MAD checks whether the iOS device has adequate lock screen mechanisms configured, such as a passcode or biometric authentication (Face ID or Touch ID). The absence of these basic protection mechanisms indicates a less secure environment in which unauthorized physical access to the device can occur without any barrier, exposing the application and sensitive data stored locally.
In the iOS ecosystem, configuring a passcode is especially relevant because data encryption at rest depends directly on the password set by the user. Devices without a passcode have a reduced level of cryptographic protection, increasing the risk of information exposure in scenarios of loss, theft, or improper physical access.
Technical Mechanism: MAD assesses the security state of the device lock screen to verify whether owner authentication is properly enabled. Upon identifying that there is no passcode or equivalent mechanism configured, the RASP classifies the environment as high risk and applies the defined security policies, reinforcing protection against misuse.
