Skip to main content
  1. Home
  2. Computing

How Apple’s tight ecosystem of products can undermine its own security

Alex Blake
By

There’s an old belief that you can’t have both security and convenience, and that’s seen as especially true in your digital life. I’m sure Apple would dispute that assertion, pointing to things like Face ID as evidence it can do both.

Yet, as we’ve seen in recent months, there are actually times when Apple’s ecosystem, so tightly linked across its platforms, can actually undermine its own security. If your dwelling only has one locked door, it only takes one key to have access to the whole house.

Recommended Videos

Face ID, the iPhone, and the Apple Watch

Digital Trends

Face ID is the best example of the security catch-22 a company like Apple can end up in. By itself, it’s superb, far outstripping anything Apple’s Android rivals can come up with, at least when it comes to facial recognition. It is fast, easy to learn, available on many of your devices, and yes, both secure and convenient. It’s exactly what you imagine when you think of Apple innovation.

Related

Under normal circumstances, it works great. But I don’t think anyone can claim the last 18 months qualify as “normal circumstances,” and for all the disruption the pandemic has caused, it has also exposed the weak point of Apple’s tightly bound ecosystem.

That’s seen in Face ID’s tie-in with the iPhone’s Unlock with Apple Watch feature. If you have an unlocked Apple Watch on your wrist, you can use it to open up your iPhone when Face ID doesn’t recognize you. It’s specifically designed for times when wearing a mask obscures your visage such that Face ID cannot identify you properly. It’s a slice of convenience for a pandemic world.

It’s a slice of convenience for a pandemic world.

The problem is that it seems incredibly forgiving. I have both an Apple Watch and an iPhone, so I end up using Unlock with Apple Watch on an almost daily basis. And nearly every day, there will be at least one time when my Apple Watch unlocks my iPhone when I haven’t even looked at it. It’s not like my face was obscured by a mask — I’m often facing another direction entirely. Face ID on my iPhone is set to “require attention” — in other words, I have to look at my iPhone to unlock it. Yet Unlock with Apple Watch apparently completely bypasses that requirement.

And with one weakness in the system, the whole ecosystem is at risk.

Sidestepping Face ID

Andy Boxall/Digital Trends

What’s worse is that this feature simply requires an unlocked Apple Watch to work — and unlocking an Apple Watch is child’s play. Instead of the complex security layers of Face ID or Touch ID, all that’s required to get into an Apple Watch is a simple four-digit passcode. Given how many of us use memorable, identifiable dates and numbers for this kind of lock-up mechanism, prying open an Apple Watch is beyond easy.

And that’s a problem because of how permissive Unlock with Apple Watch is at unbolting an iPhone. Apple claims the chances of someone fooling Face ID are one in a million. But when a simple four-digit passcode is enough to get into an Apple Watch, Face ID’s apparently watertight security becomes totally irrelevant.

All that’s required to get into an Apple Watch is a simple four-digit passcode.

It’s not just your iPhone that this affects. You can do the same thing with a Mac. An unlocked Apple Watch can log you into a connected Mac provided you’ve set up Unlock with Apple Watch. Once again, all you need is a four-digit passcode for the Watch and suddenly the Mac’s contents are all yours.

The security ecosystem implications

Ultimately, this wouldn’t be happening if Apple’s ecosystem were not so tightly bound. It’s only by having devices that closely interact and communicate with each other that an Apple Watch is able to unlock an iPhone when your face is obscured. But in giving users that extra step of convenience, the company is undermining its famous security.

That’s not to say Apple can’t work out a way to have both — to let users have their cake and eat it. But right now, anyone who steals an iPhone and an Apple Watch only have a trivial obstacle to surmount to gain access to all your personal files and info. That’s far from the security-conscious Apple I thought I knew.

Editors' Recommendations

Topics
Alex Blake
Alex Blake
Computing Writer
In ancient times, people like Alex would have been shunned for their nerdy ways and strange opinions on cheese. Today, he…
I’ve had the iPhone 15 Pro for six months. Here’s why it’s still amazing
Blue Titanium iPhone 15 Pro in hand.

The iPhone 15 Pro was released on September 22, 2023. When Apple announced it, I was excited about changes like the Action button and the titanium frame.

Now, as we approach the end of the first quarter of 2024, the iPhone 15 line is six months old. We’ve already had a slew of flagship Android phones, with the OnePlus 12 and the Samsung Galaxy S24 being particular standouts.

Read more
We now know when Apple is adding RCS to the iPhone
The iPhone 14 Plus held in a man's hand.

Last November, Apple made a surprise announcement when it confirmed that RCS was coming to the iPhone in 2024. It's something iPhone and Android phone users alike have been waiting years for, but there was just one small problem: Apple never said when in 2024 RCS was coming. Thanks to Google, of all companies, we now have a better idea of when RCS is heading to the iPhone.

As spotted by 9to5Google, the Android website was recently updated with a new page dedicated to Google Messages. If you click on the "See more features" button for the section talking about RCS, there's a section titled "Better messaging for all" with the following text: "Apple has announced it will be adopting RCS in the fall of 2024. Once that happens, it will mean a better messaging experience for everyone."

Read more
The DOJ has sued Apple over the iPhone. Here’s what it means for you
The Apple iPhone 15 Pro Max and iPhone 14 Pro seen from the back.

Apple iPhone 14 Pro (left) and iPhone 15 Pro Max Andy Boxall / Digital Trends

If you're reading this article, chances are you have an iPhone. It's also quite likely that your friends and family members also use an iPhone. The iPhone is the smartphone of choice for millions of people in the U.S., and now, the Department of Justice (DOJ) is suing Apple over the iPhone monopoly it has established over the years.

Read more