Isolating things is easy; engineering them to still work is the hard part. If the engineering was easy then every OS would isolate every operation and memory space, and Apple would have isolated these things long ago. But that's not possible because of the performance hit and because of the practicality of using 'perfect security' (it becomes secure even from developers and users).<p>How does Apple choose what to isolate, and how do they make the isolated parts functional with the rest of the system and for developers? And what changed to make it possible now?
May 2024, <a href="https://mastodon.social/@_inside/112440596781136013" rel="nofollow">https://mastodon.social/@_inside/112440596781136013</a><p><i>> It looks like iPadOS running on M4 has a “Secure Exclave” running an “ExclaveOS”.. Where’s the updated Apple platform security PDF? ... There's a Wordle-like game hidden in ExclaveOS. "Securdle" </i>
Original article: <a href="https://randomaugustine.medium.com/on-apple-exclaves-d683a2c37194" rel="nofollow">https://randomaugustine.medium.com/on-apple-exclaves-d683a2c...</a>
Reading this, a bit off-topic and odd software-building-related question came to my mind: Between building and maintaining macOS + iOS vs. building and maintaining Chromium > Chrome, which do you think is more complex, requires more developer hours, and demands more advanced developer skills?