What else is new in the Apple Platform Security Guide?
MIE isn’t the only security improvement included in the guide. Among other additions, it features new topic sections concerning quantum security, single sign-on (SSO), and satellite communications:
- Quantum Security: Another VGT, Apple deployed postquantum cryptographic protection (PQ3) in iMessage in iOS 17.4 and macOS 14.4. This protection against future quantum-based attacks has now been extended in iOS 26, iPadOS 26, macOS 26, tvOS 26, and watchOS 26, including the introduction of CryptoKit, which developers can use to help protect the software they offer on the platforms.
- Platform SSO: This new section explains the different authentication mechanisms now in place for SSO, how they work, and how its systems interact with identity service providers;
- Satellite: In addition to describing the core security architecture in place to protect satellite-based communications using Apple’s systems and an iPhone, the company also confirms its use of encryption and pseudonyms to secure those messages.
Apple also expanded a range of existing sections in the document, which ends with the customary set of links and contacts to security bounties and researchers and a table that effectively represents the extent to which the company continues to secure its platforms. Apple has also updated its platform security website.
“For software to be secure, it needs to rest on hardware that has security built in,” the report says. “That’s why Apple devices — with iOS, iPadOS, macOS, tvOS, visionOS, and watchOS — have security capabilities designed into silicon. These capabilities include a CPU that powers system security features, as well as additional silicon that’s dedicated to security functions.”
