Apple Invites Researchers to Apply for Special iPhone Designed for Finding Vulnerabilities

Apple today announced that it is accepting applications for its 2024 iPhone Security Research Device Program, allowing security researchers to get specialized Apple devices that make it easier to find critical iOS vulnerabilities.

apple security research program
The ‌iPhone‌ Security Research Device Program (SRDP) has been around since 2019, and researchers have used it to locate 130 high-impact security vulnerabilities. Apple says that researchers have helped it to implement "novel mitigations" for protecting iOS devices.

Over the course of the last six months, program participants have received 37 CVE credits for their findings, and have contributed to improvements for the XNU kernel, kernel extensions, and XPC services.

Researchers who participate in the SRDP are eligible for Apple Security Bounty payouts. Apple has rewarded more than 100 reports from SRDP researches, and says that "multiple awards" have reached $500,000 with a median award of close to $18,000.

The iPhone 14 Pro research devices that Apple provides to participants feature special hardware and software designed for security research. Researchers are able to configure or disable the iOS security protections to manipulate them in ways not possible with a standard ‌iPhone‌.

SRDs are available to security researchers who have a track record in security research both on the ‌iPhone‌ and other platforms, plus Apple is making devices available to university educators who want to use it as a teaching tool for computer science students.

Apple selects a limited number of participants each year to receive a research device, and applications are open until October 31, 2023. Selected participants will be notified in early 2024.

Popular Stories

Apple Vision Pro 2 Feature 2

Apple Reportedly Suspends Work on Vision Pro 2

Tuesday June 18, 2024 8:17 am PDT by
Apple has suspended work on the second-generation Vision Pro headset to singularly focus on a cheaper model, The Information reports. Apple was widely believed to have plans to divide its Vision product line into two models, with one "Pro" model and one lower-cost standard model. The company is said to have been deprioritizing the next Vision Pro headset over the past year, gradually...
apple watch series 9 display

Kuo: Apple Watch Series 10 to Get Larger Screen and Thinner Design

Monday June 17, 2024 1:20 am PDT by
This year's Apple Watch Series 10 will be thinner and come in larger screen sizes than previous models, according to Apple analyst Ming-Chi Kuo. In his latest industry note -10-and-98075c44ce92">shared on Medium, Kuo said the screen size options on the next-generation Apple Watch will increase from 41mm to 45mm, and from 45mm to 49mm, while being encased in a thinner design. For reference,...
2022 back to school apple feature

Apple's 2024 Back to School Sale Launching This Week

Monday June 17, 2024 12:27 pm PDT by
Apple will launch its annual Back to School promotion for university students in the United States and Canada this week, according to Bloomberg's Mark Gurman. Apple's back to school sales provide students with a free Apple gift card when purchasing a Mac or an iPad, and this year's promotion could help Apple push the new M2 iPad Air and M4 iPad Pro models. Last year, Apple offered U.S....
Apple Pay Later feature 1

Apple Discontinuing Apple Pay Later

Monday June 17, 2024 11:44 am PDT by
Apple is discontinuing Apple Pay Later, the buy now, pay later feature that it just launched last October. Apple Pay Later is being discontinued as of today, but people who have existing Apple Pay Later loans will be able to continue to pay them off and manage them through the Wallet app. Apple announced plans to end the feature in a statement provided to 9to5Mac, which also notes that...
iOS 18 CarPlay Feature

iOS 18 Adds These 5 New Features to CarPlay

Thursday June 13, 2024 7:44 am PDT by
Apple did not mention CarPlay during its WWDC keynote this week, but iOS 18 includes a handful of new features for the in-car software. Overall, there is not a whole lot new for CarPlay on iOS 18, with changes seemingly limited to the Messages and Settings apps so far. Below, we recap everything new for CarPlay on iOS 18. New for CarPlay on iOS 18 1. Contact Photos in Messages App...
iPod Nano vs iPod Pro Ad Feature 1

Apple Developing Thinner MacBook Pro, Apple Watch, and iPhone

Monday June 17, 2024 2:22 am PDT by
Apple intends to slim down the MacBook Pro, Apple Watch, and iPhone, with the new ultra-thin M4 iPad Pro a sign of the company's new design trajectory, according to Bloomberg's Mark Gurman. When the M4 iPad Pro was unveiled last month, Apple touted it as the company's thinnest product ever, and even compared it to the 2012 iPod nano to emphasize its slim dimensions. Writing in the latest ...
watchOS 11 Thumb 2 1

watchOS 11 Supports Automatic Nap Detection

Monday June 17, 2024 4:05 pm PDT by
watchOS 11 appears to include a new feature that allows an Apple Watch to automatically detect and record when you're taking a nap. As shared on Reddit, an Apple Watch owner took a nap and was able to see the sleep data recorded in the Health app, despite not putting the device in Sleep Mode. Right now, the Apple Watch only tracks and records sleep when it is in Sleep Mode, and there is no...

Top Rated Comments

3530025 Avatar
11 months ago
Very nice! Hopefully this is going to make iOS even more secure!
Score: 10 Votes (Like | Disagree)
Spaceboi Scaphandre Avatar
11 months ago
Mmm I love a good terminal.

Wish I could get my hands on this iPhone. The fun things I could do with an iPhone that had root access just has me salivating.

Alas, I'll just have to wait until Apple's forced to enable sideloading next year.
Score: 10 Votes (Like | Disagree)
3530025 Avatar
11 months ago

Alas, I'll just have to wait until Apple's forced to enable sideloading next year.
This! Sideloading will get iPhone to another level.

And the best thing is - it is optional. You don't have to sideload anything if you don't want to!
Score: 10 Votes (Like | Disagree)
11 months ago

I can only show you the door. You're the one who has to walk through it.
Score: 9 Votes (Like | Disagree)
now i see it Avatar
11 months ago
and of course, one of these phones doesn’t end up in the hands of a nation-state hacker. Of course not.
Score: 8 Votes (Like | Disagree)
3530025 Avatar
11 months ago

You say you don’t understand the argument. And you don’t understand the difference.

I’m going to try to explain…

Tech enthusiasts can already get pretty much whatever they need onto their iPhones.

But tech novices (a HUUUUGE portion of iOS users) cannot.

After sideloading is built-in it becomes MUCH easier to do it. For everybody.

A few years after sideloading everybody is going to have a way to save 30% if you follow the three steps on their site to sideload their app instead of getting it through the AppStore. Netlix/Disney+, Epic Games, whatever the latest fad AI app or messaging plugin or whatever, they’ll all have a strong incentive for themselves and their customers to do it.

And plenty will sideload. It will become part of using an iPhone.

This isn’t a HUGE problem for those trusted developers. But it’s the normalized behaviour that opens the door for tons more malware installs.

Grandpa Jim has sideloaded his MLB app before to save $30, I guess he has to do it again to get the MLB playoffs update. Only it’s malware disguised as from MLB.

These tech novices don’t install apps on their macs (if they even have PCs), they certainly don’t install Mac apps from outside the AppStore.

A HUGE portion of the iPhone user base (at least 90%) are nowhere near as tech savvy as you or me, and probably at least half of them are Grampa Jims.

TL;DR: Having effectively no way for Grampa Jim to get himself in trouble with malware means the iPhone is safe for that hundred million people who know nothing about tech. Opening up sideloading for us nerds (who don’t actually NEED it to sideload), means you make the iPhone MASSIVELY less safe for the 100M Grampa Jims.
Well your whole post is not based on facts but on massive assumptions.

* You automatically assume it will be much easier to sideload. Yet you don't have any factual data to this. It may be behind multiple warnings and settings and you may require to do some stuff (i.e. allow it manually via computer) in order to allow this. There's no exact specification out yet, so we don't know how exactly will sideload work.
* You assume plenty will sideload. This just does not have any factual basis. Many Apple users trust the ecosystem and Apple claims about security of App Store. We really don't know how widespread will sideload be. It may be minority thing.
* You assume grandpa Jim sideload just to save $30. Where would grandpa Jim get this app? Is he browsing torrents or warez sites? Really? Does he really want to go beyond Apple ecosystem and convenience just to save $30 when he bought 1000 USD phone already?
* You assume there will be no security measure in place when installing potential malware to your device. There easily may be.
* You forget about sandbox. iPhone has sandbox built in. No app is able to access other app's data or features that you did not allow permissions to.

So I disagree with you, because it's just your assumptions and your opinions without any factual base at this point. You may be right, but you may be totally wrong too.
Score: 6 Votes (Like | Disagree)