Apple’s New Version of iOS Security Guide

Tuesday, January 16, 2018 @ 10:01 AM gHale

Apple published an updated version of its iOS security guide, in which it details features introduced in iOS 11.2 (released on December 4, 2017) and iOS 11.1 (October 31, 2017).

The company released the first version of the document in June 2012, and has been updating it periodically ever since.

Mac Malware Avoids Antivirus
Unpatched macOS Security Flaw
Apple Patches KRACK Hole
Apple Releases OS Fix

This latest version contains more and updated details about Apple Pay Cash, security certifications and programs, Touch ID and Face ID, Shared Notes, CloudKit end-to-end encryption, TLS, Apple Pay, Paying with Apple Pay on the web, Siri Suggestions, and the Shared iPad feature.

The updated document notes as of iOS 11 and macOS High Sierra, SHA-1 certificates are no longer allowed for TLS connections unless trusted by the user and certificates with RSA keys shorter than 2048 bits are disallowed.

It also explains the security of Apple Pay Cash, a peer-to-peer payments system started this past June.

Apparently, the information provided to Apple when setting up the system will be shared with their partner bank (Green Dot Bank) and with Apple Payments Inc., “a wholly owned subsidiary created to protect your privacy by storing and processing information separately from the rest of Apple and in a way that the rest of Apple doesn’t know.”

“This information and transaction data will be used for troubleshooting, fraud prevention, and regulatory purposes, but the rest of Apple doesn’t know who you sent money to, received money from, or where you made a purchase with your Apple Pay Cash card,” company officials said.

Click here to download the guide.

Leave a Reply

You must be logged in to post a comment.