Apple is enhancing the security of its operating systems with a feature called 'exclaves,' aimed at hardening the XNU kernel. First appearing in 2023, exclaves isolate domains from the kernel, thus protecting essential functions even if the kernel is compromised. This move indicates Apple's transition towards a microkernel architecture. The XNU kernel itself is a hybrid of the Mach microkernel and BSD, presenting different security and performance challenges. Additionally, Apple’s Secure Enclave provides another layer of security against compromises by isolating sensitive operations.
Exclaves are believed to implement domains isolated from the kernel that protect key functions in macOS even when the kernel becomes compromised.
Apple has been working to harden the XNU kernel that powers its various operating systems, including iOS and macOS, with a feature called exclaves.
The XNU kernel is a hybrid kernel combining the Mach kernel developed at Carnegie Mellon University with components from FreeBSD.
Current Apple chips have a Secure Enclave, a dedicated secure subsystem integrated into the device's SoC as a defense against compromise.
Collection
[
|
...
]