[wildmusings]

>I think is one of Apple's major concerns, and one of the reasons they implemented the "we don't have the keys" approach to their encryption.

They do have the keys. A 4-digit pin is useless if you have Apple's private key.

[djrogers]

Completely false, as has been endlessly detailed by nearly everyone at this point.

[cyphar]

Software update signing keys, which can't be disabled by the end user. This is what most people would consider "a flawed security model". Even UEFI lets you change the trusted booting keys.

[wildmusings]

Please enlighten me. Is this not exactly what the FBI is asking for? For Apple to flash a custom version of iOS that doesn't have the software rate-limiting and auto-wipe, which only someone with Apple's private key can do. A four-digit PIN is only secure in combination with those features. Having Apple's code-signing key is in fact "having the keys", except in the most pedantic literal sense.