|
|
|
Apple Places Encrypted Binaries in Mac OS X
By: Daniel Drew Turner
2006-11-03
Article Rating: / 0
There are 0 user comments on this Apple story.
The company has encrypted critical parts of its operating system to protect it from software pirates, according to a researcher.A computer researcher has made public information that Apple Computer has encrypted at the binary level critical parts of its Mac OS X operating system.
These "Apple-protected binaries" can serve to protect the OS from being pirated and also to make it "nontrivial" to run Mac OS X on non-Apple hardware, said Amit Singh, a member of Googles technical staff in Mountain View, Calif., and the author of "Mac OS X Internals: A Systems Approach." Singh has also given lectures on Mac OS X to the National Security Agency and at Apples main campus in Cupertino, Calif.
According to Singh, the parts of Mac OS X that are protected include the Finder and Dock applications, as well as parts of Rosetta (Mac OS Xs application for running Power PC applications on an Intel-based Mac) and services that manage the user interface.
Singh noted that his list was not exhaustive.
Much of Mac OS X is open source, including Darwin, an entirely functional, open-source operating system based on FreeBSD 5.0 and the Mach 3.0 microkernel, and the basis for Mac OS X.
The Apple-protected binaries signal their protected status by setting a special bit in the header, Singh said. When any binary is called upon by the system, the kernel checks to see if it is Apple-protected; if it is, the kernel unencrypts the code through an "unprotect" operation.
This operation, Singh noted, includes a "dsmos_page_transform" command, in which "dsmos" stands for "Dont Steal Mac OS X". He also found a "Dont Steal Mac OS X.kext" kernel extension in the operating system.
"A lot of times, encrypted binaries are used as piracy protection," said Bruce Schneier, founder and chief technology officer of Mountain View, Calif.-based Counterpace Internet Security. "Its a common technique," he said.
"But more often, and probably what its used for here," he added, "is as anti-reverse engineering."
 Click here to read about an exploit for an unpatched vulnerability in the Apple Airport driver that ships with some PowerBook and iMac computers.
Schneier noted that encrypted binaries can affect application performance due to the extra decoding step before they can be executed.
However, he said, "As computers grow faster, theres more processing power to do stuff like this.
"The devils in the details," he said.
Speaking to concerns about privacy, Schneier said, "Theres nothing sinister here."
"This is a method for Apple to protect its code," he said, adding that for people who still want to try to get Mac OS X running on commodity PC hardware, "you can get around it, but not easily."
Apple representatives were not available to comment.
Check out eWEEK.coms for the latest news, reviews and analysis on Apple in the enterprise.
|
|
�������x}kwƲZ��rvw,m�fa�ϰc�0L%$�Ėm&'|9�oUw�H�38��Q]]U]]]]�;n�r� �=Cs;ӸD�Z{{^�dߛ?mdI[�W7fN�Ͱ,oj�)>Wu=Zn4
7���mYz-�t=NN��%SÜLzm&sf^4gD�&8ߢp)�,�g�}>D��e4s�"&4h�ߙ��$I"xe
�qP|ؾ�=(2r|ߙęNL~!2M�>"%)Q6�E�xL#lX\G{�E�Y뻽���
(º�f�zRGdd9-rT(���{"��Xd�UJD�|#�˰Q)�qar*
*ZX�tGuM:$j�cX؞�:雾C�H�h}�2�"rH�n6�
Ոr96b=eO,ӃqtC'l6VYnӰھ�x�u�~D�?z�x�K��KU6�G]W�����㪾5�H�U;�X4n�ዚuPr$Q*uToox½iνgĥ̙�4gVkvn~.UdEE*G|��n8T�p;Jm9>xUUJ�{r�s~Z�nX�9vtY/o0עFD_"�QYT,ND��&7
�,7P?� u/jQ2�[F-_ K")
(!�ZZԺz|=!9A�o'x:8%�\��C�j{&J��eL_,8D�\��Kj�t_Ѧ�o�0OGAEA�Ti#6Qsi3}U����H/0i�\~�{5
yN uayEG@�Ao�o)uP�G�A�:z]�TRub;�t��Ph�ι�&qoa13fC�J|Cn0R=мa��!y�j�w�ρ�O.YT�꺎�M]x�d@=�> ���amN5-udZQ /4��sÆ!~��.7b�&�A�)��AK⣉��4.#@(BHP!�9k�������99^�r�łP^OHpX.ZpL`
(=H8w&P.�%s\J"Bs^a�7/�_b
2]3�E$ɤi6�<[f�9!yU�#�\U�]ᛦLMa�m Un۠oJRCQ�|j�qkBg<65�0K���u}=^Nڰ�-S�T�����7�q<5fr��'s:4m/c�d�����ݟ��1yaY@�{%wFڲyj@7g
�ƩMIh|�f�B]X��qٛ:vV-�
KJ`ݒ^866ÞL�>u!�vgO虉m>�,5e�:ϧ'ܑ-Ӿ"�ȇr�Bo+ڹP���_&dI_Mlb�tȌ}>I.VF13O@1s^U d$lrei�*Ty`OEa3=�%�CU3\�O�@))q�:3-h�E4-Ň_%FdYj?��ˇڴ�\.���Y�!Ce[�VX5�:�}:k�_k)
E�$!�6@A\0-C��%X.1^�aܵ(Wp�бCjab�E��EYG*,-s5VV$�a�6sKw@���d@��h$`O�}�"�0P.�^-FgW7�g�Au,zo�ӵԱ'?۠�w�QL-C,8E885`)E@ΨP�;L,�mbb|Oč/ЉcA��kStj��:r67U{us88_�:p��oxN0��t�GA!R�f��ñihi-�UӞˈ>,Z!?�T�8'� �qϱ#Y
��h�Tر,>�1h}2l"�(�mZr\��8.9��Ґpf�w3�> �U�4� ıμLUbEX88h]7,Yx՛�e;�pO9
L:AUncfD�MG[ǙX M^&JEIh>A�5n �DP]m*N�.�3�5RN*sw�1T�OfZV,֪�6DZTd\mj�T{l|�0f=�h
Ō774��).r_a>��fԛm}KT��7q;�t~��Aէf�!W꒚Aq9S+)%�*# 4c�0ש� i�X8���|��\�i&`mMƽY�S%JnM�r44~\3@��dzjzSB
:N�(*uX89'&�b)BG4l1�9�"tCI,"S5ݚ
`���1=jD!�ݣ1DXMJ�(IwN
���y4Lz*O).B���[2mxzh2�D���F@ZS臙֤m/ T2~e-MV�45]pH�)dzDFV{/��#����
L$frn"+�>k~B:\+l
�(,�U?r�(�)2=`?�Эp'Ǫvصu퍟-*octSP��
i�rbd2yD7z]WnQ#y'8D1W;uXg
Ij�Xf1㪧T*"5@R �3375OT�*fqD�C[]xeih+hG�dI�r�HU�u{qe�7ucjKL.
^�;��r�;TYg)(�k@q�c@@˦U�K KMQU,UU,ďq,peﴨcsMu4ל�pgag4=f���=S$7_JIQJ �`jZ5�N\�cĽ��'JA.��5dI,��<ˡkT-֫W4�eP�%DB\N|gxtx
!ֹǎWhM�<�
{xK�Mܯ$DxOCVnE�gǝAŊ
-�&��DW]?q>^?(5)ЈMп�" }M�X_�Uv�zF�g#
{?
䏽W7#RT9Yr /���!勇�ٿnP6ȻNA��`�~�{5.�X� ίG kuнh4[,4J*q�L\�AC�?JfWߕW[ա
;gCf��U{Aùh_^/~{*^w/;B�Ay27#A$Bhw^� 'd�н
sri_�7�6|�S&01hH<s�4m`J����>i��:NN3:VTzF_k*8πa5hZ#u�)=coC1i�_a*�,$*0�����*TkƬ}(�Ijp���cJ=.�6o8�+I8�HB[��
�`C/�%a�DrM#=.#�[xiwfDwW&0��?+::o)J��~_.cMp<&��]=8ԭrlT=� P?XH>��,|zo$-�J_��w J�Eއ5P�n!�*r֞SE[D-{r<1A�DwJ1ޣx i~�=mSRuM��) I��Nu W��x}?�wTjf�
9Q}-�F��VzE�jO�0�:7+�~Oy!k >8t�砙1F,,�,�G�'cc6ᒄ�,+�Wgw#ȘS�.�~Gw#�^~;- ��&\�%R�,яK�fi^h w5zjj~?�%7q��P+
�^3O�
]k���;<ͯfy)q\~ڨ�p;X
E9(y^](��x�qDŷ�y#GA0�Nù2x[sUg�P�~1aM'L@.u,zxs*70G~"��~]s�~��I.2`�@[�qq�pyn
֘E��"iCDQI)ܙb4seA� km9��6:6sT+|B�[ya b�.6�ߊ:"YcCƓd_۲cr��sf2i�1ZU�K1-[K//s!*a'TV&��o
�f�qk]ڿS;ȳ-p>���K#N�.o�͈,d:4gM+?zDI3Y[�N֏_:�7#�i�g�v.5lީ~h�YQ�13m؛Z��&DP ���[�]2\CϰLuo[
���|�|F㱎�ң[�Q!�|:Z�M�tanOh+d��{U
P)�M)տQS)sNe��Bj�ݸ7e�_�E\@^V3H��ɿ,�bL*vP UuݎV ѩxEG>"t :�bTK;! 4$�-ʒ@[sM��S�N��-+i�bPBՄ^_U(jR]R��ti{FB��
P� o@QE~] &~�8�HU!)SpzBG�}tm�dY+��Ԩ�5^��nL�{oaB�Jzp-9�;�jE^3ha����p@�*H#��@[dR|)21pj�3P=�N7|G@ˇЧPb4��HABF�nC
y1t�zmKNV-Y^h\"`|AnsEh3=�DGCu=}.3�⫃P\V ,Ha��K]TU"$�Ug
= 5gT~�h{ �B�:*8caPb�y2�%
��D
`5�s'�Vh=甕 (�Z�:��{�U���#g#҃�L}
���
Px�WArEl+[fWߖO'+��: �=�
s8��mul�\K
p�.k)MЁނp apIp�s(Ue!K闔g4�c% Pί�w#l,lll_ͼ^m`rПc�W_|��C
}iPVR-eYSG$lH dP�}|с>AQƘ,44%σ�/��ܒ+/Z`0����^A���+2Pkǝ�$ sM-P3p�,w�{k�_ژq�|��s�pqF�"I�Ak&a5l5�rxA?6c%e2ا{| 玿rP.G�xz^&�(1syb9a2I'��G(8����=�G�p_
]0'!j_ڊJM@pQ�)�^9�Iz:9Q0���#p8
ှv�#V"/ݰڱ_e.ю>+0$?pMl��^l�ޜ�j�F1b'Vg���"�O�� �@M>{�w~�P�2G@ Sm!rN[Dq�THZ]ka0c[Q�UkvqIXɜ58C�Uc��P�0�A"��P'��LXq|�BFԅO�p�vm �Lj||� %f�iA
h!FPw{�K_.K6Qp{J$c�h,k�J*%
��֪�V쩫J->#G�R88^8aIqc�)B
+�C|��恗E&�tCs�SxQ���CZkC�B�m91�"E�ޡ�49f�
Ts\V:"G ]NQxy��[-OMߘsέ�aRA5�Ap"ԘW_�pU9
&5�/IGZ�K>�$ԅn:k�6DK=!ɣ`5;=�-�wvn&x/ֻpb
z�[oV@'�ܴT�
GjnՇ6\Ц,5��� (K_ �B[1�[k㠋mb|e�X0�6I��ܦẆ�1�sc!"�̶b�?
(J֘�{/>).��"UZI�54_06LpO��DG�V99xaN@`�
�>,Q+O�u(v�y)�eTU�#郞d�`UHAE�Lmq`��X,xxX �b�kɯ''f�=c�/E�b��9�}9}J4ۭ�+G/Sr�Q��x1��=4
P�{wn/��~ߊ۫)Hxoc��v10ۑph6-�ý^rj�$Z ψaߙc3�G^m/��#=A?eY2R/Wp�&jqۏ,�o[ͳ�0$&0n�9
`,;VmS=�� TU4 L��K1�+iX�;W0J=�d+jO3Gk�~�n@��bF+1.�o3䚖"ĹJj4*q����w61 �Y(@�O@L5B@(eiIr'�o&'G.��\x�R<(5)Ј�~C#hmÃlW:nnl'N;
jZ4eЊǞ%?6&8�2`5aT0�lLSf�ld_�+CY)��=p4<~9ڀ��k�jEl~0x\v
_�\[(f[FLjR��n�O'L�v!uCRY
`O�i$y�LK�1M]~��EC�`��R>(V:�=s?��>Zxh�2-�k�`�%ȝ n�$<}3Zxmx"�n�5$�d�幰V�d�R9�cT`�b�8O��gbɖt]]~��|9K#Δ�EN���31*՚/R]*bLDu2�Fp�*ejݱ�G�2�@k�8
���>nrƘV�aI���r�:z>qQ+cDRn|>��ј�Y�"ö!9�x�9��;����ecW�,�{bgGǩ9�o�
���¯Tv�D8Ex|p]\���"@J��>S�|Ӡ�Ѡ??~�a��ӏ-)Aw�a/pa�33��UA8@"\q?:7�Oe~71:��1�Y
ܰC[�UI:Ylb!,£N~\�@1ǹĔP�\(JILsq�X\~DB(63
� jOM��?�0C��.ƌ��]\AJR$L�JEfp�a+�,c�/;�|1�wV7+_HıGPWz�+I++���9Aɑ1�*Ywoj!TP =f:�4\}uuI]w:rݽ�t{s+Sֆ��_%#ԝǓdze{9ȵL�Vbv>J49 �L"ae3DC��}vu��63�q=�Ndc+*�t���?-ّOt|^fɉgH�
s��r:h)���\OK3� E����4�yd@z\+PYX}^}�x3�
'mvF~�{�HSi'#�O�?g�y�!}zn=͵�пnF>ӽȇw3s?�?��ڵ.2�1���{�E�~.`���Ƞ�ϋ�D����e����0�{ s?0�׃2�ː?=/�r�qA�WP*5u�aa���7�M�>>@|�߇}�}
d�d
M�:AX g+8=r �gs�z)W@^dկ�?e�,#��"A~�Nˠ
lc2\)Zd�g{�1ki?[uNz}��CfJWXV
MYoOм�z�ϊRܓ3+Z`\ތ�ds+ar6V=՞cb�%xyxBkLL|֛<1f!͚Y �~2T7�*��;Mo�J��D>`��}SOOkou�=s�t�ZhN
4ǧ74=oax.&.bP!Ih�%lMMU�mK�u¾.Г-#O&&h;Ì!߁xq�4RQ7;
Dd�9T(îZ�6 :7r&^C�|ߪ�kOz�!
d�*;m0S�Qυ2ń�C2
�"z�V!]#ɰ,1<+d>*Xε��Ǵy@y��}G!zPU:a/
qoY�Oa=��xe�@�#� ƍag.��lƙ�xLk�2�_'�C��0A�&m
U_�Y�Br2&�oz�f�yF�F(1�L;-i�܉,t�},�>c��P+悱{�i˳z6mbmMCM]ݍ:�d��zj@|v��~jz�WS&G_�.��/!ciSN?�X6Va L��mbh�zTFh<^gLi/�h}|�Aӫ��59D��#|�+n=�s�o&�ʎ�$L�Xʻ�9>=)gA�-�,K�} e�J*��JĞ� =ཥ6ߞbrY4�DڣcaFL�
/�7�1}+(PDvZz+J2�2C%0��;ւ�GaP7&L�6؛:;��E/=�WG<��c�=fO=Gb�#!`e�(�mk8fF߭ugh#�7M�_BÙ|H
Y�8[�^R"?Sΰ9}ug]/I!�[AX.;Rnw�6�:�/dp�@xN�z�{%�B)Hπ|ȃnsx��o
��RQ)֊�_.˧wcǁkq�l>nTe�&M��)HpiI7�Xr��nD�g1 H�3YJ>=�6T@|{KmA��̀n�(t�0;Cp�| � v3VmC_v܅(V��m;)���d2֭1�KĴb \��vH�v\g`d:z@U �C�ҏ恜Pњsv�0}�n6>�~]�f2MFӽ1�-з��67�ś0Px�U%4eVn�0Y(�r@](���A�ƞ�\�Tj�?Κ3g�)+S�,@Ƃ=�f&;iqgS�g _�X�7�9!�-�ee�x�+gwFPF`q�Q|1Lo��#=ZEc`7p�ۂ{LːXhW�"ʵ.mSd�̞=C�Wa��҇�
q�X��( LE �hM����D}�.$ASs�D�]�dPt#�BjET`�;�X+rNťt`&gP?���%ل{M(�p̣�Y��7u!{|p=q-zDzC{_�o>
}{ >Ŗ$ZdS$_�X�&=+�[Z=Y?<|�}�8έim:y�?^c�}{O$x�>�4 ��Aw1R>2_�~b�:� ԂnK3�;o/�}�C&R2, z9
_hCr�'^�F�(b�g���#Co�S�B��ۉZJpZ�1=/_xO�`9
+#(xF�G�ľ%ͦ0kQ`�O?Es��M_AO�g_ͥf3O�T�c�1ʇ�Fg�ǯ��x4D:�Nf�8�$.^^X�ERr@R�CYVʹ��@Ó��x>7G61iy�dan/WP7��tzܝ7a(U�@B�GccuRҡR@�jC*d��R艘`=�P[cE=O�ePl}��ɒ$7IpЯ�R��jRcolZ @@EO}լ8`~FC6?tQ*|ٌ6b�j>�}GM9ާ2\0#�7o/f#�V�Qtla�_YoDiB$taŞP?(M~�%�֏�OY=�tYؠ{C`�Tm�]�nӗoձ4u�<`RcG\C�j�M�j�CZk#�:d|^"S{�1�53�/qFoH>p?ʣse�o>z|;^� ϱ�W2b�h/{x���RjcT9(2ɇ˱g
ƷE��rl&fE�9����c,x�#o9FX1�;�@�eՠk$ڱ8oǀ?g^lB/ЃpEQ��v��)B89X}|WG�z��EFޣEB(h\XpW2pY���B�X'? *"ᅴkBdg/a�q *�#J5Q��-I!xU8�HV1i�7P)�zFO;sr��!�]g+�F
F�ҁw~ǰ#o6%��Y��1fRG+-
62ٵqۮ�6o)c�k7&ޙ#�b
h�i:-�l�N0��Ms(<竕5��)l3|n
_E*J�F�+��k�x8Ku�(γd*�&w59㚘Rx��c�tX���B8p{�k�64R9l's�{�C�-�qԬO;rP�6�.�ՈjuB>��F\y}}78ڐ};]�%�n퓟^_
AA�iti�-/ӻ>$AP�gOhim >�bH%z�Z`��:��s%c�d z*1@RQh"$24AZ3!
0}.jE[�!$�51_\/e>evX(�1ƃ8ĸpjw
u&2]abnظp�tSxx�X�qai"w[{�lxB��
|
