Hacker News new | past | comments | ask | show | jobs | submit login

This confused me.

How does these unique signatures work and how does it improve boot security?




IIRC the general idea is that the pin code or password is required to be entered when an update is requested, which unlocks a key pair. The public key is included in the update request, which is then sent to Apple. Apple sends back a download that is signed in a way that the firmware can verify, and Apple guarantees never to send another download in response to that exact request. This protection also relies on the secure enclave never authorizing the installation of an unsigned OS update.


> Apple sends back a download that is signed in a way that the firmware can verify, and Apple guarantees never to send another download in response to that exact request.

Interesting! Thank you for the detailed explanation.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: