Enterprise Apps: Bypassing the iOS Gatekeeper

Presented at Black Hat Asia 2016, Unknown date/time (Unknown duration).

A critical component of Apple's security model is how the App Store serves as gatekeeper for all code on iOS devices. This makes Apple's Developer Enterprise Program its achilles heel, allowing enterprises to bypass the store's code validation process and deploy their own apps directly to devices.

In recent years we have witnessed a rise in usage of iOS Enterprise apps. This fact is especially alarming when considering how these certificates can be easily used for illegitimate purposes by anyone from known state-actor spies like Hacking Team (RCS) to Chinese app piracy stores.

Apple has tried to mitigate these issues in iOS 9 by introducing new features like requiring user intervention in order to use enterprise signed apps, but are these measures enough? We'll demonstrate, using zero-day novel attack, how to leverage new security features in iOS 9 to install a malicious enterprise app on a user's phone.

In this session, we will give an overview on how enterprise-signed apps have been used to attack iOS devices and examples of usages discovered in the wild. We'll share real world statistics about the prevalence of Enterprise apps installed on iOS devices and show which enterprise apps are the most popular. In addition we'll reveal our zero day vulnerability.


Presenters:

  • Avi Bashan - Check Point
    Avi Bashan is a Technology Leader at Check Point, former Senior Security Researcher and CISO at Lacoon Mobile Security. With more than 10 years of experience in the mobile, networking, and security industries, Avi is one of the main figures in the research and engineering aspects of the company. Prior to Lacoon, Avi was a leading security consultant at Comsec, working with Fortune 500 firms on their vulnerability management processes. He spent four and a half years in the Israeli Defense Force. Avi holds a B.Med.Sc from the Hebrew University of Israel in Medical Studies.
  • Ohad Bobrov - Check Point
    Ohad Bobrov is the Mobile Threat Prevention Area Manager at Check Point and former CTO and co-founder of Lacoon Mobile Security. Ohad has nearly 15 years of experience in mobile and networks. Prior to Lacoon, he founded the mobile mass network solution department at NICE systems and led it for five years. Ohad holds a BSc in Computer Sciences and an MBA from Tel-Aviv University. He was granted a number of awards both for his academic work and professional achievements.

Links:

Similar Presentations: