Apple Reveals Unheralded TouchID
Security Upgrade Added In iOS 9
Ping!
The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.
If you want on or off the Mac Ping List, Freepmail me
Posted on 05/20/2016 2:37:13 PM PDT by Swordmaker
Apple has quietly changed a policy that has resulted in iPhone and iPad owners having to more frequently enter passwords to unlock their devices.
Users must now enter a passcode anytime the device’s Touch ID fingerprint sensor hasn’t been used in the past eight hours or when the device hasn’t been unlocked with a passcode in the last six days. In such cases, Touch ID is turned off until users enter passcodes.
Apple-tracking site Macworld noted the little-noticed change and investigated the reason behind it. It found users who claimed that Apple’s passcode requests had become increasingly frequent.
Apple has long required that users enter passcodes to unlock devices in certain cases. For example, users had to do so after they rebooted their iPhone or iPad. But the requirement, for some unknown reason, had become more routine.
Earlier this month, Apple had published a tweak in its iOS security guide that mentioned the more stringent security feature, causing some to believe it was new. In fact, the limitations on Touch ID were actually implemented when Apple AAPL introduced its latest operating system, iOS 9, last year. But without any public mention, few people had noticed, although some users and security experts had recently talked of having to enter passcodes more frequently in their iPads and iPhones.
Apple declined comment to Fortune about the change.
The new Touch ID policy highlights the two ways of unlock Apple devices. Both potentially make it more difficult for law-enforcement to access data on devices as part of their investigations.
That was proven in the company’s battle earlier this year with the FBI over unlocking an iPhone 5c used by San Bernardino attacker Syed Farook. The FBI had asked for software from Apple that would help it unlock the device. After Apple declined, the FBI was able to find a way to unlock the device by using a tool supplied by an unidentified third party. The FBI has subsequently unlocked devices in other cases by circumventing some of the security features built into the iPhone and iPad.
Earlier this month, Touch ID also came under fire after a Los Angeles judge ruled that a woman was required to provide her fingerprint to open her iPhone and allow FBI access to her data in connection with a criminal case.
In addition to Apple’s newly discovered eight-hour, six-day rule, the company also turns off Touch ID if a device hasn’t been used for more than 48 hours. It also requires that users enter a password if a device is restarted or if a user unsuccessfully tries to use Touch ID five times, among other rules. Those rules, however, were in place before Apple’s latest tweak.
Sounds like bullshit since I’ve not had to re-enter a password ever.
Did you get this week’s IOS update? That could be where it is. I did not load the newest one yet.
This is really a pain in the *** too. I asked for an I-Pad for last Xmas because I had so much fun playing with my brother’s last summer vacation. But, when my wife got me my own for Xmas, this passcode feature had been implemented.
I went back to my Kindle Fire after a month because the constant I-Pad passcode requirement is so inconvenient.
I just updated with the newest tweak. Don’t see any difference or problems. Apple did make me update my password a few weeks back. Said I needed a stronger password. But, I don’t see that I’m entering my password more now than then.
The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.
If you want on or off the Mac Ping List, Freepmail me
If you want your data protected, it's necessary. If you want fast access, use the TouchID. That is fast and easy. This is referring to when your device has laid idle for a period of time. . . then you would be required to put in your passcode. OR, you can go bare with no encryption of your data and not have to do either by turning off the passcode.
If you go that route, anyone can see your data and use your device, accessing your stuff, your bank accounts, your email, etc. Do you want that? I don't. Nor do I find putting in a passcode inconvenient. . . and certainly pressing a finger to the home button is VERY convenient to unlock it.
I updated as well. I’ve not seen or noticed this change.
This only happens if you don't unlock your device after a certain period of time. I run into it when I don't touch my iPad for a long period, using my MacBook instead, for example. When I return to my iPad after not using it for a day, for example, it will ask for my passcode, where before it would require two days before it would require that. I was wondering why it was asking more frequently for the passcode. Now I know. This shorter period is a bit more secure from the authorities forcing me to unlock it by using my finger against my will.
Under law they cannot force me to reveal my passcode against my will, but they can force my finger onto the TouchID sensor after they have a court order. A 48 hour delay before requiring my passcode allowed time for the police to get a court order. An eight hour delay makes that much more difficult, so they cannot go data fishing while doing just a mere traffic stop.
It’s been around for a while. Random intervals, and a sound policy IMHO. It’s not intrusive, and otherwise I just use Touch ID.
Touch ID makes this almost a non-problem. Typing in a password frequently would make me not require a password.
Touch ID and passcodesTo use Touch ID, users must set up their device so that a passcode is required to unlock it. When Touch ID scans and recognizes an enrolled fingerprint, the device unlocks without asking for the device passcode. The passcode can always be used instead of Touch ID, and it’s still required under the following circumstances:
- The device has just been turned on or restarted.
- The device has not been unlocked for more than 48 hours.
- The passcode has not been used to unlock the device in the last six days and TouchID has not unlocked the device in the last eight hours.
- The device has received a remote lock command.
- After five unsuccessful attempts to match a fingerprint.
- When setting up or enrolling new fingers with Touch ID.
Google may have done the same thing with Android phones/pads and anything connected to Chrome.
My wife noticed it about 2 weeks ago re reentering log ons. I ran into the same thing this week on my Android phone/tablet, Chromebook and Toshiba laptop running on Win 10 and Chrome.
Yesterday, I had to log on several times to this site, and it
got worse later yesterday.
“If you go that route, anyone can...use your device...”
If your phone is password protected can someone else use the telephone or text function without using the password? For instance, if you’re out and about and have a stroke or seizure or something, can the EMTs get a number from or call a relative with your password protected phone? Or do you get to die alone because they can’t get the information?
I have a smartphone, but don’t keep anything more sensitive on it than phone numbers and shopping lists.
I won’t use a password to get into my iphone, it’s a pain & I have nothing to hide. Just my apple ID, which is of course, required.
It helps you remember your password....
I get calls from iPhone users who cannot log in.
The devices then will be wiped.
Ugh ... “I have nothing to hide”. This is a form of self-deception. It’s not about YOU being evil, it’s about THEM being evil. They could iMessage you from a suspect number, seize your unlocked phone and use the text as evidence that you’re part of some right-wing terrorist organization. It’s a silly example, but it makes the point. If they can’t see what’s on your phone, they can’t twist it into a chargeable offense; and they will do this. The “I have nothing to hide” argument proceeds from the naive supposition that the government is inherently good, means you no harm and is there to protect you; it isn’t any of those things.
I have the iPad 2 and I have not updated yet because of bricking issues.
I had noticed the same thing of late. I use the touch feature to unlock my phone the majority of the time. It seemed like it has started asking for the password more often over the past month or so. It sill happens infrequently enough that it is not a mjor pain though, so I don’t mind. I have really come to like the touch feature because it allows me to have a pretty strong password, since I’m not entering it 20 times a day. Seems like a good balance to me between sexurity and convenience., and that is what good security is, a balance.
Well done Apple.
Excellent!
Now that courts have ruled you may be compelled to press your finger on the touch ID, but not necessarily enter a PIN. This gives privacy minded folks a chance to “run out the clock” before being compelled to open their private business up to the authorities.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.