Re: Why Trev Pott is wrong - a privacy advocate's view
A flaw that only Apple can take advantage of (since only they can create iOS updates that are signed with an encrypted certificate held only by Apple) is not the same thing as a flaw that a random hacker or even state actor can take advantage of. Unless they can break into Apple and steal the key used to sign iOS updates. Hopefully Apple restricts access to that to a few people, and keeps it on an air gapped system, but obviously I have no knowledge of their procedures.