Apple T2

Last updated
Apple T2
Apple T2 APL1027.jpg
General information
LaunchedDecember 14, 2017
DiscontinuedJune 5, 2023
Designed by Apple Inc.
Common manufacturer(s)
Product codeAPL1027
Cache
L1 cache Per core: 126 KB instruction + 126 KB data [1]
L2 cache3 MB shared [1]
Architecture and classification
ApplicationSecurity, Controller
Technology node 16 nm [1]
Microarchitecture ARMv8: "Hurricane"/"Zephyr"
ARMv7: Cortex-A7
Instruction set ARMv8.1-A: A64, A32, T32
ARMv7-A: A32
Physical specifications
Cores
  • 4 (2× Hurricane + 2× Zephyr) [1]
Products, models, variants
Variant(s)
History
Predecessor(s) Apple T1
Successor(s) Apple M1

The Apple T2 (Apple's internal name is T8012) [2] security chip is a system on a chip "SoC" tasked with providing security and controller features to Apple's Intel based Macintosh computers. It is a 64-bit ARMv8 chip and runs bridgeOS. [3] [4] T2 has its own RAM and is essentially a computer of its own, running in parallel to and responding to requests by the main computer that the user interacts with.

Contents

Design

The main application processor in T2 is a variant of the Apple A10, which is a 64-bit ARMv8.1-A based CPU. [1] It is manufactured by TSMC on their 16 nm process, just as the A10. Analysis of the die reveals a nearly identical CPU macro as the A10 which reveals a four core design for its main application processor, with two large high performance cores, "Hurricane", and two smaller efficiency cores, "Zephyr". Analysis also reveals the same amount of RAM controllers, but a much reduced GPU facility; three blocks, only a quarter the size compared to A10. [1]

The die measures 9.6 × 10.8 mm, a die size of 104 mm2, which amounts to about 80% of the size of the A10. [1]

As it serves as a co-processor to its Intel based host, it also consists of several facilities handling a variety of functions not present in the host system's main platform. It is designed to stay active even if the main computer is in a halted low power mode. The main application processor in T2 is running an operating system called bridgeOS.

The secondary processor in T2 is an 32-bit ARMv7-A based CPU called Secure Enclave Processor (SEP) which has the task of generating and storing encryption keys. It is running an operating system called "sepOS" based on the L4 microkernel. [5]

The T2 module is built as a package on a package (PoP) together with its own 2 GB LP-DDR4 RAM in the case of iMac Pro [6] or 1 GB in the case of MacBook Pro 15" early 2019. [1] [7]

The T2 communicates with the host via a USB-attached Ethernet port. [3]

Security features

There are numerous features regarding security, including:

The T2 is integral in the boot sequence and upgrading of operating systems, not allowing unsigned components to interfere. [4] [8] [9] [10]

Other features

There are other facilities present not directly associated with security.

History

The Apple T2 was first released in the iMac Pro in late 2017.

On July 12, 2018, Apple released an updated MacBook Pro that includes the T2 chip, which among other things enables the "Hey Siri" feature. [12] [13]

On November 7, 2018, Apple released the updated Mac mini and MacBook Air models with the T2 chip. [14] [15] MacBook Air’s Touch ID sensor is powered by the chip.

On August 4, 2020, a refresh of the 5K iMac was announced, including the T2 chip. [16]

The functionality of the T2 chip is incorporated in Apple’s M-series CPUs, thus eliminating the need for a separate chip in Apple silicon-powered computers. [5] No computer since late 2020 shipped with a T2 chip.

Security vulnerabilities

In October 2019 security researchers began to theorize that the T2 might also be affected by the checkm8 bug as it was roughly based on the A10 design from 2016 in the original iMac Pro. [17] Rick Mark then ported libimobiledevice to work with the Apple T2 providing a free and open source solution to restoring the T2 outside of Apple Configurator and enabling further work on the T2. [18] On March 6, 2020 a team of engineers dubbed T2 Development Team exploited the existing checkm8 bug in the T2 and released the hash of a dump of the secure ROM as a proof of entry. [19] The checkra1n team quickly integrated the patches required to support jailbreaking the T2. [20] [21] [22] [23]

The T2 Development Team then used Apple's undocumented vendor-defined messages over USB power delivery to be able to put a T2 device into Device Firmware Upgrade mode without user interaction. This compounded the issue making it possible for any malicious device to jailbreak the T2 without any interaction from a custom charging device. [24] [25] [26]

Later in the year the release of the blackbird SEP vulnerability further compounded the impact of the defect by allowing arbitrary code execute in the T2 Secure Enclave Processor. [27] This had the impact of potentially affecting encrypted credentials such as the FileVault keys as well as other secure Apple Keychain items.

Developer Rick Mark then determined that macOS could be installed over the same iDevice recovery protocols, which later ended up true of the M1 series of Apple Macs. [28] On September 10, 2020 a public release of checkra1n was published that allowed users to jailbreak the T2. [29] [30] The T2 Development Team created patches to remove signature validation from files on the T2 such as the MacEFI as well as the boot sound. Members of the T2 Development Team begin answering questions in industry slack instances. [31] A member of the security community from IronPeak used this data to compile an impact analysis of the defect, which was later corrected to correctly attribute the original researchers [32] The original researchers made multiple corrections to the press that covered the IronPeak blog. [33]

In October 2020, a hardware flaw in the chip's security features was found that might be exploited in a way that cannot be patched, using a similar method as the jailbreaking of the iPhone with A10 chip, since the T2 chip is based on the A10 chip. Apple was notified of this vulnerability but did not respond before security researchers publicly disclosed the vulnerability. [34] It was later demonstrated that this vulnerability can allow users to implement custom Mac startup sounds. [35] [36]

Products with the T2 chip

See also

Related Research Articles

<span class="mw-page-title-main">Mac transition to Intel processors</span> 2005–2006 transition of Apple Inc.s Mac computers from PowerPC to Intel x86 processors

In 2005 and 2006, Apple switched the CPUs of Mac and Xserve computers from PowerPC to the x86 architecture from Intel.

<span class="mw-page-title-main">MacBook Pro</span> Line of notebook computers

The MacBook Pro is a line of Mac laptops made by Apple Inc. Introduced in January 2006, it is the higher-end lineup in the MacBook family, sitting above the consumer-focused MacBook Air. It is currently sold with 13-inch, 14-inch, and 16-inch screens, all using Apple silicon M-series chips.

iMac (Intel-based) Line of all-in-one desktop computers by Apple Inc.

The Intel-based iMac is a discontinued series of Macintosh all-in-one desktop computers designed, manufactured and sold by Apple Inc. from 2006 to 2022. While sold, it was one of three desktop computers in the Macintosh lineup, serving as an all-in-one alternative to the Mac Mini, and sat below the performance range Mac Pro. It was sold alongside the Xeon-based iMac Pro from 2017 to 2021.

The MacBook Air is a line of laptop computers developed and manufactured by Apple since 2008. It features a thin, light structure in a machined aluminum case and a 13-inch screen. The Macbook Air's lower prices relative to the larger, higher performance MacBook Pro have made it Apple's entry-level notebook since the discontinuation of the original MacBook line in 2011.

<span class="mw-page-title-main">MacBook</span> Line of laptop computers by Apple

The MacBook is a brand of Mac notebook computers designed and marketed by Apple Inc. that use Apple's macOS operating system since 2006. It replaced the PowerBook and iBook brands during the Mac transition to Intel processors, announced in 2005. The current lineup consists of the MacBook Air (2008–present) and the MacBook Pro (2006–present). Two different lines simply named "MacBook" existed from 2006 to 2012 and 2015 to 2019. The MacBook brand was the "world's top-selling line of premium laptops" as of 2015.

<span class="mw-page-title-main">Mac (computer)</span> Family of personal computers made by Apple

The Mac, short for Macintosh, is a family of personal computers designed and marketed by Apple Inc. The product lineup includes the MacBook Air and MacBook Pro laptops, as well as the iMac, Mac Mini, Mac Studio and Mac Pro desktops. Macs are sold with the macOS operating system.

On Apple devices running iOS and iOS-based operating systems, jailbreaking is the use of a privilege escalation exploit to remove software restrictions imposed by the manufacturer. Typically it is done through a series of kernel patches. A jailbroken device permits root access within the operating system and provides the right to install software unavailable through the App Store. Different devices and versions are exploited with a variety of tools. Apple views jailbreaking as a violation of the end-user license agreement and strongly cautions device owners not to try to achieve root access through the exploitation of vulnerabilities.

iMac Line of all-in-one desktop computers by Apple Inc.

iMac is a family of all-in-one Mac desktop computers designed and built by Apple Inc. It has been the primary part of Apple's consumer desktop offerings since its debut in August 1998, and has evolved through seven distinct forms.

Thunderbolt is the brand name of a hardware interface for the connection of external peripherals to a computer. It has been developed by Intel, in collaboration with Apple. It was initially marketed under the name Light Peak, and first sold as part of an end-user product on 24 February 2011.

iPad Line of tablet computers by Apple

The iPad is a brand of iOS and iPadOS-based tablet computers that are developed by Apple Inc. The iPad was conceived before the related iPhone but the iPhone was developed and released first. Speculation about the development, operating system, and release of the original iPad began in 2002 prior to its introduction on January 27, 2010. The iPad range consists of the original iPad lineup and the flagship products iPad Mini, iPad Air, and iPad Pro.

<span class="mw-page-title-main">Apple silicon</span> System-on-chip processors designed by Apple Inc.

Apple silicon is a series of system on a chip (SoC) and system in a package (SiP) processors designed by Apple Inc., mainly using the ARM architecture. They are the basis of Mac, iPhone, iPad, Apple TV, Apple Watch, AirPods, AirTag, HomePod, and Apple Vision Pro devices.

iPad Pro Line of Apple tablet computers (2015–present)

The iPad Pro is a premium model of Apple's iPad tablet computer. It runs iPadOS, a tablet-optimized version of the iOS operating system.

macOS High Sierra Fourteenth major release of macOS

macOS High Sierra is the fourteenth major release of macOS, Apple Inc.'s desktop operating system for Macintosh computers. macOS High Sierra was announced at the WWDC 2017 on June 5, 2017 and was released on September 25, 2017. The name "High Sierra" refers to the High Sierra region in California. Its name signified its goal to be a refinement of the previous macOS version, macOS Sierra, focused on performance improvements and technical updates rather than features. This makes it similar to previous macOS releases Snow Leopard, Mountain Lion and El Capitan. Among the apps with notable changes are Photos and Safari.

macOS Catalina 16th major version of the macOS operating system

macOS Catalina is the sixteenth major release of macOS, Apple Inc.'s desktop operating system for Macintosh computers. It is the successor to macOS Mojave and was succeeded by macOS Big Sur. Announced at WWDC 2019 on June 3, 2019 and released to the public on October 7, 2019. Catalina is the first version of macOS to support only 64-bit applications and the first to include Activation Lock. It is also the last version of macOS to have the major version number of 10; its successor, Big Sur, released on November 12, 2020, is version 11. In order to increase web compatibility, Safari, Chromium and Firefox have frozen the OS in the user agent running in subsequent releases of macOS at 10.15.7 Catalina.

<span class="mw-page-title-main">Mac transition to Apple silicon</span> Transition of the Apple Macintosh platform from Intel x86 to ARM processors

The Mac transition to Apple silicon was the process of changing the central processing units (CPUs) of Apple Inc.'s line of Mac computers from Intel's x86-64 processors to Apple-designed systems on a chip that use the ARM64 architecture.

<span class="mw-page-title-main">Apple M1</span> Series of systems-on-a-chip designed by Apple Inc.

Apple M1 is a series of ARM-based systems-on-a-chip (SoCs) designed by Apple Inc. as a central processing unit (CPU) and graphics processing unit (GPU) for its Mac desktops and notebooks, and the iPad Pro and iPad Air tablets. The M1 chip initiated Apple's third change to the instruction set architecture used by Macintosh computers, switching from Intel to Apple silicon 14 years after they were switched from PowerPC to Intel, and 26 years after the transition from the original Motorola 68000 series to PowerPC. At the time of introduction in 2020, Apple said that the M1 had the world's fastest CPU core "in low power silicon" and the world's best CPU performance per watt. Its successor, Apple M2, was announced on June 6, 2022 at WWDC.

iPad Pro (5th generation) 2021 Apple tablet computer

The fifth-generation iPad Pro, colloquially known as the M1iPad Pro, is a line of iPad tablet computers developed and marketed by Apple Inc. Announced on April 20, 2021, it was available with the same screen size options as its predecessor: 11-inch (28 cm) and 12.9-inch (33 cm). Preorders began on April 30, 2021, and the product was released worldwide on May 21, 2021. It comes in two colors: Silver and Space Gray.

<span class="mw-page-title-main">MacBook Air (Intel-based)</span> Line of ultraportable notebook computers by Apple

The Intel-based MacBook Air is a discontinued line of notebook computers developed and manufactured by Apple Inc. from 2008 to 2020. The Air was originally positioned above the previous MacBook line as a premium ultraportable. Since then, the original MacBook's discontinuation in 2011, and lowered prices on subsequent iterations, made the Air Apple's entry-level notebook.

macOS Monterey 18th major version of the macOS operating system

macOS Monterey is the eighteenth major release of macOS, Apple's desktop operating system for Macintosh computers. The successor to macOS Big Sur, it was announced at WWDC 2021 on June 7, 2021, and released on October 25, 2021. macOS Monterey was succeeded by macOS Ventura, which was released on October 24, 2022.

<span class="mw-page-title-main">MacBook Pro (Intel-based)</span> Line of notebook computers

The Intel-based MacBook Pro is a discontinued line of Macintosh notebook computers sold by Apple Inc. from 2006 to 2021. It was the higher-end model of the MacBook family, sitting above the consumer-focused MacBook Air, and was sold with 13-inch to 17-inch screens.

References

  1. 1 2 3 4 5 6 7 8 9 Boldt, Paul (July 11, 2021). "Apple's Orphan Silicon". SemiWiki. Archived from the original on September 22, 2022. Retrieved July 18, 2021.
  2. "The iPhone Wiki: T8012". Archived from the original on 2021-07-31. Retrieved 2021-07-11.
  3. 1 2 3 Davidov, Mikhail; Erickson, Jeremy (August 8, 2019). "Inside The Apple T2" (PDF). Black Hat USA 2019. Archived (PDF) from the original on June 14, 2021. Retrieved July 11, 2021.
  4. 1 2 3 Parrish, Kevin (July 24, 2018). "Apple's T2 chip may be causing issues in iMac Pro and 2018 MacBook Pros". DigitalTrends . Archived from the original on September 18, 2018. Retrieved January 22, 2019. Of all the error messages uploaded to these threads, there is one detail they seem to share: Bridge OS. This is an embedded operating system used by Apple's stand-alone T2 security chip, which provides the iMac Pro with a secure boot, encrypted storage, live "Hey Siri" commands, and so on.
  5. 1 2 3 4 5 "Apple Platform Security: Secure Enclave". Archived from the original on 2021-08-22. Retrieved 2021-07-11.
  6. "iMac Pro teardown". iFixit. 2018-01-02. Archived from the original on 2018-01-03. Retrieved 2021-07-18.
  7. "MacBook Pro 15" Touch Bar 2019 Teardown". iFixit. 2019-05-24. Archived from the original on 2021-07-20. Retrieved 2021-07-18.
  8. 1 2 3 4 5 "iMac Pro Features Apple's Custom T2 Chip With Secure Boot Capabilities". MacRumors . December 14, 2017. Archived from the original on August 18, 2018. Retrieved August 18, 2018.
  9. 1 2 3 4 5 6 Evans, Jonny (23 July 2018). "The MacBook Pro's T2 chip boosts enterprise security". Computerworld. Archived from the original on August 18, 2018. Retrieved August 18, 2018.
  10. 1 2 3 4 5 6 Snell, Jason (January 3, 2018). "The T2 chip makes the iMac Pro the start of a Mac revolution". Macworld. Archived from the original on August 23, 2022. Retrieved August 20, 2022.
  11. "Apple's T2 chip makes a giant difference in video encoding for most users". Archived from the original on 2021-07-11. Retrieved 2021-07-11.
  12. Rossignol, Joe (July 12, 2018). "Apple Launches 2018 MacBook Pros: 8th Gen Core, Up to 32GB of RAM, Third-Gen Keyboard, Quad-Core on 13-Inch and More". MacRumors . Archived from the original on July 12, 2018. Retrieved July 12, 2018.
  13. "Apple updates MacBook Pro with faster performance and new features for pros". Apple Inc. Archived from the original on July 12, 2018. Retrieved July 12, 2018.
  14. Broussard, Mitchel (October 30, 2018). "Apple Announces New MacBook Air With 13-Inch Retina Display and Touch ID". MacRumors . Archived from the original on October 31, 2018. Retrieved October 30, 2018.
  15. Hardwick, Tim (October 30, 2018). "Apple Announces New Space Gray Mac mini With 4-Core or 6-Core Intel Processor and Up to 64GB RAM, Starting at $799". MacRumors . Archived from the original on October 31, 2018. Retrieved October 30, 2018.
  16. "27-inch iMac gets a major update" (Press release). Apple Inc. August 4, 2020. Archived from the original on July 12, 2021. Retrieved July 11, 2021.
  17. "Original GitHub issue". Github. 2019-08-06. Archived from the original on 2021-09-30. Retrieved 2021-07-11.
  18. "T2 Support in libimobiledeive". Twitter. Archived from the original on 2021-07-08. Retrieved 2021-07-11.
  19. "t8012 SecureROM Hash". Twitter. 2020-03-06. Archived from the original on 2021-07-08. Retrieved 2021-07-11.
  20. "checkra1n supports T2". Twitter. Archived from the original on 2021-07-03. Retrieved 2021-07-11.
  21. Bouchard, Anthony (2020-03-18). "Checkra1n experimental pre-release adds preliminary support for iOS 13.4, Mac T2 chip". iDownloadBlog.com. Archived from the original on 2021-06-26. Retrieved 2021-06-26.
  22. "Hacker omzeilt beveiliging T2-chip in recente Mac-computers". Tweakers (in Dutch). Archived from the original on 2021-06-26. Retrieved 2021-06-26.
  23. Mark, Rick (2020-10-07). "On bridgeOS / T2 Research". T2 Dev Team Blog. Timeline of Events. Archived from the original on 2020-10-08.
  24. Rick Mark; mrarm; Aun-Ali Zaidi; h0m3us3r (2020-10-12). "Plug'nPwn - Connect to Jailbreak". The T2 Development Blog. Archived from the original on 2021-10-23.
  25. "T2 Debug Interface Exposed". Twitter. Archived from the original on 2021-07-08. Retrieved 2021-07-11.
  26. "Intel Debug Exposed over T2 interface". Twitter. Archived from the original on 2021-07-05. Retrieved 2021-07-11.
  27. "Blackbird Exploit for Apple SEP". iDownloadBlog. 24 July 2020. Archived from the original on 29 June 2021. Retrieved 11 July 2021.
  28. "macOS restore via USB". Twitter. Archived from the original on 2021-07-06. Retrieved 2021-07-11.
  29. "checkra1n". checkra.in. Archived from the original on 2019-10-10. Retrieved 2021-07-11.
  30. "Hackers jailbreak Apple's T2 security chip powered by bridgeOS". 23 September 2020. Archived from the original on 27 February 2021.
  31. "Industry: bridgeOS / checkra1n Questions". Dropbox Paper. Archived from the original on 2021-06-30. Retrieved 2021-07-11.
  32. "ironPeak". ironpeak.be. Archived from the original on 2021-07-27. Retrieved 2021-07-11.
  33. "Paper". Dropbox. Archived from the original on 2021-07-12. Retrieved 2021-07-11.
  34. "Hackers claim they can now jailbreak Apple's T2 security chip". ZDNET . October 6, 2020. Archived from the original on May 6, 2021. Retrieved July 11, 2021.
  35. "Checkra1n tinkerer demonstrates custom boot sound on T2-equipped Mac". iDownloadBlog.com. 2020-10-29. Archived from the original on 2020-10-30. Retrieved 2021-01-19.
  36. "Apple T2 hack means you can have PS5 sounds be your startup chime". iMore. 2020-11-23. Archived from the original on 2021-01-27. Retrieved 2021-01-19.
  37. "Mac models with the Apple T2 Security Chip". Archived from the original on 2021-07-02. Retrieved 2021-07-11.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.