Share this page!

Nicolás Álvarez Profile picture
Twitter logo
6 Dec, 4 tweets, 2 min read
Many parts of iCloud Keychain are actually open source: opensource.apple.com/source/Securit…

And even then it's hard to tell what some codenames mean. I wonder if Apple redacts in-code documentation before publishing it or if they don't have any to begin with 🤔
But I managed to figure out *some* stuff. So instead of "what the heck are SOS and CKKS and Engram and Manatee", now I know "SOS (SecureObjectSync) is the old sync system, CKKS (CloudKit Keychain Sync) is the new one, Engram and Manatee are some CKKS-only keychain sync views"
I still don't know how SOS or CKKS work, or what a "keychain view" really means, or what's stored in Engram vs Manatee, but it's *something*, and writing it down can help others start from a non-blank state if they want to research this more:

theiphonewiki.com/wiki/ICloud_Ke…
Heh, searching "apple ckks" on DuckDuckGo, the first result is someone being paranoid about com.‌apple.‌security.‌ckks entries in the keychain viewer on macOS, the second is the wiki page braindump I wrote today.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Nicolás Álvarez

Nicolás Álvarez Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @nicolas09F9

Nicolás Álvarez Profile picture
12 Aug
I'm now adding these keys to the wiki. It took some tweaking to make the scripts handle the new files in iPhone 11's ipsws, but now it's ready and I can automate it 😎
theiphonewiki.com/wiki/Firmware_…
The wiki is a terrible place for these. It's absurd to format this stuff into wiki markup, and then have other scripts that parse that (or the HTML) back into a usable form to eg. get keys for decryption.
Ideally there should be some DB-backed website+API. But that doesn't exist, so as long as people are using the wiki, might as well put this new data there 🤷‍♂️
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @nicolas09F9 has new unrolls!

Check out other threads from @nicolas09F9!

Read all threads by @nicolas09F9

:(