Ask HN: Why does Apple want me to expose my iPhone password to repair my screen?
I went to the Apple "Genius Bar" today to get my iphone screen repaired (it shows only a white screen). They told me I need to disable the "find my iphone feature" before they can start the repair. This requires me to confirm it on the phone itself - which does not work due to the broken screen. So the apple staff handed me a "Showcase iPhone" of the apple store which had a "apple support" app on which I need to enter the password of my phone. I have no idea what this apple support app is doing or if it is legitimate at all (ass this is a show phone where many people have access to). I ended up leaving without repairing the phone and now consider to go to an unofficial screen repair shop.
From a security point of view that does not look like a very good approach. Any thought on this?
76 comments
[ 3.0 ms ] story [ 339 ms ] threadIt's common to ask for the password and I don't think they'd touch your private files.
After the screen is fixed they'd need to do QA that it works correctly. Some things you just have to trust in life, too much paranoia won't lead you to good places. Trust me, I've been there.
That's a very very very convoluted attack vector, unless you're very high value target they don't care about you enough to go through that. If apple were that corrupted they'd set a backdoor in all the phones, they wouldn't wait for John Doe to break his screen
Not like you wouldn't know if something went wrong. You'd literally have a cause for suing them.
Like if I was working at AppleGenius or whatever, this would probably be a routine thing.
> Legal filings, first reported on by the Telegraph, revealed the unnamed woman sent her iPhone for repair on 14 January 2016 to an Apple-approved repair contractor called Pegatron Technology Service in California. Technicians there then uploaded “extremely personal and private material” to the woman’s Facebook account and other internet locations, the documents said.
https://www.theguardian.com/technology/2021/jun/07/apple-set...
How would you recover it if you don't have the expertise?
I also regular give my apartment's keys to maintence workers or landlord.
If something goes missing I'd know who took it
From one angle, I get where you're coming from. In the US people are really defensive for their homes.
Where I live if I behave a bit closed off they'll think I'm growing drugs at home or something sinister like that. So it's a great privilege if you can be super paranoid about things like that.
> It's common to ask for the password
Haha, good one. I got a chortle combining this attitude with a site called hacker news.
... it was satire, right?
I'd be up for them wiping the phone and I'll restore from backup later. Giving out my password defeats the point of me having a password. Them nudes don't leak themselves.
Not to mention you're on the hook for any any sensitive work stuff or whatever that leaks out, having willingly given the person the keys.
If you fly, you are basically trusting your life to 2 people in the cockpit that you don't know.
How come sharing password for data recovery is too great of a risk and flying is not.
If I fly I assume the pilots don't want to lose their high paying jobs and/or their lives. Min wage can be swapped out for min wage without much of a life disruption.
Also if a flight goes wrong chances are I won't be intact enough to care about the repercussions.
Unfortunately too I've only been on a plane twice in my life, bad example haha (In fairness that's not fear based, just never really been able to afford holidays)
which is something Apple makes easier than any other smartphone manufacturer and which also tells you to do in case you don't feel like giving them your code
The amount of sensitive information I've seen in my circles alone being posted to Instagram in the background of a cheeky work selfie.. don't even start on the deliberate stuff like "hehehe this guy has a silly name" "hehehe aye he does (I wonder if anyone screenshots my private info and shares it with their friends?)"
Depending on your level of carefulness… I would consider your phone not secure if it’s confiscated and you’re not in the same room as it.
I think running a system restore should make the phone reasonably safe?
(btw, this is partially the logic of why Apple wants to forbid uncertified third party repairs)
https://discussions.apple.com/thread/6762585
https://support.apple.com/en-us/HT201557
https://www.reddit.com/r/apple/comments/xise5n/are_apple_gen...
https://discussions.apple.com/thread/8036163
&c.
Worked fine, except it is now very confused about my "Longest Move Streak" record in Apple Fitness. Here's what it has said at various times this year:
2023-02-04: "You earned this award for your longest daily Move streak. 39 days, ending on 2023-02-03. Your current streak is 1,368 days".
2023-02-21: "You earned this award for your longest daily Move streak. 41 days, ending on 2023-02-20. Your current streak is 1,385 days".
2023-09-24: "You earned this award for your longest daily Move streak. 37 days, ending on 2023-09-23. Your current streak is 1,600 days".
The current streak numbers are correct. The longest streak numbers are now nonsensical and inconsistent.
Unfortunately this doesn’t help your situation, so I’d recommend taking a full offline backup using iTunes, erasing the phone and restoring your backup once you get the device back.
I'm sure plenty fall for it. All those nudes don't leak themselves.
Doesn't answer your question, but be careful that your distrust doesn't lead you into worse trouble.
No need to hack devices, anymore: https://www.cnn.com/2023/09/20/europe/spain-deepfake-images-...
https://www.samsung.com/uk/support/mobile-devices/what-is-ma...
Yes, the primary device user data remains encrypted. The temporary user functions in a sandboxed state.
>Can thiefs access it and make phone usable?
The expected functionality prohibits access to the primary user data. Even if they were able to break from the sandboxed space somehow, the primary user data maintains an encrypted state.
That was not my point.. just thinking if that would add resell value for the phone. Currently it is zero for iPhones.
Poster is concerned about entering password on a device used by many. Poster could go home log on to iCloud on a device they own and disable Find my from there. No passcodes handed over. No access to device data, remains encrypted.
This avoids a lot of hassle with the store’s repair team and is the same price as most repairs. (The front glass only repair is slightly cheaper than ERS but wouldn’t you rather get a new phone, battery, etc for slightly more?)
[0] https://support.apple.com/iphone/repair/express-replacement
E: no wait I'd just plug it into a computer
The data-storage capacity of things like a TPM or Apple's secure enclave is absolutely tiny (e.g. the TPM specification[1] only requires ~7KiB) - which makes sense considering it only needs to store a handful of encryption keys and other stored-secrets.
[1]https://trustedcomputinggroup.org/resource/pc-client-platfor...
The iPhone does allow you to initiate the enrollment for your Apple Watch without entering the card number again, you just need to re-enter the CVV.
That you can actively ask it to transfer data to the Watch or Cloud doesn't automatically mean that it is not using the TPM for storing that data at rest, requiring the phone to be unlocked for any such transfer.
The Secure Enclave is small, but supported between 8 and 16 cards, depending on hardware. As of iOS 17, the atorage is based on actual space available and can store upwards of 30 cards on an iPhone 14.
I manage RMA for consumer electronics, and we don't do any shit like that.
We just have a factory test firmware that is signed by us, that can be booted from a USB storage, boots in RAM (so it doesn't need anything from local storage except first stage bootloader, and we disable secure enclave in first stage boot in that mode).
It's still a bit of a security tradeoff since that gives attacker an extra surface area to execute code on Application Processor, but still nowhere near giving your password to strangers?
Maybe the apple support app uses a similar mechanism to disable find my?
As far as the Apple support app, I think that Apple does have a legitimate app under that name. However, usually find my is disabled under the find my app, not the Apple support app (unless Apple stores use a custom version with it in there or it’s hidden in the regular app where I can’t find it). It’s also possible the support app just redirected you to the find my app. Either way, if you don’t trust the app, you could just go to a web browser at home and disable it via the web app for find my so they can proceed with the repair. I don’t know if third party repair shops will also make you disable find my, but I know Apple usually asks you to disable find my first
So I just went to a nearby repair guy who only asked for my phone number to update me on the repair status.