Following the leak of a million Apple UDIDs, a US app developer has come forward saying it is the source of the leak. It says the FBI never had the data, and the full set is “only” 2 million entries rather than the 12 million AntiSec claimed.
Apple ID code leak ‘sourced to US firm BlueToad’
2012-09-11 Privacy, Security 4 Comments
I think the answer is some where in these links:
I didn’t see the Blackhat talk, reading slides is always somewhat misleading but:
“Passcode key computation utilizes new hardware
So my guess is, the iPhone uses encryption and the UDID is like a shared key between the iPhone, Apple and this company (I assume working for the FBI or other US-government agency).
If AntiSec’s claims are true then it should be no problem to release all 12 million ID codes. That way we know if this is FUD from our oh so honest Government or BS from AntiSec.