Stories
Slash Boxes
Comments

SoylentNews is people

New ‘Unpatchable’ Exploit Allegedly Found on Apple’s Secure Enclave Chip, Here’s What It Could Mean

posted by Fnord666 on Sunday August 02 2020, @06:59PM   Printer-friendly
from the secure-enclave-isn't dept.

upstart writes in with an IRC submission for nutherguy:

New 'unpatchable' exploit allegedly found on Apple's Secure Enclave chip, here's what it could mean - 9to5Mac:

The Secure Enclave is a security coprocessor included with almost every Apple device to provide an extra layer of security. All data stored on iPhone, iPad, Mac, Apple Watch, and other Apple devices is encrypted with random private keys, which are only accessible by the Secure Enclave. These keys are unique to your device and they're never synchronized with iCloud.

[...] It's important to note that although the Secure Enclave chip is built into the device, it works completely separately from the rest of the system. This ensures that apps won't have access to your private keys, since they can only send requests to decrypt specific data such as your fingerprint to unlock an app through the Secure Enclave.

[...] Now, Chinese hackers from the Pangu Team have reportedly found an "unpatchable" exploit on Apple's Secure Enclave chip that could lead to breaking the encryption of private security keys.

[...] The only thing we know so far is that this vulnerability in Secure Enclave affects all Apple chips between the A7 and A11 Bionic [...] Apple has already fixed this security breach with the A12 and A13 Bionic chips

Original Submission

 
This discussion has been archived. No new comments can be posted.
New ‘Unpatchable’ Exploit Allegedly Found on Apple’s Secure Enclave Chip, Here’s What It Could Mean | Log In/Create an Account | Top | 33 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 2) by jmichaelhudsondotnet on Monday August 03 2020, @03:50PM

    by jmichaelhudsondotnet (8122) on Monday August 03 2020, @03:50PM (#1030763) Journal

    I dont have to read this because I decided Apple was incapable of security a while back, so who cares.

    All those people who got the sysadmin jobs where they have to support phones lol.

    All the military personell using iphones on base, lol. (check all the military tv shows where they are practically in ghillie suits phoning the pentagon on their iphone roflmao)

    Here is a hint:

    The chinese might just release the bug to piss israelis off at this point.

    https://archive.is/UUt9W [archive.is] phone fetish
    https://archive.is/7YNX0 [archive.is] skeptical kid iphone

    People(loosely defined) telling me I am crazy: 1000000
    People even trying to say I am wrong: 0
    People willing to fund independent writers who have consistently been right on this issue, and whose lives have been made hell for it: 0
    Mastadon servers that have locked my account without explanation, so far, fitting the profile of servers not run by shills themselves: 2
    Intelligent conversations I have had with people I believe are not shills about the actual issues the entire time I have been at SN: maybe 3
    mass media channels not owned by the same people behind these exploits: 0

    clownworld, ftw

    Starting Score:    1  point
    Karma-Bonus Modifier   +1  
    Total Score:   2