蘋果 OS Security 徵人啟事

[bryanchang]

受朋友之託，在此張貼一則徵人廣告：

Apple OS Security is responsible for several security technologies in OS X (Mac and Embedded), including new features such as sandboxing and tagged downloads as well as open source projects such as OpenSSH, sudo, and Kerberos. We're looking for software engineers to help make the most of these technologies across Apple's product line and to identify additional opportunities to improve OS X security. Here are just a couple of details from Mac OS X 10.5 Leopard to give an idea of the kind of projects we undertake:

Leopard sandboxing (aka Seatbelt) builds upon Mac OS X's Mandatory Access Control Framework. The userland components handle converting Scheme-based sandbox descriptions into a sandbox profile. Once a sandbox profile is applied to a process, a kernel extension enforces the sandbox whenever the process or its children attempt to access operating system resources.

Also with Leopard, a Kerberos KDC is now found on every Mac and plays a significant role in enabling ad-hoc Shared Computers, Back to My Mac, and other features. PKINIT allows authentication using .Mac (or other!) certificates rather than passwords. For example, just by adding a Sharing Account with your colleague's .Mac email address, you can allow her to access files or other resources without the need to use a (potentially weak) password.

For more information, visit http://www.apple.com/jobs/us/pro/ and search for "job requisition number" 3026853.

[deer]

哎！
書到用時方恨少。