# SEP OS > embedded operating system by Apple **Wikidata**: [Q65476375](https://www.wikidata.org/wiki/Q65476375) **Source**: https://4ort.xyz/entity/sep-os ## Summary SEP OS (also known as SEPOS or Secure Enclave OS) is an embedded operating system developed by Apple Inc. It is designed to run on the Secure Enclave, a hardware-based security feature integrated into Apple devices. The system is based on the L4 microkernel family. ## Key Facts * **Developer:** Apple Inc. * **Classification:** Embedded operating system. * **Architecture:** Based on the L4 microkernel family. * **Platform:** Runs on the Secure Enclave. * **Aliases:** SEPOS, Secure Enclave OS, Secure Enclave Processor Operating System. * **Sources:** Described by sources including MacRumors and academic research (e.g., "sep-paper.pdf"). ## FAQs ### Q: What is SEP OS? A: SEP OS is an embedded operating system developed by Apple Inc. It operates specifically on the Secure Enclave hardware component found in Apple devices. ### Q: What kind of kernel does SEP OS use? A: SEP OS is based on the L4 microkernel family. This architecture is distinct from the XNU kernel used by Apple's main operating systems like iOS and macOS. ### Q: Who develops SEP OS? A: SEP OS is developed by Apple Inc., the American multinational technology company. ## Why It Matters SEP OS represents a critical layer of Apple's security architecture, serving as the dedicated software interface for the Secure Enclave. While Apple's main operating systems (iOS, macOS) handle general computing tasks, SEP OS manages sensitive security operations in an isolated environment. This isolation is essential for protecting user data, encryption keys, and biometric information (such as Touch ID and Face ID) from potential compromises in the main operating system or applications. By utilizing an L4 microkernel architecture, SEP OS minimizes the code base running in the secure environment, reducing the potential attack surface compared to a monolithic kernel. Its existence allows Apple to maintain a secure "black box" within their processors (such as the T2 chip and A-series chips), ensuring that sensitive processes are handled independently of the primary processor's state. This architectural separation is a cornerstone of modern mobile and desktop security in the Apple ecosystem. ## Notable For * **Secure Enclave Integration:** It is the dedicated operating system for Apple's Secure Enclave hardware. * **L4 Microkernel Base:** Unlike Apple's primary OS XNU kernel, SEP OS utilizes the L4 microkernel architecture. * **Security Focus:** It is specifically designed to handle encrypted data and security processes distinct from the main CPU. * **Isolation:** It operates independently of the device's primary operating system, providing a hardware-isolated environment. ## Body ### Development and Architecture SEP OS was created by **Apple Inc.** as a specialized solution for hardware security. It is categorized as an **embedded operating system**, meaning it is optimized for specific hardware control functions rather than general-purpose computing. The operating system is distinct in its technical foundation; it is **based on the L4 microkernel family**. This choice of architecture suggests a focus on minimized complexity and high reliability, traits typical of microkernels used in secure or real-time systems. This differentiates it from Apple's other operating systems (iOS, iPadOS, macOS), which are based on the XNU kernel. ### Platform and Function The software is designed to run exclusively on the **Secure Enclave**. This co-processor is physically isolated from the main processor. The functionality of SEP OS is intrinsically linked to this hardware, managing the storage and processing of cryptographic keys and other sensitive user data. Documentation and research references, such as the paper "sep-paper.pdf" and articles on LDAPWiki, identify the system by its technical aliases: **SEPOS**, **Secure Enclave OS**, and **Secure Enclave Processor Operating System**. It has been referenced in security discussions concerning Apple's T2 chip, notably regarding security flaws covered by MacRumors. ## References 1. [Source](http://mista.nu/research/sep-paper.pdf) 2. [Source](https://ldapwiki.com/wiki/SEPOS) 3. [Source](https://www.macrumors.com/2020/10/06/apples-t2-chip-unpatchable-security-flaw/)