iPhone Operating System & its Exploitation

By:

Aashish Shrestha

Worldtech

September 22, 2013

Contents

Introduction

iOS versions

What’s next for iOS

iOS Jailbreak

iPhone Unlock

IntroductionThe iPhone is a line of smart phones designed

and marketed by Apple Inc. It runs Apple's iOS mobile operating system.

Steve Jobs(1955-2011) introduced the iPhone to the world on January 9th, 2007.

Unlike Android Operating system, iOS is a closed source OS.

In the five-plus years since then, the iPhone, iPad, and iPod Touch have literally redefined the entire world of mobile computing.

Introduction(cont.)There are 8 iphones released upto now(i.e iphone

2g, iphone 3g, iphone 3gs, iphone 4, iphone 4S, iphone 5, iphone 5s, iPhone 5c)

With every new iOS, a new iPhone(s) is released.With the success of iPhone series, apple also

released touch screen iPods and later much incredible iPad.

With every new iOS versions, its security level is also getting more advanced and tough.

iOS versions (2007-2013)1. 2007 - iPhone OS 1.0

2. 2008 - iPhone OS 2.0

3. 2009 - iPhone OS 3.0

4. 2009 - iPhone OS 3.2

5. 2010 - iOS 4

6. 2010 - iOS 4 (Updates)

7. 2011 - iOS 5

8. 2012 - iOS 6

9. 2013 - iOS 7

1) iPhone OS 1.0 The iPhone is born

• The core iOS user interface• Mobile Safari web browser• A "widescreen" iPod• Google Maps• iTunes Sync• The software keyboard• Focused on user interface

2) iPhone OS 2.0 Apps

• The app store• Mobileme• The iOS SDK• The app store used apple's already established base of itunes music customers

3) iPhone OS 3 Features

• Cut, copy, and paste• Spotlight search• Push notifications for 3rd party apps• MMS• USB & Bluetooth tethering• Landscape keyboard• Find my iPhone• iOS 3 was all about filling in most of the major complaints

4) iPhone OS 3.2The iPad arrives

• New UI paradigms for a larger screen• New app designs• Bluetooth keyboard support• iBooks• iOS meets the big screen

5) iOS 4 Multitasking

• Facetime• Folders• Retina display• Productivity features• iAd support

6) iOS 4 Updates

FacetimeFoldersGame centerUnder the hood improvementsTwitter integration

iOS 4.1 Devices Features

Released 09/2010

iPhone 4,iPhone 3GS,iPhone 3G*,iPod Touch 4th Gen,iPod Touch 3rd Gen,iPod Touch 2nd Gen

Game CenterHDR photos

iOS 4.2.1 Devices Features

Released11/ 2010

iPhone 4,iPhone 3GS,iPhone 3G*,iPad,iPod Touch 4th Gen,iPod Touch 3rd Gen,iPod Touch 2nd Gen*

iPad multitaskingiPad foldersAirPlayAirPrint

iOS 4.2.5 Devices Features

Released 02/ 2011 Verizon/CDMA iPhone 4 Verizon supportPersonal hotspot (CDMA only)

iOS 4.3 Devices features

Released03 / 2011

iPhone 4 (GSM),iPhone 3GS,iPad,iPad 2iPod Touch 4th Gen,iPod Touch 3rd Gen

Personal Hotspot (GSM)AirPlay for 3rd-party apps

7) iOS 5 Siri and much more

• Siri• Notification center• iMessage• No PC required• iTunes wifi sync• Over-the-air (OTA) updates• iCloud

8) iOS 6 Welcome, Apple Maps

• Maps• Siri enhancements• Facebook integration• Passbook• Shared photo streams• Facetime over cellular• Google free iPhone

9) iOS 7Hello, Jony Ive

• Whole new User Interface• Control center• Airdrop• All new core apps and free iWork• An animated weather app but still no widgets• iTunes Radio• Camera and photos enhancements• Touch ID• Automatic updates for all apps

What’s next for iOS?

• Apple’s iOS 7 is great but still it needs improvements• Most of the features of iOS 7 was inevitable due to the sustain pressure of android• iOS 7 looks more like a hurried product rather than a complete intuitive change of User Interface• With the visual redesign mostly out of the way , apple is now free to rewrite the book on how we interface with our smartphones

iOS Jailbreak

What is iOS jailbreak?Why jailbreak?What's its type?How does it works?What is exploit and its type?What are its pros and cons?

What is iOS Jailbreak?

Removing limitations of Apple devicesSoftware and hardware exploitationPermits root access to the whole iOS Operating

SystemModify the OS and allows greater control over the

deviceSome of the famous jailbreak developers are

musclenerd, planetbeing, pod2g, geohot and others…

Why Jailbreak?Provides open platform for R&D of iOSCustomize the iOS with tweaks and other featuresCustomize the look and feel of iOSTinkering with the OSRun apps that does not exist in the AppStore

Types of Jailbreak Tethered Jailbreak

Disappears when a device is restartedRequires some form of re-jail-break after every boot

Untethered JailbreakWill not disappear by rebooting the deviceDoes not require a re-jailbreak Better form of jailbreak

How it works???When a maliciously crafted code is

run on the iOS, it exploits the vulnerability/bug of the iOS

The ultimate aim these exploits is to reach to the kernel of iOS

Within the iOS kernel, we can control all the functions of the system

There may be one or more than one vulnerabilities in a single jailbreak

After reaching the kernel all the control is our’s

Malicious code

iOS

Kernel

Exploit and its types An exploit is a chunk of commands that takes advantage of a bug.

Types of exploits• Bootrom exploit – Cannot be patched by apple. Hardware hack. Strongest exploit of all. Eg- limera1n, SHAtter

• iBoot exploit- Can be patched by apple with a software update. Stronger than userland exploit. There is no any public iBoot exploit

• Userland exploit – Can be easily patched by apple with a simple software update. Eg- jailbreakme, evasi0n, asbinthe

Bootrom exploit > iBoot exploit > Userland exploit

Pros and Cons of JailbreakingPros:

Cydia, a world of new appsFree unlimited tetheringMore customization optionsAccess to iOS file systemUnlock your iphone to use it in any carrierAnd many more

Cons:Dangers of unscreened appsVoids apple warrantyInstabilityNo OTA updatesDegradation of the performance of deviceBuggy experience

iPhone Unlocks

What is iPhone unlocking?

Types of unlock

How to unlock an iPhone?

Methods for unlocking

What is iPhone unlocking?

Removal of SIM restrictions on the modem

Allowing the use of the iPhone on any carrier

Its is a complex procedure It is risky process which

may cause permanently damage to your iPhone

Types of iPhone unlockOfficial unlock

Also known as factory unlockDoes not requires jailbreakPermanent, even surviving a restoreLegally bought, full subsidized, and contract

free iPhones are officially unlocked iPhones

Software unlockFree unlockInstalled from cydiaWorks only on selected basebands/modemsEg: yellowsn0w, Ultrasn0w

Types of iPhone unlock(cont..)Hardware unlock

The first iPhone unlocking methodFor iPhone 2G / original iPhoneIsn’t possible to hardware unlock current devicesClosest thing would be SIM hacks

Gevey/Interposer unlockA new generation passthrough cardone of the only ways to unlock the iPhone for

unauthorized carriersGevey card is placed between SIM card and SIM

reader of iPhone

How to unlock an iPhone? Software unlock

Steps:1. Open cydia and install ultrasn0w

2. Restart your iPhone your with the SIM you want to use

Gevey unlockSteps:

1. Place gevey card in between Sim card holder and SIM card.

2. Insert gevey card into iPhone and you will see the steps poped up in the screen

3. Follow the steps accordingly and you’ll see signal bars on your iPhone

ConclusionApple iPhone is one of the best phones out there in the market today, with a

massive variety of apps and third-party developer support.

iPhone defines the advancement of technology alongside making its user interface easy and use.

It is the best example of today’s quality cost.

Thank you!!!

Q&A