Hacker News new | past | comments | ask | show | jobs | submit login

>That doesn’t work as well because the counter is kept in the Secure Enclave so it’s not part of the flash contents

I skimmed the secure enclave documentation at https://www.apple.com/business/docs/iOS_Security_Guide.pdf (page 5, 14, 15), and I can't find anything to confirm that.




"On devices with Secure Enclave, the delays are enforced by the Secure Enclave coprocessor." Page 15

It was also confirmed explicitly during the Q&A at the blackhat talk in 2016, which I believe is on YouTube.


>It was also confirmed explicitly during the Q&A at the blackhat talk in 2016, which I believe is on YouTube.

doesn't look like it. https://www.blackhat.com/docs/us-16/materials/us-16-Mandt-De...


That’s not the apple talk. Apple gave a talk specifically about hardware security in the iPhone.

Edit: this one. https://youtu.be/BLGFriOKz6U

Edit 2: the question was asked at 47:20


It makes the most sense that it's in the Secure Enclave. Once you have control of the counter, you can run through the passphrase space in no time.


Only if the pass’phrase’ is a short numeric code. iOS also allows a normal password.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: