New privacy & security related features in macOS Ventura

macOS Ventura should be releasing in few hours. Just letting you know about these…

  • Mail
    • BIMI support
      Identify authenticated email messages with BIMI (Brand Indicators for Message Identification) verified brand iconography.
  • Passkeys
    • Easier and safer replacement for passwords
    • Safe from phishing and website leaks
    • Securer than common 2FA methods
    • work on non‑Apple devices
    • E2EE and sync with iCloud keychain
  • Photos
    • The Hidden and Recently Deleted albums are locked by default and can be unlocked using your login password or Touch ID.
  • Safari
    • WebAuthn(aka passkeys)
    • Web Push
      Notification even if the user does not currently have the site open(oof). This is what apple says about the privacy aspect of this:

Both the WebKit open source project and Apple treat privacy as a fundamental human right. As with other privileged features of the web platform, requesting a push subscription requires an explicit user gesture. It also requires you set the userVisibleOnly flag to true, and fulfill that promise by always showing a notification in response to a push message.

The Web Push API is not an invitation for silent background runtime, as that would both violate a user’s trust and impact a user’s battery life.

Violations of the userVisibleOnly promise will result in a push subscription being revoked.

  • Rapid Security Response
    • Security improvements can be applied automatically between normal updates.
  • Lockdown Mode
    • For very small number of users who face grave, targeted threats to their digital security
    • Hardens your device’s defences and strictly limits certain functions, sharply reducing the attack surface that could potentially be exploited by highly targeted mercenary spyware.
  • Notes
    • Note: Only applies to locked notes
    • Now uses your login password to encrypt end-to-end (before required a separate password).
  • Network
    • The Network Locations feature was removed
  • Hardware
    • Note: only applies to portable Mac computers with Apple silicon.
    • USB and Thunderbolt accessories require user approval before the accessory can communicate
      with macOS for connections wired directly to the USB-C port.
    • This doesn’t apply to power adapters, standalone displays, or connections to an approved hub.
    • Devices can still charge if you choose Don’t Allow.

More info about other fancy features: macOS Ventura - Apple

1 Like