A security researcher claims changes Apple made to tighten its kernel security system in iOS 7 instead weakened the system, making it less secure than its iOS 6 counterpart. (Via CNET and ThreatPost) Azimuth Security researcher Tarjei Mandt discovered the flaw and presented his findings last week at CanSecWest.
The security flaw involves the random number generator Apple uses to secure its kernel. In iOS 6, the number generator that encrypted the kernel derived its values in part from the CPU clock counter. Because it was based on time, the encryption was only marginally secure as the output values were predictable, especially when examining successive numbers.
Apple was aware of the limitations in iOS 6 and attempted to tighten security in iOS 7 by changing the random number generator to a linear congruential generator, which is more susceptible to brute force attacks.
Apple approached Mandt about his findings and asked for his CanSecWest slide presentation.
The security flaw involves the random number generator Apple uses to secure its kernel. In iOS 6, the number generator that encrypted the kernel derived its values in part from the CPU clock counter. Because it was based on time, the encryption was only marginally secure as the output values were predictable, especially when examining successive numbers.
Apple was aware of the limitations in iOS 6 and attempted to tighten security in iOS 7 by changing the random number generator to a linear congruential generator, which is more susceptible to brute force attacks.
The problem with the new generator in iOS 7 is that it uses a linear recursion algorithm, Mandt said, which has "more correlation" between the values it generates. That makes them easier to extrapolate and guess, he said.This flaw potentially allows a malicious hacker to gain kernel-level access to an iOS device via an unpatched vulnerability. The kernel is the base part of the iOS operating system and controls low-level functions such as security and resource allocation.
Apple approached Mandt about his findings and asked for his CanSecWest slide presentation.
44 comments
Apple is in the final stages of certifying flexible OLED panels produced by BOE Display for use in future iPhones, according to a new report out today.
The Nikkei Asian Review says Apple is...
Apple is delaying its plans to limit third-party tracking and ads in apps designed for children, reports The Washington Post.
The company's decision comes following an inquiry from The...
Amid word that Apple TV+ could launch in November priced at $9.99/month, MacRumors has discovered additional tidbits within recent betas of macOS Catalina that offer further insight into how the...
Apple today added 13 and 15-inch 2019 MacBook Pro models to its online store for refurbished products in the United States, offering the updated machines at a discount for the first time.
The...
Apple Arcade is set to launch this fall, providing iPhone, iPad, Mac, and Apple TV users with access to a library of over 100 games on a subscription basis, with no ads or additional in-app...
Apple's health team has faced a series of "high-profile departures" in the past year due to internal disagreements about direction, according to CNBC's Christina Farr, who cites...
Timed with the Apple Card launching widely in the United States today, Apple has announced that customers will now receive three percent Daily Cash when they use the Apple Card with Apple Pay for...
Apple Card, the Apple-branded credit card that Apple is launching in partnership with Goldman Sachs, is available for everyone in the U.S. starting today following a preview period that launched a...
