Tielei Wang is a member of Team Pangu. He was a research scientist at the Georgia Institute of Technology from 2012 to 2014 and received his Ph.D. degree in 2011. His research interests include system security, software security, and mobile security. He discovered a number of zero-day vulnerabilities and won the Secunia Most Valued Contributor Award in 2011. He has published many papers in top research conferences including IEEE Security and Privacy, USENIX Security, ACM CCS, and NDSS, and gave several presentations at BlackHat USA, CanSecWest, POC, and RUXCON.
Hao Xu is a member of Team Pangu. He has been involved in information security for over 10 years. His research interests range from OSX/iOS/Windows kernel security, rootkit and malware analysis, hardware virtualization technology, and reverse engineering. He is a regular speaker at Syscan 360, POC, Xcon.
[Abstract]
==========
This talk will start with an introduction to IOKit, the object-oriented device driver framework of the XNU kernel, with a dive into implementations of features such as class inheritance. We will then review the IOKit userclient creation process and analyze a neglected attack surface. Guided by this discovery, we will introduce and analyze a few new similar vulnerabilities on the latest iOS/macOS kernel.