apple patient
  • Home
  • News
  • Rumors
  • Tips & Tricks
  • Tests & Experience Reports
  • Generally
No Result
View All Result
  • Home
  • News
  • Rumors
  • Tips & Tricks
  • Tests & Experience Reports
  • Generally
No Result
View All Result
apple patient
No Result
View All Result

iOS 14 offers a new security system for iMessage

by Milan
January 29, 2021
iMessage

Alushta, Russia - September 26, 2018: Woman hand holding iPhone X with social networking service iMessage on the screen. iPhone 10 was created and developed by the Apple inc.

In iOS 14, a new "BlastDoor" sandbox security system has been added to iPhones and iPads to prevent attacks using the Messages application, as has now become known.

Apple has not yet announced any information regarding the new security system in iOS 14. The whole thing was only confirmed today by Samuel Gross, a security researcher from Google's Project Zero team, to ZDNet. Gross describes BlastDoor as a "tightly enclosed" sandbox service that is responsible for parsing all untrusted data in iMessages. A sandbox is a security service that runs code separately from the operating system - it works within the Messages app. In fact, BlastDoor takes a look at all incoming messages and checks their contents in a secure environment that prevents malicious code in a message from interacting with iOS or accessing user data.

BlastDoor makes iMessage significantly more secure

As you can see, most of the processing of complex, untrusted data has been moved to the new BlastDoor service. Furthermore, this design, with its 7+ services involved, allows for individual sandboxing rules to be applied, e.g. only the IMTransferAgent and apsd processes are required to perform network operations. Thus, all services in this pipeline are now properly sandboxed (with the BlastDoor service arguably the most sandboxed).

The feature is designed to thwart certain types of attacks, such as those where hackers use a shared cache or brute-force attacks. As ZDNet notes, security researchers have repeatedly discovered iMessage remote code execution bugs in recent years that make it possible to infiltrate an iPhone with just a text. For this reason, BlastDoor was integrated, a security system designed to fix exactly these problems. Groß discovered the new iOS 14 feature after investigating a news hacking campaign targeting Al Jazeera journalists. However, the attack did not work on iOS 14. He then investigated the whole thing and discovered BlastDoor. According to Groß, Apple's BlastDoor changes are "almost the best thing that could have been done given the need for backward compatibility" and make the iMessage platform significantly more secure.

iOS 14: “Structural improvements have been made”

This blog post discussed three improvements in iOS 14 that affect iMessage security: the BlastDoor service, shared cache resliding, and exponential throttling. Overall, these changes are probably very close to the best that could be done given the need for backwards compatibility, and they should have a significant impact on the security of iMessage and the platform as a whole.

It's great to see Apple putting resources aside for these kinds of major refactorings to improve end-user security. Moreover, these changes also underscore the value of offensive security work: not just fixing individual bugs, but making structural improvements based on the lessons learned from exploit development.

If you want to learn more about how BlastDoor works, you can blog post from Project Zero here. (Photo by Denys Prykhodov / Bigstockphoto)

  • iOS 14.5: Apple announces "App Tracking Transparency"
Have you already visited our Amazon Storefront? There you'll find a hand-picked selection of various products for your iPhone and other devices – enjoy browsing !
This post contains affiliate links .
Add Apfelpatient to your Google News Feed. 
Was this article helpful?
YesNo
Tags: iOSiOS 14
Previous Post

More privacy: Tim Cook criticizes Facebook's business model

Next Post

App tracking transparency: Apple informs developers

Next Post
app tracking transparency

App tracking transparency: Apple informs developers

AirPods Max 2 Apple

AirPods Max 2: All information about release, design and technology

July 5, 2025
iPhone 17 Pro Apple

iPhone 17 Pro: These four camera innovations are coming in 2025

July 4, 2025
Apple Smart Glasses

When will Apple launch its own smart glasses?

July 4, 2025

About APFELPATIENT

Welcome to your ultimate source for everything Apple - from the latest hardware like iPhone, iPad, Apple Watch, Mac, AirTags, HomePods, AirPods to the groundbreaking Apple Vision Pro and high-quality accessories. Dive deep into the world of Apple software with the latest updates and features for iOS, iPadOS, tvOS, watchOS, macOS and visionOS. In addition to comprehensive tips and tricks, we offer you the hottest rumors, the latest news and much more to keep you up to date. Selected gaming topics also find their place with us, always with a focus on how they enrich the Apple experience. Your interest in Apple and related technology is served here with plenty of expert knowledge and passion.

Legal

  • Imprint – About APFEPATIENT
  • Cookie Settings
  • Privacy Policy
  • Terms of Use

service

  • Partner Program
  • Netiquette – About APPLEPATIENT

RSS Feed

Follow Apfelpatient:
Facebook Instagram YouTube threads
Apfelpatient Logo

© 2025 Apfelpatient. All rights reserved. | Sitemap

No Result
View All Result
  • Home
  • News
  • Rumors
  • Tips & Tricks
  • Tests & Experience Reports
  • Generally

© 2025 Apfelpatient. All rights reserved. | Page Directory