Apple Sending Special iPhones to First Participants in Security Research Device Program

Apple in July announced the launch of a new Apple Security Research Device Program, which is designed to provide researchers with specially-configured iPhones that are equipped with unique code execution and containment policies to support security research.

applesecuritydevice
Apple is notifying the first researchers who will be receiving these special iPhones as of today, and the Cupertino company says that the devices will be sent out right away. Under the terms of the program, participating security researchers will be provided with iPhones that are on loan for one year, though it will be possible to extend the loan period.

The goal of the Security Research Device Program is to further improve the security of iOS, and Apple believes that the contributions of security researchers will assist the company in achieving its goal of increasing safety for consumers. Apple says that it values collaborating with independent researchers and appreciates the work they do on Apple platforms.

The iPhones Apple will provide are less locked down than consumer devices, which will make it easier for researchers to locate serious security vulnerabilities. These devices are as close as possible to production phones with the latest version of iOS and modern hardware. Researchers will not need to jailbreak the phones to do research, which will enable them to investigate platform security features, and they can run whatever tools they want to test the OS.

Program participants have access to extensive documentation and a dedicated forum with Apple engineers for collaborative purposes. The Security Research Device Program runs alongside the bug bounty program, so researchers who locate vulnerabilities can receive payouts of up to $1.5 million.

Top Rated Comments

motm95 Avatar
19 months ago
Awesome. This is a great way to continue to improve the security of iOS devices.
Score: 17 Votes (Like | Disagree)
12643 Avatar
19 months ago
How many copies you think the NSA is getting?
Score: 16 Votes (Like | Disagree)
adib Avatar
19 months ago

They could make iOS open source and then the community can improve upon it and also install it on non-Apple devices. :p
Ah yes, and Desktop Linux is the best end-user operating system since, ever. ?
Score: 14 Votes (Like | Disagree)
Makosuke Avatar
19 months ago

How does Apple ensure that they are not making the research to find exploits easier but that the researcher doesn’t sell a found exploit to a 3rd party for more than Apple offers?

Is Apple monitoring and recording the nature and content of the researcher’s work, so they know who to go after should a bad faith researcher go rogue?
I don't know any details, but in general terms I think this is a situation where giving the same tools to multiple researchers, in addition to good bounties for finding a bug, is a pretty solid way to get good-faith participation.

Generally I tend to trust public security researchers like this, since if they were interested in selling exploits to criminals... they wouldn't be public security researchers. They'd just do it quietly as a blackhat and not risk the exposure if someone they sell to gets caught or whatnot. Why make a big deal out of being a researcher then do something flagrantly illegal?

But even if you don't trust them, each one has to do the calculus: Other people have the same device I have. I find a bug that Apple is willing to pay $500,000 for and can get the payout for immediately, legally, no questions asked.

Or I can try to find some very wealthy criminal or state actor who is willing to pay $2,000,000 for it, launder the money, probably quit my job because people are probably going to ask questions if I flaunt it, and my buyer is going to have to be okay with the risk that one of the other researchers isn't going to find the same bug tomorrow.

All of which is to say that an illegal buyer is going to have to be either extremely rich or extremely confident that you're better than the other researchers working on the same problem to be willing to pay big for it, and you're going to be under a lot more scrutiny if you suddenly get rich.
Score: 13 Votes (Like | Disagree)
amartinez1660 Avatar
19 months ago

Apple has the obligation under the law to provide any data the NSA request, that includes all of the customer's data.

I thought only Chinese companies are required to do that! /s
Any data they have which is why all the “please make a backdoor access or else” threats and pushes have been a thing. Since Apple DOES NOT have access to the data, the best they can do is give a handful of an encrypted soup... and then good luck with that.

See, Apple has protected the consumer and themselves, rippling into protecting privacy at large, by making sure that they don’t at all cost collect any sensitive or identifying information. I understand that one of the weakest links was iCloud but two factor authentication has increased security there... in other countries not having the information ready when asked could at best mean being displaced by a new puppet that would or even execution for treason at worst.

I come from Venezuela, in 2001 a petition was signed to let the president be let go, call it an impeachment of sorts... but that ended up in 20K+ workers getting axed from their positions, especially if linked to public sector or a private company with public sector contracts and ties, because the government basically used it as a trap to see who was on their side... I left a long time ago, but that happens often. From getting fired to kidnapped to never seen ever again.
Trust me when I say that no, the US is nowhere near close what happens in other countries, by far, I get the sentiment that it seems to steer in the wrong direction badly but it’s for sure on time for the proper corrections.
Score: 6 Votes (Like | Disagree)
CarlJ Avatar
19 months ago

How many copies you think the NSA is getting?
How sure are you that this phone would add something to all that NSA already knows?
Score: 6 Votes (Like | Disagree)

Related Stories

tim cook privacy

Apple Not Trying Hard Enough to Protect Users Against Surveillance, Researchers Say

Friday July 23, 2021 6:46 am PDT by
Following the news of widespread commercial hacking spyware on targeted iPhones, a large number of security researchers are now saying that Apple could do more to protect its users (via Wired). Earlier this week, it was reported that journalists, lawyers, and human rights activists around the world had been targeted by governments using phone malware made by the surveillance firm NSO Group...
apple pay express transit london

Security Experts Warn of Apple Pay Express Transit Hack That Enables Large Unauthorized Visa Payments From Locked iPhones

Thursday September 30, 2021 12:14 am PDT by
Researchers in the U.K. have demonstrated how large unauthorized contactless payments can be made on locked iPhones by exploiting Apple Pay's Express Transit feature when set up with Visa. Express Transit is an Apple Pay feature that allows for tap-and-go payment at ticket barriers, eliminating the need to authenticate with Face ID, Touch ID, or a passcode. The device does not need to be...
Child Safety Feature yellow

Apple Removes All References to Controversial CSAM Scanning Feature From Its Child Safety Webpage [Updated]

Wednesday December 15, 2021 1:53 am PST by
Apple has quietly nixed all mentions of CSAM from its Child Safety webpage, suggesting its controversial plan to detect child sexual abuse images on iPhones and iPads may hang in the balance following significant criticism of its methods. Apple in August announced a planned suite of new child safety features, including scanning users' iCloud Photos libraries for Child Sexual Abuse Material...
ipad pro carrier subsidies

Verizon and T-Mobile Discontinue iPad Rebate Program Following Widespread Customer Complaints [Updated]

Monday January 3, 2022 5:02 am PST by
Verizon and T-Mobile have discontinued their iPad rebate program in partnership with Apple following widespread customer complaints that the program was ineffective, flawed, and rarely worked as intended. In recent weeks, complaints from customers have emerged across social media regarding Verizon's and T-Mobile's rebate programs. If it worked according to plan, the program would give...
iOS App Store General Feature JoeBlue

Apple Expanding 'App Store Foundations' Program to Additional Countries

Thursday January 13, 2022 7:06 am PST by
Apple this week announced that it will be expanding its App Store Foundations program to an additional 29 countries in Europe. Launched in 2018 in countries such as Germany, France, Italy, Spain, and Sweden, the program offers selected developers tailor-made support for app development, marketing, and monetization in collaboration with Apple employees. In individual and group sessions,...
iOS 14 vs 15 feature

Apple Says Option to Stay on iOS 14 Was Always Meant to Be Temporary

Wednesday January 19, 2022 9:57 am PST by
Last week, MacRumors shared news that Apple had stopped releasing iOS 14 security updates and was pushing those still on iOS 14 to upgrade to iOS 15, an apparent reversal of a promise to allow users to stay on the iOS 14 operating system. Apple today told Ars Technica that the option to stay on iOS 14 and avoid the iOS 15 upgrade was always meant to be temporary. It is not a mistake that...
appleprivacyad cleaned

iOS 15 Patched Security Hole That Potentially Exposed Users' Private Apple ID Information to Third-Party Apps

Thursday January 20, 2022 3:32 am PST by
Apple patched two significant security vulnerabilities when it released iOS 15 that could have potentially exposed users' private Apple ID information and in-app search history to malicious third-party apps and allowed apps to override user Privacy preferences, Apple has revealed in a recent support document update. With most iOS, macOS, tvOS, and watchOS updates, Apple provides a list of...
Child Safety Feature Purple

Apple's Proposed Phone-Scanning Child Safety Features 'Invasive, Ineffective, and Dangerous,' Say Cybersecurity Researchers in New Study

Friday October 15, 2021 12:23 am PDT by
More than a dozen prominent cybersecurity experts hit out at Apple on Thursday for relying on "dangerous technology" in its controversial plan to detect child sexual abuse images on iPhones (via The New York Times). The damning criticism came in a new 46-page study by researchers that looked at plans by Apple and the European Union to monitor people's phones for illicit material, and called...

Popular Stories

iPhone 13 Always On Feature

iPhone 14 Pro Screen Refresh Rate Upgrade Could Allow for Always-On Display

Tuesday May 24, 2022 7:23 am PDT by
Last year's iPhone 13 Pro models were the first of Apple's smartphones to come with 120Hz ProMotion displays, and while the two iPhone 14 Pro models will continue to feature the technology, their screens could well boast expanded refresh rate variability this time round. To bring ProMotion displays to the ‌iPhone 13 Pro models‌, Apple adopted LTPO panel technology with variable refresh...
iPhone 14 Pro Purple Front and Back MacRumors Exclusive

iPhone 14 Pro Renders Highlight Multiple Design Changes

Wednesday May 25, 2022 8:56 am PDT by
Leaker Jon Prosser today shared ostensibly accurate renders of the iPhone 14 Pro, providing the most accurate look yet at what the device could look like when it launches later this year. In the latest video on YouTube channel Front Page Tech, Prosser revealed renders of the iPhone 14 Pro made by Apple concept graphic designer Ian Zelbo, highlighting a range of specific design changes...
iPhone 14 Purple Lineup Feature

Will the iPhone 14 Be a Disappointment?

Saturday May 21, 2022 9:00 am PDT by
With around four months to go before Apple is expected to unveil the iPhone 14 lineup, the overwhelming majority of rumors related to the new devices so far have focused on the iPhone 14 Pro, rather than the standard iPhone 14 – leading to questions about how different the iPhone 14 will actually be from its predecessor, the iPhone 13. The iPhone 14 Pro and iPhone 14 Pro Max are expected...
iPhone 13 Face ID

'High-End' iPhone 14 Front-Facing Camera to Cost Apple Three Times More

Monday May 23, 2022 7:05 am PDT by
The iPhone 14 will feature a more expensive "high-end" front-facing camera with autofocus, partly made in South Korea for the first time, ET News reports. Apple reportedly ousted a Chinese candidate to choose LG Innotek, a South Korean company, to supply the iPhone 14's front-facing camera alongside Japan's Sharp. The company is said to have originally planned to switch to LG for the iPhone...
apple wwdc 2022

Apple Shares WWDC 2022 Schedule, Keynote to Take Place June 6 at 10:00 a.m PT

Tuesday May 24, 2022 9:06 am PDT by
Apple today confirmed that the keynote event for the Worldwide Developers Conference will begin at 10:00 a.m. Pacific Time on June 6, the first day of WWDC. The keynote will be an online-only event, though a select number of developers have been invited to the Apple Park campus for a viewing event. In addition to confirming the keynote date and time, Apple has shared the full WWDC 2022...
2022 Apple Watch Pride Edition Bands

Apple Announces 2022 Pride Edition Watch Bands and Watch Face

Tuesday May 24, 2022 6:24 am PDT by
Apple today announced new Pride bands for the Apple Watch, with new Pride Edition Sport Loop and Pride Edition Nike Sport Loop options available. The new Pride Edition bands are available to order today for $49 on Apple.com and in the Apple Store app, and will be available at Apple Store locations starting May 26. The Pride Edition Nike Sport Loop is also coming soon to Nike.com. This...