Hi,
With regards to the original posting; I believe you may be correct that a hash of the password is stored, although it is not necessarily easy to access (or hashed with SHA-1).
I am aware that it is possible to find the password on the device, just not quite how it is done…. yet.
Also, thanks hitman for pointing out our chip off services, I believe dcampbell has since contacted us.
If anyone else is interested, we do offer the service of removing the memory chip from blackberrys, and analysing the data we extract.
We support a large number of blackberrys, and can extract most data types, including deleted data.
It also doesn't matter if the device is password protected or not, we still get the data.
We are able to extract historical blackberry messenger chat data, as well as sms, phonebook and call history. Other data can be extracted, but we would have to do it manually at the moment (we are always adding more data types to our extraction)
Another point to mention is we typically get a lot more SMS than are visible on the device. On one job a logical exam found 0 SMS, and we recovered just over 12,000.
Please see our website for further details
As for our US office, it was recently closed, so any work will now be performed in our main UK office.
We support a large number of blackberrys, and can extract most data types, including deleted data.
Does RIM not encrypt, wipe or otherwise obfuscate raw data stored to unallocated units? This is not a leading question.
R&D on chipoff process for Blackberry
http//copgeek018.wordpress.com/