问HN:如何增强手机的安全性?
受到这个讨论帖的启发 - https://news.ycombinator.com/item?id=45106903
每当我听到Pegasus应用程序或在HN上阅读相关内容时,我总会感到有些担忧。今天又是这样的一天。
我相信在HN上有网络安全专家、安全研究人员和信息安全专业人士。你们有什么建议可以让你的手机,尤其是iPhone,像砖头一样坚固吗?我看到了一篇稍显过时的文章,建议不要使用FaceTime和iMessage。但在另一次搜索中,我发现iMessage比传统的SMS/文本消息更安全。我更担心的是零点击漏洞。
https://usa.kaspersky.com/blog/how-to-protect-from-pegasus-spyware/26103/
只是一个想法 - 在手机上安装防火墙[0]以阻止任何传入请求或将其隔离以供审核是否有效?用户发起的请求与独立请求到达手机是不同的。为了避免混淆,这里需要澄清一下。
此外,可以使用流量监控工具[1]来监测过多的外发流量或过多的硬盘读取,以检测是否存在安全漏洞。
我也在考虑开发一个自定义的安全保险库应用,更像是一个隔离的沙盒;如果我觉得可以实现,我会分享更多细节。任何建议、书籍、文章或视频都非常感谢。
安全是一个引人入胜的话题;让我们讨论一下。
[0] : https://apps.apple.com/us/app/guardian-firewall-vpn/id1363796315
[1]: https://apps.apple.com/us/app/traffic-monitor-with-widget/id482570191
[2]: https://www.youtube.com/watch?v=1p0Xm-Opzjg (捕捉NSO集团的Pegasus间谍软件)
[3]: https://help.apple.com/pdf/security/en_US/apple-platform-security-guide.pdf
[4]: https://www.reuters.com/technology/cybersecurity/governments-spying-apple-google-users-through-push-notifications-us-senator-2023-12-06/
查看原文
Inspired by this thread - https://news.ycombinator.com/item?id=45106903<p>Whenever I hear the Pegasus app or read about it at HN, I get a bit worried. So, today was that day again.<p>I'm sure we have cybersecurity experts, security researchers, and Infosec pros here at HN. What do you recommend to keep your phone, especially an iPhone, hardened as a brick? Came across the following article, although a bit dated, which suggests not using FaceTime and iMessage. But in another search, I found iMessage is more secure than just plain old SMS/Text. I'm more worried about zero-click exploits.<p>https://usa.kaspersky.com/blog/how-to-protect-from-pegasus-spyware/26103/<p>Just a thought - would having a firewall[0] on your phone to block any incoming request or quarantine it for review will work? A response to a user-initiated request is different than an independent request coming to your phone. A clarification to avoid mixing both.<p>Also, a traffic monitor[1] to watch excessive outgoing traffic or excessive hard drive reads to detect if you are compromised.<p>I've also been thinking about developing a custom Secure Vault app, more like an isolated Sandbox; I'll share more details about it if I think I can pull it off. Any pointers, books, articles, or videos are greatly appreciated.<p>Security is a fascinating topic; Let's discuss.<p>[0] : https://apps.apple.com/us/app/guardian-firewall-vpn/id1363796315<p>[1]: https://apps.apple.com/us/app/traffic-monitor-with-widget/id482570191<p>[2]: https://www.youtube.com/watch?v=1p0Xm-Opzjg (Catching NSO Group's Pegasus spyware)<p>[3]: https://help.apple.com/pdf/security/en_US/apple-platform-security-guide.pdf<p>[4]: https://www.reuters.com/technology/cybersecurity/governments-spying-apple-google-users-through-push-notifications-us-senator-2023-12-06/