iPhone Target Anaysis And Exploit With UDID

Discussion in 'Apple, Inc and Tech Industry' started by AX338, Jan 17, 2015.

  1. Intell macrumors P6

    Intell

    Joined:
    Jan 24, 2010
    Location:
    Inside
    #2
    That rather dated paper is not longer very relevant as accessing the actual UUID is no longer possible with starting with iOS 7. Instead, apps are giving a generated UUID that is only valid until the device is reset or restored.
     
  2. roadbloc macrumors G3

    roadbloc

    Joined:
    Aug 24, 2009
    Location:
    UK
    #3
    Old news. However knowing GCHQ, they'll have another way of bypassing iOS security.
     
  3. gnasher729 macrumors P6

    gnasher729

    Joined:
    Nov 25, 2005
    #4
    You are posting an article from 2010. You _know_ you are posting an article from 2010. I must assume that this is just an attempt at scaremongering.

    Applications haven't been able to use UDIDs for ages. Because improper use leads to privacy violations, and for legitimate uses, UDIDs are usually a very bad idea (imagine a game keeping track of high scores per device. You upgrade your phone, you lose your high score. Whoever buys your phone inherits your high score. Obviously a stupid idea). That's why Apple has removed the ability to access a UDID.

    If you look at the PDF file which is full of scary jargon (these guys love a bit of scary jargon when they don't have much else), it is clear that they have nothing that touches an iPhone beyond iOS 4.0.2. We are at iOS 8.1 by now.
     
  4. Tech198 macrumors G4

    Joined:
    Mar 21, 2011
    Location:
    Australia, Perth
    #5
    So, Apple introduced the concept of UDID's, then when they found out developers could take advantage of them, Apple discontinued this...

    I guess if u don't try, u never know, but seems Apple just opened the door on this one.
     

Share This Page