Apple Reneged on OCSP Privacy
source link: https://mjtsai.com/blog/2022/06/16/apple-reneged-on-ocsp-privacy/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Apple Reneged on OCSP Privacy
In the current version of macOS, Monterey, on every system update on a system containing an M1 chip, such as all the new shiny/fast ARM (“Apple Silicon”) macs, the update process phones home to Apple to obtain a special boot signature, known in Apple jargon as a “ticket”.
In response to the Mac OCSP appocalypse [with Big Sur], Apple promised several changes.
The first change was accomplished: macOS switched from using the unencrypted http
ocsp.apple.comservice to the new encrypted httpsocsp2.apple.comservice.The third change, a new preference for users to opt out, is still nowhere to be found, not even in the new macOS 13 Ventura beta. The System Preferences app itself has been redesigned and renamed on Ventura, yet the promised new preference is missing, more than a year and half after Apple made these promises.
Previously:
Gatekeeper Mac macOS 12 Monterey macOS 13 Ventura Networking Privacy Security
1 Comment
My prediction: another year from now Apple finally implements the ability to opt out, but doing so needlessly and by design causes some essential part of the system to stop working completely, like iCloud or the app store or something.
(Have I become too cynical?)
Stay up-to-date by subscribing to the Comments RSS Feed for this post.
Leave a Comment
Name
E-mail (will not be published)
Web site
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK