zlacker

[parent] [thread] 4 comments
1. pmoria+(OP)[view] [source] 2022-06-22 13:14:41
"Audits is not what uncovers security flaws. Detailed research, fuzzing and effectively unlimited time to do both on the side of white-hat hackers and unlimited budget and criminal energy on the side of black-hats is what does."

Audits aren't supposed to be an ultimate guarantee of security, but provide a minimum, independently judged hurdle that has to be passed to get on the platform.

If there's a better, independent way to judge what browsers are "secure enough" to be on the platform (ie. not just "Apple says no"), I'd love to hear about it.

replies(2): >>pilif+s >>spanka+j7
2. pilif+s[view] [source] 2022-06-22 13:17:21
>>pmoria+(OP)
Apple thinks (and I'm inclined to agree) that no browser engine is safe enough to be on the platform but as there has to be at least one by necessity, they might as well reduce the attack surface by restricting it to a single one that's tightly integrated with the OS security measures and which is updated together with other OS updates.
replies(1): >>pmoria+C2
◧◩
3. pmoria+C2[view] [source] [discussion] 2022-06-22 13:32:03
>>pilif+s
Following that reasoning there should only be one app of each kind on the platform: an Apple app.

Minimize attack surface, minimize choice.

replies(1): >>pilif+Em
4. spanka+j7[view] [source] 2022-06-22 13:59:54
>>pmoria+(OP)
What do you think an audit is, and why do you think you can even approach a useful one on a codebase the size of WebKit? It's not realistic.
◧◩◪
5. pilif+Em[view] [source] [discussion] 2022-06-22 15:09:03
>>pmoria+C2
A calendar app provides a much smaller attack surface than a browser. It can also perform good enough without the need for JIT compilation.

As I said in my comment: I believe Safari and the underlying WebKit to be the most complex and most insecure part of iOS by multiple orders of magnitude.

Not adding more of equally complex and demanding pieces does provide a significant reduction of attack surface

[go to top]