Matt, is there any writeup on how GrayKey works? It’s interesting that they have an ex-Apple security engineer on staff.
-
-
This logic requires code to execute, and that is likely where the flaw lives.
-
There's no reason the data lines couldn't be electronically gated to a dumb charging controller chip while locked. Would eliminate non-invasive physical attacks.
-
I’ve seen USB driver code at both the OS and micro-controller level - it’s not pretty. You’d be surprised how many special cases are required just to negotiate charging.
-
Yes but that logic has no need to interact with OS or security processor logic. Can be completely isolated.
-
That would be interesting, and it would also be something not called USB.
-
Sure it's USB (or rather USB over lightning). It's just 2+ separate logical USB devices, and which is connected is gated by lock state of the phone.
-
This starts to become a highly specialized phone that is useless when locked. Might as well turn off bluetooth, wifi, and push notifications while locked. How is this isolated set of chips going to know when the phone is unlocked? Who is going to signal it?
-
Software can switch it all when entering locked state. I've actually never used my phone's USB port for anything but charging & initial OS install so it hardly seems "useless" to me.
- 9 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.