Techly NewsGet the app

Get the latest tech news

Operation Triangulation: The last (hardware) mystery


Recent iPhone models have additional hardware-based security protection for sensitive regions of the kernel memory. We discovered that to bypass this hardware-based security protection, the attackers used another hardware feature of Apple-designed SoCs.

The presentation summarized the results of our long-term research into Operation Triangulation, conducted with our colleagues, Igor Kuznetsov, Valentin Pashkov, and Mikhail Vinogradov. But the fact that it involves an ECC, coupled with the unstable behavior observed when trying to use it to patch the kernel code, leads to the conclusion that this hardware feature provides direct memory access to the cache. This discovery also raises the possibility that this unused hardware feature could have been found through experimentation, but to do so would require attackers to solve a large number of unknown variables.

Get the Android app

Or read this on r/apple

Read more on:

Photo of hardware

hardware

Photo of mystery

mystery

Related news:

News photo

PlayStation Has Blocked Hardware Cheating Device Cronus Zen, Others May Follow

News photo

Apple Now Allows Developers to Request Access to Additional iPhone Hardware and Software Features

News photo

Unpicking the Mystery of the Body’s ‘Second Brain’

America's Car Industry Seeks to Crush AM Radio. Will Congress Rescue It? »