The 'tension' between privacy and safety should be resolved by the people, he wrote Credit: Dave Newman FBI Director James Comey claims the agency doesn’t want to break anyone’s encryption or set loose a master key to devices like the iPhone.The comment Sunday by Comey on Lawfare Blog comes as both Apple and the government last week appeared to have pulled out all the stops to defend their stands on an FBI demand in a court that Apple provide the technology to help the agency crack the passcode of a locked iPhone 5c used by Syed Rizwan Farook, one of the terrorists involved in the attack in San Bernardino, California, on Dec. 2.The FBI is concerned that without the workaround from Apple, it could accidentally erase data, while trying to break the passcode, because of the possible activation on the phone after 10 failed tries of an auto-erase feature. “We simply want the chance, with a search warrant, to try to guess the terrorist’s passcode without the phone essentially self-destructing and without it taking a decade to guess correctly,” Comey wrote.Magistrate Judge Sheri Pym of the U.S. District Court for the Central District of California ordered Apple on Tuesday to provide assistance, including by providing signed software if required, to help the FBI try different passcodes on the locked iPhone 5c running iOS 9, without triggering the auto-erase feature in the phone. Comey said the phone may or may not hold the clue to finding more terrorists. “But we can’t look the survivors in the eye, or ourselves in the mirror, if we don’t follow this lead,” he said, adding that new technology is creating a “serious tension” between the two values of privacy and safety.In a letter to customers, Apple CEO Tim Cook had said the government was asking for a backdoor to the iPhone. “The FBI may use different words to describe this tool, but make no mistake: Building a version of iOS that bypasses security in this way would undeniably create a backdoor,” he wrote. His pro-privacy stand has received backing from tech companies and civil rights groups, but the opposite view that the company should help as it is being asked for assistance only with one phone, and that too a device used by a deadly terrorist, has also got support from some quarters.Comey had previously said that encryption was making FBI investigations difficult because terrorists were communicating using encrypted tools, but said in October the U.S. administration would not seek legislation at the point, and would work on a compromise with industry.On Sunday, he appeared to appeal to the people of the U.S. on the contentious dispute with Apple, saying without elaboration that a conflict between privacy and safety should not be resolved by companies or by the FBI, but by the American people. “We shouldn’t drift to a place—or be pushed to a place by the loudest voices—because finding the right place, the right balance, will matter to every American for a very long time,” Comey wrote. Related content news analysis Companies are already feeling the pressure from upcoming US SEC cyber rules New Securities and Exchange Commission cyber incident reporting rules don't kick in until December, but experts say they highlight the need for greater collaboration between CISOs and the C-suite By Cynthia Brumfield Sep 28, 2023 6 mins Regulation Data Breach Financial Services Industry news UK data regulator warns that data breaches put abuse victims’ lives at risk The UK Information Commissioner’s Office has reprimanded seven organizations in the past 14 months for data breaches affecting victims of domestic abuse. By Michael Hill Sep 28, 2023 3 mins Electronic Health Records Data Breach Government news EchoMark releases watermarking solution to secure private communications, detect insider threats Enterprise-grade software embeds AI-driven, forensic watermarking in emails and documents to pinpoint potential insider risks By Michael Hill Sep 28, 2023 4 mins Communications Security Threat and Vulnerability Management Security Software news SpecterOps to use in-house approximation to test for global attack variations The new offering uses atomic tests and in-house approximation in purple team assessment to test all known techniques of an attack. By Shweta Sharma Sep 28, 2023 3 mins Penetration Testing Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe