# SilverMetal Enhanced — iOS

**Status**: Phase 3I (planning, post-Linux v1)

🛡️ **SilverMetal Enhanced product line** — we harden iOS in place. We cannot modify iOS itself.

Tier D — profile-layer only. Weakest tier in the family; labelled as such. We ship MDM profiles, App Store apps, and a setup guide.

## Supersedes SilverApple

This flavour replaces the earlier prototype [`SilverLABS/SilverApple`](https://git.silverlabs.uk/SilverLABS/SilverApple) ("Privacy-first iOS hardening suite"). Per Phase 3I.1 of the roadmap:

- Inventory SilverApple's existing artefacts (MDM enrolment flow, SilverVPN onboarding, CalDAV/CardDAV setup)
- Migrate any reusable parts into this directory
- Archive the SilverApple repo on Gitea once migration is complete

## Scope (v1)

- Signed `.mobileconfig` MDM-style profile that:
  - Enforces device passcode policy
  - Disables analytics uploads, Siri suggestions
  - Restricts iCloud to absolute minimum (Find My, OS update only — sync-replaced services point at SilverSync)
  - Enables Lockdown Mode guidance
  - Default-app changes where iOS 18+ allows (Browser, Mail, etc.)
- Stack ports via App Store:
  - SilverBrowser (subject to Apple WebKit constraints — fall back to a hardened-defaults wrapper if pure custom engine is forbidden)
  - SilverVPN — already exists as a MAUI-based App Store candidate via [`SilverLABS/SilverVPN`](https://git.silverlabs.uk/SilverLABS/SilverVPN)
  - SilverSync (file/contact/calendar/photos providers)
  - SilverChat (post-v1.1)
  - SilverKeys (post-v1.1)
- Setup guide:
  - Disposable Apple ID guidance
  - Hardware-key 2FA (YubiKey via Lightning / NFC)
  - Recommended app curation
  - eSIM privacy guidance

## Out of scope

- Anything requiring jailbreak (we do not support, recommend, or distribute jailbreaks)
- Anything bypassing Apple's review for Stack apps
- Eliminating Apple ID — it is required for App Store and we say so

## Directory layout

To be populated in Phase 3I:

```
ios/
├── profile/           # .mobileconfig sources, signing
├── stack/             # iOS-specific Stack app builds (Xcode projects)
├── from-silverapple/  # migrated artefacts from the deprecated SilverApple repo
└── docs/              # setup guide, recommended apps, threat-tier disclaimer
```

## Verification gates

- Profile signature verifies on iOS install
- Lockdown Mode guidance verified across iOS 17+
- Stack apps pass App Store review and behave per spec
- Telemetry capture documents minimum-feasible Apple contact (we cannot reach zero)

## Honest framing

This is the weakest SilverMetal tier. iOS is the most restrictive consumer platform; users who pick this tier are typically users who *must* stay on iPhone. The product page must say so prominently.