Antid0te: Jailbreak Tool To Improve Security Of Jailbroken iPhone, iPad & iPod Touch

News | Saturday December 11 2010 10:16 AM | Comments (0) Tags: , , , , , , , , ,

is popular with iPhone users as it enables them to unlock the potential of the iPhone but it is fraught with some risks. Besides
and potentially setting off performance related issues, one of the biggest concerns has been increased vulnerability.
in the past that have put jailbroken iPhones at risk.
This is because the jailbreak process typically curtails the impact of a couple of security protection layers that is natively built on the iPhone . These layers, called the Data Execution Protection (DEP) and Application Sandboxing offer the necessary resistance required for a closed platform like the iOS.
However, a
brings with it the ability to execute codes on the command shell that can be quite risky. Microsoft is already known to have an additional protection system called ASLR on their latest versions of desktop and mobile operating platforms. ASLR, or Address Space Layout Randomization, is a technique that randomizes the memory locations of the files. This subsequently makes it difficult for an injected code to locate the rogue scripts in advance to execute an attack. A limited version of ASLR is already available on Snow Leopard though it is completely absent in the
.
Now Stefan Esser, a German consultant with SektionEins, has revealed a new process that could bring ASLR to jailbroken iDevices. He claims that his technique will enable the randomization of the dyld_shared_cache file that houses all the libraries on the iOS thereby making jailbroken iDevices all the more secure.
, Esser has noted that a new tool called Antid0te, will be released soon that will bring the ASLR based security protection layer to jailbroken iDevices. Esser claims:
“This enables users with jailbroken iPhones to create their own set of dyld_shared_cache files that have completely different library load addresses from every other iPhone in the world. This is already a better ASLR than what exists on Snow Leopard because different applications can use different shared caches and therefore different load addresses.”
This is a significant development that could enhance the security features on jailbroken iDevices. Also, it could encourage more users to jailbreak and make their devices open for applications outside the
. Esser is expected to present his findings at the Power of Community security conference that is to be held in Seoul, South Korea on December 14.`
We look forward to the event and will let you know as soon as the tool is released for jailbroken iDevice.

No Comments »

No comments yet.

RSS feed. TrackBack URI

Leave a comment

You must be logged in to post a comment.