Apple is so confident in the level of security of its Private Cloud Computing that it will reward anyone who manages to breach it with up to $1 million.
Apple Intelligence is one of the largest efforts of the apple brand for offering the best artificial intelligence in the world on Cupertino devices. Although it has been criticized, both for seeming to arrive late, and for the late launch of the announced functions, Something that cannot be criticized is the level of security that it has implemented for its users and requests. In CNET They describe it as “the first step of what could indicate larger changes” but they also echo that Apple will reward anyone who can demonstrate or find a bug or major problem with their Private Cloud Compute (PCC).
Apple will reward you if you manage to find a vulnerability in its CCP
Let us remember that the processing of requests that users make with Siri or the use of Apple Intelligence will be done on the device. If more powerful processing is required, the request must be sent to the cloud servers which in this case is part of Private Cloud Compute. Apple’s security guarantee indicates that The data will only be used to fulfill the requestthey will not be stored and no one will be able to access them.
Craig Federighi, the head of software at Apple, is aware that the brand’s strategy is to implement AI functions when they are truly ready. So confident are they in the level of security they offer that they have invited hackers and security professionals to challenge the security offered by PCC.
Private Cloud Compute Apple
According to the Apple Security Bounty rewards program:
We are deeply concerned about any risk to user privacy or security, so we will take into account any security issues that have a significant impact on PCC. We will evaluate each report based on the quality of what is presented, the evidence of what can be exploited, and the impact to users.
In this sense, The rewards program has been expanded and the categories were announcedalready existing, as new, which we present below:
- Accidental data disclosure: vulnerability that causes a unintentional data exposure
- External Compromise from User Requests: Vulnerabilities Allowing External Actors exploit user requests to gain unauthorized access to PCC
- Physical or internal access: vulnerabilities where access to internal interfaces allows the system to be compromised
The amounts range from 50,000 to 1,000,000 dollars.
Apple Intelligence in its WWDC 2024 presentation
The categories are divided into two, The one that rewards the least is the category of attack on data requests from the network. Data disclosure rewards $50,000, the ability to run code rewards $100,000, and data access requests by the user up to $150,000.
The category that rewards the most is the remote attack on requested data. Access to user data via request rewards $250,000 while Arbitrary code execution is the maximum reward of $1,000,000.
Apple indicates that it will consider any security issue that impacts PCCeven if it is not in the published categories and will be rewarded. It will be evaluated according to quality, proof of vulnerability and the impact it represents on users.
get more information regarding security research in private cloud computing (PCC).
You can follow iPadized in Facebook, WhatsApp, Twitter (X) consult or consult our Telegram channel to stay up to date with the latest technology news.
Source: ipadizate.com
