iPhone DRM Broken and Needs Fixed…
Jul 7, 2009 Author: Wendy | Filed under: CodingBug# 7037460 has been submitted to Apple. This bug explains that Apple’s DRM is broken allowing for iPhone apps to be pirated freely. So far the only response the developer community has seen from Apple has been an uneasy silence.
The bug was submitted earlier today as a high priority security bug. Apple has since responded and re-classified it as “Other Bug” (A bug that has a workaround), or in other words, bugs we’re going to ignore. A huge hole in their security model of the iPhone has allowed the firmware to be jailbroken and apps easily patched to be copyable and runnable.
I’m calling on everyone in the iPhone developer community click on the “Report a bug” link within the Apple developer website and submit a duplicate of this issue.
It’s time for this issue to be talked about.
About - Wendy Jones
I am co-founder of KittyCode, LLC, a software development studio in Orlando, Florida and a Course Director at FullSail University teaching iPhone mobile programming.Geek girl, gamer, and Twitter lover. This blog is my outlet, so expect to see posts about my progress, products, and life.
Flickr PhotoStream
Twitter Updates...
- If you love Hurricane for iPhone, give us your honest review on the app store http://t.co/gB0mcwQL. If you don't have Hurricane grab it! 5 hrs ago
- First tropical storm of the Atlantic Hurricane Season has formed off the North Carolina coast. http://t.co/M3buhVnc 8 hrs ago
- Going to see if I can find a new desk today. I've had my current one since highschool. My dad built it and it's lasted forever. 12 hrs ago
- Anyone have any experience with Havok's Vision Engine? 13 hrs ago
- Picking up my daughter from Magic Kingdom, traffic sucks. 1 day ago
- More updates...
One Response for "iPhone DRM Broken and Needs Fixed…"
While I know that piracy cuts into business (your business), I also think fixing bugs like this one could be tail-chasing. As long as any vulnerable portion of the OS is going to be programmed in a language that supports pointer arithmatic, unchecked buffers, or messy stack overflows, there will be exploits that allow arbitrary code execution.
Pirates will always find a way. With no research or references to cite, I posit that people who are going to hack their $200-$400 device are unlikely to pay for software to begin with.
As for security, I assume they’re listing it as a non-security bug because it is less likely to be exploted to cause a nation of zombie-ddosing phones or keylog personal info than it is to be used to break DRM. Dunno, can’t look at the bug w/o signing up.
Leave a reply