The article claims that forcing Apple to write the software "isn't a big deal, as they could pay someone to do that". If the software malfunctioned and/or erased evidence on the device, who would be liable?
Well, the article mentions that; but the main point is update mechanisms are a single point of failure, because it's by design a way of delivering a change that will be applied an run as a root.
On the other hand it does also lacks a reference or numbers on how many times it has been exploited.
Exactly, that's the part i don't understand yet...
Why doesn't Apple create a mechanism which "only allows updates to be applied after the correct pin is entered"?
Then, an update created by the FBI, which would disable security mechanisms, could not be installed (without knowing the correct pin).
