In the Black Hat hacker conference Apple has not made too many appearances, however this year, the plans seem to be something else as when it comes to security, they are Thinking Different. Ivan Krstic, the Head of Security for Apple said that to the researches who are invited, the company has plans to pay up to $200K to find out about the various vulnerabilities that can be found in a few softwares of Apple.
The maximum payment breakdown has also been provided where in Around $200,000 is given to the secure boot firmware.
$100,000 is being offered to those who can extract the material which is said to be confidential that is protected by the Secure Enclave Processor.
$50,000 for using w/kernel privs for the arbitrary code execution.
$50,000 to gain the unauthorised access of the data on iCloud accounts which is on the Servers
of Apple.
$25,000 to access the user data that is present outside the sandbox through the sandboxed process.
We all know about how the FBI managed to extract the information that was need by them from the iPhone that was used by the terrorist of the San Bernardino case, to extract this information, they went ahead and paid $1 Million. Maybe this is the reason why the company is working towards the elimination of such back doors which is lucrative into their software which is a crown jewel.
In order to access iPhones, jailbreaks use the vulnerabilities that they find in Apple due to this, the iOS 9.3.4 was released by Apple which is an update that has been designed specifically to help in blocking the access of the latest jailbreak from Pangu. Ivan krstic presented the Behind the scenes of iOS Security in the Black Hat conference where Apple went ahead and spoke about it.