Earlier today we reported that the kernel of the first developer preview of iOS 10 is unencrypted – a first for any iOS version. At the time, we weren’t entirely sure if Apple had deliberately done this or if was an error and would get reverted in the next beta of the operating system. Apple has confirmed to TechCrunch, however, that making the kernel unencrypted was an intentional move.
In a statement, an Apple spokesperson explained that the kernel cache does not contain any user information and by unencrypting it, performance can be better optimized and security is not compromised.
As we explained earlier today, the kernel is responsible for things like security and how apps are capable of accessing the device’s hardware. By opening it up, developers and researchers can look more closely at the kernel’s code and discover security flaws. While there’s some room for malicious actions, by having more people looking for security flaws, Apple can be faster at patching said flaws.
iOS security expert Jonathan Zdziarski explained that Apple’s recent battle with the FBI could be partial reasoning for the decision to open the kernel. He explains that by allowing more people to look more closely at the kernel’s code, the market for groups like the one the FBI interacted with to unlock the San Bernardino device would weaken.
Nevertheless, it’s a surprisingly transparent move by Apple to open up the kernel and one that will hopefully lead to performance and security improvements across the board.
