Apple Made Sudden Security Changes to its Chips in Fall 2020

by

Apple made unusual mid-production hardware changes to the A12, A13, and S5 processors in its devices in the fall of 2020 to update the Secure Storage Component, according to Apple Support documents.

a13 bionic mockup
According to an Apple Support page, spotted by Twitter user Andrew Pantyukhin, Apple changed the Secure Enclave in a number of products in the fall of 2020:

Note: A12, A13, S4, and S5 products first released in Fall 2020 have a 2nd-generation Secure Storage Component; while earlier products based on these SoCs have 1st-generation Secure Storage Component.

The Secure Enclave is a coprocessor that is used for data protection and authentication with Touch ID and Face ID. The purpose of the Secure Enclave is to handle keys and other information, such as biometrics, that are sensitive enough to not be handled by the Application Processor. This data is stored in a Secure Storage Component inside the Secure Enclave, which is the specific part that Apple changed last year.

The explanation in Apple's support document suggests, at minimum, that the eighth-generation entry-level iPad, Apple Watch SE, and HomePod mini have different Secure Enclaves compared to older devices with the same chip.

However, there are a number of discrepancies in Apple's support document. Despite Apple explaining that A13 products "first released in Fall 2020 have a 2nd-generation Secure Storage Component," there was no device with an A13 chip "first released in Fall 2020." The last device to be released with an A13 chip was the iPhone SE in February 2020.

If the change was, in fact, made to all newly-manufactured devices with these chips, the affected devices would include the iPhone XR, iPhone 11, ‌iPhone SE‌, and fifth-generation iPad mini, as well as the newly-released eighth-generation ‌iPad‌, ‌Apple Watch SE‌, and ‌HomePod mini‌.

a12 a13 s5 secure enclave change
To make matters more confusing, the table listing the multiple versions of the Secure Enclave's storage component in the feature summary omits the S4 chip with a second-generation Secure Storage Component, despite the rubric claiming that such a chip exists. The Apple Watch Series 4 was the only device to contain an S4 chip, and this device was discontinued in September 2019, long before the second-generation Secure Storage Component was implemented in the fall of 2020. It is possible that part of this lack of clarity relates to the fact that the A12 and S4 chips introduced the first-generation Secure Storage Component.

New devices containing the A14 or S6 chip, such as the iPhone 12, iPhone 12 Pro, fourth-generation iPad Air, and Apple Watch Series 6, also have the updated Secure Enclave.

Although the change took place in the fall of 2020, the support document detailing the alteration was published in February 2021. The full PDF version of Apple's Platform Security Guide reveals the difference between the first and second-generation Secure Storage Component:

The 2nd-generation Secure Storage Component adds counter lockboxes. Each counter lockbox stores a 128-bit salt, a 128-bit passcode verifier, an 8-bit counter, and an 8-bit maximum attempt value. Access to the counter lockboxes is through an encrypted and authenticated protocol.

Counter lockboxes hold the entropy needed to unlock passcode-protected user data. To access the user data, the paired Secure Enclave must derive the correct passcode entropy value from the user's passcode and the Secure Enclave's UID. The user's passcode can't be learned using unlock attempts sent from a source other than the paired Secure Enclave. If the passcode attempt limit is exceeded (for example, 10 attempts on iPhone), the passcode-protected data is erased completely by the Secure Storage Component.

This appears to be a countermeasure against password-cracking devices, such as GrayKey, which attempt to break into iPhones by guessing the passcode an infinite number of times, using exploits that allow for infinite incorrect password attempts.

The change appears to have been significant enough for Apple to justify an entire "second-generation" version of the Secure Enclave's storage. It is certainly unusual for Apple to change a component in its chips mid-way through production, but Apple likely deemed the security upgrade important enough to roll it out to all relevant new devices from the fall onwards, rather than just devices with the latest A14 and S6 chips.

Related Roundups: iPad mini 5, iPhone SE 2020, iPad, iPhone XR, iPhone 11, Apple Watch SE, HomePod mini
Tag: security
Buyer's Guide: iPad Mini (Don't Buy), iPhone SE (Caution), iPad (Neutral), Apple Watch SE (Neutral), HomePod Mini (Buy Now)
Related Forums: iPad, iPhone, Apple Watch, HomePod, HomeKit, CarPlay, Home & Auto Technology

Top Rated Comments

mtneer Avatar
mtneer
5 weeks ago
I wonder if this was in response to a major hardware security breach? Does that mean that devices released before the patch are now vulnerable?
Score: 18 Votes (Like | Disagree)
Serban55 Avatar
Serban55
5 weeks ago
Thank you Apple
Score: 14 Votes (Like | Disagree)
mtneer Avatar
mtneer
5 weeks ago

everything old become vulnerable.
The article says that the cutoff is "Fall 2020".. that's 6 months ago. We aren't talking about age-old vintage devices here..
Score: 8 Votes (Like | Disagree)
Realityck Avatar
Realityck
5 weeks ago
I’m glad Apple is very proactive with hardware based security improvements.
Score: 6 Votes (Like | Disagree)
WoodpeckerBaby Avatar
WoodpeckerBaby
5 weeks ago

He’s too busy saving $0.05 per iPhone by not including the charger until the guise of “saving the planet!”.
It’s more like $5 per charger, which isn’t insignificant.
Score: 6 Votes (Like | Disagree)
Serban55 Avatar
Serban55
5 weeks ago

I wonder if this was in response to a major hardware security breach? Does that mean that devices released before the patch are now vulnerable?
everything old become vulnerable.
Score: 3 Votes (Like | Disagree)
Read All Comments

Top Stories

2021 mbp hdmi slot 3d

2021 MacBook Pro Leaks Confirm Returning MagSafe and Ports

Friday May 14, 2021 3:06 am PDT by
Apple's upcoming MacBook Pro models are expected to feature a number of major changes such as larger display options and powerful new Apple silicon chips. Among the more surprising updates to this year's MacBook Pro models is the return of three ports that have been missing from the machines for over five years. Expected to come in 14- and 16-inch sizes, the 2021 MacBook Pro models are...
Read Full Article
General Music and AirPod 3 Feature

Rumor: Apple to Announce Third-Generation AirPods and HiFi Apple Music Tier on May 18

Thursday May 13, 2021 10:32 pm PDT by
A new rumor suggests that Apple will announce the third-generation AirPods and the recently rumored HiFi, or high-fidelity Apple Music tier, on Tuesday, May 18, via a press release on its website. The new rumor comes from Apple YouTuber Luke Miani who shared the alleged exclusive news with the AppleTrack website. According to the YouTuber, Apple plans to release the next-generation AirPods...
Read Full Article198 comments
m1 ipad pro early customer

M1 iPad Pro Arrives Early for Lucky Customer

Saturday May 15, 2021 11:57 pm PDT by
Days ahead of their expected launch and seemingly before official review embargoes lift, one lucky customer has already gotten their hands on the brand new 12.9-inch M1 iPad Pro. Reddit User PeterDragon50 Posted on Reddit, u/PeterDragon50 has already received their 12.9-inch iPad Pro through retailer Nebraska Furniture Mart. The Reddit user says they placed their order when pre-orders...
Read Full Article380 comments
Twitter Feature

Twitter's 'Blue' Subscription Service May Cost $2.99, Will Offer Undo Tweet Option

Saturday May 15, 2021 11:08 am PDT by
Twitter has been working on some kind of subscription service since last summer, and Jane Manchun Wong, who often digs into new features coming in apps, has shared details on just what Twitter is exploring. Twitter's subscription service could be called Twitter Blue, and at the current time, it's priced at $2.99 per month. There will be a "Collections" section that allows users to save and...
Read Full Article120 comments
magic mouse space gray discontinued

Apple Discontinuing Space Gray Mac Accessories Now That iMac Pro is Dead

Friday May 14, 2021 11:52 am PDT by
Following the discontinuation of the iMac Pro, Apple also appears to be discontinuing Space Gray "Magic" accessories that it sold separately alongside the iMac Pro. The iMac Pro was the only Space Gray Mac, and Apple designed special matching accessories for it. The Space Gray Magic Mouse 2, Magic Keyboard, and Magic Trackpad all now say "While supplies last" in small wording at the bottom...
Read Full Article372 comments
tile amazon sidewalk integration

Apple Says Tile Trackers Sold Poorly in Apple Stores

Friday May 14, 2021 4:53 am PDT by
Earlier last month, Spotify, Tile, and Match (owner of Tinder), testified at an app store antitrust hearing spearheaded by the U.S. Senate. During the hearing, Spotify called Apple's App Store "an abusive power grab," while Tile said Apple uses its platform to "unfairly limit competition for its products." Now, in response to their testimonies, Apple's vice president and chief compliance...
Read Full Article141 comments
apple music change forever

Apple Music Teaser: 'Get Ready – Music is About to Change Forever'

Sunday May 16, 2021 2:39 pm PDT by
The Browse tab in the Music app across Apple's platforms has started displaying a prominent teaser hinting at an upcoming major announcement for Apple Music. Under the heading "Coming soon," the headline says "Get ready – music is about to change forever." An accompanying "Tune-In Video" simply shows an animated Apple Music logo. Rumors have indicated that Apple is preparing to launch a...
Read Full Article148 comments
Top Stories 60 Feature

Top Stories: M1 iMac Benchmarks, iPhone Battery Life Tips, Colorful MacBook Air?

Saturday May 15, 2021 6:00 am PDT by
Anticipation is building for the new iMac and iPad Pro models, which have started shipping out ahead of a launch around May 21. Benchmarks for the new machines are starting to come in, and the M1 chips inside of them are registering at around the same figures seen with other M1-based Macs, making for significant upgrades over previous-generation models. This week also saw some rumors about...
Read Full Article35 comments
syng cell alpha

Longtime Apple Designer Christopher Stringer's Latest Project Is a High-Fidelity Speaker With AirPlay 2

Friday May 14, 2021 7:30 am PDT by
Christopher Stringer, a key member of Jony Ive's design team who spent 21 years at Apple before departing in 2017, is resurfacing today with his new venture Syng, which seeks to make an impact in the high-end audio market. Stringer, who contributed to many of the most iconic product designs in Apple's history, announced his plans roughly a year ago, and Syng is today introducing its flagship ...
Read Full Article120 comments
google photos

PSA: Google Photos Unlimited Storage Ends Next Month, Here's How to Export Your Pictures to iCloud

Thursday May 13, 2021 5:26 am PDT by
For as long as it's existed, Google Photos has offered free unlimited storage for uploading images at a reduced yet good enough quality for most users. From June 1, 2021, however, all photos and videos uploaded to Google accounts will count against users' cloud storage. If you've been relying on Google to back up your media library, it may be time to move that content elsewhere. This article...
Read Full Article111 comments