Apple’s aim to capture the enterprse market might not actually materialise, claims Joonathan Zdziarski, an iPhone developer and a hacker who teaches forensics courses. Zdziarski had gone on record saying that Apple won’t tell you, but the supported enterprise-friendly encryption included with the iPhone 3Gs is so weak it can be cracked in two minutes with a few pieces of freeware.
“It is kind of like next to the secret decoder ring, I don’t think any of us(developers) have ever seen encryption implemented so poorly before, which is why its hard to describe why it’s such a big threat to security.”
Now this is in complete contradiction with what Apple has said about its 3G iPhones and its encryption system. Apple said that its new iPhone 3Gs is more enterprise-friendly. Zdziarski has also said, “The new iPhone 3Gs encryption feature is broken when it comes to protecting sensitive information such as credit card numbers and social-security numbers.”.
Wonder how iPhone is going to react to this. After all this comes from someone within the company. They will either fire him and claim that he was trying to deframe Apple’s reputation or just release a patch that does nothing.