Trust asset version 11??

watafkabout wrote:

Hi Lawrence, can I ask how you are able to obtain this information Regards to the trust and asset version 11 - I ask because well in general there are millions of apple devices out in the world and when information is searched about trust and asset store versions the results that are displayed for the topic are absolutely minimal and majority of that is made up of people saying help iv been hacked and not much on the actual real meaning or purpose of its place in the iOS, also I was in touch with apple on 29/12 at night and the staff had no idea of the asset version 11 as there was nothing released from apple to web about this updated version ttand so I was escalated any would

When you access any site that supports Transport Level Security (TLS) the verification process uses public key cryptography (which was invented by one of my college classmates, BTW). The site has a private key; users who access the site have the associated public key. When you access the site the public key that your device has is sent to the site, where it is compared with the secret private key, and if they match end to end encryption is established. But how do you know the site can be trusted? The site has a public/private key pair that is issued by a trusted provider (a “certificate authority”). The trust store holds the public keys for certificate authorities, the issuers of certificates. So when you go to a site that site’s certificate includes the identity of the certificate authority that issued the certificate, and if it matches an entry in the trust store your phone allows you to access the site. If the site’s certificate was not issued by a trusted certificate authority you will get a warning that the site might not be trusted. On rare occasion a certificate authority might become untrusted (this happened once last year); in that event its certificate will be removed from the trust store. Certificate Authorities issue new keys periodically, as their own certificates expire; their new keys are included in an update to the trust store. But the old keys are not removed to maintain backward compatibility.

The trust store cannot be edited or hacked; it’s a protected file in iOS.

Here is more detailed information → https://fpki.idmanagement.gov/truststores/

It doesn’t matter what your version and trust asset value is. Whatever it is it represents the latest version of the trust store as of the time the last iOS update was released. The Trust Store is an integral part of the iOS version you have installed. If your Apple ID was compromised that has nothing to do with the trust store version, as the trust store protects your phone, by warning you if a site you are visiting does not have a valid SSL certificate. The trust store has nothing to do with your Apple ID. See the Apple Recommended post at the top of this page.

For your Apple ID, see→If you think your Apple ID has been compromised - Apple Support

Well, the trust store is not editable, and is built in to iOS. So anything in it was put there by Apple. They have not updated the list of trusted certificates recently, but here is the last one → List of available trusted root certificates in iOS 13, iPadOS 13, macOS 10.15, watchOS 6, and tvOS 13 - Apple Support

I’ve just requested the forum manager to ask the appropriate authorities to publish an updated list.

However, the certificates in the trust store are identified, and anyone with a little perseverance can verify all of them with certificate registration databases on the web.

Thanks Lawrence, that’s a great help - apple should be paying u for doing a better job than the phone support ever do haha, but I have one unrelated question - I’m wondering how the situation goes with reg to a mobile phone number, iv had same number for a fair amount of years , but due to some events I have had in past I have had to walk away from my original main apple account - created a new Apple ID on another device - x stuffed that idea up also so now have crated my 3rd Apple ID on a new device again- so the old accounts all shared the Same phone number is the current phone I’m on now- I never deactivated the old accounts as couldn’t be bothered with its issues , so if those accounts all held the same phone number as verification authentication, how does this work with apple establishing the right Apple ID that phone number is being used for upon log in with phone number- basically what security issues could I be causing by having this number on 3 accounts.?

thanks for ur time

watafkabout wrote:

Thanks Lawrence, that’s a great help - apple should be paying u for doing a better job than the phone support ever do haha, but I have one unrelated question - I’m wondering how the situation goes with reg to a mobile phone number, iv had same number for a fair amount of years , but due to some events I have had in past I have had to walk away from my original main apple account - created a new Apple ID on another device - x stuffed that idea up also so now have crated my 3rd Apple ID on a new device again- so the old accounts all shared the Same phone number is the current phone I’m on now- I never deactivated the old accounts as couldn’t be bothered with its issues , so if those accounts all held the same phone number as verification authentication, how does this work with apple establishing the right Apple ID that phone number is being used for upon log in with phone number- basically what security issues could I be causing by having this number on 3 accounts.?

thanks for ur time

I haven’t encountered that in the past, so you may have to ask Apple → Contact Apple for help with Apple ID account security - Apple Support. I could make an educated guess; you can certainly use the same phone number as a trusted number for multiple 2 factor accounts in general, and I doubt that Apple is any different. However, for Apple’s 2FA the primary trusted device is the device itself, not the phone number of the device. Trusted phone numbers are backup in the event the trusted device is unavailable.

Once again a great explanation, thanks, noting that I’m very very very well aware of the warning messages that are shown when there are issues with your device trying to shake hands with a trusted sight , iv always had apple devices how ever in 2017 after having so many issues with my apple account and Mac book pro ( that looking back was no doubt physically messed with by the very very capable people all associations of a now x partner ) I thought I’d give the Samsung s8 a try - worst mistake iv ever made besides dating her to begin with lol.. some people are just addicted to the spying side of knowing everything it’s surely going to be diagnosed by doctors soon lol, but given Android is much easier to mess with and can be done from remotely, I think it lasted 3 days before the setting in device for auto update apps when on home wifi caught me out and allowing again assuming the x and the mother to manage/mess with it big time , I went through **** with trying to understand so many things that were just not normal and very targeted, but in doing that basically gave my self a good schooling and Greater knowledge on many areas of Technology, I had my phone company provide me proof of purchases documents with dates of account set up on there end being some 12 days before I had even been and got or thought about what phone I was even going to get , Samsung had account activated 3 days before my phone was even brought like both my original copy’s of contract had..! But yep wow the Samsung s8 gave me more opened red padlocks in emails and searches and warnings to any bloody web search I’d tried , so I’m 5months I’d think I had far more certificate issues than most people probably would receive in a life time lol..

so went back to apple haha

One thing I do need is a trustable skilled Mac IT guy in Australia Victoria- that can open up my 2012 Mac Pro and view the internal for any mods or view running processor for what ever it’s had done to it .. know any one ?

Sorry, I don’t know anyone in Victoria; well, actually I do know a few people in Melbourne, but they’re not techies. And also a couple in NSW, but again, not techies, with the exception of one who spent time in prison for hacking, but he’s got a new identity so that won’t help either. And I haven’t visited any of them for 15 years now.

Hi so I’m on iPhone 6s Plus running version 14.2

and I also have the trust asset version 11with the same trust store version as u , I agree it’s a bit odd that there is F all info on web and iv spoken to apple they are saying that there technically advance team will be responding to me tomorrow with the reason for this , as much as I know is that the trust store is the encryption for security that is the version number that holds all the certificates to do with your whole system and secured connections- the asset version is to do with profiles like if say a school kid used the device at school then due to the school banning certain web sights like porn for example- the kids each have to have a identification profile provided by the school so they can search on the schools wifi for birds and bee’s as this is not banned like porn is:) I doubt very much it’s a hack plus that can’t be done remotely, do u have any profiles u have added to your device , I don’t but still I have the same questions as yourself.

What you saw in an ad was a scam. Your phone cannot be hacked remotely → Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support

I think it’s just coincidence that the asset version was 11 for the updated trust store. I have an update on my phone that shows asset version 12. The trust store version and asset version only change when you update iOS; the trust store is part of the iOS version.

Factory resets erase profiles, however, there is an Apple service called Mobile Device Management ( MDM). If a device is registered under MDM a record of that is maintained on Apple’s activation servers, so if you try to activate such a device the MDM administrator for the company that registered it is notified and the activation server will display a note on the phone that the device is under MDM and the name of the company it is registered to. This is has nothing to do with profiles. It is similar to the way Activation Lock works. Here is more detail → Use Automated Device Enrollment - Apple Support

My Apple ID was jeopardized. I had my Mac erased at the Apple store. I am checking my iPhone setting and I have trust store version 2920082800 on my iPhone 11 , BUT MY TRUST ASSET IS 12. Help!

The most current trust store version is 2020082800 Trust asset version 11, which is what you have. The Trust Store is updated any time any of the certificates in it are updated by the certificate authority that issued them. The are also additive; that is, if a certificate authority issues a new certificate, the previous one is generally still valid and recognized, and included in the Trust Store.

Your iPhone cannot have any viruses unless you jailbroke it.

Hi Lawrence seen plenty of your informational posts and yes agreed that no remote hacks can be done by clicking on a web page, and that physical access is required to be able to perform such malicious acts- now that stated- if your device like mine is pre owned - are there possibly ways that the phone can be messed with that even once the new owner factory resets the device the device can still be insecure as such, I just found it odd that when apple support team said that factory resets would not erase profiles that were associated with the device implying that if my device had pre installed profiles they would still be present in my phone and that the business or school for say would still have the control to monitor device traffic etc..