{"id":27620,"date":"2019-12-19T14:43:51","date_gmt":"2019-12-19T19:43:51","guid":{"rendered":"https:\/\/mjtsai.com\/blog\/?p=27620"},"modified":"2020-07-03T16:50:41","modified_gmt":"2020-07-03T20:50:41","slug":"apple-platform-security-guide-fall-2019","status":"publish","type":"post","link":"https:\/\/mjtsai.com\/blog\/2019\/12\/19\/apple-platform-security-guide-fall-2019\/","title":{"rendered":"Apple Platform Security Guide (Fall 2019)"},"content":{"rendered":"

Apple<\/a> (PDF, via Rosyna Keller<\/a>):<\/p>\n

This documentation provides details about how security technology and features are implemented within Apple platforms. It also helps organizations combine Apple platform security technology and features with their own policies and procedures to meet their specific security needs.<\/p>\n

[…]<\/p>\n

Apple continues to push the boundaries of what is possible in security and privacy. For example, Find My uses existing cryptographic primitives to enable the groundbreaking capability of distributed finding of an offline Mac — without exposing to anyone, including Apple, the identity or location data of any of the users involved. To enhance Mac firmware security, Apple has leveraged an analog to page tables to block inappropriate access from peripherals, but at a point so early in the boot process that RAM hasn’t yet been loaded. And as attackers continue to increase the sophistication of their exploit techniques, Apple is dynamically controlling memory execution privileges for iPhone and iPad by leveraging custom CPU instructions — unavailable on any other mobile devices — to thwart compromise. Just as important as the innovation of new security capabilities, new features are built with privacy and security at their center of their design.<\/p><\/blockquote>\n\n

There’s also a Web version<\/a>.<\/p>\n\n

See also: Behind the Scenes of iOS and Mac Security<\/a>.<\/p>\n\n

Previously:<\/p>\n