On Fri, 2 Aug 2024 07:35:22 -0400 Dan Ritter <d...@randomstring.org> wrote:
> The second biggest problem is that we started using a > firewall-evading technology to invite other people to run code on > our machines -- web browsers. This is a big piece of why Kent's perfectly secure system is a myth: no matter how much you harden the OS, applications still need to run on it. Probably the closest to perfection we have right now is iPhone. The OS is very hardened and locked down. Applications have a limited set of system APIs that they can use further reducing attack options. Even so, NSO Group (Pegasus) and Cellebrite still chip away at it. And plenty of others, too. iPhone is both a very hard target and a very valuable one. Though according to a recent data leak, iOS 17.4 and up currently cannot be cracked by Cellebrite. -- \m/ (--) \m/ _______________________________________________ Discuss mailing list Discuss@driftwood.blu.org https://driftwood.blu.org/mailman/listinfo/discuss
