• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: isKindofClass with NSData and NSKeyUnarchiver
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: isKindofClass with NSData and NSKeyUnarchiver

  • Subject: Re: isKindofClass with NSData and NSKeyUnarchiver
  • From: Michael Ash <email@hidden>
  • Date: Fri, 28 May 2010 21:59:06 -0400
On Fri, May 28, 2010 at 7:40 PM, Philip Vallone
<email@hidden> wrote:
> Hi,
>
>> Wait, are you archiving and unarchiving data over a network? That’s a bad idea unless you’re extremely careful. The problem is that a malicious peer can send you an archive that expands into any codable object, not just the types you were expecting; this can be exploited to do Bad Things in your process, like crashing and possibly worse.
>
> How is it possible using GKSession to be introduced to a malicious peer.? I am creating a GKSession object and connecting via GKPeerPickerController. A hand shack is made between the the two peers. Once both peers accept the connection, the session is stored along with the peer id. This information can be checked before any information is received. Isn't this secure enough?

An attacker can execute a man-in-the-middle attack, wherein he talks
to two copies of your app and passes data between them, such that they
think they're talking directly to each other, but then modifies data
maliciously.

An attacker can simply impersonate your app, responding like a real
client, but sending malicious data when desired.

Neither of these can be defended against, even theoretically, when
communicating peer-to-peer. (It is possible to defend against them
when communicating with a server by using digital signature
technology, but this doesn't work when the attacker has direct access
to the program he wants to impersonate.)

In short, you should treat any data coming from the network as
potentially evil, always.

Mike
_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: authenticating peers
      • From: Jens Alfke <email@hidden>
References: 
 >isKindofClass with NSData and NSKeyUnarchiver (From: Philip Vallone <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Ken Thomases <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Graham Cox <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Philip Vallone <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Uli Kusterer <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Jens Alfke <email@hidden>)
 >Re: isKindofClass with NSData and NSKeyUnarchiver (From: Philip Vallone <email@hidden>)

  • Prev by Date: Re: isKindofClass with NSData and NSKeyUnarchiver
  • Next by Date: Re: NSURLConnection weirdiness
  • Previous by thread: Re: isKindofClass with NSData and NSKeyUnarchiver
  • Next by thread: Re: authenticating peers
  • Index(es):
    • Date
    • Thread