One possible technical improvement is high quality honeypots. If Apple tried har... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		amluto on July 20, 2021 \| parent \| context \| favorite \| on: A case against security nihilism One possible technical improvement is high quality honeypots. If Apple tried hard, they could arrange for certain iPhones to have instrumentation intended to detect and characterize these sorts of attacks. If every targeted user has a 0.1% chance of leaking the exploit vector to Apple, then mass exploitation becomes much more complex and expensive. Doing this well would be hard, but even an imperfect implementation would have some value.

refulgentis on July 20, 2021 [–]

It might be hard to convince the privacy engineers to allow us access to a random sample of message attachments. What if we asked for a temporary 'root' access credential, that is only valid for 3 minutes per day?

amluto on July 21, 2021 | [–]

Get users to opt in, both to participate and to analyze any given payload?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact