App sandbox container
Definition
An isolated directory assigned to each app on iOS under /var/mobile/Containers/Data/Application/<UUID>/. The container holds all of the app's Documents, Library, and tmp subdirectories. Apps cannot read each other's containers without explicit sharing entitlements, which is both a security feature and a forensic constraint.
Related terms
- iOS Keychain
- A hardware-backed secure credential store on iOS devices that holds passwords, authentication tokens, and cryptographic keys. Keychain items are encrypted with keys...
- NAND flash
- The type of non-volatile memory used in all modern mobile device storage. Data is written to pages grouped into blocks; erasure operates...
- Plist (property list)
- A structured data format native to Apple operating systems, available in XML and binary variants. iOS uses plist files to store app...
- SQLite
- A lightweight, serverless relational database engine used pervasively on both iOS and Android to store structured app data including messages, call logs,...
- Wear-leveling
- A flash storage controller behavior that distributes write operations across all available memory cells to prevent premature failure of any single cell....
Explained in
- Data Persistence and Evidence Locations on Mobile DevicesAn isolated directory assigned to each app on iOS under /var/mobile/Containers/Data/Application/<UUID>/. The container holds all of the app's Documents, Librar...