BlogA statement from Amanda Gorton, CEO of Corellium, regarding Apple DMCA filing
December 29, 2019
8 min read

A statement from Amanda Gorton, CEO of Corellium, regarding Apple DMCA filing

Apple’s latest filing against Corellium should give all security researchers, app developers, and jailbreakers reason to be concerned.

Apple’s latest filing against Corellium should give all security researchers, app developers, and jailbreakers reason to be concerned. The filing asserts that because Corellium “allows users to jailbreak” and “gave one or more Persons access… to develop software that can be used to jailbreak,” Corellium is “engaging in trafficking” in violation of the DMCA. In other words, Apple is asserting that anyone who provides a tool that allows other people to jailbreak, and anyone who assists in creating such a tool, is violating the DMCA. Apple underscores this position by calling the unc0ver jailbreak tool “unlawful” and stating that it is “designed to circumvent [the] same technological measures” as Corellium.

Apple is using this case as a trial balloon in a new angle to crack down on jailbreaking. Apple has made it clear that it does not intend to limit this attack to Corellium: it is seeking to set a precedent to eliminate public jailbreaks.

We are deeply disappointed by Apple’s persistent demonization of jailbreaking. Across the industry, developers and researchers rely on jailbreaks to test the security of both their own apps and third-party apps – testing which cannot be done without a jailbroken device. For example, a recent analysis of the ToTok app revealed that an Apple-approved chat app was being used as a spying tool by the government of the United Arab Emirates, and according to the researchers behind this analysis, this work would not have been possible without a jailbreak.

Not only do researchers and developers rely on jailbreaking to protect end users, but Apple itself has directly benefited from the jailbreak community in a number of ways. Many of the features of iOS originally appeared as jailbreak tweaks and were copied by Apple, including dark mode, control center, and context menus. In addition, jailbreak creators regularly contribute to the security of iOS. The developer behind the unc0ver jailbreak was acknowledged and credited by Apple for assisting with a security vulnerability in the iOS kernel – a vulnerability he discovered while using Corellium.

We are prepared to strongly defend against this attack, and we look forward to sharing our formal response to this claim when we file it in court. Until then, we appreciate the outpouring of support from the mobile community that is as concerned as we are by the far-reaching implications of this new filing.

Media contact:

Liz Bradford
lbradford@bradfordpr.com
214-612-8014



Keep reading

Thoughts, stories and ideas from the Corellium team.

Keep reading

Thoughts, stories and ideas from the Corellium team.

View all posts
Where does Mobile App Security Testing fit into the latest NIST SSDF and CISA Zero Trust publications?

Anthony Ricco14 May 2022

Where does Mobile App Security Testing fit into the latest NIST SSDF and CISA Zero Trust publications?

Where does Mobile App Security Testing fit into the latest NIST SSDF and CISA Zero Trust publications?

It’s hard to find useful, well contributed to information on mobile security testing and best practices. Recent cybersecurity publications from U.S. gov agencies often confuse the search. Here’s one interpretation of how they’re interrelated.

Technical Writeups
Armv9 and Corellium: Why we chose Arm vs X86

Amanda Gorton5 Apr 2021

Armv9 and Corellium: Why we chose Arm vs X86

Armv9 and Corellium: Why we chose Arm vs X86

Last week, Arm gave us a glimpse into the future by unveiling the next-generation of Arm processors: the Armv9 architecture. This is a huge deal for the future of mobile devices, and there are two groups of features in Armv9 that we’re particularly excited about.

Technical Writeups

Amanda Gorton7 Nov 2019

A statement from Amanda Gorton, CEO of Corellium, regarding Apple lawsuit

A statement from Amanda Gorton, CEO of Corellium, regarding Apple lawsuit

In an effort, we believe, to stifle innovation and the freedom of mobile developers, Apple has filed a complaint against Corellium, claiming our company infringed on its copyrighted works.

Media Room
Corellium Workshop at Arm DevSummit 2020

Amanda Gorton18 Dec 2020

Corellium Workshop at Arm DevSummit 2020

Corellium Workshop at Arm DevSummit 2020

In October, Corellium presented an interactive workshop at the Arm DevSummit called “App Unknown: An Introduction to Rapid Security Analysis on Arm.”

Workshops
Usage-Based Billing

Amanda Gorton8 Jan 2021

Usage-Based Billing

Usage-Based Billing

A quick demo of our usage-based subscription option.

Demo
$25M to Accelerate Arm Testing, Research, and Development

Hayden Bleasel17 Dec 2021

$25M to Accelerate Arm Testing, Research, and Development

$25M to Accelerate Arm Testing, Research, and Development

We've raised a Series A round with our friends at Paladin and Cisco Investments.

Media Room
Corellium Open Security Initiative

Amanda Gorton16 Aug 2021

Corellium Open Security Initiative

Corellium Open Security Initiative

In honor of Corellium’s fourth birthday, we’re announcing the Corellium Open Security Initiative to support independent public research into the security and privacy of mobile applications and devices.

Media Room
How We Ported Linux to the M1

Amanda Gorton20 Jan 2021

How We Ported Linux to the M1

How We Ported Linux to the M1

A brief overview of our approach to porting Linux to the Apple Mac Mini M1 and a tutorial for installing our Ubuntu POC

Technical Writeups
Announcing Support for iOS on Individual Cloud Accounts

Amanda Gorton25 Jan 2021

Announcing Support for iOS on Individual Cloud Accounts

Announcing Support for iOS on Individual Cloud Accounts

We’re very excited to announce that virtual iOS-based devices are now available for individual accounts on our groundbreaking security research platform.

Media Room
Announcing the 2021 COSI Award Winner

Amanda Gorton29 Oct 2021

Announcing the 2021 COSI Award Winner

Announcing the 2021 COSI Award Winner

Today, we're very excited to announce that the winner of the 2021 COSI Award is James Sebree, a Principal Research Engineer at Tenable.

Media Room
Mobile Physical Memory Security

Amanda Gorton21 Dec 2020

Mobile Physical Memory Security

Mobile Physical Memory Security

While developing our mobile hardware models, we've run into a large array of schemes aimed at improving physical memory security.

Technical Writeups
View all posts