Demystifying the Secure Enclave Processor

Sdílet
Vložit
  • čas přidán 25. 07. 2024
  • by Tarjei Mandt & Mathew Solnik & David Wang
    The secure enclave processor (SEP) was introduced by Apple as part of the A7 SOC with the release of the iPhone 5S, most notably to support their fingerprint technology, Touch ID. SEP is designed as a security circuit configured to perform secure services for the rest of the SOC, with with no direct access from the main processor. In fact, the secure enclave processor runs it own fully functional operating system - dubbed SEPOS - with its own kernel, drivers, services, and applications. This isolated hardware design prevents an attacker from easily recovering sensitive data (such as fingerprint information and cryptographic keys) from an otherwise fully compromised device.
    Despite almost three years have passed since its inception, little is still known about the inner workings of the SEP and its applications. The lack of public scrutiny in this space has consequently led to a number of misconceptions and false claims about the SEP.
    In this presentation, we aim to shed some light on the secure enclave processor and SEPOS. In particular, we look at the hardware design and boot process of the secure enclave processor, as well as the SEPOS architecture itself. We also detail how the iOS kernel and the SEP exchange data using an elaborate mailbox mechanism, and how this data is handled by SEPOS and relayed to its services and applications. Last, but not least, we evaluate the SEP attack surface and highlight some of the findings of our research, including potential attack vectors.

Komentáře • 14

  • @cat-.-
    @cat-.- Před 2 lety +3

    16k views, 10 comments! This gold nugget remains undug!

  • @idevicecentral
    @idevicecentral Před 5 lety +7

    Very good presentation, thank you!

  • @ashokmadridista2664
    @ashokmadridista2664 Před 6 lety +1

    The first guy was funny while being ridiculously talented!

  • @mindreader9444
    @mindreader9444 Před rokem

    Cam u tell me which is better samsung knox vs apple secure enclave

  • @srinivasass7912
    @srinivasass7912 Před 3 lety +1

    What is AP ?

    • @benjamind7290
      @benjamind7290 Před 3 lety

      "Application Processor" I believe. As opposed to, say, the radio controlling processor, etc.

    • @stonemini2372
      @stonemini2372 Před 3 lety

      Application Processor

    • @ilyar7161
      @ilyar7161 Před 2 lety

      Thank you for asking. I was wondering as well. Why they don't explain their terminology?!

    • @kidabek
      @kidabek Před 9 měsíci

      Was wondering what AP was too. Now I know

  • @justknot4481
    @justknot4481 Před 3 lety

    as always apple goes hardcore 🤣😁👨‍💻🤘🏻

  • @NoError-NeedToDowngradeiPad
    @NoError-NeedToDowngradeiPad Před 4 lety +2

    The main enemy of downgrading....

  • @bigdipper1454
    @bigdipper1454 Před 6 lety +1

    first presenter was not born to talk in public.....

Další v pořadí
Automatické přehrávání
Fried Apples: Jailbreak DIY42:16Fried Apples: Jailbreak DIY
Fried Apples: Jailbreak DIYBlack Hat
zhlédnutí 12K
48 Dirty Little Secrets Cryptographers Don’t Want You To Know50:5848 Dirty Little Secrets Cryptographers Don’t Want You To Know
48 Dirty Little Secrets Cryptographers Don’t Want You To KnowBlack Hat
zhlédnutí 107K
Apple's Secret Operating System and why you can't upgrade your SSD9:01Apple's Secret Operating System and why you can't upgrade your SSD
Apple's Secret Operating System and why you can't upgrade your SSDDefinitive Mac Upgrade Guide
zhlédnutí 267K
🍴 Join Puff as he whips up the fluffiest pancakes ever! #PancakeDay00:20🍴 Join Puff as he whips up the fluffiest pancakes ever! #PancakeDay
🍴 Join Puff as he whips up the fluffiest pancakes ever! #PancakeDayThat Little Puff
zhlédnutí 16M
How Many Balloons Does It Take To Fly?00:18How Many Balloons Does It Take To Fly?
How Many Balloons Does It Take To Fly?MrBeast
zhlédnutí 174M
Llegó al techo 😱00:37Llegó al techo 😱
Llegó al techo 😱Juan De Dios Pantoja
zhlédnutí 50M
PROČ JSOU KURÝRNÍ SLUŽBY UTRPENÍ 📯 💀24:26PROČ JSOU KURÝRNÍ SLUŽBY UTRPENÍ 📯 💀
PROČ JSOU KURÝRNÍ SLUŽBY UTRPENÍ 📯 💀MarleyKKT
zhlédnutí 259K
Reflections on Trusting TrustZone39:25Reflections on Trusting TrustZone
Reflections on Trusting TrustZoneBlack Hat
zhlédnutí 6K
iPhone Thief Explains How He Breaks Into Your Phone | WSJ9:47iPhone Thief Explains How He Breaks Into Your Phone | WSJ
iPhone Thief Explains How He Breaks Into Your Phone | WSJThe Wall Street Journal
zhlédnutí 3,1M
iOS Kernel PAC, One Year Later40:48iOS Kernel PAC, One Year Later
iOS Kernel PAC, One Year LaterBlack Hat
zhlédnutí 6K
Why Apple Takes Privacy Seriously6:33Why Apple Takes Privacy Seriously
Why Apple Takes Privacy SeriouslyApple Explained
zhlédnutí 647K
Hacking Next-Gen ATMs: From Capture to Cashout33:04Hacking Next-Gen ATMs: From Capture to Cashout
Hacking Next-Gen ATMs: From Capture to CashoutBlack Hat
zhlédnutí 64K
I Shot A CINEMATIC Apple Spec Ad On An iPhone | iPhone 15 Pro15:10I Shot A CINEMATIC Apple Spec Ad On An iPhone | iPhone 15 Pro
I Shot A CINEMATIC Apple Spec Ad On An iPhone | iPhone 15 ProReilin Joey
zhlédnutí 149K
Keystone: An Open-Source Secure Enclave for RISC-V Processors18:27Keystone: An Open-Source Secure Enclave for RISC-V Processors
Keystone: An Open-Source Secure Enclave for RISC-V ProcessorsRISC-V International
zhlédnutí 2,7K
Inside the Apple T245:14Inside the Apple T2
Inside the Apple T2Black Hat
zhlédnutí 13K
Hacker Teaches How to Manage Passwords4:51Hacker Teaches How to Manage Passwords
Hacker Teaches How to Manage PasswordsValuetainment Short Clips
zhlédnutí 129K
Llegó al techo 😱00:37Llegó al techo 😱
Llegó al techo 😱Juan De Dios Pantoja
zhlédnutí 50M
Střelec na Donalda Trumpa - Thomas Crooks | Co o něm po týdnu víme? | #mscrewpodcast01:00Střelec na Donalda Trumpa - Thomas Crooks | Co o něm po týdnu víme? | #mscrewpodcast
Střelec na Donalda Trumpa - Thomas Crooks | Co o něm po týdnu víme? | #mscrewpodcastMichal Šopor
zhlédnutí 352K
#JasonDeruloTV // Wow 🤩 #GotPermissionToPost From @fasheroisbrasil #FromTheIslands00:20#JasonDeruloTV // Wow 🤩 #GotPermissionToPost From @fasheroisbrasil #FromTheIslands
#JasonDeruloTV // Wow 🤩 #GotPermissionToPost From @fasheroisbrasil #FromTheIslandsJason Derulo
zhlédnutí 11M
Iron Chin ✅ Isaih made this look too easy00:13Iron Chin ✅ Isaih made this look too easy
Iron Chin ✅ Isaih made this look too easyPower Slap
zhlédnutí 34M
This Game Is Wild00:21This Game Is Wild
This Game Is WildMrBeast 2
zhlédnutí 62M
КОМПОТ В СОЛО00:16КОМПОТ В СОЛО
КОМПОТ В СОЛО⚡️КАН АНДРЕЙ⚡️
zhlédnutí 28M
БАБУШКИН КОМПОТ В СОЛО00:23БАБУШКИН КОМПОТ В СОЛО
БАБУШКИН КОМПОТ В СОЛО⚡️КАН АНДРЕЙ⚡️
zhlédnutí 12M
TO NEJLEPŠÍ Z INTERNETU! #54 😍00:57TO NEJLEPŠÍ Z INTERNETU! #54 😍
TO NEJLEPŠÍ Z INTERNETU! #54 😍HouseBox
zhlédnutí 471K