[NEWS]Conférence sur le baseband iPhone par Musclenerd   

Les news postées sur iPhone Info

[NEWS]Conférence sur le baseband iPhone par Musclenerd

Messagepar Attila » Dim 17 Juin 2012 21:24

imageMusclenerd de la dev team, a fait une conférence à la HITB 2012, en présentant l'historique des baseband depuis le début de l'iPhone en 2007, ainsi que son fonctionnement et comment le hacker.

La conférence est découpée en plusieurs chapitres :
Baseband ROP: Overview of the role ROP plays in software unlocks like yellowsn0w and ultrasn0w. Comparison to ROP on the main Application-side CPU (jailbreaks). Why ROP wasn’t even necessary on the first generation of iPhones.
Software Unlocks vs. Hardware Unlocks: How iPhone software unlocks differ from those using hardware SIM interposers. Which layers of the baseband are exposed to each, and how the exploit development environment differs. Description of even more radical hacks like baseband chipset retrofitting and what Apple has done to prevent them.
iPhone4 DEP: How Apple implemented DEP with specific hardware changes on the iPhone4 baseband, and what went wrong. How ultrasn0w was made to work despite aggressive hardware-based DEP.
Operating Systems: So far, Apple has used 3 completely different baseband operating systems in the iPhone line. Description of which parts Apple tends to customize and why. Comparison of past and present custom command parsing.
Infineon vs. Qualcomm: Discussion of the transition from Infineon baseband chipsets to Qualcomm chipsets. Comparison of the older serial-based AT interface (still used on many other handsets) to the USB-based QMI used by the iPhone4S.
Activation Tickets: Detailed description of the “activation ticket” Apple uses to authorize use with specific (or all) carriers. How activation tickets interact with the traditional PIN-based NCK codes. Contrasting activation tickets and baseband tickets.
Baseband Tickets: Details on how Apple authenticates software updates to the baseband. Comparison of baseband tickets to “ApTickets” that Apple now uses on the main Application CPU to control software changes. Why baseband tickets provide even strong protection than ApTickets. The role of nonces in both the baseband and main application CPU.
iPhone4S: What we’ve learned so far about the iPhone4S baseband. Overview of changes Apple has made to the original Qualcomm bootrom. How the iPhone4S baseband boot process differs from most other Qualcomm-based handsets. Which features the iPhone4S baseband has in common with other handsets and which have been removed. Description of the current attack surfaces, and comparing iPhone4 vs iPhone4S hardware-based protection mechanisms.


Et pour finir, si vous comprenez l'anglais, la présentation :


http://www.funkyspacemonkey.com/musclenerd-evolution-iphone-baseband-unlocks-videoSource : http://www.funkyspacemonkey.com/musclenerd-evolution-iphone-baseband-unlocks-video
Avatar de l’utilisateur
Attila
Administrateur du site
 
Messages: 2919
Inscription: Lun 28 Déc 2009 18:41

Retourner vers News

 


  • Articles en relation
    Réponses
    Vues
    Dernier message

Qui est en ligne

Utilisateurs parcourant ce forum: Google [Bot] et 11 invités