Mobile // Mobile Devices
News
8/12/2014
10:16 AM
50%
50%

California Nears Smartphone Kill Switch

Law would force phone makers to add remote kill switches; Apple, Google, and Microsoft have already agreed to implement them.

5 Inexpensive Smartphones: No Perfect Choice
5 Inexpensive Smartphones: No Perfect Choice
(Click image for larger view and slideshow.)

California is on the brink of becoming the first state to require kill switches in smartphones. The state's senate passed a bill this week mandating the security change, and it is now up to Governor Jerry Brown to sign it and make it law. The state's efforts are laudable, but may be moot at this point.

The law has been years in the making. Lawmakers in California and New York are looking to curb the theft of smartphones, which has spiked in recent years. Smartphones are easy pickings when left unattended on tables in coffee shops, restaurants, and bars, and they are often snatched out of owners' hands by brazen thieves on the street and in subways. According to the NYPD, 8,000 Apple products -- mostly iPhones -- were stolen in New York City during 2013. Some of the robberies led to injuries and even deaths.

The idea behind the kill switch is simple: Make stolen phones unusable. Unusable phones won't score thieves any cash. There's less incentive to steal smartphones if they'll be rendered useless and can't be sold. The kill switch is something device owners can trigger remotely from their desktop or other mobile device, such as a tablet.

The Apple iPhone already has this feature, Find My iPhone, which is part of iOS 7. Earlier this year, law enforcement agencies reported a drop in iPhone thefts after the remote kill switch was added.

In June, both Google and Microsoft announced plans to add theft deterrent tools to Android and Windows Phone, respectively. Google didn't spell out exactly how it intends to implement the kill switch. Microsoft committed to adding a kill switch to all devices running Windows Phone 8 and up. The Windows Phone kill switch will allow owners to: render the smartphone inoperable; remotely wipe personal data from the phone; prevent reactivation without the owner's permission; reverse the inoperability if the phone is recovered; and restore user data if the phone was erased.

[Lots of people will be buying new cell phones soon and will need to protect them from theft. Read Apple iPhone 6 Expected Sept. 9.]

The CTIA Wireless Association, which lobbies for the wireless industry in Washington, voluntarily set up a timeline for theft deterrent tools. All smartphones sold in July 2015 and after will include the tools, whether or not states such as California pass laws requiring them. Microsoft said its theft deterrent will be up and running by then. There's no word from Google on how or when Android will get its version of the remote kill switch, but it has nearly a year to get it up and working properly.

Until the remote kill switch is widely available, smartphone owners can take a number of steps to prevent their devices from walking away unexpectedly. For example, leave the phone in your pocket when walking around, use a passcode, set up the Find My Phone tool, and keep regular backups. If your device is stolen, be sure to report it.

In its ninth year, Interop New York (Sept. 29 to Oct. 3) is the premier event for the Northeast IT market. Strongly represented vertical industries include financial services, government, and education. Join more than 5,000 attendees to learn about IT leadership, cloud, collaboration, infrastructure, mobility, risk management and security, and SDN, as well as explore 125 exhibitors' offerings. Register with Discount Code MPIWK to save $200 off Total Access & Conference Passes.

Eric is a freelance writer for InformationWeek specializing in mobile technologies. View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Page 1 / 2   >   >>
GAProgrammer
50%
50%
GAProgrammer,
User Rank: Ninja
8/14/2014 | 3:25:40 PM
Re: Shame on manufacturers
I fail to see your point. Perhaps you can clarify? If I lose my phone/it is stolen and I wipe it, I still have to buy a new phone. None of the complaints about "reselling" phones to people will be prevented by this fact? The kill switch doesn't buy you a new phone when yours is lost or stolen - it only prevents your personal information from being exposed and keeps your phone usage off once you kill it.

Maybe I missed something? Otherwise your post just comes down to "those companies are evil for making money!"
Some Guy
50%
50%
Some Guy,
User Rank: Strategist
8/13/2014 | 12:18:22 PM
This Fire Sale brought to you by ...
Doesn't this just makes it easier for organized crime and state-sponsored cyberwarfare to be successful? Don't have to break into the phone company anymore, just kill everyone's phones at the edge. Let's add 6 billion more ways to start a fire sale and cut off emergency responders. I'm hearing Dr. Phil ...
ljtaylor
50%
50%
ljtaylor,
User Rank: Apprentice
8/13/2014 | 11:08:00 AM
Remote wipe and disable

It can be a great tool to protect honest users of mobile technology. We have a BYOD at my job and each employee that chooses to use their personal smartphone at work agrees to a security policy that encrypts their phone data and allows remote wipes. It has saved our company a lot of headache when addressing the issue of lost or stolen phones. Maybe, the consumers should be given the option to pay a very small extra fee to the service provider to enable remote wipe and disable. If the consumer opts out, they accept full responsibility for the loss. Secondly, the service providers should be fined if they are found to have a history of activating stolen devices. As for laws requiring remote kill, my concern is how intrusive will this legislation be to my privacy. Lastly, there needs to be countermeasures in case the remote kill functionality is ever compromised by hackers...

GonzSTL
50%
50%
GonzSTL,
User Rank: Strategist
8/13/2014 | 11:06:51 AM
Re: Remote Wipes
@Thomas I agree that any such capability must not interfere with legitimate resale or transfer of ownership. Regarding remote wiping, my take is that a government has no right to prevent people from remotely erasing their own personal data on a device they own so that it is unrecoverable. That is personal data, and people have absolute rights to it unless there is a suspicion of criminal activity. The same goes for corporate data on corporate owned devices, subject to records retention regulations. We cannot live in a world where any government agency can impose such restrictions on personal or corporate data without due cause. Arguably, the "due cause" can be abused, but that is beside the point.
2bafriend
100%
0%
2bafriend,
User Rank: Apprentice
8/13/2014 | 9:39:04 AM
Good Intentions
Like most government actions, good intentions turn into lage failures.  If you can kill your phone, so can they.  If they don't want you to communicate outside what they want you to say, then you won't.  The government has no business in this.  It is your individual responsibility to protect yourself, your family and your property.  If you cannot take personal responsibility, then maybe you should rethink life.

 
Pablo Valerio
50%
50%
Pablo Valerio,
User Rank: Strategist
8/13/2014 | 4:54:48 AM
Shame on manufacturers
The way manufacturers and opertors are going about this is really shameful.

They had the technology to implement the kill switch for many years. The only reason is not there yet is basically greed.

The number of stolen smartphones almost doubled last year (3.1m vs 1.6m in 2012), and cost about $2.5 billion to consumers to replace their phones and pay for addtional insurance.

$2.5 billion is a huge business. If the kill switch is implemented and activated by default that additional revenue will go away really fast.

About remote wipes, I believe expert forensic technicians for law enforcement could be able to recover data if necessary. I've only seen a couple of hardware encryption systems that allow for a "real" destruction of all data.
Jeffrub1
50%
50%
Jeffrub1,
User Rank: Apprentice
8/12/2014 | 5:50:51 PM
Re: Remote Wipes
Even if unnecessary, the added exposure of these laws will hopefully raise awareness and eventual usage of the capability. As noted earlier, security is not top of mind for many consumers, so keeping the topic in the news can only help. As for corporate interest, this will unfortunately provide little benefit in the world of BYOD, where wiping this way won't be enforceable. This would be especially true when a device is lost (not stolen), and the user is therefore reluctant to take security action to protect sensitive company information.
Thomas Claburn
50%
50%
Thomas Claburn,
User Rank: Author
8/12/2014 | 4:32:11 PM
Re: Remote Wipes
I think it's a worthwhile effort, so long as it doesn't hinder things like legitimate phone resale and legitimate transfer of ownership. I'd unclear to me however whether remote data wiping will really get rid of data or just overwrite it so that it can be recovered. I can't imagine law enforcement agencies wanting to allow people to really be able to remotely erase their phones such that the data is truly unrecoverable.
GonzSTL
50%
50%
GonzSTL,
User Rank: Strategist
8/12/2014 | 3:01:21 PM
Re: Remote Wipes
I don't believe it to be a moot point; late or not, it is still a worthwhile effort. Aside from its benefit to a personal user, imagine a corporate scenario that requires through policy the need for a kill and/or remote wipe capability in mobile devices. It would be so much easier to enforce if the given device already has that feature built in.
melgross
50%
50%
melgross,
User Rank: Ninja
8/12/2014 | 1:07:17 PM
Re: Driver ...
Lorna, that's exactly what Find My Phone has been doing for a year, and how iOS has worked for well over that.
Page 1 / 2   >   >>
Building A Mobile Business Mindset
Building A Mobile Business Mindset
Among 688 respondents, 46% have deployed mobile apps, with an additional 24% planning to in the next year. Soon all apps will look like mobile apps and it's past time for those with no plans to get cracking.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest, Dec. 9, 2014
Apps will make or break the tablet as a work device, but don't shortchange critical factors related to hardware, security, peripherals, and integration.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of December 7, 2014. Be here for the show and for the incredible Friday Afternoon Conversation that runs beside the program!
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.