Statements (31)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
computer security model
|
| gptkbp:appliesTo |
gptkb:macOS
|
| gptkbp:documentedIn |
Apple Platform Security documentation
|
| gptkbp:enforcedBy |
least privilege
user consent for sensitive actions |
| https://www.w3.org/2000/01/rdf-schema#label |
macOS security model
|
| gptkbp:includes |
gptkb:XProtect
gptkb:FileVault gptkb:Gatekeeper gptkb:System_Integrity_Protection gptkb:Keychain sandboxing Code Signing App Notarization Gatekeeper Path Randomization Mandatory Access Controls TCC (Transparency, Consent, and Control) |
| gptkbp:prohibits |
root access
third-party kernel extensions |
| gptkbp:protectedBy |
system files
kernel extensions user data |
| gptkbp:provides |
encryption at rest
privacy controls network security features runtime protections |
| gptkbp:requires |
signed software
user approval for certain actions |
| gptkbp:updated |
gptkb:Apple_Inc.
|
| gptkbp:bfsParent |
gptkb:UNIX_security_model
|
| gptkbp:bfsLayer |
7
|