Apple Secure Enclav...
 
Notifications
Clear all

Apple Secure Enclave Processor Hacked

4 Posts
4 Users
0 Reactions
842 Views
(@trewmte)
Noble Member
Joined: 19 years ago
Posts: 1877
Topic starter  

The decryption key for Apple's Secure Enclave Processor (SEP) firmware has been released according to the article in iClarified http//www.iclarified.com/62025/hacker-decrypts-apples-secure-enclave-processor-sep-firmware

Tools for the job are here https://github.com/xerub/img4lib and here https://gist.github.com/xerub/0161aacd7258d31c6a27584f90fa2e8c

The Secure Enclave is responsible for processing fingerprint data from the Touch ID sensor, determining if there is a match against registered fingerprints, and then enabling access or purchases on behalf of the user. Communication between the processor and the Touch ID sensor takes place over a serial peripheral interface bus. The processor forwards the data to the Secure Enclave but can’t read it. It’s encrypted and authenticated with a session key that is negotiated using the device’s shared key that is provisioned for the Touch ID sensor and the Secure Enclave. The session key exchange uses AES key wrapping with both sides providing a random key that establishes the session key and uses AES-CCM transport encryption.


   
Quote
Igor_Michailov
(@igor_michailov)
Honorable Member
Joined: 20 years ago
Posts: 529
 

It is good news.


   
ReplyQuote
jaclaz
(@jaclaz)
Illustrious Member
Joined: 18 years ago
Posts: 5133
 

Good. )
Another article, with some more details for the layman
http//www.techrepublic.com/article/hacker-claims-to-have-decrypted-apples-secure-enclave-destroying-key-piece-of-ios-mobile-security/

"Decrypting the firmware itself does not equate to decrypting user data," xerub said. There's a lot of additional work that would need to go into exploiting decrypted firmware—in short it's probably not going to have a massive impact.

jaclaz


   
ReplyQuote
(@tinybrain)
Reputable Member
Joined: 9 years ago
Posts: 354
 

Apple now has a few weeks to change their SEP firmware towards a more secure version in iOS 11, a patent Apple was granted you find here
https://patentimages.storage.googleapis.com/6c/56/d7/eb72640d152ec4/US20130308838A1.pdf
and here
https://patentimages.storage.googleapis.com/c1/19/c3/73f755c9f32ec5/US9582102.pdf


   
ReplyQuote
Share: