|
|
|
|
|
|
by nickflood
1864 days ago
|
|
|
Yeah, but by that same logic there may be unknown holes in app review and app sandbox as well. And since Apple aren't big on publicising their missteps (while Chrome is developed in the open), we may never really know how secure the app store model really is. |
|
|
To exploit those you need to get past app review in the first place, though, and the type of code that can do stuff like this for the most part sticks out like a sore thumb when subjected to static analysis.
Most of Apple's checks around this stuff are automated, I understand, and are applied to every submission instantly.