Secure Enclave is a hardware security feature from Apple in which secure data, such as a user's private key, is stored away from direct access by the processor to minimize the risk of it being compromised or hacked by a cyberattack.[1]
Usage[]
Secure Enclave is used to securely store biometric data used by Face ID and Touch ID.[2][3] T-series chips that manage Secure Enclave are operated by bridgeOS.[4] Secure enclave also has a separate, dedicated boot ROM containing firmware called sepOS.[5][6]
The use of Secure Enclave by iPhones, iPads, and Macs is comparable to new TPM requirements being adopted by Microsoft in 2021 for Windows 11.[7]
Apple hardware with Secure Enclave[]
- Any mobile device with an Apple A7 or later A-series chip.
- Any Mac with an Apple M1 or T-series chip.
References[]
- ↑ Storing Keys in the Secure Enclave, Apple Developer. Accessed 2021-07-18.
- ↑ About Face ID advanced technology, Apple Support. 2020-02-26.
- ↑ About Touch ID advanced security technology, Apple Support. 2017-09-11.
- ↑ Everything You Should Know About Apple’s First-Party T2 Chip by Mike Peterson, AppleToolBox. 2018-11-05.
- ↑ Security certifications for SEP: Secure Key Store, Apple Support. 2020-09-18.
- ↑ Apple's Secure Enclave Processor (SEP) Firmware Decrypted, Hackaday
- ↑ Windows 11 won’t be officially supported by any Intel Mac — here’s why by Filipe Espósito, 9to5Mac. 2021-06-25.
External links[]
- Secure Enclave at Apple Support
- Secure Enclave Processor at The iPhone Wiki
- iOS: Secure Enclave at Wikipedia
