Police in the United States are being advised not to look at iPhone screens secured with Face ID, because doing so could disable facial authentication and leave investigators needing a potentially harder-to-obtain passcode to gain access.
Face ID on iPhone X and iPhone XS attempts to authenticate a face up to five times before the feature is disabled and the user’s passcode is required to unlock the smartphone.
Given the way the security system works, Motherboard reports that forensics company Elcomsoft is advising law enforcement, “don’t look at the sceen, or else… the same thing will occur as happened [at] Apple’s event.”
The note appears on a slide belonging to an Elcomsoft presentation on iOS forensics, and refers to Apple’s 2017 presentation of Face ID, in which Apple VP Craig Federighi tried and failed to unlock an iPhone X with his own face, before the device asked for a passcode instead.
Apple later explained that the iPhone locked after several people backstage interacted with it ahead of Federighi, causing it to require a passcode to unlock.
The advice follows a recent report of the first known case of law enforcement forcing a suspect to unlock an iPhone using Face ID. The action subsequently helped police uncover evidence that was later used to charge the suspect with receiving and possessing child pornography.
In the United States, forcing someone to give up a password is interpreted as self-incrimination, which is protected by the Fifth Amendment, but courts have ruled that there’s a difference between a biometric recognition system like Touch ID and a passcode that you type into your phone.
In some cases, police have gained access to digital data by forcing people to unlock mobile devices using their fingers. Indeed, before Face ID was in use, law enforcement was advised how it could avoid locking Touch ID fingerprint-based authentication on Apple’s iPhones.
“With Touch ID, you have to press the button (or at least touch it),” Vladimir Katalov, CEO of Elcomsoft, told Motherboard. “That’s why we always recommend (on our trainings) to use the power button instead, e.g to see whether the phone is locked. But with Face ID, it is easier to use ‘accidentally’ by simply looking at the phone.”
Discuss this article in our forums