Part of iOS's core source code "iBoot" leaked to the net, pointed out that "the biggest leak in history"


ByBen Ward

Moving Apple terminal such as iPhone and iPad It became clear that the most important source code in iOS was released by Github by anonymous person of unknown identity.

Key iPhone Source Code Gets Posted Online in 'Biggest Leak in History' - Motherboard
https://motherboard.vice.com/en_us/article/a34g9j/iphone-source-code-iboot-ios-leak

On Github "iBootThis source code, which is called "source code that is responsible for first launching and authenticating at the time of terminal activation, among a number of source codes constituting iOS. So to speak,BIOSThis is one part that corresponds to the source code which is the essential part of the company's products It is said that this data which was the basis of iOS from Apple leaked out is surprised among the stakeholders.

According to the survey, it is confirmed that iBoot confirmed this time is actually used on iOS 9. Since the latest version at the time of article creation is "iOS 11", it means that it is two generations ago, but in fact this part has not been changed so much, so the basic structure is I am continuing to use it as it is. Since it has the function of authenticating at terminal startup, if this information is exploited, the development of a hacking tool and the effect that the acquisition of Root authority of iOS called "jailbreak" becomes very easy will appear It is done.

This is the image that captured part of the data which is regarded as iBoot. Guessing from the leftmost line number and the number that you think, you can see that the name of "Apple" comes out repeatedly in the part that seems to be the copyright notation written in the beginning part of the source code.


A book about Apple OS made "* OS Internals:Jonathan Levin wrote, "This is a historically major leak event, a tremendous event," says Jonathan Levin. According to Mr. Levin as saying that it seems to be "real source code" about iBoot based on the experience of reverse engineering and elucidating the structure of iOS, he also said that it is authentic from another expert Is shown.

While it is pointed out that a malicious hacker or the like could exploit this source code to leak to the outside, security officials also suggested that security measures would be easier to proceed. Also, Levin points out that at the general user level, Mr. Levin points out that jailbreak 'Tethered Jailbreak' (Pegged Jailbreak) that will be done with a cable connected to the computer may be possible again.

Byc_kc_k

For Tech / Science mediaMotherboardI asked Apple for comment on this matter but I did not get a reply.

in Software,   Security, Posted by darkhorse_log