter, you insensitive clod!

      The money just wants to be free!

    • Re: (Score:2, Informative)

      by maxume (22995)

      It's a bit much to read that as a blanket anti-law enforcement comment, it simply means that Taco feels that the law enforcement needs of the Secret Service are subordinate to his right to secure his possessions.

    • Anti-counterfeiting and anti-assassination are good, yeah. Killing Remote Wipe helps more than just the Secret Service, though. Just because we trust the Secret Service does not mean that other three-letter agencies are trustworthy.

    • by LWATCDR (28044)

      The level of paranoia is just too high over all.
      Honestly part of the problem IMHO is that law enforcement is getting a bad rep because of dumb laws like DMCA and such.
      I have a friend that works in the FBI. Yes he is very happy to bust some with a warehouse full of counterfeit goods. But I asked him about things like bit torrent and pirating MP3s... His comment was. What a freaking waste of my time. They rarely have to get involved in that and just leave it up to the lawyers.
      Of course when the police must e

    • by bzzfzz (1542813) on Tuesday May 18, 2010 @11:24AM (#32254192)

      I think most Slashdotters will agree that the Service is well within their rights to perform forensic analysis on any device that they obtain during a lawful search, whether conducted under a warrant, incidental to an arrest, or based on probable cause. I do not believe that the Service suffers a poor track record regarding extralegal searches as does INS and some other agencies.

      On the other hand, the availability of an effective "remote wipe" of a personal device is a rightful means of exercising freedom.

      It's about balance.

  • If a device serves the interest of a particular user, then that device is less useful to people whose interests conflict with that user.

    Not much of a story or revelation when you phrase it that way, huh?

    Let's not forget that law enforcement is just one entry on a long, long list of entities whose interests may conflict with the owner of a phone, and most of those people happen to also be law enforcement's opponents. So it's not like you can "fix" the "problem" of devices serving their users, without taking

  • Why on earth do agents not have metalised bags to drop phones to be used as evidence into? Not to be opened until in a secure location with no network signal?
  • by DdJ (10790) on Tuesday May 18, 2010 @10:47AM (#32253636) Homepage Journal

    As I understand it, doing any of the following should be able to prevent a remote wipe from happening:

    * put it into "airplane mode"
    * remove the SIM (assuming GSM with no wifi)
    * remove the battery

    If you need the SIM or battery to get the data off the device, you can then take it to a faraday cage and put the SIM or battery back in once you're sure no signal can get to the phone. Yes?

    Anything that protected against these "attacks" would also make it so the phone's user couldn't access their data when the signal strength was sufficiently poor. Which some folks might choose as their configuration, but then they're open to a new kind of denial-of-service attack.

    Remote wipe is useful when you want to prevent a random schlub (eg. pickpocket, guy at bar) from getting data off a randomly-acquired phone (eg. "iPhone HD"). I do not think it's useful for preventing a professional with intent from getting data off a phone they're targeting specifically because of its data. Am I wrong?

  • Plant some “evidence”.

    There. Done.

  • Proper procedure (Score:3, Informative)

    by cdrguru (88047) on Tuesday May 18, 2010 @11:16AM (#32254060) Homepage

    Well, if they followed proper procedures, this wouldn't be a problem.

    Walk around the exhibits at any forensic conference and you will see a variety of devices for making sure this does not happen. You can use any of them - they all work. Anything from the Paraben "tent" to the HTCI "glove box". The idea is that you put the phone into a shielded container where you can operate on it to collect evidence.

    When the phone is collected you have the choice: either remove the battery or put the phone into a shielded bag. No special shielded bags handy? Then you have to remove power and hope the phone doesn't lock itself. Don't want to deal with a locked phone? Get some shielded bags then.

    This isn't a real problem with phones, it is a real problem with having the right knowledge and procedures. It shouldn't even be a matter of training anymore.

    • Re:Proper procedure (Score:5, Informative)

      by natehoy (1608657) on Tuesday May 18, 2010 @11:50AM (#32254558) Journal

      My Blackberry locks itself after 15 minutes of non-use. The key to decrypt the data on the phone is itself encrypted by the password (8 characters minimum) that I use to unlock the phone. Screw that password up ten times and the phone wipes. It also locks itself on power-up.

      About the only real option would be to either have someone press a button on the phone every 10 minutes (assuming it's not already locked when taken), which would be a real trick when the thing is in a Faraday cage or bag.

      The very same things that make the Blackberry and newer iPhones attractive to businesses (and Government agencies, for that matter) are what make it undesirable from a forensics point of view. These things are designed so they can be configured to be extremely paranoid, and are very tough to crack.

      And therein lies the problem. If you allow your citizens their own security, you can't see everything they do, and that makes it harder to catch the wrongdoers. If you want absolute information to catch wrongdoers, perhaps a democratic republic with constitutional protection of its citizens is not for you.

  • by TRRosen (720617) on Tuesday May 18, 2010 @11:22AM (#32254148)

    stumped by a technological problem that can be solved by carrying a piece of tinfoil.

  • Just wrap it in tin foil, and keep the rays from getting to it and commanding the wipe.

    Act quickly...

    Later, keep it inside the Faraday cage you have constructed. You HAVE constructed the cage, right? If it's GSM, pull the SIM. If not, well, the cage will need to be expanded to be comfortable...

    Any questions?

In order to get a loan you must first prove you don't need it.

Working...