| Yes. There is a huge difference between: 1. "Here's how to break the phone's encryption using available tools today", and; 2. "Here's a less-secure version of the OS, we'll use our digital signature to convince the phone to accept it." If they ever do the latter, they can be sure it won't be long before they start getting warrants to push insecure OS updates to everyone named as a "person of interest," which seems to be everyone these days. And the next time a Snowden leaks that Apple is sending insecure OS updates to more-or-less all iPhones, they have lost an enormous amount of goodwill and brand recognition. A lot of people believe (rightly or wrongly) that run-of-the-mill Android phones are insecure because the carriers won't push updates, but that you can trust top-tier manufacturers like Apple to keep your phone secure. The last thing they need is for people to say "Cheap Android, Expensive iPhone, there's no difference." |