What is Apple's Secure Enclave and how does it protect iPhone and Mac?

iPhones and Macs have a Touch ID or Face ID that uses its own processor to handle users' biometric information. It's called the Secure Enclave, it's basically a complete computer and it offers a wide range of security features.

What is Apple's Secure Enclave and how does it protect iPhone and Mac?

iPhones and Macs have a Touch ID or Face ID that uses its own processor to handle users' biometric information. It's called the Secure Enclave, it's basically a complete computer and it offers a wide range of security features.

Secure Enclave starts separately from the rest of the device. It runs its own small kernel, the operating system or programs running on the device cannot access this section directly. It has 4MB of flash memory, used exclusively for storing elliptic 256-bit personal keys. These keys are unique to your device and are never synced to the cloud or even the device's main operating system cannot be seen directly. Instead, the system requires Secure Enclave to decrypt the information using the keys.

Why does Secure Enclave exist?

What is Apple's Secure Enclave and how does it protect iPhone and Mac? Picture 1

Secure Enclave makes it difficult for many hackers to decrypt sensitive information without accessing your device. Because Secure Enclave is a separate system and the main operating system never sees these decryption keys, it is difficult to decrypt the data without proper access.

Please note, biometric information is not stored on the Secure Enclave; 4MB is not enough storage space for all that data. Instead, Enclave stores the encryption keys used to lock that biometric data.

Third-party programs can also create and store keys in the Enclave to lock data, but applications never have access to those keys. Instead, applications that require Secure Enclave encrypt and decrypt data. This means any information encrypted with the Enclave is extremely difficult to decode on any other device.

Below is a reference to Apple documentation for developers:

When storing a private key in Secure Enclave, the user instructs Secure Enclave to create a key, securely store it, and perform operations with it. You only receive the output of these operations, such as encrypted data or cryptographic signature verification results.

Secure Enclave cannot import keys from other devices: it is specifically designed to create and use keys on your phone or computer. This makes it difficult to decode the information on any device.

Secure Enclave hacked?

Secure Enclave is complicated and makes it hard for hackers to access the device using this system. But nothing is absolutely safe. In the summer of 2017, hackers revealed that they had decrypted the Secure Enclave firmware, understanding how the Enclave works. However, it is worth noting that hackers have yet to find a way to retrieve the encryption keys stored in the Enclave: they only decrypt the software.

Delete the Enclave before selling a Mac

What is Apple's Secure Enclave and how does it protect iPhone and Mac? Picture 2

The keys in the Secure Enclave on iPhone will be deleted when performing a factory reset. In theory, it will also be deleted when reinstalling MacOS, but Apple advises users to delete Secure Enclave on a Mac if they use anything except the official macOS installer.

See more:

Secure iPhone after jailbreak
6 secure ways on iPhone
Security "security" for iPhone. How many methods do you know?

How many red apples should you eat a day?
how many dried red apples, also known as jujubes, should be eaten a day? this is a question that many people wonder about because this fruit has long been known as a healthy snack. currently, red apples are sold quite popularly on the market.
Hackers have deciphered Apple's Secure Enclave security chip
a hacker with the pseudonym xerub revealed the decryption key for apple's secure enclave processor (sep) security chip.
How to order iPhone X
apples of apples around the world are starting the war for ordering the iphone x. this model will go on sale on november 3, but is expected to be in abundance.
How does the security chip on smartphones work?
on each smartphone, there is a security chip that protects the user's device. for example, google's pixel 3 is a titan m chip, on apple's iphone is secure enclave, and samsung's galaxy smartphone and some android devices are arm's trustzone technology.
5 great benefits from apples you may not know
apples are one of the foods rich in nutrients, vitamins and protein ... so, you should eat them every day to enhance health.
Security experts found a way to break iPhone passwords on all versions without worrying about locking or deleting data
matthew hickey, a security researcher at hacker house, recently figured out a way for brute force attacks to unlock any iphone or ipad device, despite being updated to the latest ios version.
The former Apple engineer claims to be able to unlock all iPhones for $ 15,000
grayshift company of a former apple security engineer has announced a tool that can unlock ios 11 devices but still has some limitations.
Protect data on CD with Secure CD
copying data on cd is quite easy, so it is very difficult to protect your important data on cd. great-wall software's secure cd is a program that helps you in securing data on cd.
The security 'standalone' for iPhone. How many methods do you know?
although apple has always wanted to make the iphone the most secure device in the world, however, you still cannot be 100% sure that the iphone you own will be safe. the best thing you can do to reduce the risk of attack is to increase the security of your iphone. please refer to the security methods below.
Review F-Secure Sense routers: Effective, affordable protection
f-secure sense is a wireless router capable of blocking access to malicious websites and other threats, blocking trackers, as well as including firewalls to protect all connected devices from attacks.
The safest and most secure way to encrypt data
the safest and most secure way to encrypt data. in addition to the positive aspects, the internet also contains risks such as information leakage, theft, data destruction and to protect against such attacks, we must use data encryption methods to protect protect data against internet risks.
Things to note when eating apples
the current abuse of preservatives, how to eat apples is really good for health