Slashdot Mirror

← Back to Stories (view on slashdot.org)

How Encrypted Binaries Work In Mac OS X

Posted by ryuzaki0 on from the under-the-hood dept.

An anonymous reader writes "By now we know that OS X uses encrypted binaries for some critical apps like Dock, Finder and LoginWindow. Amit Singh explains the implementation of this protection scheme which makes use of the AES crypto algorithm and a special memory pager in Mach. The so called Do Not Steal Mac OS X (DSMOS) kernel extension helps along the way by decrypting things for the special pager when apps get executed. A funny thing is that if you print the pointer at address 0xFFFF1600 in your own app you get as output Apple's karma poem for crackers! According to the article there are 8 protected binaries in OSX including Rosetta and Spotlight meta data demon. Interestingly Apple's window server is NOT one of those."

3 of 365 comments (clear)

  1. Signed binaries = good, encrypted binaries = bad by elronxenu · · Score: 0, Flamebait
    Encrypted binaries subvert GNU's Freedom #1 "freedom to study the source code and modify it to do as you wish". Even though the source is not available, binaries can be reverse-engineered (and this is explicitly permitted by copyright law, for interoperability purposes) ... but not if it's been encrypted.

  2. Re:A nice benefit of this... by Andrew+Kismet · · Score: 0, Flamebait

    The smell of silicon designed for the software it runs?

  3. Re:That poem is scary.. by QuantumG · · Score: 0, Flamebait

    Who says I live in the US?

    American geniuses strike again!

    --
    How we know is more important than what we know.