pixel_of_moral_decay t1_j15cv7v wrote on December 21, 2022 at 7:59 PM

Reply to comment by DeanOnFire in New York State official climate plan calls for Right to Repair by fanopticon

While there’s definitely room for improvement it’s worth noting the government has been fighting Apple on locking cameras and Touch ID sensors to phones for years because it makes it harder to crack.

Being able to use a synthetic camera or Touch ID device would be a huge win for law enforcement.

And a week later you’d see those devices show up on eBay.

fafalone t1_j1by6gx wrote on December 23, 2022 at 4:07 AM

It would be trivial to design phones such that you could replace the fingerprint sensor only if the phone is reset, thus destroying the data. And the complexity and such an attack would mean little to no impact on resale of stolen devices. But then, security isn't the first priority with this policy, locking out independent repair shops is.

pixel_of_moral_decay t1_j1bys6y wrote on December 23, 2022 at 4:13 AM

That still leaves several vectors since that phone might be reloaded with something compromised. That phone would have the same serial number and MAC address.

That would let a someone turn it into a Trojan horse if they can replicate enough of the experience of the device.

Totally not an acceptable solution. It needs to be more obvious who/how the phone was compromised.