Jailbreaking

Jailbreaking gives the user of an Apple device running iOS, iPadOS, tvOS, or watchOS root access to the file system and file manager, also known as privilege escalation. This is typically done by patching the kernel to bypass code signing and allows the user to execute and install third party files, apps, themes, and features that are not available on Apple’s App Store or not allowed to be run on the device. There are many types of jailbreaks available for different version of iOS, iPadOS, tvOS, and watchOS that vary the necessity of a computer or application.

Types of Jailbreaks

In order to perform a jailbreak, a user will need to run a jailbreaking program from a computer connected to the device. This device is required to have an exploitable version of iOS, iPadOS, tvOS, or watchOS installed for the program to access and patch the kernel. However, when the device boots up, it loads Apple’s original kernel from the hardware, causing it to become unpatched. This requires the device’s kernel to be patched each time it is booted or rebooted.^[1] Depending on the type of jailbreak, a computer or application may be required to re-jailbreak or boot the device.

Untethered use an exploit that is powerful enough to execute a kernel patch each time the device is booted, or rebooted, without the need of a computer or application. This allows the user of the device to reboot the device without losing the jailbreak.^{[1] [2]}

Tethered jailbreaks require a computer to properly boot the device and maintain a patched kernel. However, if the device boots up without a computer, the device will have an unpatched kernel and will be in an unfunctional state and will require the user to reboot and patch the kernel from a computer.^{[1] [2]}

Semi-Tethered jailbreaks allow the device to boot into a fully functional state but will have an unpatched kernel when booted up. The user will need to run the jailbreaking program from the computer to achieve a patched kernel again.^{[1] [2]}

Semi-Untethered jailbreaks are similar to untethered jailbreaks but require the user to trigger the kernel patch process, usually through an application. However, in order for this type of application to be installed on a device, Apple requires the app to be signed with a development certificate. Normal user development certificates expire 7 days after signing and require a computer to resign the certificate, while enterprise certificates never expire once signed and require an Apple Developer Account.^[1]

Purposes

Apple’s App Store policies do not allow for apps to alter the device’s appearance or modify the software’s root files. Apps on the App Store are only allowed to be self-contained.^[3] Jailbreaking allows users of Apple devices running exploitable versions of iOS, iPadOS, tvOS, and watchOS to bypass Apple’s strict policies for apps allowed on the App Store and install themes, apps, and additional features not available on the device or App Store. It also allows for software modification, to change underlying file and hardware locks of the device.

After a device has been jailbroken, package managers can be installed that contain software and apps that were not allowed to be put onto Apple’s App Store.

Customization & Feature Expansion

Through the use of package managers on jailbroken devices, users can download themes and apps that allow users to customize the look of the home screen and the style of font used on websites and apps that are not available on the device from Apple. Users can also change the grid layout by downloading theming engines from the package managers.

Users can also install additional features that cannot be added to a device without Apple adding features through software updates. Users can download apps like Activator, that allow custom button press features and screen gestures to be set to control device functionality such as disabling WiFi or Bluetooth through screen gestures and disabling or enabling lower power mode when the device is unlocked or locked.

Carrier Unlocking

When users purchase devices through cell phone carriers, the device comes network locked so that the device can only be used on that carrier’s network. These network carriers then either charge a fee or require a period of time, typically 3 months, of usage on their network before a user can request a network unlock to use the device on another carrier’s network. However, since jailbreaking a device allows the user root file write access, users can manipulate the existing underlying file code and structure. Users can run an unlocking program on a jailbroken device that modifies the baseband code, which keeps track of the cellular network the device is locked to and what network it can send and receive data, messages, and phone calls on.^[4]

Ethical Concerns

Due to the nature of jailbreaking not being regulated by a governing force or group of people, jailbreaking gives a rise to many ethical concerns. Although the process of jailbreaking is legal, there are still actions users can do through jailbreaking that are considered illegal by law and untethical.

Piracy & Copyright

Digital Rights Management or DRM is used to describe technology or software that aims to stop or ease the practice of piracy and protect copyright. Apple uses DRM to locks to prevent illegally downloading and sharing music from iTunes or apps from the App Store. Streaming apps on the App Store like Spotify, Netflix, HBO, and Amazon use Apple’s DRM system on devices running iOS, iPadOS, tvOS, and watchOS to limit places you can cast, download, and stream movies and videos to. However, since jailbreaking a device allows users write access to the entire Apple File System (APFS) on the device, they can download tweaks or programs that modify the DRM system to allow the user to stream, download, and cast videos, movies, and music to any device the user wants.^{[4] [5]} This allows users to upload illegally download movies, videos, and music to file sharing websites or even sell through other means.

Security & Privacy

Due to jailbreaking and package managers not being regulated, files, third-party apps, and other software are not tested and certified before they are uploaded to package managers for users to download. Because jailbreaking allows write access to the device’s APFS, any installed application or software can modify any files or insert code to manipulate and steal data from the device.^[4] These software programs and applications can introduce malware, spyware, and viruses and hackers that can connect to a user’s device and steal personal information and location information, exposing the user in real time.^[6]

Resources

1. ↑ ^{1.0 1.1 1.2 1.3 1.4} Promon,What You Need to Know About iOS Jailbreaks, Promon
2. ↑ ^{2.0 2.1 2.2} Prateek Panda,Here's How Jailbreak Really Works, Appknox
3. ↑ Mike Keller, Geek 101: What Is Jailbreaking? , PCWorld
4. ↑ ^{4.0 4.1 4.2} Kim Porter, Is jailbreaking legal and safe? , Norton
5. ↑ Alex Heath, How To Stream DRM-Protected Video From iOS Apps Via AirPlay And HDMI [Jailbreak ], Cult of Mac
6. ↑ Apple, Unauthorized modification of iOS can cause security vulnerabilities, instability, shortened battery life, and other issues, Apple