±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 0 Overall: 36434
New Yesterday: 2 Visitors: 145

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Dutch Police decrypt Blackberry

Computer forensics discussion. Please ensure that your post is not better suited to one of the forums below (if it is, please post it there instead!)
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

wotsits
Senior Member
 

Dutch Police decrypt Blackberry

Post Posted: Jan 14, 16 13:48

www.extremetech.com/mo...blackberry
www.bbc.com/news/techn...y-35291933

Interesting news recently that Dutch Police were able to decrypt and read encrypted Blackberry emails.

The two things that jump out at me are the fact they only refer to having read the emails, suggesting that they weren't able to decrypt the entire device, and that news articles appear to speculate on the police having used chip off or J Tag forensics to get at the data - my understanding is this is not possible on new Blackberrys and iPhones as the chip is encrypted at the core (unless the device is jailbroken).

What are people's thoughts on how this was done?

I'm wondering if anyone working in a Law Enforcement environment has seen an increase in the number of devices that cannot be accessed due to the increased use of encryption on iPhones and such, and what is the procedure with such devices when they can't decrypt them?  
 
  

jaclaz
Senior Member
 

Re: Dutch Police decrypt Blackberry

Post Posted: Jan 14, 16 16:09

And also the Royal Canadian Mounted Police, seemingly:

nakedsecurity.sophos.c...ted-email/

Of course these are mostly "generic rumours" and "hearsay" amplified/distorted at each subsequent re-print/re-publish by the press.

The "original" news (Dutch):
www.misdaadnieuws.com/...00053.html
are not that bad via Google Translate:
Monday December 21 2015 18:19:00
Crime News has access to confidential reports received from the Dutch Forensic Institute (NFI) in relation to investigations into PGP encrypted BlackBerry phones. The BlackBerry's encryption are in ongoing criminal investigations found with the suspects.

Cellebrite
The data in the mobile phones have been secured with the Dutch Forensic Institute (NFI) method developed and forensic software UFED4PC Version 4.0.0.220 of the company Cellebrite. The secured data exported its email messages and then decrypted by the NFI.
Crime News has contacted a spokesperson for the NFI, which confirmed that the encrypted messages on the BlackBerry PGP encryption devices can be read. The NFI reports it has become clear that deleted messages can be largely recovered and the encryption can be read. Also, the length of the password that is used for sending and opening of the PGP messages is not relevant to the decryption.
- See more at: translate.googleuserco...SKeOn.dpuf


"Cellebrite UFED4PC" (by itself) doesn't really sound as "chip-off". Question

jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 
 
  

RolfGutmann
Senior Member
 

Re: Dutch Police decrypt Blackberry

Post Posted: Jan 16, 16 01:21

 
  

xunayd
Newbie
 

Re: Dutch Police decrypt Blackberry

Post Posted: Jan 19, 16 17:56

big $$$ bring big powers Smile  
 
  

Dmitri
Member
 

Re: Dutch Police decrypt Blackberry

Post Posted: Jan 21, 16 15:15

We didn't play much with BlackBerry devices, but according to what I know, BB uses unique keys, which are built-in on the hardware level, so even the phone owner can't see the key.

That makes original BB username/password and the device necessary to decrypt the stored data.

But maybe they have found a way to pull the key out, having the device on hands.

Anyway, I feel my information on topic could be outdated and I would like to hear more details as well.  
 

Page 1 of 1