Reputation:
understanding kSecAttrAccessGroup
I was just reading through some source code for an iOS application and I'm curious about the security of the same. It seems that the access group of an application can be specified in the entitlements it was built with. However, if a user unknowingly installs malware which tries to be part of a particular group and read the data stored in the storage, isn't it a security issue?
Is the Apple Application Screening process the only thing that stops the above attack? Or is there some permission management concept that im missing out? Thanks!
Upvotes: 3
Views: 3198
Answers (2)
Reputation: 1697
No, this is not a security risk. Provisioning profiles determine which access groups apps are allowed to claim access to, and provisioning profiles must be signed by Apple in order to function. Apple will only let you claim access to access groups created by other apps in your developer account.
The other answerer is mistaken; he/she links to a tool which is only for jailbroken devices and must be run as root, bypassing the standard iOS security mechanisms which apply to most devices.
Upvotes: 3
Reputation:
Yes, it's a security hole. For example, this tool can dump all the sensitive info in the keychain, including Wi-Fi and mail/facebook/any passwords off of your device.
Upvotes: 1
Related Questions
- ios kSecClassCertificate yields -25303
- iOS: how to debug kSecTrustResultRecoverableTrustFailure
- kSecAttrAccount and kSecAttrGeneric
- Relevance of kSecAttrIsInvisible in iOS
- Where is kCCKeySizeAES128? kCCEncrypt?... Common Crypto?
- kSecUseAuthenticationUISkip how to use it
- kSecAttrAccessibleAlways deprecated in ios 9
- Where is kSecAttrTokenIDSecureEnclave documented?
- KeyChain - what is it?
- What does kSecReturnPersistentRef do?