Explore the implications of iOS 8's relaxed code packaging rules in this 26-minute Black Hat conference talk. Dive into the new opportunities for mobile and security engineers, including an overview of iOS library loading mechanisms and function hooking in non-jailbroken environments. Discover TrustKit, an open-source library for iOS that provides universal SSL public key pinning, and learn how to implement "drag & drop SSL pinning" in your apps within minutes. Gain insights into leveraging dynamic linking changes in iOS 8 to address security issues innovatively, and understand how to deploy this open-source library in your own iOS applications.
Overview
Syllabus
TrustKit: Code Injection on iOS 8 for the Greater Good
Taught by
Black Hat