What does jailbreaking mean?
Jailbreaking (a smartphone or other electronic device) is the act of removing restrictions imposed by a manufacturer to allow the installation of unauthorized software. This term applies in particular to iOS devices as Apple has very stringent rules on what apps can and cannot do, and developers need to comply with these rules if they want their apps to be available through the App Store.
Why is it a security risk?
Apps available through a jailbreak, by definition, don’t need to comply with Apple’s regulations. Some of these rules may be commercially driven, but others are in place to guarantee some level of security.
For example, by default, iOS provides ways to wall off applications from one another. That way, apps are not able to see private files belonging to other apps, and are not able to modify other apps’ behaviors. On a jailbroken iOS device, however, some overreaching apps may have been installed and run freely, putting the other apps’ data at risk.
What does it mean for my Digital ID data?
Digital ID's security protocol and cryptography are as strong as can be, but, on a jailbroken device, rogue apps may have granted themselves overreaching permissions such as:
- taking screenshots of other apps
- recording keystrokes (which would compromise typed passwords)
- installing a proxy (“man in the middle”) that would grab unencrypted data
In such an environment, the integrity of our users’ data cannot be guaranteed anymore.