“At the annual BlackHat USA 2016 security conference next week in Las Vegas, Apple security guru Ivan Krstic will provide security researchers with an in-depth overview regarding many of the more advanced security features built into iOS 10,” Yoni Heisler reports for BGR.
“While Apple showing up at the BlackHat conference in an official capacity is not unprecedented, Krstic’s talk promises to be the most detailed technical look into the security mechanisms that govern iOS yet.,” Heisler reports. “Krstic’s talk will focus on a myriad of security related topics, including three core Apple technologies that ‘handle exceptionally sensitive user data’ [HomeKit, Auto Unlock and iCloud Keychain].”
“Other topics on deck for Krstic’s talk include iOS cryptography, the Secure Enclave processor that was designed alongside TouchID [sic], and how Apple is making it increasingly difficult for malicious actors to compromise mobile Safari,” Heisler reports. “Krstic’s talk is slated to take place on August 4 at 12:50 Eastern Time.”
Much more in the full article here.
MacDailyNews Take: This marks a welcome new, less opaque attitude on Apple’s part regarding security.
One criticism of Apple in the realm of research is that they have always been willing to sit quietly in the back vigorously taking notes, but not be up front sharing information. This is a welcome change.
Do you want your car hacked? Never.
Do you want hackers to have access to your health data? Never.
Do you want hackers to be able to spoof your identity to auto-login to your Mac? Never.
These reasons and more are why Apple is suddenly so open on security. Because they are pursuing 100% security to enable next-gen products and services that will require it.
Safari needs many things, but needs to overhaul the way it handles cookies.
We need to have the ability to protect certain cookies from being scrubbed when we dump all the other cookies. Since so many third parties disregard the do not track request and plant thier cookies we must from time to time wipe all cookies. It is then a pain in the ass to restore the banks, brokerages, insurance companies, online stores and such after wipling the cache.
Ads are a fucking scourge, but cookies are completely out of control.
I’m using a combination of two apps to control cookies on OS X:
• Cookie, which is very good and recommended.
• Cookie Stumbler, which is clunky, but crumbles tracking cookies missed by Cookie.
I have the guts of a write-up comparing them, but I’m delaying posting it as I really wish they were combined as one app.
AND there will be at least one iOS security flaw pointed out at BlackHat…
thanks for providing this helpful knowledge, keep updating your knowledge thanks again 🙂