You can make a difference in the Apple Support Community!
When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.
When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.
I’m currently on iOS 16.5 and my trust store version is 2023032800. According to Apple, the current Trust Store version for iOS 16, is 2022070700. Why is mine different??
[Re-Titled by Moderator]
iPhone 12 Pro, iOS 16
Oh new weird scary issue… I chatted on my message app with “Apple Support” today. When checking their icon in my messages it took me to the actual name of who I was speaking to. It read Apple Electronics Store lmao. When I asked the chat guy he said that it’s because the brand of apple is the electronics store omg! He went on to say more too. Then at the end of the chat I was invited to complete a survey and the address is feedback.applesurveys.com!! It’s not even an apple domain! So I’m pretty sure the hackers were chatting to me to get more info from me. Like my new phone number I had just gotten today hoping to fix this problem. I’ll have to get another new one now. But maybe you can verify if that is an apple website. From what I found it’s feedback. Apple.com. I’ll include photos as I thought it was pretty funny this guys explanation for why his apple impersonation was below the mediocre line at best.
MissFiddy333 wrote:
I’m concerned my trust asset version is 1002. Apple only has up to 21 from research I have done. My mother’s phone on the same plan shows this …
https://discussions.apple.com/content/attachment/520eac73-d7c0-4ad1-bd05-962998037915
I'm concerned I have a root certificate and it’s forced.
It is associated with a carrier (ISP) app you have installed.
I cannot remove it.
Remove the Comcast Xfinity app.
Doesn’t that usually mean a iphone is jail broken?
No.
I’ve had iPhones since the 1st one came out. I’ve never seen a root certificate installed on my iPhone. My family has the same xfinity service on the same plan and none of their iPhones show this root certificate.
Do they have the same carrier apps installed, or a carrier-recommended profile installed?
https://www.xfinity.com/support/articles/secure-vs-open-xfinity-wifi
https://www.xfinity.com/support/articles/download-xfinity-wifi-app-prioritize-home-network
MissFiddy333 wrote:
I’m concerned my trust asset version is 1002. Apple only has up to 21 from research I have done.
According to the following thread, the Trust Store Version is a date, followed by a sequence number. So 2022070700 translates to (July 7, 2022; sequence number 00).
The Trust Asset Version "is an arbitrary internal version number" and the version numbering "does not necessarily follow a linear count."
Trust Asset Version - Apple Community
So what's the problem?
MissFiddy333 wrote:
Oh new weird scary issue…
Your fears will be used against you.
Your fears can be exploited, by advertisers, politicians, propagandists, scammers, and abusive exes.
Your fears are absolutely leverage to convince you to do things against your own interests.
Hacking and hackers and hacks hacks hacks are among those fears, and among those fears commonly exploited.
What can you do here? Start with the following, and with Safety Check and the checklists there:
Personal Safety User Guide - Apple Support
Linked at the bottom, there’s a PDF containing the whole document.
Here are some of the common scams (various of which absolutely try to use fear against us):
Recognize and avoid phishing messages, phony support calls, and other scams - Apple Support
Yes, iPhone and iPad can be exploited, but that’s been very rare and very much targeted against specific people. Targeting us ourselves and our fears (and our other string emotions, and our tiredness) is far, far more common.
part 2 of 2
Those that have loaded carrier apps can have carrier-related certificates and carrier-related Wi-Fi details loaded, as well. Some discussion of that was posted earlier in this thread.
Background on asymmetric public-key cryptography:
... https://en.wikipedia.org/wiki/Public-key_cryptography
... https://en.wikipedia.org/wiki/Public_key_infrastructure
And as I posted earlier in this thread: a Khan Academy intro.
Some of my previous replies in this thread:
... Trust Store Version - Apple Community
... Trust Store Version - Apple Community
... Trust Store Version - Apple Community
... Trust Store Version - Apple Community
T3ddy19: What you have posted in your previous replies here can be inferred to indicate you are a target of an immensely sophisticated attack and related tooling worth millions of dollars—espionage-level exploit tooling—and far beyond the realm of what assistance can be rendered here, if what you have reported ("Although it sounds like Pegasus virus, it has a different name for this years version") can be corroborated. And that sort of digital forensics and that sort of corroboration just can't happen via forum postings. Reported security issues persistent and unresolved since 2021 —particularly those that persist past a factory reset and other recommendations—are not going to get addressed around here.
2/2
JohnVinc wrote:
2015111600 ipad version 9.3.5 (13G36)
Do you have a question?
2015111600 is the expected and very old trust store version for that very old iOS 9 version.
Old enough that I’d expect issues with the LetsEncrypt certificates too, absent local updates manually added for that.
If you’re concerned about security, an iPad that old, with an iOS version that old, has other and probably larger security issues.
Do you know how to delete this root certificate and regain my normal trust asset version? Thank you so much for your help.
Here is what I found on the aaa certificate…
Here is the health data app that pops up under settings along with VPN device management.
Just last night I noticed the same problem. My trust asset version is 1002. I’m very concerned. Have you had any luck figuring out any further information about this? My iPhone also had a root certificate under this number and it said it was an enforced certificate. I could not delete it. I have never installed root certificates or jail broken my phone.
I’m concerned my trust asset version is 1002. Apple only has up to 21 from research I have done. My mother’s phone on the same plan shows this …
I'm concerned I have a root certificate and it’s forced. I cannot remove it. Doesn’t that usually mean a iphone is jail broken? I’ve had iPhones since the 1st one came out. I’ve never seen a root certificate installed on my iPhone. My family has the same xfinity service on the same plan and none of their iPhones show this root certificate.
Good evening:)
Thank you for the super spooky hacker advice. I have tried the safety check a few times in last few days. I tried network reset. Powering on and off. I tried signing in and out of Apple ID. (Which did by the way get rid of the AAA certificate from “Xfinity”). I’ve contacted Xfinity and they said it is not their certificate and to go to the Apple Store for help. Another guy here in discussions has confirmed that surveysapple.com is not an Apple domain. He suggested I contact Apple security.
Interestingly I tried using my Apple ID to log into a school or work account under vpn in settings and it said I already am signed in! In settings I do not see a profile to try and get rid of. It’s a pretty good hack I think… I mean I cannot get rid of the certificate because the phone is being controlled by a imposter MDM and I have yet to figure out a way to find this profile. I am seeing however it may have something to do with health data. Do you have that app? I am unable to delete it and it pops up when I search profile in settings. I’ll include some pics.
I’d wanted to add more pics, but by the time I removed all personal info, there was nothing left!
I’m not certain how long, had “mild”
things as far back as 2018, but things became very bad 2021-now. I’m going to try to send 2 pics related to previous discussion, MDM and screen recorder app (I did not purchase either), it seems like the MDM appears every year or more.
Where did you see 2022070700? That is an almost year old version. The trust store version number is the date that the trust store was last updated, and for iOS 16.5 it is 2023032800.
In simple terms, The Trust Store contains the digital signatures of issuers of the SSL certificates that are used to encrypt access to websites and email servers. There are billions of SSL certificates in use around the world. They are issued by a relatively small number of agencies and companies (called Certificate Authorities, or CAs), who, as part of the process of issuing the certificate, verifies that the site is legitimate. When you visit a website the certificate from that site is sent to your browser. Your browser then verifies that the certificate was issued by one of the agencies whose signature is in the Trust Store. If the signature is not in the trust store you see a warning that the site may not be what it seems. The Trust Store is updated as part of an iOS update. It will change whenever the list of certificate authorities changes, which is very rare. The Trust Store version is actually the date and time the trust store contents were last updated. So, for example, version 2023032800 was last updated on March 28, 2023 at midnight.
The trust store version has absolutely nothing to do with security vulnerabilities. If you keep your Apple product updated to the latest version of MacOS or iOS it will be protected against all known vulnerabilities, despite whatever mis-information has been posted in the forum.
Thank you, now can you tell me why allow access when locked home control turns on by itself? I turned it off, but it turns on. See attached
Bite-1T wrote:
?? Me too. 2023032800
Trust asset version:20
The Trust Store is not related to carrier lock.
Trust Store 2023032800 is current.
Apple hasn’t updated their support article.
You can send Apple some feedback, or can contact Apple Support and confirm this.
Mismatched Trust Store Version on iOS 16.5
