iOS is designed with security as a priority, combining software, hardware, and services to maximize security while maintaining ease of use. The system security architecture includes a secure boot process, code signing to only allow trusted software, and the Secure Enclave chip for sensitive data like biometric authentication. Device controls allow configuration of security policies and location services. Encryption protects data both at rest and in transit using hardware and software features. App security validates apps are from approved developers and isolates them. Network protocols like TLS, VPN, and WiFi security standards ensure private communication. Apple Pay and services like iMessage and FaceTime also have security measures to protect users and their data.

1. iOS SECURITY
Bakhti Rahman SU-15-01-002-017

2. iOS security
We have different types of mobile phone operating system but
iOS is more secure than any other mobile phone operating system, run by
iPHONE, iPAD, iPOD
Every iOS device combines software, hardware, and services designed to
work together for maximum security and a transparent user experience.
iOS devices provide advanced security features, and yet they’re
also easy to use
2

3. iOS security types / Components
•System Security
•Device Controls
•Encryption and Data Protection
•Application Security
•Network Security
•Apple Pay
•Privacy Controls
3

4. System Security
System security is designed so that both software and
hardware are
secure across all core components of every iOS device.
This includes the boot-up process, software updates, and
Secure Enclave.
This architecture is central to security in iOS,
4

5. System Security (cont.)
Boot-up –process
The IOS device performs a power-on self-test (POST) to test its hardware
components and choose an IOS image(.IMG /ROM) to load
Secure boot chain (chain of Trust)
Only signed and trusted code is loaded on iOS Devices
System Software Authorization
New updates /
5

6. System Security (cont.)
Secure Enclave
The Secure Enclave is part of the chips used for data protection,
Touch ID
Face ID.
6

7. Device Controls
iOS supports flexible security policies and configurations that are
easy to enforce and manage. This enables organizations to
protect corporate information and ensure that employees meet
enterprise requirements, even if they are using devices they’ve
provided themselves
Activation Lock
Lost Mode
7

8. Encryption and Data Protection
The secure boot chain, code signing, and runtime process security all
help to ensure that only trusted code and apps can run on a device.
iOS has additional encryption and data protection features to
safeguard user data,
8

9. Encryption and Data Protection (cont.)
Hardware security features
There is a built in engine between the flash storage and main
system memory, making file encryption highly efficient.
File Data Protection
In addition to the hardware encryption features built into iOS
devices,
Apple uses a technology called Data Protection to further protect
data stored in flash memory on the device.
9

10. App Security
Apps are among the most critical elements of a modern mobile
security architecture. While apps provide amazing productivity
benefits for users, they also have the potential to negatively
impact system security, stability, and user data if they’re not
handled properly.
Because of this, iOS provides layers of protection to ensure that
apps are signed and verified
10

11. App Security (cont.)
App code signing
It controls which user processes
and apps can be run.
To ensure that all apps come from a known and
approved source
Runtime process security
After an app is verified to be from an approved source, iOS enforces
security measures designed to prevent it from compromising other apps
or the rest of the system.
Data Protection in apps
11

12. Network Security
There are a lot of ongoing network activities while people are using
their iOS devices. To ensure that the data a privacy are protected
during the transmission over network. IOS incorporates lots of
advanced technologies and the latest standard network protocols.
Mobile users must be able to access corporate networks from
anywhere in the world, so it’s important to ensure that they are
authorized and their data is protected during transmission
12

13. Network Security(cont.)
Bluetooth
Bluetooth support in iOS has been designed to provide useful
functionality without unnecessary increased access to private
data.(only work in Apple’s devices)
AirDrop
Transfer of file from Apple’s product to Apple Products like
iPHONE ,iPAD IMAC,
 WiFi
iOS supports industry-standard Wi-Fi protocols, including WPA2
Enterprise, to access to wireless networks. WPA2 Enterprise uses 128-bit
AES encryption.
13

14. Network Security(cont.)
TLS
Transport layer security is a protocol that provides
communication security between client/server applications that
communicate with each other over the Internet.
VPN
Virtual Private Network, allows you to create a secure connection
to another network over the Internet.
14

15. iMessage Security
iMessage is a very popular message service provided by Apple.
Users can communicate with each other through iMessage as
long as one of them is using an iOS or OS X devices.
 FaceTime Security
Users can make video calls on iOS or OS X devices with others
using FaceTime. It establishes an end-to-end connection between
correspondents using Session Initiation Protocol
15

16. Apple Pay
With Apple Pay, users can use supported iOS devices, Apple Watch,
and Mac to pay in an easy, secure, and private way in stores, apps,
and on the web in Safari.
Users can also add Apple Pay-enabled transit cards to Wallet. It’s
simple for users
16

17. Privacy Controls
Apple takes customer privacy seriously and has numerous built-in
controls and options that allow iOS users to decide how and
when apps utilize their information, as well as what information is
being utilized
17

18. Privacy Controls (cont.)
 Location Services
 Access to personal data
• Contacts
• Microphone
• Calendars
• Camera
• Reminders
18

19. THANK YOU!
ANY QUSTION?
19