A security researcher claims changes Apple made to tighten its kernel security system in iOS 7 instead weakened the system, making it less secure than its iOS 6 counterpart. (Via CNET and ThreatPost) Azimuth Security researcher Tarjei Mandt discovered the flaw and presented his findings last week at CanSecWest.
The security flaw involves the random number generator Apple uses to secure its kernel. In iOS 6, the number generator that encrypted the kernel derived its values in part from the CPU clock counter. Because it was based on time, the encryption was only marginally secure as the output values were predictable, especially when examining successive numbers.
Apple was aware of the limitations in iOS 6 and attempted to tighten security in iOS 7 by changing the random number generator to a linear congruential generator, which is more susceptible to brute force attacks.
Apple approached Mandt about his findings and asked for his CanSecWest slide presentation.
The security flaw involves the random number generator Apple uses to secure its kernel. In iOS 6, the number generator that encrypted the kernel derived its values in part from the CPU clock counter. Because it was based on time, the encryption was only marginally secure as the output values were predictable, especially when examining successive numbers.
Apple was aware of the limitations in iOS 6 and attempted to tighten security in iOS 7 by changing the random number generator to a linear congruential generator, which is more susceptible to brute force attacks.
The problem with the new generator in iOS 7 is that it uses a linear recursion algorithm, Mandt said, which has "more correlation" between the values it generates. That makes them easier to extrapolate and guess, he said.This flaw potentially allows a malicious hacker to gain kernel-level access to an iOS device via an unpatched vulnerability. The kernel is the base part of the iOS operating system and controls low-level functions such as security and resource allocation.
Apple approached Mandt about his findings and asked for his CanSecWest slide presentation.
44 comments
The so-called "Apple Car" may not be a car after all, but rather an electric van, according to German site Manager Magazin.
LiDAR-equipped Apple Maps vehicle in 2015
The report,...
Apple and investment bank Goldman Sachs plan to launch a joint credit card later this year, according to The Wall Street Journal.
The report claims the card will be rolled out to Apple...
Apple Music vice president Oliver Schusser spoke with German blog Macerkopf this week, revealing that European developers have now earned over $25 billion from the App Store since its inception...
Apple recorded its biggest decline in iPhone sales for almost three years over the holiday quarter, according to new market research data by Gartner.
Apple sold 64 million iPhones in...
Fast Company today published its annual rankings of the 50 most innovative companies in the world, with Apple dropping from 2018's top spot to 17th place this year.
According to the...
macOS, the operating system that runs on Apple's Macs, has tons of hidden shortcuts, keyboard commands, and features that have gone under the radar. In our latest video over on our YouTube...
Apple today released a white paper outlining its self-driving car testing procedures as required by the National Highway Traffic Safety Administration [PDF via CNET].
The short seven-page...
Alongside its new Galaxy S10 smartphone lineup and the Galaxy Fold, Samsung today announced a new wearable accessory, the Galaxy Buds.
The Galaxy Buds are Samsung's new wire-free earbuds,...
