• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • antid0te Will Harden the iPhone Against Malware


    A German security analyst is about to unveil a new jailbreaking process that will make iPhones much more secure. Stefan Esser, a security consultant and application developer for SektionEins, has found a way to support Address Space Layout Randomization (ASLR) in iOS, and has developed a new jailbreak tool - to be called antid0te - to implement it, making iPhones much more resistant to malware attacks. The tool will be announced at a security conference next week and should be available soon thereafter.

    ASLR works by randomly assigning data to memory to make it tougher for attackers to figure out the location of critical operating system functions, greatly increasing the difficulty of designing reliable exploits. ASLR was built into Windows Vista over three years ago, and is supported in Windows Phone 7, as well as (to a limited extent) in Mac OS X. However, it isn't present at all on iOS, instead Apple relies on Data Execution Protection sandboxing to make iPhones resistant to attack. This is kind of like welding your car doors shut as an anti-theft measure: sure, the car will be harder to steal, but it will also be a lot less useful. Jailbreaking defeats sandbox protection in order to allow you to load the software you want, but at the same time a layer of Apple's brittle defense is removed, allowing worms like Ikee to access protected memory. The absence of robust security like ASLR in iOS allowed security researchers at this year's Pwn2Own hacking contest to break into a stock iPhone and hijack the entire SMS database, including deleted messages, in about 20 seconds.

    Esser will be presenting antid0te at the Power of Community security conference in Korea on December 14th. "With ASLR," the conference notes explain, "an exploit mitigation is added that is not available in factory iPhones and makes exploitation more difficult." And according to Esser, he's going to continue to work on further hardening the iPhone: "more mitigations and a full reactivation of the codesigning protection are planed [sic] for the next months."

    Source: The Register
    This article was originally published in forum thread: antid0te Will Harden the iPhone Against Malware started by Paul Daniel Ash View original post
    Comments 50 Comments
    1. kingbijan's Avatar
      kingbijan -
      Interested to see this
    1. ShredNasty's Avatar
      ShredNasty -
      Ok? When was the last time an iPhone got attacked? Hell, when was the first time?
    1. Zokunei's Avatar
      Zokunei -
      I thought this is what makes Firefox take 45 seconds to start up on my computer.
    1. ShredNasty's Avatar
      ShredNasty -
      Besides at a pwnfest, specifically tailored to attack.....
    1. baskie's Avatar
      baskie -
      I wonder how long though before anti-virus starts to appear for the iPhone?

      I mean, they're are millions of the out there and they're getting used for ever increasingly sensitive tasks, but yet the hackers seem to have left them alone. Can't stay that way for ever.

      Of course, I have no idea what I'm talking about here, so there might be a very good reason why they ain't yet been attacked.
    1. goodluck4287's Avatar
      goodluck4287 -
      Glorious. Hope it works well with no drawbacks and gets added to Pwnage Tool.
    1. SirTimothy1's Avatar
      SirTimothy1 -
      Hopefully it won't make future jailbreaks harder to come by.
    1. gthugballin's Avatar
      gthugballin -
      Quote Originally Posted by SirTimothy1 View Post
      Hopefully it won't make future jailbreaks harder to come by.

      thtat would suck
    1. darkrom's Avatar
      darkrom -
      Quote Originally Posted by SirTimothy1 View Post
      Hopefully it won't make future jailbreaks harder to come by.
      Each and every jailbreak usually does.
    1. 05VIIII's Avatar
      05VIIII -
      Yea, seems like it will make it harder to jailbreak/unlock in the future
    1. C1oud9's Avatar
      C1oud9 -
      Im going to sound stupid, i know :L but is this good or bad for the jail-breaking community?
    1. jokerg7's Avatar
      jokerg7 -
      could be both good or bad...we won't know until we know exactly what has developed
    1. zinjen's Avatar
      zinjen -
      Quote Originally Posted by gaBzii View Post
      could be both good or bad...we won't know until we know exactly what has developed
      Give me 15 minutes, I'll find the root on that SOB. Love a challenge
    1. wolverinemarky's Avatar
      wolverinemarky -
      He needs a cooler name then antidote don't really know him either so will wait and see what the devs think about it first


      Sent from my iPhone using ModMyi
    1. Zokunei's Avatar
      Zokunei -
      How in the hell would an anti-malware utility you get AFTER you ran a jailbreak tool make it harder to develop a jailbreak? The only way it could get harder is if Apple adopted it as part of the OS or an app did the same thing (which is impossible due to the fact apps can't tweak the OS).
    1. javiert30's Avatar
      javiert30 -
      Quote Originally Posted by wolverinemarky View Post
      He needs a cooler name then antidote don't really know him either so will wait and see what the devs think about it first


      Sent from my iPhone using ModMyi
      I think he called it antid0te based in greenp0ison...
    1. whereswaldo's Avatar
      whereswaldo -
      And we need this why? There is no malware for the iPhone and the onlything it would probably do is make it harder to find JB exploits
    1. darkrom's Avatar
      darkrom -
      Quote Originally Posted by whereswaldo View Post
      And we need this why? There is no malware for the iPhone and the onlything it would probably do is make it harder to find JB exploits
      Bingo. This ******* is probably going to be burning a perfectly good exploit we could save for future firmwares.
    1. Zokunei's Avatar
      Zokunei -
      Seriously, I'm super curious, how can a jailbreak tweak that can only affect the OS after you jailbreak and install it hinder an exploit being used? It's like saying the PDF patch from Cydia should have stopped JailbreakMe.com, the way I see it. Someone explain.
    1. Electrodaktylus's Avatar
      Electrodaktylus -
      You already said it... it happened before: the jailbreak community develops something nice and Apple implements it on their next software revision. It could actually get harder.