Apple Appeals Corellium Copyright Lawsuit Loss After Settling Other Claims

Back in December, Apple lost a copyright lawsuit against security research company Corellium, and today, Apple filed an appeal in that case, reports Reuters.

corellium
The judge in the copyright case determined that Corellium was operating under fair use terms and that its use of iOS was permissible, throwing out several of Apple's claims. For those unfamiliar with Corellium, the software is designed to replicate iOS exactly to allow security researchers to find bugs and vulnerabilities.

Apple claimed that Corellium illegally copied the iOS operating system and applications that run on the iPhone and iPad, and that it had violated the Digital Millennium Copyright Act by circumventing Apple's security measures.

Corellium argued that its software helps Apple by making it easier for security researchers to find flaws. Corellium also said that Apple was using its lawsuit to "crack down on jailbreaking" and that Apple's code in the product was fair use, which the judge agreed with.

Apple is appealing the verdict in this specific copyright lawsuit, which is separate from the settlement that Apple and Corellium reached earlier this month.

Apple and Corellium on August 10 settled a federal lawsuit that would have gone to trial on August 16, and this settlement was related to the DCMA claims. The terms of the settlement were confidential, and so far, Corellium is still selling its virtual iOS platform.

According to Reuters, security researchers are surprised that Apple has opted to revive its legal battle with Corellium after the settlement terms, and after Apple's Craig Federighi said that security researchers would serve as a check on its plans to scan iPhones and iPads for CSAM to make sure the scanning is limited to CSAM. Security researchers will be able to confirm that the database of images used to match CSAM content on user devices only consists of content from agencies like the National Center for Missing & Exploited Children.

Earlier today, Corellium said that it was launching an "Open Security Initiative" aimed at rewarding independent public research into mobile devices. Corellium's first focus is Apple's CSAM system and the company has called on security researchers to submit projects designed to validate "any security and privacy claims" from any mobile software vendor. Qualifying submissions will receive up to $5,000.

We applaud Apple's commitment to holding itself accountable by third-party researchers. We believe our platform is uniquely capable of supporting researchers in that effort. Our "jailbroken" virtual devices do not make use of any exploits, and instead rely on our unique hypervisor technology. This allows us to provide rooted virtual devices for dynamic security analysis almost as soon as a new version of iOS is released. In addition, our platform provides tools and capabilities not readily available with physical devices.

It's possible that Apple's decision to revive the Corellium lawsuit is related to Corellium's announcement earlier today. In a statement, Corellium Chief Executive Amanda Gordon told Reuters that "enough is enough." "Apple can't pretend to hold itself accountable to the security research community while simultaneously trying to make that research illegal," she said.

Tag: lawsuit

Top Rated Comments

ian87w Avatar
5 weeks ago

Apple, was, is, and will always be the king of secrecy.
And the king of secrecy is trying to be the moral police as well.
Score: 18 Votes (Like | Disagree)
Wildkraut Avatar
5 weeks ago
They fears that Corellium finds more (yet undiscovered) in their CSAM mass surveillance scanning.
Score: 16 Votes (Like | Disagree)
TheYayAreaLiving Avatar
5 weeks ago
How is Apple staying committed?

Clearly shows Apple hates it when their platform gets the extra attention and when their security is being looked at.
Score: 13 Votes (Like | Disagree)
Shirasaki Avatar
5 weeks ago
Apple really hates people peeking into their iOS dirty little secrets and ugly inside heh. ? Guess this is also part of the reason they don’t like jailbreak. Given general iOS software quality downgrade YOY, even if this seems only for copyright on the surface, those Apple execs prolly still reeling from other defeats.
Score: 12 Votes (Like | Disagree)
ian87w Avatar
5 weeks ago
Okay Apple, your actions are becoming a joke now. You just talked high and mighyt about allowing security researchers to audit you, but then went lawsuit happy when they are trying to.

iOS15 is definitely a no go then for me. I have disabled auto download of ios update on my iPhone. My old Mac mini will be staying on Catalina.

This is really sad news for me, as I was actually someone who was starting to warm up to the Apple ecosystem.
Score: 12 Votes (Like | Disagree)
turbineseaplane Avatar
5 weeks ago
So do you want security researchers auditing your efforts or not Apple?

Pick a side
Score: 10 Votes (Like | Disagree)

Top Stories

corellium

Apple and Corellium Agree on Settlement to Bring Lawsuit to an End

Tuesday August 10, 2021 11:36 pm PDT by
Apple this week dropped its long-standing lawsuit against Corellium, the security research company that provides security researchers with a replica of the iOS operating system, allowing them to locate possible security exploits within Apple's mobile operating system, The Washington Post reports. Apple filed a lawsuit against Corellium in 2019, claiming the security company was infringing...
appleprivacyad

Corellium Launching New Initiative to Hold Apple Accountable Over CSAM Detection Security and Privacy Claims

Tuesday August 17, 2021 1:35 am PDT by
Security research firm Corellium this week announced it is launching a new initiative that will "support independent public research into the security and privacy of mobile applications," and one of the initiative's first projects will be Apple's recently announced CSAM detection plans. Since its announcement earlier this month, Apple's plan to scan iPhone users' photo libraries for CSAM or...
apple devices security bug bounty mac iphone ipad

Security Researchers Unhappy With Apple's Bug Bounty Program

Thursday September 9, 2021 10:00 am PDT by
Apple offers a bug bounty program that's designed to pay security researchers for discovering and reporting critical bugs in Apple operating systems, but researchers are not happy with how it operates or Apple's payouts in comparison to other major tech companies, reports The Washington Post. In interviews with more than two dozen security researchers, The Washington Post collected a number...
corellium

Apple Loses Copyright Claims in Lawsuit Against Corellium

Tuesday December 29, 2020 11:12 am PST by
Corellium, a mobile device company that supports iOS, this week won a significant victory in its legal battle against Apple. Apple last year sued Corellium for copyright infringement because the Corellium software is designed to replicate iOS to allow security researchers to locate bugs and security flaws. According to The Washington Post, a Florida judge threw out Apple's claims that...
tim cook privacy

Apple Not Trying Hard Enough to Protect Users Against Surveillance, Researchers Say

Friday July 23, 2021 6:46 am PDT by
Following the news of widespread commercial hacking spyware on targeted iPhones, a large number of security researchers are now saying that Apple could do more to protect its users (via Wired). Earlier this week, it was reported that journalists, lawyers, and human rights activists around the world had been targeted by governments using phone malware made by the surveillance firm NSO Group...
Child Safety Feature Blue

Apple Says NeuralHash Tech Impacted by 'Hash Collisions' Is Not the Version Used for CSAM Detection

Wednesday August 18, 2021 1:13 pm PDT by
Developer Asuhariet Yvgar this morning said that he had reverse-engineered the NeuralHash algorithm that Apple is using to detect Child Sexual Abuse Materials (CSAM) in iCloud Photos, posting evidence on GitHub and details on Reddit. Yvgar said that he reverse-engineered the NeuralHash algorithm from iOS 14.3, where the code was hidden, and he rebuilt it in Python. After he uploaded his...
applesecuritydevice

Apple Sending Special iPhones to First Participants in Security Research Device Program

Tuesday December 22, 2020 4:40 pm PST by
Apple in July announced the launch of a new Apple Security Research Device Program, which is designed to provide researchers with specially-configured iPhones that are equipped with unique code execution and containment policies to support security research. Apple is notifying the first researchers who will be receiving these special iPhones as of today, and the Cupertino company says that...
m1 macbook air 1

Apple Accused of False Marketing and Fraud Over M1 MacBook Display Issues

Wednesday September 15, 2021 1:37 pm PDT by
Apple is facing a new class-action lawsuit in the United States that accuses it of false or deceptive marketing for the M1-powered MacBook Pro and MacBook Air, fraudulent business practices, misconduct in customer support, and violation of consumer law. The lawsuit, filed this week in the Northern District of California, represents Apple customers across the United States who have faced...
Child Safety Feature Blue

Apple Delays Rollout of Controversial Child Safety Features to Make Improvements

Friday September 3, 2021 6:07 am PDT by
Apple has delayed the rollout of the Child Safety Features that it announced last month following negative feedback, the company has today announced. The planned features include scanning users' iCloud Photos libraries for Child Sexual Abuse Material (CSAM), Communication Safety to warn children and their parents when receiving or sending sexually explicit photos, and expanded CSAM guidance...
Child Safety Feature

Security Researchers Express Alarm Over Apple's Plans to Scan iCloud Images, But Practice Already Widespread

Thursday August 5, 2021 1:04 pm PDT by
Apple today announced that with the launch of iOS 15 and iPadOS 15, it will begin scanning iCloud Photos in the U.S. to look for known Child Sexual Abuse Material (CSAM), with plans to report the findings to the National Center for Missing and Exploited Children (NCMEC). Prior to when Apple detailed its plans, news of the CSAM initiative leaked, and security researchers have already begun...