How does the new iOS inactivity reboot work? What does it protect from? I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented. naehrdine.blogspot.com/2024/11/reve... - ThreadSky

naehrdine.bsky.social • 193 days ago

How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

https://naehrdine.blogspot.com/2024/11/reverse-engineering-ios-18-inactivity.html

Comments

whatthefuzzvr.bsky.social•192 days ago

Thanks for sharing a great writeup! This was something I was super curious about.

naehrdine.bsky.social•191 days ago

Thank you for all the questions about inactivity reboot!

I added answers to the most common questions at the end of my blog post.

cyberdemon.org•192 days ago

Hi, just wanted to say that this write up was interesting and well written!

ntrm.bsky.social•191 days ago

A little bit disappointed that there will be no Flipper BLE iphone reboot payload.

Awesome work!

verticalboard.bsky.social•192 days ago

Does a userspace reboot also put the device in BFU mode, or is it just a full reboot?

ferretandbird.bsky.social•193 days ago

Excellent write up!

letak.gamecentral.coffee•176 days ago

Just a thought how to get pass the 72 hours.
Could in theory, the bad actor or police, put the iPhone into a container of helium to stop the internal MEMS clock? (There is still the problem of getting USB access and keeping it charged)

bigendiansmalls.com•191 days ago

very nice work and excellent write up!!

ninjalikescheez.bsky.social•193 days ago

This is awesome :)

rosenz.bsky.social•192 days ago

Fantastic research and report!

maxinne.me•190 days ago

I wish this cloud be configured, like I see very good reasons to have this happen every 24h, maybe even every 12h…

coyoteden.bsky.social•192 days ago

It would not surprise me if there are mitigations against iOS kernel-level compromise in the SEP code beyond the inactivity reboot.

As in SEP requests a reboot and locks down, then watches for further activity. If that continues well after a kernel panic should have happened, the SEP wipes itself.

coyoteden.bsky.social•192 days ago

I’d like to think it has a way to force a watchdog reset of the CPU. Something that can’t be intercepted because it is internal to the SoC.

Comments

Posting Rules

Reply