iPhone security - Still needs work done

Bernd Marienfeldt uncovered a major security hole in iPhones armour (yes, another one). These risks should be mitigated to acceptable levels. A portable-computing device and -electronic storage media that contains confidential, personal, or sensitive information should use encryption or equally strong measures to protect the data while they are in transit or stored. The Apple iPhone can’t fully satisfy the requirements. People should understand that the iPhone 3GS fails to provide full disk encryption (FDE) which renders useless by how the phone manages the protection of the encryption key and that the authentication model for the FDE is also broken.