why should people in iran not be allowed access? there are many great iranian security researchers. they should have the same access as anyone else.
1
0
0
0
I was guessing, based on some sort of national security gubbins.
1
0
0
0
you're probably right though. corellium will likely approve whatever customers show up with the money and they deem suitable (read: western). which probably means researchers who would report to apple, but happen to live in other countries, don't get access.
1
0
0
0
btw, i disapprove of apple holding this policy with regards to the security research device program as well
the only unfair rule in apple’s security research device terms is that u can’t be on the SDN list
1
0
0
0
But you only mention it now that the mud you're currently flinging hasn't stuck.
1
0
0
0
i tweeted that yesterday, before we were having this discussion
1
0
0
1
But you were comparing apple favourably to Corellium. Now the difference seems to have evaporated.
1
0
0
0
by enrolling in the security research device program you are signing up to make apple software more secure. by signing up for corellium you are signing up for ???. one of those definitively improves software security, the other does not
2
0
0
0
SRD blocks: * < 18yos * former Apple employees within 12 months * people who haven't submitted bugs to Apple in the last 12mo on a rolling basis * people who want to publish their research after submitting, except at Apple's discretion * people who don't have a safe to put it in
2
1
1
13
* anyone who missed the window to signup (i.e. anyone at the moment who doesn't already have one) * anyone who wants to impose a disclosure deadline etc etc etc. There's a reason Google Project Zero considered and then declined using it.
1
0
0
10
Also just realized the SRD program died a year ago anyway.

3:48 PM Β· Aug 12, 2021

1
0
0
7