Ivan Krstić

🔺NEW: iPhone and iPad are now the first and only generally-available devices to meet the exacting security requirements for handling classified NATO information. apple.com/newsroom/2026/…

🔺New security-focused developer event on March 5 at Apple Park: featuring sessions on Memory Integrity Enforcement, new tools in Enhanced Security in Xcode, Apple’s defensive security engineering approach, Swift adoption in security-sensitive code, and how to apply all these techniques to protect apps. Sign up: developer.apple.com/events/view/D4…

🔺This is the first talk I've given in 6 years – featuring formal verification of post-quantum cryptography, the evolution of the Secure Page Table Monitor, a view into Memory Integrity Enforcement, updates to Apple Security Bounty… and a personal note.

@50valve @0xor0ne @Apple Hi - fully remote is considered on a case by case basis. If that’s the key consideration for you, please don’t let it deter you from applying!

@0xor0ne @Apple Is it fully remote? I'm at the cross-roads, paragon or apple?

We’re hiring offensive security researchers @Apple SEAR! We’re looking for skilled researchers across multiple security domains. Learn more and apply here: jobs.apple.com/en-us/details/… If you’re into low level systems like firmware, RTOS, coprocessors, embedded components, or microkernels, my team would love to hear from you. Hit me up if you have any questions. #infosec

Great News! 👏 @Apple announced they will be donating 1000 iPhone 17s with the much more secure Memory Integrity Enforcement to high-risk users! Another meaningful step that Apple is taking to protect journalists, activists & dissidents from commercial spyware! 1/

🔺iPhone models announced today include Memory Integrity Enforcement, the culmination of an unprecedented design and engineering effort that we believe represents the most significant upgrade to memory safety in the history of consumer operating systems. security.apple.com/blog/memory-in…

🔺New on Apple Security Research blog: a deeply comprehensive Private Cloud Compute security guide, and an unprecedented Virtual Research Environment allowing you to run production PCC software right on your Mac with Apple silicon. And up to a $1M bounty! security.apple.com/blog/pcc-secur…

@simonw hi, quick question; mind sending me a DM? thank you!

🔺New on the Apple Security Research blog: introducing Private Cloud Compute! We believe this is the most advanced security architecture ever deployed for cloud AI compute at scale. security.apple.com/blog/private-c…

Are you excited to use the power of safe modern programming languages like Swift to make software more secure? My SPEAR team at Apple is hiring a Swift Software Engineer to do exactly that! jobs.apple.com/en-us/details/…

@Goran_Majic Hi Goran – see the section titled "Enable DIT for constant-time cryptographic operations" in #Enable-DIT-for-constant-time-cryptographic-operations" target="_blank" rel="nofollow noopener">developer.apple.com/documentation/…, and especially: "Apple cryptographic routines ... in the operating system enable DIT internally."

@radian Still confusion about this topic: 9to5mac.com/2024/03/22/unp…

🔺Now live: the May 2024 update to the Apple Platform Security Guide! support.apple.com/guide/security…

🔺New on the Apple Security Research blog: introducing PQ3, a groundbreaking post-quantum cryptographic protocol for iMessage. To our knowledge, PQ3 has the strongest security properties of any at-scale messaging protocol in the world. security.apple.com/blog/imessage-…

With iOS 17.2 and macOS 14.2 now released, Contact Key Verification 🔐 is available for everybody to enable. Very proud of the work the team has done to ship this groundbreaking feature and advance the state of iMessage security! security.apple.com/blog/imessage-…

🔺My new op-ed in Lawfare: Personal Data in the Cloud is Under Siege. End-to-end Encryption Is Our Most Powerful Defense. lawfaremedia.org/article/person…

If you are interested in uArch Security, we just opened an internship position at @Apple! The position is focused on offensive research, and you will be contributing to the security of some of our most advanced CPUs in one of the coolest teams. Apply at: jobs.apple.com/en-us/details/…

@aaronp613 Good catch, thanks!

@radian embed says iOS 7.2

🔺New on the Apple Security Research blog: a brief technical overview of iMessage Contact Key Verification! security.apple.com/blog/imessage-…

🔺New on the Apple Security Research blog: we pit our hardened kalloc_type XNU allocator against SockPuppet, a powerful vulnerability from the past: security.apple.com/blog/what-if-w…