Solutions based on reconfigurable logic (CPLD or FPGA) have certain advantages over ASIC and MCU/SoC alternatives. With the ubiquity of IoT devices there is a growing demand for confidentiality and integrity of data. We show that claims that iPhone 5c NAND mirroring was infeasible were ill-advised. Some future research directions are outlined in this paper and several possible countermeasures are suggested. Also some reliability issues related to the NAND memory allocation in iPhone 5c are revealed. Knowledge of the possibility of mirroring will definitely help in designing systems with better protection. Although the process can be improved, it is still a successful proof-of-concept project. This is the first public demonstration of the working prototype and the real hardware mirroring process for iPhone 5c. By using the described and successful hardware mirroring process it was possible to bypass the limit on passcode retry attempts. parts are low cost and were obtained from local electronics distributors. The process does not require any expensive and sophisticated equipment. This was achieved by desoldering the NAND Flash chip of a sample phone in order to physically access its connection to the SoC and partially reverse engineering its proprietary bus protocol. This paper is a short summary of a real world mirroring attack on the Apple iPhone 5c passcode retry counter under iOS 9.
0 Comments
Leave a Reply. |