iOS applications have become an increasingly popular targets for hackers, reverse engineers, and software pirates. In this presentation, we discuss the current state of iOS attacks, review available security APIs, and reveal why they are not enough to defend against known threats. For high-risk applications, novel protections that go beyond those offered by Apple are required. As a solution, we discuss the design of the Mobile Application Security Toolkit (MAST) which ties together jailbreak detection, anti-debugging, and anti-reversing in LLVM to address these risks.
Resources
- Slides, Etsy Video, QCon Video
- MAST, the Mobile Application Security Toolkit
- ReMASTering Applications by Obfuscating during Compilation
Presented at
Authors
- Sophia D'Antoine
- Dan Guido