iMac Pro Features Apple's Custom T2 Chip With Secure Boot Capabilities

Discussion in 'MacRumors.com News Discussion' started by MacRumors, Dec 14, 2017.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    Apple today confirmed the iMac Pro is equipped with its custom T2 chip for enhanced security and integration. The chip is second-generation silicon, building upon the T1 chip in the latest MacBook Pro with the Touch Bar that authenticates and secures Touch ID and Apple Pay respectively.

    [​IMG]

    The T2 chip integrates several previously separate components, including the system management controller, image signal processor, audio controller, and SSD controller, for expanded capabilities on the iMac Pro.

    For instance, Apple says the T2 chip's image signal processor works with the FaceTime HD camera to enable enhanced tone mapping, improved exposure control, and face detection-based auto exposure and auto white balance.

    The T2 chip also has a Secure Enclave coprocessor that makes the iMac Pro even more secure with new encrypted storage and secure boot capabilities.
    Cabel Sasser, co-founder of software company Panic, recently shared a few screenshots of the Startup Security Utility powered by the T2 chip.
    The settings reveal that users can enable a firmware password to prevent the iMac Pro from starting up from a different hard disk, CD, or DVD without the password. There are also three secure boot options and options to allow or disallow booting from external media devices such as USB and Thunderbolt drives.

    "Full security" ensures that only the latest and most secure software can be run. Apple says this mode requires a network connection at the time of software installation. "Medium security" requires verifiable software to boot, but not the latest software, and "no security" lets the operating system boot freely.

    iMac Pro became available to order today with 8- to 18-core configurations ranging in price from $4,999 to $13,199 in the United States. 14-core and 18-core models don't ship for an estimated 6-8 weeks.

    Article Link: iMac Pro Features Apple's Custom T2 Chip With Secure Boot Capabilities
     
  2. BMcCoy macrumors 65816

    BMcCoy

    Joined:
    Jun 24, 2010
    #2
    I wonder if they considered sticking in a FaceID camera?

    Presumably they'll show up on all Apple devices over the next couple of years..?
     
  3. nikosl7 macrumors newbie

    Joined:
    May 31, 2016
    #4
    username: root
    pass:<leave empty>

    There you go. You are now in.
     
  4. Glmnet1 macrumors 6502

    Joined:
    Oct 21, 2017
    #5
    If they put one of these in every 2018 models, by the time the current models are not supported anymore (~2024) I'm pretty sure they could prevent installation of the latest macOS on non-official hardware.
     
  5. shadowbird423 macrumors regular

    shadowbird423

    Joined:
    Sep 8, 2009
    Location:
    Chapel Hill
    #6
    Well.

    We will see this become the standard in the next 6 years, with the fact that almost no one turned it off as justification. They know they can't get away with making it mandatory quite yet. From a security standpoint, this is great.

    From a freedom of choice standpoint... not so much.
     
  6. Gary1580 macrumors newbie

    Joined:
    Dec 11, 2017
    #7
    Why in the world would anyone buy one of these?
     
  7. diegov12 macrumors member

    Joined:
    Dec 29, 2015
    #8
    --- Post Merged, Dec 14, 2017 ---
    What?
    Why would you need "choice" here.
     
  8. scrapesleon macrumors 6502

    scrapesleon

    Joined:
    Mar 30, 2017
    Location:
    Jamaica
  9. diegov12 macrumors member

    Joined:
    Dec 29, 2015
    #10
    Why not, a xeon chip lasts a long time.
     
  10. stabsteer macrumors newbie

    Joined:
    Apr 21, 2008
    #11
    Because its awesome and destroys my current iMac for editing.
     
  11. diegov12 macrumors member

    Joined:
    Dec 29, 2015
    #12
    But you can't use root in EFI boot…
     
  12. spoonie1972 macrumors 6502a

    Joined:
    Aug 17, 2012
    Location:
    Toronto
    #13
    Sounds like a great way to make-this-computer-officially-dead after 7 years. That's a ****-ton of money to lock into a computer that Apple deems "end of life" by way of OS updates.
     
  13. diegov12 macrumors member

    Joined:
    Dec 29, 2015
    #14
    Yeah, except apple provides security updates for older versions of macOS…
     
  14. Zarniwoop macrumors 6502a

    Joined:
    Aug 12, 2009
    Location:
    West coast, Finland
  15. guzhogi, Dec 14, 2017
    Last edited: Dec 15, 2017

    guzhogi macrumors 68030

    guzhogi

    Joined:
    Aug 31, 2003
    Location:
    Wherever my feet take me…
    #16
    Yes, the MBP has a T1. The iMac Pro has a T2. And the T101 will go back in time to kill Sarah Connor. Sorry, couldn't resist.
     
  16. leman macrumors 604

    Joined:
    Oct 14, 2008
    #17
    Cool stuff! Its a great example of the advantage Apple has because of their hardware and software integration.

    Of course, a secure OS running on a secure chip won't help you much if you leave the root account wide open o_O
     
  17. deanthedev Suspended

    deanthedev

    Joined:
    Sep 29, 2017
    Location:
    Vancouver
    #18
    Reviewers have benchmarked the SSDs in the new iMac Pro and they are ridiculously fast.

    If the T2 chip can perform real-time encryption while maintaining this performance then it’s not some “companion” chip - it would need some serious chops to do this.
     
  18. xnu macrumors 6502

    xnu

    Joined:
    Jul 15, 2004
    #19
    Dumb questions: Can you boot Windows on this beast and does it have liquid cooling? I have use Windows sometimes :(
     
  19. Glmnet1 macrumors 6502

    Joined:
    Oct 21, 2017
    #20
    You should be able to run Windows without any issue.

    No liquid cooling, it uses a new cooling design with two fans which is more efficient than the regular iMac.
     
  20. Bryan Bowler macrumors 68040

    Joined:
    Sep 27, 2008
    #21
    You obviously don’t need one and it’s a secret as to why a lot of folks need one, so I can’t tell you.
     
  21. guzhogi macrumors 68030

    guzhogi

    Joined:
    Aug 31, 2003
    Location:
    Wherever my feet take me…
    #22
    I wonder how this would do on something like Folding@Home. Someone would probably need to install Windows on it to take full advantage. However, I'm not going to pay $5000 just to do folding.
     
  22. djcerla macrumors 65816

    djcerla

    Joined:
    Apr 23, 2015
    Location:
    Italy
  23. btrach144 macrumors 65816

    btrach144

    Joined:
    Aug 28, 2015
    #24
    So this is similar to the TPM 2.0 chip that some enterprise PCs use?
     
  24. guzhogi macrumors 68030

    guzhogi

    Joined:
    Aug 31, 2003
    Location:
    Wherever my feet take me…
    #25
    I just remembered: Apple also has a patent for Liquid Metal. OMG! Apple's SkyNet!
     

Share This Page