DOCSLIB.ORG

Learning AV Foundation Addison-Wesley Learning Series

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Learning AV Foundation Addison-Wesley Learning Series Learning AV Foundation Addison-Wesley Learning Series Visit informit.com/learningseries for a complete list of available publications. The Addison-Wesley Learning Series is a collection of hands-on programming guides that help you quickly learn a new technology or language so you can apply what you’ve learned right away. Each title comes with sample code for the application or applications built in the text. This code is fully annotated and can be reused in your own projects with no strings attached. Many chapters end with a series of exercises to encourage you to reexamine what you have just learned, and to tweak or adjust the code as a way of learning. Titles in this series take a simple approach: they get you going right away and leave you with the ability to walk off and build your own application and apply the language or technology to whatever you are working on. Learning AV Foundation A Hands-on Guide to Mastering the AV Foundation Framework Bob McCune Upper Saddle River, NJ • Boston • Indianapolis • San Francisco New York • Toronto • Montreal • London • Munich • Paris • Madrid Cape Town • Sydney • Tokyo • Singapore • Mexico City Many of the designations used by manufacturers and sellers to distinguish their products Editor-in-Chief are claimed as trademarks. Where those designations appear in this book, and the Mark Taub publisher was aware of a trademark claim, the designations have been printed with initial capital letters or in all capitals. Senior Acquisitions Editor The author and publisher have taken care in the preparation of this book, but make no Trina MacDonald expressed or implied warranty of any kind and assume no responsibility for errors or Development omissions. No liability is assumed for incidental or consequential damages in connection Editor with or arising out of the use of the information or programs contained herein. Chris Zahn For information about buying this title in bulk quantities, or for special sales opportunities Managing Editor (which may include electronic versions; custom cover designs; and content particular to Kristy Hart your business, training goals, marketing focus, or branding interests), please contact our Project Editor corporate sales department at [email protected] or (800) 382-3419. Elaine Wiley For government sales inquiries, please contact [email protected] . Copy Editor For questions about sales outside the U.S., please contact [email protected] . Barbara Hacha Visit us on the Web: informit.com/aw Senior Indexer Cheryl Lenser Library of Congress Control Number: 2014944245 Proofreader Copyright © 2015 Pearson Education, Inc. Katherine Matejka All rights reserved. Printed in the United States of America. This publication is protected Technical Reviewers by copyright, and permission must be obtained from the publisher prior to any prohibited reproduction, storage in a retrieval system, or transmission in any form or by any means, Chris Adamson Ryder Mackay electronic, mechanical, photocopying, recording, or likewise. To obtain permission to Jon Steinmetz use material from this work, please submit a written request to Pearson Education, Inc., Permissions Department, One Lake Street, Upper Saddle River, New Jersey 07458, or you Editorial Assistant may fax your request to (201) 236-3290. Olivia Basegio ISBN-13: 978-0-321-96180-8 Cover Designer ISBN-10: 0-321-96180-3 Chuti Prasertsith Text printed in the United States on recycled paper at Courier in Westford, Massachusetts. Senior Compositor Gloria Schurick First printing: October 2014 ❖ I dedicate this book to my loving wife, Linda, who supports me in all my crazy endeavors. ❖ Contents Preface xiii Part I AV Foundation Essentials 1 1 Getting Started with AV Foundation 3 What Is AV Foundation? 3 Where Does AV Foundation Fit? 4 Decomposing AV Foundation 6 Understanding Digital Media 7 Digital Media Compression 13 Container Formats 18 Hello AV Foundation 19 Summary 23 Challenge 24 2 Playing and Recording Audio 25 Mac and iOS Audio Environments 25 Understanding Audio Sessions 26 Audio Playback with AVAudioPlayer 28 Building an Audio Looper 30 Configuring the Audio Session 34 Handling Interruptions 36 Responding to Route Changes 40 Audio Recording with AVAudioRecorder 42 Building a Voice Memo App 45 Enabling Audio Metering 52 Summary 57 3 Working with Assets and Metadata 59 Understanding Assets 59 Creating an Asset 60 Asynchronous Loading 63 Media Metadata 65 Working with Metadata 70 Building the MetaManager App 76 Saving Metadata 98 Summary 101 Challenge 101 Contents vii 4 Playing Video 103 Playback Overview 103 Playback Recipe 107 Working with Time 109 Building a Video Player 110 Time Observation 118 Creating a Visual Scrubber 124 Showing Subtitles 129 Airplay 133 Summary 136 Challenge 136 5 Using AV Kit 137 AV Kit for iOS 137 AV Kit for Mac OS X 140 First Steps 140 Control Styles 144 Going Further 147 Working with Chapters 151 Enabling Trimming 157 Exporting 159 Movie Modernization 161 Summary 165 Challenge 166 Part II Media Capture 167 6 Capturing Media 169 Capture Overview 169 Simple Recipe 174 Building a Camera App 175 Summary 208 Challenge 208 viii Contents 7 Using Advanced Capture Features 209 Video Zooming 209 Face Detection 216 Machine-Readable Code Detection 228 Using High Frame Rate Capture 241 Processing Video 247 Understanding CMSampleBuffer 249 Summary 257 Challenge 258 8 Reading and Writing Media 259 Overview 259 Building an Audio Waveform View 265 Advanced Capture Recording 276 Summary 293 Challenge 293 Part III Media Creation and Editing 295 9 Composing and Editing Media 297 Composing Media 297 Working with Time 300 Basic Recipe 303 Introducing 15 Seconds 307 Building a Composition 311 Exporting the Composition 316 Summary 321 Challenge 322 Contents ix 10 Mixing Audio 323 Mixing Audio 323 Mixing Audio in the 15 Seconds App 327 Summary 333 Challenge 333 11 Building Video Transitions 335 Overview 335 Conceptual Steps 337 15 Seconds: Adding Video Transitions 348 Summary 360 Challenge 360 12 Layering Animated Content 361 Using Core Animation 361 Using Core Animation with AV Foundation 363 15 Seconds: Adding Animated Titles 367 Preparing the Composition 378 Summary 383 Challenge 384 Foreword Yeah, we knew QuickTime’s goose was cooked. It had served us well for two decades, but that’s the problem. Apple’s essential media framework was a product of the late 1980s. By the mid 2000s, it had accumulated plenty of cruft: old programming practices, dependencies on system APIs that had fallen out of favor, and features that didn’t stand the test of time (wired sprites, anyone?). Heck, it preferred big-endian numeric values, because that’s what the Motorola 68000 series CPUs used. That’s right, QuickTime had already made two CPU transitions: from 680x0 to PowerPC, and then again to Intel x86. And QuickTime’s evolution in the first decade of the new century was hard to make sense of. Apple built a Java wrapper around QuickTime, then updated it again and left out half the features. They did the same incomplete job in Objective-C and called it QTKit. And then there was a Windows version of QuickTime that stopped getting meaningful updates, and nobody at Apple would tell us why. Usually with Apple, that means they’re up to something. What they were up to was the iPhone, of course. But the first SDK we got for iPhone shipped with a minimum of media support: a full-screen video player that took over your application and the low-level Core Audio library. There was an obvious, enormous hole in the media software stack for what Apple insisted was “the best iPod we’ve ever made.” Yet we knew they couldn’t port QuickTime over to the iPhone, considering they were already walking away from it on the desktop. Oh yeah, they were up to something. Bits and pieces of new media functionality on iPhone popped up here and there over the next few years: a “Media Player” framework to let us query and play the music library songs, and some Objective-C wrappers around Core Audio’s Audio Queue, so that playing from or recording to a file was no longer a 200-line exercise in drudgery. These latter classes were curiously assigned to a new framework—“AV Foundation”—which seemed a misnomer in the iPhone OS 3 era, when it was all “A” and no “V.” In retrospect, we really should have known they were up to something. Then, in 2010, Apple was finally ready to show us what they’d been up to all this time. Apple’s Meriko Borogove stood up at the WWDC “Graphics State of the Union,” showed off iMovie for iPhone, and said that everything Apple used to make this video editor was now available to iOS developers. AV Foundation, formerly consisting of those odd little Core Audio wrappers, was now 40 classes of audio-video processing power. Capture, editing, playback, and export—pretty much everything we ever actually did with QuickTime (sorry, wired sprites)—were all present and accounted for. And now they fit in your pocket or purse. Foreword xi Relieved of 1990s legacies, the new classes were products of genuinely modern thinking. On iOS, they were among the first to make use of Objective-C blocks to handle asynchronous concerns like lengthy media export, practices that now seem like second nature to iOS developers. Back on the Mac, a few of us looked enviously to iOS, given that our choices now consisted of 32-bit-only QuickTime with all its archaic bits or the bowdlerized QTKit. It was hardly surprising in OS X 10.7 (“Lion”) when AV Foundation made its debut on the Mac, or in OS X 10.9 (“Mavericks”) when QuickTime was formally deprecated in favor of AV Foundation. Don’t assume from this story that it’s all rainbows and puppies for us, though.
Load more

Recommended publications
  • Noisemaker Lesson02.Pages
    Teaching App Development with Swift NoiseMaker Lesson 2 " NoiseMaker Lesson 2 Description! Add an AVAudioPlayer property to the view controller, and import the AV Foundation framework.! Learning Outcomes! • Practice using the Xcode Documentation and API Reference for technical documentation.! • Discover the AVAudioPlayer class for playing sounds.! • Discover how errors may arise without importing framework dependencies.! Vocabulary! Xcode Documentation and AVAudioPlayer property API Reference optional var framework AV Foundation import Materials! • NoiseMaker Lesson 2 Xcode project! " ! This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License, by Yong Bakos.! "1 Teaching App Development with Swift! NoiseMaker Lesson 2! " Opening! Now that we have sound files, what API do we use to play them within our app?! Agenda! • Discuss how we might explore the Xcode Documentation and API Reference to learn how to "play a sound."! • Using the Xcode Documentation and API Reference (⇧⌘0), enter play sound in the search bar, and notice the results shown in the API Reference, SDK Guides and Sample Code sections.! • Using the Xcode Documentation and API Reference (⇧⌘0), explore the AVAudioPlayer class reference.! • Add a controller property for an AVAudioPlayer that is responsible for playing the guitar sound.! var player: AVAudioPlayer? • Discuss declaring the AVAudioPlayer optional type, since the ViewController initializer will not initialize the property with a value.! • Build the project (⌘B), and
    [Show full text]
  • WWDC14 Media
    Media #WWDC14 Camera Capture: Manual Controls Power to the people Session 508 Brad Ford Camera Software © 2014 Apple Inc. All rights reserved. Redistribution or public display not permitted without written permission from Apple. Past Sessions developer.apple.com WWDC 2011 Session 419—Capturing from the Camera on iOS 5 WWDC 2011 Session 417—Introducing AV Foundation Capture for Lion WWDC 2012 Session 520—What’s New in Camera Capture (iOS 6) WWDC 2013 Session 610—What’s New in Camera Capture (iOS 7) Appetzer AVCaptureView on Yosemite iOS Screen Recording Barcode Update Main Course Manual Camera Controls Focus / Exposure / White Balance Dessert Bracketed Capture Appetzer AVCaptureView on Yosemite iOS Screen Recording Barcode Update Main Course Manual Camera Controls Focus / Exposure / White Balance Dessert Bracketed Capture Capture in AVKit Standard user interface for capture on Yosemite AVKit AVCaptureView AVCaptureView AVCaptureView AVCaptureView AVFoundation Capture Objects AVFoundation Capture Objects AVCaptureSession AVFoundation Capture Objects AVCaptureDevice AVCaptureDevice (Camera) (Microphone) AVCaptureDeviceInput AVCaptureDeviceInput AVCaptureSession AVFoundation Capture Objects AVCaptureDevice AVCaptureDevice (Camera) (Microphone) AVCaptureDeviceInput AVCaptureDeviceInput AVCaptureSession AVCaptureMovieFileOutput AVFoundation Capture Objects AVCaptureDevice AVCaptureDevice (Camera) (Microphone) AVCaptureDeviceInput AVCaptureDeviceInput AVCaptureConnection AVCaptureConnection AVCaptureSession AVCaptureMovieFileOutput AVCaptureView
    [Show full text]
  • Screen Capture Tools to Record Online Tutorials This Document Is Made to Explain How to Use Ffmpeg and Quicktime to Record Mini Tutorials on Your Own Computer
    Screen capture tools to record online tutorials This document is made to explain how to use ffmpeg and QuickTime to record mini tutorials on your own computer. FFmpeg is a cross-platform tool available for Windows, Linux and Mac. Installation and use process depends on your operating system. This info is taken from (Bellard 2016). Quicktime Player is natively installed on most of Mac computers. This tutorial focuses on Linux and Mac. Table of content 1. Introduction.......................................................................................................................................1 2. Linux.................................................................................................................................................1 2.1. FFmpeg......................................................................................................................................1 2.1.1. installation for Linux..........................................................................................................1 2.1.1.1. Add necessary components........................................................................................1 2.1.2. Screen recording with FFmpeg..........................................................................................2 2.1.2.1. List devices to know which one to record..................................................................2 2.1.2.2. Record screen and audio from your computer...........................................................3 2.2. Kazam........................................................................................................................................4
    [Show full text]
  • Livecode 6.7.6 Release Notes 6/30/15
    LiveCode 6.7.6 Release Notes 6/30/15 LiveCode 6.7.6 Release Notes Table of contents Overview Known issues Platform support Windows Linux Mac Setup Installation Uninstallation Reporting installer issues Activation Multi-user and network install support (4.5.3) Command-line installation Command-line activation Proposed changes Engine changes Ability to set the dontUseQT property for a player object (windows only) Default buttons lose their glow when another button is clicked on Yosemite. Font mapping feature Font mapping file Relocation of resources for Mac standalone applications Add revBrowser error callback messages. Callback messages: New iOS status bar style [[ In App Purchase ]] Calling mobileStoreRestorePurchases when there are no previous purchases to restore Voice Over support Cocoa Support Location Services Disabled with LC 6.6.4 (rc1) Multimedia on MacOS with AVFoundation iOS 8 Support Copy files do not work with the iOS 8 simulator Non-executable file redirection on Mac Determining the edition of the running engine Sound recording returns error message Threaded Rendering Effective points of graphics Player messages aren't sent correctly. Showing a modal dialog confuses mouse state. Nine-way stretch for images Updated text rendering for iOS and OS X Export snapshot with metadata New variant of open and secure socket Multiple density image support for patterns. 1 LiveCode 6.7.6 Release Notes 6/30/15 QT-related features don't work. Objects which are adjacent don't necessary appear so at non integral scale factors. Queuing too many pending messages causes slowdown and random crashes. Inconsistencies in behavior when doing 'delete the selectedChunk'.
    [Show full text]
  • Media #WWDC16
    Media #WWDC16 Delivering an Exceptional Audio Experience A guide to audio best practices and APIs Session 507 Saleem Mohammed Audio Craftsman Doug Wyatt Audio Plumber © 2016 Apple Inc. All rights reserved. Redistribution or public display not permitted without written permission from Apple. Introduction Overview Application CoreAudio and Drivers Introduction Overview Application AVAudioSession AVAudioPlayer AVPlayer AVFoundation AVAudioRecorder CoreAudio and Drivers Introduction Overview Application AVAudioSession AVAudioPlayer AVPlayer AVFoundation AVAudioRecorder AudioToolbox AudioUnits AUGraph CoreAudio and Drivers Introduction Overview Application AVAudioSession AVAudioPlayer AVPlayer AVFoundation AVAudioRecorder CoreMIDI AudioToolbox AudioUnits AUGraph CoreAudio and Drivers Introduction Overview Application AVAudioSession AVAudioPlayer AVPlayer OpenAL AVFoundation AVAudioRecorder CoreMIDI AudioToolbox AudioUnits AUGraph CoreAudio and Drivers Introduction Overview Application AVAudioSession AVAudioPlayer AVPlayer OpenAL AVFoundation AVAudioEngine AVAudioRecorder CoreMIDI AUAudioUnit AudioToolbox AudioUnits AUGraph CoreAudio and Drivers Introduction Agenda Introduction Agenda Essential Setup Simple Playback and Recording Scenarios Advanced Playback and Recording Scenarios Multichannel Audio Introduction Agenda Essential Setup Simple Playback and Recording Scenarios Advanced Playback and Recording Scenarios Multichannel Audio Real-time Audio Instruments, Effects, and Generators MIDI Essential Setup Configuration for iOS, tvOS, and watchOS
    [Show full text]
  • Wirecast for Youtube 6.0.4 Release Notes
    Wirecast for YouTube 6.0.4 Release Notes System Requirements Mac OS X • Operating Systems*: OS X 10.9 Mavericks and OS X 10.10 Yosemite • Wirecast Cam app requires iOS 8 • Mac computer with Intel ‘Sandy Bridge’ chips or higher o i3 recommended for 540p or lower streaming o i5 or higher recommended for 720p streaming o i7 recommended for 1080p streaming • 2GB RAM minimum o 4GB recommended for 1080p streaming • 200MB free hard drive space for installation • Hard drive space for recording to disk • 512 MB PCI-Express graphics card with 3D acceleration o GeForce or Radeon class card recommended • Sufficient upload speed for streaming o Because of the many variables involved in live streaming, a safe rule of thumb is twice the bandwidth of the total bit rate of the stream *Please note: Wirecast for YouTube 6 does not support OS X 10.8 Mountain Lion or previous versions of OS X Windows • Operating Systems*: Windows 7 32-bit & 64-bit and Windows 8 64-bit • Wirecast Cam app requires iOS 8 • Windows computer with Intel ‘Sandy Bridge’ chips or higher o i3 recommended for 540p or lower streaming o i5 or higher recommended for 720p streaming o i7 recommended for 1080p streaming • 2GB RAM minimum o 4GB RAM and 64-bit OS recommended for 720p or higher streaming • 200MB free hard drive space for installation • Hard Drive space for recording to disk • 512 MB PCI-Express graphics card with 3D acceleration o GeForce or Radeon class card recommended o NVIDIA cards may cause some visual distortion if YUV color space rendering is enabled in Preferences.
    [Show full text]
  • 702 Your Apps and the Future of Macos Security 04 Final D
    #WWDC18 •Your Apps and the Future of macOS Security Pierre-Olivier Martel, Security Engineering Manager Kelly Yancey, OS Security Garrett Jacobson, Trusted Execution © 2018 Apple Inc. All rights reserved. Redistribution or public display not permitted without written permission from Apple. • System Security Improvements • User Consent for Data Access • Enhanced Runtime Protections • Developer ID and Notarized Apps •System Security Improvements System Security Improvements Extension to System Integrity Protection • Stronger code signing enforcement for platform binaries • Libraries/Frameworks/Plugins loaded by system processes must be signed by Apple Exceptions for legacy system extension points Trusted Event Dispatching Most security decisions are made through system UI • User intent (open/save dialogs, drag and drop) • User consent (security dialogs, configuration changes) Need to differentiate between the user deciding and software impersonating them New approval mechanism for users to enable software controlling the UI on their behalf Configurable in the Security and Privacy preference pane, in the Accessibility list Trusted Event Dispatching Trusted Event Dispatching Impacted APIs IOHIDPostEvent(…); IOHIDSetMouseLocation(io_connect_t connect, int x, int y); CGEvent.post(tap: CGEventTapLocation) CGEventTap.tapCreate(…, options: CGEventTapOptions, …) // when called without .listenOnly Safari / WebKit Safari • Sandbox adoption for the app and satellite processes WebKit • Audit and removal of risky dependencies from existing sandboxes
    [Show full text]
  • Capturing from the Camera Using AV Foundation on Ios 5 API Enhancements and Performance Improvements
    Capturing From the Camera Using AV Foundation on iOS 5 API enhancements and performance improvements Session 419 Brad Ford iOS Engineering These are confidential sessions—please refrain from streaming, blogging, or taking pictures 1 What You Will Learn • Which iOS 5 captures APIs to use in your app • The AV Foundation capture programming model • iOS 5 Performance improvements in AV Foundation • iOS 5 AV Foundation API enhancements 2 Sample Code for This Session • ChromaKey • RosyWriter • ‘StacheCam • StopNGo (iOS Edition) Materials available at: https://developer.apple.com/wwdc/schedule/details.php?id=419 3 Technology Framework Camera app UIImagePickerController UIKit AVFoundation CoreAudio CoreMedia CoreAnimation 4 Using the Camera in iOS 5 Simple programmatic access API for high, 00:00:15 Hideable camera medium, or low controls UI quality recording -(void)takePicture -(void)setCameraDevice: -(BOOL)startVideoCapture -(void)setCameraFlashMode: User touch to focus, like Camera app User touch and hold to lock AE and AF 5 Why Use AV Foundation Capture? Full access to the camera • Independent focus, exposure, and white balance controls ■ Independent locking ■ Independent points of interest for focus and exposure • Access to video frame data ■ Accurate timestamps ■ Per-frame metadata ■ Configurable output format (e.g. 420v, BGRA) ■ Configurable frame rate ■ Configurable resolution 6 Why Use AV Foundation Capture? Flexible output • Still Image Capture ■ YUV and RGB output ■ Exif metadata insertion • QuickTime Movie Recording ■ Movie metadata
    [Show full text]
  • Ffmpeg Devices Documentation Table of Contents
    FFmpeg Devices Documentation Table of Contents 1 Description 2 Device Options 3 Input Devices 3.1 alsa 3.1.1 Options 3.2 avfoundation 3.2.1 Options 3.2.2 Examples 3.3 bktr 3.3.1 Options 3.4 decklink 3.4.1 Options 3.4.2 Examples 3.5 dshow 3.5.1 Options 3.5.2 Examples 3.6 dv1394 3.6.1 Options 3.7 fbdev 3.7.1 Options 3.8 gdigrab 3.8.1 Options 3.9 iec61883 3.9.1 Options 3.9.2 Examples 3.10 jack 3.10.1 Options 3.11 lavfi 3.11.1 Options 3.11.2 Examples 3.12 libcdio 3.12.1 Options 3.13 libdc1394 3.14 openal 3.14.1 Options 3.14.2 Examples 3.15 oss 3.15.1 Options 3.16 pulse 3.16.1 Options 3.16.2 Examples 3.17 qtkit 3.17.1 Options 3.18 sndio 3.18.1 Options 3.19 video4linux2, v4l2 3.19.1 Options 3.20 vfwcap 3.20.1 Options 3.21 x11grab 3.21.1 Options 4 Output Devices 4.1 alsa 4.1.1 Examples 4.2 caca 4.2.1 Options 4.2.2 Examples 4.3 decklink 4.3.1 Options 4.3.2 Examples 4.4 fbdev 4.4.1 Options 4.4.2 Examples 4.5 opengl 4.5.1 Options 4.5.2 Examples 4.6 oss 4.7 pulse 4.7.1 Options 4.7.2 Examples 4.8 sdl 4.8.1 Options 4.8.2 Interactive commands 4.8.3 Examples 4.9 sndio 4.10 xv 4.10.1 Options 4.10.2 Examples 5 See Also 6 Authors 1 Description# TOC This document describes the input and output devices provided by the libavdevice library.
    [Show full text]
  • Applications Audio
    Applications Audio •Background Music - Background Music, a macOS audio utility: automatically pause your music, set individual apps' volumes and record system audio. •Cog - Free and Open Source Audio Player for macOS. •[Un]MuteMic - macOS app to mute & unmute the input volume of your microphone. Perfect for podcasters. •Tickeys - Instant audio feedback for typing. macOS version. •Mous Player - Simple yet powerful audio player for BSD/Linux/macOS. •SpotSpot - Spotify mini-player for macOS. •SBPlayer - SBPlayer is a beautiful and powerful media player base on VLCKit. •Aural Player - Aural Player is a free and open source audio player application for the macOS platform. Inspired by the classic Winamp player for Windows, it is designed to be to-the-point and easy to use. •Suohai - Audio input/output source lock for macOS. •LocalRadio - LocalRadio is software for listening to "Software-Defined Radio" on your Mac and mobile devices. •fre:ac - The fre:ac audio converter project. •CAM - macOS camera recording using ffmpeg •SpotMenu - Spotify and iTunes in your menu bar. •Lyricism - macOS app to show you lyric what currently iTunes or Spotify is playing. •waveSDR - macOS native desktop Software Defined Radio application using the RTL-SDR USB device. •Lyrics - Swift-based iTunes plug-in to display lyrics on the desktop. •LyricsX - Lyrics for iTunes, Spotify and Vox. •jmc - jmc - new macOS media organizer. •Muse - Open source Spotify controller with TouchBar support. •Sonora - Minimal, beautifully designed music player for OS X. •AUHost - Application which hosts AudioUnits v3 using AVFoundation API. •iTunes-Volume-Control - This app allows you to control the iTunes volume using volume up and volume down hotkeys.
    [Show full text]
  • A Deep Dive Into Macos MDM (And How It Can Be Compromised) by Jesse Endahl & Max Bélanager
    A Deep Dive into macOS MDM (and how it can be compromised) by Jesse Endahl & Max Bélanager August 2018 Version 1.0 About the authors 4 Acknowledgements 4 Summary 4 Basics 5 What is MDM? 5 Setup process 5 What is DEP? 6 Setup process 6 What are configuration profiles? 7 Overview 8 Entities 8 Protocols & Authentication 9 MDM 9 MDM network communication 11 MDM authentication 12 DEP 13 DEP Reseller API 13 DEP “cloud service” API 15 DEP internal API 16 DEP authentication 16 DEP Reseller API Authentication 16 DEP “cloud service” API Authentication 17 DEP internal API Authentication 18 SCEP 18 SCEP Authentication 18 APNs 19 Establishment of trust 20 MDM 20 Establishment of trust between MDM vendor and Apple 20 Establishment of trust between Customer, MDM vendor, and Apple 20 DEP 21 Establishment of trust between Reseller and Apple 21 Establishment of trust between Reseller and Customer 21 Establishment of trust between MDM Vendor and Apple 22 Establishment of trust between Device and Apple 22 Establishment of trust between Device and MDM Vendor 22 Putting it all together: Device bootstrap overview (DEP + MDM) 25 Deep Dive 25 Architecture 26 ConfigurationProfiles.framework 26 Step 4: Retrieving the activation record 27 Step 5: Retrieving the activation profile 29 Step 6: Installing the activation profile 30 Step 7: Listening for commands 33 Vulnerability: InstallApplication 33 Fix: InstallEnterpriseApplication 37 Conclusion 38 Takeaways 38 MDM Vendor Product Security Checklist 38 Recommendations for Apple 39 Appendix 40 Trust hierarchy on macOS 40 Authentication methods 40 List of macOS binaries related to MDM 41 List of Apple server URLs 45 openssl output 47 About the authors Jesse Endahl Jesse Endahl is co-founder, CPO, and CSO at Fleetsmith.
    [Show full text]
  • TLS Cryptographic Hashes
    System Frameworks #WWDC17 Your• Apps and Evolving Network Security Standards • Session 701 Bailey Basile, Secure Transports Engineer Chris Wood, Secure Transports Engineer © 2017 Apple Inc. All rights reserved. Redistribution or public display not permitted without written permission from Apple. BEAST FREAK CRIME Sweet32 SLOTH POODLE LogJam FLAME SHAttered Lucky13 NOMOREMis-issuanceFactoring BREACH DROWN 3HS BEAST FREAK CRIME POODLE Sweet32 SLOTH LogJam FLAME SHAttered Lucky13 NOMORE Factoring BREACH DROWN Mis-issuance 3HS • Best practices • Best practices • App Transport Security update • Best practices • App Transport Security update • Transport Layer Security Best• Practices Best Practices Best Practices No “set and forget” Best Practices No “set and forget” Standards bodies, academic research, and industry best practices Best Practices No “set and forget” Standards bodies, academic research, and industry best practices Update libraries Best Practices No “set and forget” Standards bodies, academic research, and industry best practices Update libraries OS removes insecure options Best Practices No “set and forget” Standards bodies, academic research, and industry best practices Update libraries OS removes insecure options ATS enforces best practices Best Practices No “set and forget” Standards bodies, academic research, and industry best practices Update libraries OS removes insecure options ATS enforces best practices Worth the maintenance cost Best Practices BEAST FREAK CRIME POODLE Sweet32 SLOTH NOMORE FLAME SHAttered Lucky13 LogJam
    [Show full text]