Apple Disables Jailbreak Detection API In iOS 4.2

Apple has disabled its Jailbreak Detection API in iOS 4.2, forcing device management vendors to seek other methods to catch  jailbroken iPhones.

The reason behind Apple’s move remains a mystery, as the company has refused to explain why it decided to abandon the feature, which was introduced with the iOS 4.0 update in June 2010. The detection API allows third-party mobile device management (MDM) applications to access features and core information in iOS and check if the device has been jailbroken.

No Jailbreak Detection, No Security?

Although many users swear by jailbreaking as a way to escape the control of Apple, jailbroken phones are widely seen as a security risk. With the API disabled, the mobile device lacks security and becomes more prone to malware present in unauthorised apps, say device management experts.

“These devices could be difficult, or even impossible, to enforce security policy on as the user can trivially circumvent the policy enforcement without the management servers being aware of it,” said Jeremy Allen, principal consultant with mobile security firm Intrepidus, in an interview with Network World.

He also highlighted the importance of educating users about the risks of jailbreaking, urging organisations to “outline, in formal policy, that jailbreaking is not permitted”.

It is possible the API was disabled because it was not as effective as Appkle had hoped, considering the ease with which the iPhone Dev Team group of hackers  unlocked iOS 4, and the skill with which hackers can cover their tracks.

“It’s an interesting concept, asking the OS to tell you if it has been compromised, because a smart attacker might first change that very part of the OS,” said Joe Owen of device management software provider Sybase.