tmac

Mac community


    Apple's Ability to Deactivate Malicious App Store Apps

    Share
    avatar
    twoodcc
    Super Saiyan 3
    Super Saiyan 3

    Posts : 1577
    Join date : 2008-07-29

    Apple's Ability to Deactivate Malicious App Store Apps

    Post by twoodcc on Wed Aug 06, 2008 6:41 pm

    http://www.macrumors.com/2008/08/06/apples-ability-to-deactivate-malicious-app-store-apps/

    When Apple launched the App Store, they suggested that the use of DRM'd and signed applications could allow them to protect the iPhone from malicious applications and suggested that they could deactivate such applications remotely. Jonathan Zdziarski, author of iPhone Forensics reveals (via iPhone Atlas) the remote url that Apple is using to keep a list of the offending applications:

    https://iphone-services.apple.com/clbl/unauthorizedApps

    This url appears to keep a list of black listed apps which appears to contain a test application name. Zdziarski explains:

    This suggests that the iPhone calls home once in a while to find out what applications it should turn off. At the moment, no apps have been blacklisted, but by all appearances, this has been added to disable applications that the user has already downloaded and paid for, if Apple so chooses to shut them down.

    I discovered this doing a forensic examination of an iPhone 3G. It appears to be tucked away in a configuration file deep inside CoreLocation.

    Note that this is very different from just removing an application from the App Store. In case of this black listing, Apple could presumably deauthorize applications already installed on iPhones.

    While Apple has been criticized lately for the removal of a number of App Store applications without explanation, those applications continue to work for those individuals who have already purchased the application. So far that list of prominent apps simply removed from the App Store include NetShare, BoxOffice and now I Am Rich (via Alley Insider).

    We suspect Apple will reserve the use of this black list remote-deactivation for truly malicious apps, but even the unilateral removal of seemingly innocuous apps from the App Store has raised some criticism of Apple's editorial process.
    avatar
    krypto
    Super Saiyan 4
    Super Saiyan 4

    Posts : 2836
    Join date : 2008-01-06
    Age : 23
    Location : Hoschton, GA

    Re: Apple's Ability to Deactivate Malicious App Store Apps

    Post by krypto on Wed Aug 06, 2008 11:57 pm

    this could be good or it could be bad
    avatar
    twoodcc
    Super Saiyan 3
    Super Saiyan 3

    Posts : 1577
    Join date : 2008-07-29

    Re: Apple's Ability to Deactivate Malicious App Store Apps

    Post by twoodcc on Thu Aug 07, 2008 4:09 pm

    i think you posted basically this same thing under iPhone forum

    Sponsored content

    Re: Apple's Ability to Deactivate Malicious App Store Apps

    Post by Sponsored content


      Current date/time is Mon Dec 11, 2017 7:53 pm