Hacker has decrypted Apple's Secure Enclave Processor firmware

Several reports show that one going by the pseudonym "xerub" managed to decrypt Apple's Secure Enclave Processor firmware (SEP) and published the decryption key on Thursday.

Secure Enclave Processor (SEP) is a feature on the A7 chipset that powers the iPhone 5, iPad Air, iPad mini 2, and iPad mini 3 as well as any Apple A series processor.Chippers

It is capable of managing its functions touch ID, the cryptographic functions of the Apple Watch Series 2 smartwatch, password authentication, and other security-related processes.

SEP is encrypted by the design and is completely isolated, which means it can not be tampered with.

“The processor forwards the data to Secure Enclave but cannot read it. They are encrypted and validated with a session key negotiated using the device's shared key provided for the Touch ID sensor and Secure Enclave, ”says Apple.

The decryption key will not allow hackers to access stored data.

Ο hacker ανακοίνωσε στο λογαριασμό του στο Twitter ότι κατάφερε να αποκρυπτογραφήσει το Secure Enclave Processor firmware (SEP) της Apple χρησιμοποιώντας τη βιβλιοθήκη img4lib, η οποία μπορεί να ασχοληθεί με αρχεία img4, μαζί με ένα εργαλείο διαίρεσης του SEP firmware που σχεδιάστηκε για τη διεκπεραίωση των αποκρυπτογραφημένων .

Both tools were developed by the hacker and are available on GitHub for security researchers who want to try to decrypt Apple's SEP firmware to find . However, these tools will not allow them to access the data stored in the SEP.

Below you can see the security architecture diagram of Apple's iOS mobile operating system to understand how it works his security. The hacker stated that the decryption key is “fully developed” and that you can download the required tools from the links below.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).