zlacker

>>robin_+(OP)
Remember...they can make you use touch id...they can't make you give them your password.

https://x.com/runasand/status/2017659019251343763?s=20

The FBI was able to access Washington Post reporter Hannah Natanson's Signal messages because she used Signal on her work laptop. The laptop accepted Touch ID for authentication, meaning the agents were allowed to require her to unlock it.

>>nova22+qq
Reminder that you can press the iPhone power button five times to require passcode for the next unlock.

>>mbil+hv
Or squeeze the power and volume buttons for a couple of seconds. It’s good to practice both these gestures so that they become reflex, rather than trying to remember them when they’re needed.

>>kstrau+Dz
Oh wow, just going into the "should I shutdown" menu also goes into pre-boot lock state? I didn't know that.

>>pkulak+iG
It doesn't reenter a BFU state, but it requires a passcode for the next unlock.

>>duskwu+RM
It's close enough, because (most of) the encryption keys are wiped from memory every time the device is locked, and this action makes the secure enclave require PIN authentication to release them again.

>>snuxol+n31
> It's close enough

Not really, because tools like Cellbrite are more limited with BFU, hence the manual informing LEO to keep (locked) devices charged, amd the countermeasures being iOS forcefully rebooting devices that have been locked for too long.

>>overfe+gb1
There is a way now to force BFU from a phone that is turned on, I can't remember the sequence

>>CGMthr+Gm1
Eh? BFU ("before first unlock") is, by definition, the state that a phone is in when it is turned on. There's no need to "force" it.

If you mean forcing an iOS device out of BFU, that's impossible. The device's storage is encrypted using a key derived from the user's passcode. That key is only available once the user has unlocked the device once, using their passcode.