undefined | Better HN

0 pointssjtgraham5y ago0 comments

> There is no way they'll manage to integrate with the servers directly.

Of course they will be able to do that. It's 100% possible.

0 comments

3 comments · 1 top-level

lxgr5y ago· 2 in thread

How, if the client authentication key is implemented in Apple's hardware?

At least the device serial number is already used as part of iMessage authentication (it needs to be spoofed to work on Hackintoshes as far as I've read), and Apple has secure hardware that can easily support actual attestation in all of their recent devices.

sjtgrahamOP5y ago

> How, if the client authentication key is implemented in Apple's hardware?

It isn’t.

lxgr5y ago

Ok, maybe I should have been more precise:

Authentication already involves an Apple-specific hardware property (i.e. the serial number), demonstrating Apple's dislike for third-party clients.

It would be trivial for them to introduce a more effective means of client attestation (e.g. FairPlay DRM, which is alreadypart of every iOS and macOS device).

I certainly hope I'm wrong about this (I'd love to see a third-party client for iMessage), but I'm pessimistic.

j / k navigate · click thread line to collapse