Apple has faced a setback in its ongoing legal battle with Corellium, as US courts have ruled that third-party virtual iOS devices are permitted, and Apple cannot prevent their existence.
Corellium is known for offering security vulnerability research for iOS and Android phones through virtual desktops and operating systems. The court recognized Corellium’s contribution to scientific progress by enabling security research on important operating systems. However, Apple likely has concerns of its own.
Typically, consumers and developers have been required to purchase expensive Apple hardware to access iOS. Corellium’s virtual machines raise concerns that developers could test apps without acquiring the necessary hardware.
The US Court of Appeals for the Eleventh Circuit ruled that Corellium’s CORSEC simulator is protected under the fair use doctrine of copyright law. This ruling is based on the “duplication of copyrighted work under certain circumstances.” Corellium argues that its simulator primarily serves researchers, federal agencies, and defense contractors, highlighting the distinctions between its product and the regular distribution of iOS.
The legal dispute between Apple and Corellium began several years ago. In late 2020, a Florida federal judge ruled that the use of iOS in connection with Corellium’s product is permissible. Speculation has emerged that a potential vendetta could be driving Apple’s legal actions, as the company reportedly failed to acquire Corellium in 2018. While this may have played a minor role in the case, Apple has long maintained strict control over the distribution of its products, limiting third-party involvement.
The court’s decision in favor of Corellium is seen as a significant win for the security research community and those seeking to explore iOS vulnerabilities. It reaffirms the importance of fair use and the advancement of scientific knowledge in the technology sector.