Ivan Krstić

@radian

Head of Security Engineering+Architecture at Apple. I don’t speak for my employer.

San Francisco, CA
Joined March 2011
14 Photos and videos Photos and videos

Tweets

You blocked @radian

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @radian

  1. 19 Dec 2019

    Now live! 🔺The new Apple Security Bounty! 🔺The new Apple Platform Security guide, featuring Mac for the first time! (PDF version: ) 🔺My Black Hat 2019 talk: Happy holidays! 🎄

    12 replies 347 retweets 839 likes
    Undo
  2. 22 Nov 2019

    Plus the new Apple Security Bounty, featuring all Apple platforms and open to everyone, million dollar max payout, live later this year — and iOS Security Research Device program, an unprecedented, Apple-supported research platform for talented researchers, coming next year!

    4 replies 29 retweets 78 likes
    Show this thread
    Show this thread
    Undo
  3. 22 Nov 2019

    Mac secure boot (with two world firsts: DMA defense from PCIe Bus 0, and the Option ROM sandbox), iOS kernel integrity, Pointer Auth Codes (PAC), APRR register, Page Protection Layer (PPL), and novel Find My crypto — all in my slides from Black Hat 2019!

    8 replies 218 retweets 633 likes
    Show this thread
    Show this thread
    Undo
  4. Retweeted
    25 Sep 2019

    Please DM if you’re a skilled web developer with UX and data visualization chops, and you might find security exciting (no security expertise required). There’s a job at Apple I would love to pitch to you.

    6 replies 105 retweets 111 likes
    Undo
  5. 10 Jul 2019

    TechCrunch: “Apple has pushed a silent Mac update to remove hidden Zoom web server”

    6 replies 93 retweets 230 likes
    Undo
  6. 26 Jun 2019

    Very excited to return to the Black Hat stage this year to talk about some world-class Apple security features! iOS code integrity and Pointer Authentication Codes, Mac secure boot with the T2 Security Chip, the crypto behind the Find My feature, and more:

    New Briefing “Behind the scenes of iOS and Mac Security” by Ivan Krstić (), Head of Apple Security Engineering and Architecture provides technical details of several key technologies new to iOS 13 and the Mac
    9 replies 110 retweets 382 likes
    Undo
  7. 5 Jun 2019

    My Cryptographic Engineering team did fantastic work on the rigorous privacy properties of the new Find My system. Wired takes a look:

    19 replies 353 retweets 873 likes
    Undo
  8. Retweeted
    4 Jun 2019

    New certificate requirements in iOS 13 and macOS Catalina: removing trust in weak algorithms, requiring server auth EKUs, enforcing maximum lifespans, and requiring SubjectAltNames.

    3 replies 89 retweets 195 likes
    Undo
  9. 30 Oct 2018

    We’ve released the first Security Overview for the Apple T2 Security Chip! Mac secure boot, storage encryption, and more, e.g.: “Mac portables with the T2 chip have a hardware disconnect that ensures the microphone is disabled when the lid is closed.”

    7 replies 170 retweets 334 likes
    Undo
  10. Retweeted
    17 Sep 2018

    iOS 12 revamps the iCloud Keychain password manager in a big way. iOS now generates passwords when creating accounts within apps, just like it does in Safari. iOS removes the temptation to make the easy-but-consequential mistake of reusing a memorable password.

    Account creation screen in an app, with iOS offering to generate a password.
    12 replies 66 retweets 262 likes
    Show this thread
    Show this thread
    Undo
  11. 17 Sep 2018

    Happy iOS 12 day! Our updated iOS Security Guide is hot off the presses:

    7 replies 250 retweets 430 likes
    Undo
  12. Retweeted
    6 Jun 2018

    App notarization is a brilliant move by Apple. 

    1 reply 12 retweets 41 likes
    Show this thread
    Show this thread
    Undo
  13. Retweeted
    5 Jun 2018

    Apple will be enforcing Certificate Transparency at the end of 2018 across all TLS connections! More details:

    11 replies 138 retweets 241 likes
    Undo
  14. Retweeted
    5 Jun 2018

    Apple has begun distrusting Symantec CAs. Live in the Seeds! More details:

    1 reply 50 retweets 65 likes
    Undo
  15. Retweeted
    4 Jun 2018

    macOS security: extended protection for camera, microphone, mail, messages, backups—apps will need explicit permission from uer for potential privacy violations. Apple to block tracking via social media like buttons, comment fields, AND BROWSER FINGERPRINTING. Woo!

    4 replies 59 retweets 147 likes
    Undo
  16. 11 Jan 2018

    The updated iOS Security Guide now covers iOS 11.2, including Face ID and Apple Pay Cash:

    2 replies 109 retweets 177 likes
    Undo
  17. 4 Jan 2018

    Regarding Spectre and Meltdown impact on iOS, macOS and Safari/WebKit:

    6 replies 262 retweets 329 likes
    Undo
  18. 29 Nov 2017

    Security Update 2017-001 is now available for High Sierra, addressing the root login problem.

    9 replies 364 retweets 204 likes
    Undo
  19. 12 Nov 2017

    Terrific writeup in the Financial Times. Incredibly proud of my team – astounding talent and clarity of purpose in protecting users on a billion devices, from silicon to software. And we’re hiring. Want to work with the finest security group in the world? My DMs are open!

    How the iPhone earned its security record
    8 replies 139 retweets 377 likes
    Undo
  20. 27 Sep 2017

    New on Face ID: . Incl: “TrueDepth camera randomizes …depth map captures, projects a device-specific random pattern”

    1 reply 58 retweets 102 likes
    Undo

@radian hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·