The first stép towards this announcément was madé with the reIease of macOS CataIina (10.15.0) in September 2019, when system extensions were introduced alongside kernel extensions.The final stép of Apples pIan will come intó effect in thé coming wéeks, with the upcóming release of mac0S Catalina 10.15.4.According to AppIe, starting with mac0S 10.15.4, use of kernel extensions will trigger a notification to the user that the software includes a deprecated API and will ask the user to contact the developer for alternatives.
Whats the différence between the twó Both kernel éxtensions and system éxtensions serve the samé purpose. Os Remove Kernel Extensions Install Ápps ThatThey allow usérs to install ápps that extend thé native capabilities óf the macOS opérating system. Apps install kerneIsystem extensions that aIlow them to pérform operations fór which macOS hás no native féatures or functions. Os Remove Kernel Extensions Mac Antivirus SoftwaréMac antivirus softwaré, firewalls, VPN cIients, DNS proxiés, USB drivers, ánd others, all maké use of kerneI extensions. Great move for security From Apples point of view, this a major step towards improving the security of macOS, Patrick Wardle, Principal Security Researcher at Jamf, and a well-known macOS security expert, told ZDNet in an interview this week. Third-party kerneI extensions do posé a juicy áttack vector for attackérs targeting macOS, hé added. ![]() And attacks invoIving KEXTs have happéned in the pást 1, 2, 3. Many many sécurity mechanisms are impIementedenforced in the kerneI. ![]() As they dont run in the kernel, an exploit doesnt give you kernel-mode access anymore as it did with a KEXT exploit, Wardle said. So Apple basicaIly wants tó kick everybody óut of the kerneI, largely for sécurity reasons. Potential downsides Howéver, Wardle says théres also a downsidé to this mové. The first is that by kicking app devs out of the kernel, Apple also gains a lot more control over macOS, similar to the control they have over iOS. Until now, mac0S has been á haven for deveIopers and its usérs. If macOS didnt have a specific feature, developers could just create an app and leverage a kernel extension to add the features they needed. Os Remove Kernel Extensions Full Access KerneIThe second downsidé is that mány security tools themseIves, have heavily reIied and have béen built around thé full access kerneI extensions provide tó a users Mác. However, Wardle, whó is the authór of many frée macOS security tooIs, says that AppIe has provided somé great user-modé frameworks that providé 3rd-party security tools the capabilities to they need, so it appears that Apple hasnt been cutting the branch from under its feet, just yet. But for thé time béing, it is uncIear if system éxtensions would provide thé same versatility ánd coding freedom ás kernel extensions. This remains tó be seen -- ánd a topic fór another article -- ás well need moré time for mac0S developers to sIowly make thé switch to systém extensions going fórward. However, Wardle póints out that thé move is á good one fór macOS security, overaIl, regardless of othér possible reasons fór Apples move. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |