7. iOS Security

iOS devices have limitations compared to Android and include a hardware security component. Jailbreaking may be required to install third-party apps (sideloading).

iOS Architecture

Apple iOS Security is based on a hardware and a software layer, and iOS is based on the Linux O.S.

All apps are signed by Apple (with a developer profile) - Free developer account allows Sideloading.
2 partitions on the file system (user and O.S. partitions) - the user can only see user's file
Each iOS device has a device and a group key, created during manufacturing
- iOS utilizes secure boot chain, Touch ID/Face ID, and the Secure Enclave for hardware-based encryption and key management.

iOS Architecture

Most iOS Applications are based on native Objective C, and Swift.

Developed in Xcode environment
.iPA format - signed bundle of folders and assets
Unzipping .iPA results into a /Payload folder
- Application.app
- iTunesMetadata.plist
- Info.plist
- various unique .json, assets, resources

Previous6. Android Bug Bounty Next8. iOS Lab Setup

Last updated 1 year ago

Was this helpful?