18 / 19 - iPhone / iOS Flashcards
The the iOS milestones for:
- first release
- device encryption
- TouchID & Secure Enclave
- 32bit to 64bit move
- Introduction of HEIC / HEVC
- TouchID discontinued
- FaceID
- 2007
- 3GS with iOS4
- 5S
- 5S
- 8(+)
- X
- X
What was special about the following versions?:
- iPhone 3GS
- iPhone 4
- iPhone 4S
- iPhone 5
- iPhone 5S
- iPhone 6
- iPhone 6+
- iPhone 6s
- Device Encryption available as of iOS4
- MicroSIM / Apple A4 processor
- Dual Core A5 chipset 800 MHz
- A6 chipset / NanoSIM, Lightning Connector
- A7 chipset 64 Bit / M7 coprocessor
- Can no longer provide data from passcode protected iOS devices as of iOS 8
- MAC address randomisation
- Introduction of Siri
What was the first iOS file system and which one is the current one?
HFSX and APFS
Name the two iOS partitions? How big is the first one?
- System Partition
- /dev/disk0s1 OR /dev/disk0s1s1
- Data Partition
- /dev/disk0s2 OR /dev/disk0s2s2
The system partition is around 4GB.
What are the four layers of the iOS architecture?
- Cocoa Touch
- Media Layer
- Core Services
- Core OS
What is the hardware root of trust?
pon switch on an iOS device runs cold from the boot rom via its application processor. This code is programmed during manufacturer and is known as the hardware root of trust, which contains the Apple root CA public key.
What is UID?
A unique ID or UID is associated with every iOS device which is burned into memory and is used as an AES256 key to allow user data to be encrypted. So if this key is deleted then the user data is no longer readable and remains with a high level of encryption which cannot be easily defeated.
What is Secure Enclave?
The secure enclave processor first appeared with the release of the A7 processor. The secure enclave handles all cryptographic security features such as data protection keys and biometric information from touch or face ID sensors. The secure enclave is hosted by a processor core called the secure enclave processor (SEP).
How long can a passcode be?
iOS supports four and six digit as well as arbitrary length alphanumeric passcodes.
How does the escalating time delay works?
The first four incorrect passcode attempts encounter no imposed time delay.
A delay of one minute is introduced between attempting a fifth incorrect passcode and a sixth.
A delay of five minutes is imposed between the sixth and seven passcode attempt.
The delay imposed between the seventh, eighth and ninth attempt is 15 minutes each.
When is a passcode entry needed?
- The device has just been turned on or restarted
- The device hasn’t been unlocked for more than 48 hours
- The passcode hasn’t been used to unlock the device in the last 156 hours (six and a half days) and Touch/Face ID has not unlocked the device in the last 4 hours
- The device has received a remote lock command
- After five unsuccessful biometric match attempts
- After initiating power off/Emergency SOS
What are the two biometric sensors?
TouchID & FaceID
What is the name of the protocol between iTunes and iPhone and how is the framwork called to do system level operations?
Apple File Connection (AFC) & MobileDevice
What is a lockdown certificate?
A lockdown certificate is created when an iPhone performs a backup to a computer. Creates a trusted pair relationship. This is an XML Binary Property List file which contains the name of the Unique Device ID. The file has a .plist extension. Stored location on a computer will vary depending on the operating system and version of iTunes.
What is the UDID?
Each iOS device has its own Unique Device ID. To identify the iPhone Unique Device ID it must be connected to a computer. It can be found in the Device Manager under “Universal Serial Bus controllers” => Apple Mobile Device USB Driver => Details => Device Instance Path.
