The timing of computer search warrants when it takes years to guess the password

&gt; The magistrate judge doesn&#x27;t know anything about computer forensics or how long the brute force attack is going to take.<p>That&#x27;s a bit ad hominem.<p>Let&#x27;s look at it another way. Should warrants be issued for indefinitely long periods of time? If so, what would keep limitless warrants from being used to harass people? Imagine if the cops just seized property and said it&#x27;s just going to take them literally years to access it, and the owner can&#x27;t get it back in the meanwhile. Also, imagine if this is done to extend the statue of limitations. There are so many ways this could be abused.<p>Then it becomes not too different for arresting someone even when they&#x27;ve done nothing wrong - sure, the charges might be dropped, or no charges brought at all, but spending the night in jail and missing work still has deleterious effects.<p>&gt; Requiring the government to exercise &quot;greater care&quot; to make sure it is keeping up with a series of requests [...] seems exceedingly odd to me.<p>So... the author is advocating for rules being too hard, and for the government to not be required to follow them? This is similar to the common response to the simple question about privacy intrusions: why not just have investigators get warrants? &quot;But terrorism! It takes too long! Do you want the terrorists to win?&quot;<p>Most of the copterbation movies and shows on TV try to show us that cops often don&#x27;t get the bad guy unless they&#x27;re allowed to break the rules. It&#x27;s all absolutely bullshit.

For context, in 2016 Apple was claiming the six digit passcode would need 5.5 years of brute forcing[0]. Not sure if they still claim the same.<p>[0] <a href="https:&#x2F;&#x2F;www.washingtonpost.com&#x2F;news&#x2F;wonk&#x2F;wp&#x2F;2016&#x2F;02&#x2F;17&#x2F;how-long-it-takes-to-crack-an-iphone&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.washingtonpost.com&#x2F;news&#x2F;wonk&#x2F;wp&#x2F;2016&#x2F;02&#x2F;17&#x2F;how-l...</a>

If the author thinks a judge shouldn&#x27;t be allowed to impose a time frame on a search warrant, does that mean the author thinks the government should be able to execute the warrant any time in the future? That sounds ripe for abuse: the government could get a warrant, wait as long as they want for the suspect to do something else they think is suspicious, then execute the warrant at their leisure.

In Finland, the police can just force your finger on the fingerprint sensor! :)

I remember there were some brute forcing tools for iPhone 3GS passcode back in 2010. It only took a few minutes. Perhaps, it didn&#x27;t really brute force but searched the passcode from the device.

Reason magazine is such a neoliberal joke. Libertairanism had some interesting things to say in the 1970’s but since the Heritage foundation and Koch brothers types took it over in the 1980’s its just mainstream centrism dressed up in funny arguments for “quirky” people.

I&#x27;m curious, given the fact that they have physical access to the device, would it be possible to clone the hard drive as it is on multiple devices, and then brute force the passcode in parallel?

Makes me feel more secure having 2FA (OTP) on an iphone!

For me, the takeaway is use 2FA, where the both authentication methods are not biometric. This renders eye scans, face scans, and fingerprints useless, and at least doubles the time it takes the Feds to &quot;brute force&quot; an iPhone. ACAB.

i have no hope. everything i do is currently in gmail and very much subpoenable because it&#x27;s just the quickest way to get shit done and share with people, I&#x27;m not going to get a cave-style airgapped encrypted Linux desktop for my daily life. Some of my stuff is in the messengers but I&#x27;m almost 100% sure that eventually they will get to those as well, so yeah.<p>It would be funny though if OpenAI gets to that data and steals it, sorry, trains on it first. Like, before Palantir or whatever else is out there.

I hadn&#x27;t thought about it before, but encouraging use of moderately weak encryption keys is an interesting way of balancing the needs of privacy and law enforcement.<p>On one hand, it protects against widespread warrant-less searches (stop and frisk, border patrol, etc). On the other, law enforcement can get access to the data before the statute of limitations runs out if they deem the case to be worth the resources (presumably with a warrant).